./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1450020369 <...> Warning: Permanently added '10.128.10.20' (ED25519) to the list of known hosts. execve("./syz-executor1450020369", ["./syz-executor1450020369"], 0x7ffcc7adb270 /* 10 vars */) = 0 brk(NULL) = 0x5555565f3000 brk(0x5555565f3d40) = 0x5555565f3d40 arch_prctl(ARCH_SET_FS, 0x5555565f33c0) = 0 set_tid_address(0x5555565f3690) = 5063 set_robust_list(0x5555565f36a0, 24) = 0 rseq(0x5555565f3ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1450020369", 4096) = 28 getrandom("\x3f\x7b\xf2\x12\xf2\x79\x5e\x8c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555565f3d40 brk(0x555556614d40) = 0x555556614d40 brk(0x555556615000) = 0x555556615000 mprotect(0x7fd868f86000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 mkdir("./syzkaller.ltiMJB", 0700) = 0 chmod("./syzkaller.ltiMJB", 0777) = 0 chdir("./syzkaller.ltiMJB") = 0 mkdir("./0", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5065 attached [pid 5065] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5065] chdir("./0") = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5065 [pid 5065] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5065] setpgid(0, 0) = 0 [pid 5065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5065] write(3, "1000", 4) = 4 [pid 5065] close(3) = 0 [pid 5065] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5065] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5065] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5065] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5065] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5065] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5065] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5065] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5066 attached [pid 5066] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5066] set_robust_list(0x7fd868ec09a0, 24 [pid 5065] <... clone3 resumed> => {parent_tid=[5066]}, 88) = 5066 [pid 5066] <... set_robust_list resumed>) = 0 [pid 5066] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5066] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5065] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5065] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... futex resumed>) = 0 [pid 5065] <... futex resumed>) = 1 [pid 5066] memfd_create("syzkaller", 0) = 3 [pid 5065] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5066] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5066] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5066] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5066] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5066] close(3) = 0 [pid 5066] mkdir("./file0", 0777) = 0 [ 54.991411][ T5066] loop0: detected capacity change from 0 to 8192 [ 55.007758][ T5066] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.021040][ T5066] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.030788][ T5066] REISERFS (device loop0): using ordered data mode [pid 5066] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5066] chdir("./file0") = 0 [pid 5066] ioctl(4, LOOP_CLR_FD) = 0 [pid 5066] close(4) = 0 [pid 5066] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5065] <... futex resumed>) = 0 [pid 5066] mkdir(".", 0777 [pid 5065] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5066] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5065] <... futex resumed>) = 0 [ 55.037340][ T5066] reiserfs: using flush barriers [ 55.044085][ T5066] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.060990][ T5066] REISERFS (device loop0): checking transaction log (loop0) [ 55.072435][ T5066] REISERFS (device loop0): Using r5 hash to sort names [pid 5065] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5066] <... mount resumed>) = 0 [pid 5066] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5066] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5066] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5065] <... futex resumed>) = 0 [pid 5065] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... futex resumed>) = 0 [pid 5065] <... futex resumed>) = 1 [pid 5066] mkdir(".", 0777 [pid 5065] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5066] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5065] <... futex resumed>) = 0 [pid 5066] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5065] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5065] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 55.100923][ T5066] reiserfs: enabling write barrier flush mode [ 55.114449][ T5066] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5065] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5066] <... mount resumed>) = 0 [pid 5066] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5065] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5065] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5066] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5068 attached ) = 0 [pid 5066] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5068] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5065] <... clone3 resumed> => {parent_tid=[5068]}, 88) = 5068 [pid 5068] <... rseq resumed>) = 0 [pid 5065] rt_sigprocmask(SIG_SETMASK, [], [pid 5068] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5065] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5068] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5065] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5065] <... futex resumed>) = 0 [pid 5065] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5068] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5065] <... futex resumed>) = 0 [pid 5065] exit_group(0 [pid 5066] <... futex resumed>) = ? [pid 5065] <... exit_group resumed>) = ? [pid 5068] <... futex resumed>) = ? [pid 5066] +++ exited with 0 +++ [pid 5068] +++ exited with 0 +++ [pid 5065] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5065, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./0/binderfs") = 0 [ 55.158303][ T5066] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./0/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./0") = 0 mkdir("./1", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5070 ./strace-static-x86_64: Process 5070 attached [pid 5070] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5070] chdir("./1") = 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5070] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5070] write(3, "1000", 4) = 4 [pid 5070] close(3) = 0 [pid 5070] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5070] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5070] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5070] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5070] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5070] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5070] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5071 attached [pid 5071] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5070] <... clone3 resumed> => {parent_tid=[5071]}, 88) = 5071 [pid 5071] set_robust_list(0x7fd868ec09a0, 24 [pid 5070] rt_sigprocmask(SIG_SETMASK, [], [pid 5071] <... set_robust_list resumed>) = 0 [pid 5070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5071] rt_sigprocmask(SIG_SETMASK, [], [pid 5070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5070] <... futex resumed>) = 0 [pid 5070] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5071] memfd_create("syzkaller", 0) = 3 [pid 5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5071] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5071] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5071] close(3) = 0 [pid 5071] mkdir("./file0", 0777) = 0 [ 55.395616][ T5071] loop0: detected capacity change from 0 to 8192 [ 55.412847][ T5071] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.425894][ T5071] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.435297][ T5071] REISERFS (device loop0): using ordered data mode [pid 5071] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5071] chdir("./file0") = 0 [pid 5071] ioctl(4, LOOP_CLR_FD) = 0 [pid 5071] close(4) = 0 [pid 5071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 55.441881][ T5071] reiserfs: using flush barriers [ 55.448148][ T5071] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.465076][ T5071] REISERFS (device loop0): checking transaction log (loop0) [ 55.474386][ T5071] REISERFS (device loop0): Using r5 hash to sort names [pid 5071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] <... futex resumed>) = 0 [pid 5070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... futex resumed>) = 0 [pid 5070] <... futex resumed>) = 1 [pid 5071] mkdir(".", 0777 [pid 5070] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5071] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5071] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5071] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5070] <... futex resumed>) = 0 [pid 5071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5070] <... futex resumed>) = 0 [pid 5071] mkdir(".", 0777 [pid 5070] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5070] <... futex resumed>) = 0 [pid 5071] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5070] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 55.530250][ T5071] reiserfs: enabling write barrier flush mode [ 55.538307][ T5071] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5070] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5071] <... mount resumed>) = 0 [pid 5070] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5070] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5073 attached [pid 5073] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5070] <... clone3 resumed> => {parent_tid=[5073]}, 88) = 5073 [pid 5073] <... rseq resumed>) = 0 [pid 5070] rt_sigprocmask(SIG_SETMASK, [], [pid 5073] set_robust_list(0x7fd868e9f9a0, 24 [pid 5070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5073] <... set_robust_list resumed>) = 0 [pid 5070] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5073] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5070] <... futex resumed>) = 0 [pid 5071] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5073] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5070] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5071] <... openat resumed>) = 5 [pid 5073] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5073] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5071] <... futex resumed>) = 0 [pid 5073] <... futex resumed>) = 1 [pid 5071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] <... futex resumed>) = 0 [pid 5073] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5070] exit_group(0 [pid 5073] <... futex resumed>) = ? [pid 5070] <... exit_group resumed>) = ? [pid 5073] +++ exited with 0 +++ [pid 5071] <... futex resumed>) = ? [pid 5071] +++ exited with 0 +++ [pid 5070] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5070, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 55.572196][ T5071] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./1/binderfs") = 0 umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./1/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./1") = 0 mkdir("./2", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5074 attached , child_tidptr=0x5555565f3690) = 5074 [pid 5074] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5074] chdir("./2") = 0 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5074] setpgid(0, 0) = 0 [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5074] write(3, "1000", 4) = 4 [pid 5074] close(3) = 0 [pid 5074] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5074] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5074] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5074] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5074] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5074] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5074] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5074] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5075 attached [pid 5075] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5074] <... clone3 resumed> => {parent_tid=[5075]}, 88) = 5075 [pid 5075] set_robust_list(0x7fd868ec09a0, 24 [pid 5074] rt_sigprocmask(SIG_SETMASK, [], [pid 5075] <... set_robust_list resumed>) = 0 [pid 5074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5075] rt_sigprocmask(SIG_SETMASK, [], [pid 5074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5075] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5075] memfd_create("syzkaller", 0 [pid 5074] <... futex resumed>) = 0 [pid 5074] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5075] <... memfd_create resumed>) = 3 [pid 5075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5075] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5075] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5075] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5075] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5075] close(3) = 0 [pid 5075] mkdir("./file0", 0777) = 0 [ 55.933856][ T5075] loop0: detected capacity change from 0 to 8192 [ 55.950187][ T5075] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.963302][ T5075] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.973455][ T5075] REISERFS (device loop0): using ordered data mode [pid 5075] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5075] chdir("./file0") = 0 [pid 5075] ioctl(4, LOOP_CLR_FD) = 0 [pid 5075] close(4) = 0 [pid 5075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5074] <... futex resumed>) = 0 [pid 5075] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5075] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5074] <... futex resumed>) = 0 [pid 5074] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5075] mkdir(".", 0777) = -1 EEXIST (File exists) [ 55.979999][ T5075] reiserfs: using flush barriers [ 55.986543][ T5075] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.003166][ T5075] REISERFS (device loop0): checking transaction log (loop0) [ 56.011702][ T5075] REISERFS (device loop0): Using r5 hash to sort names [pid 5075] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5075] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5074] <... futex resumed>) = 0 [pid 5075] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5075] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5074] <... futex resumed>) = 0 [pid 5075] mkdir(".", 0777 [pid 5074] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5075] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5074] <... futex resumed>) = 0 [pid 5075] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5074] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5074] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5074] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5075] <... mount resumed>) = 0 [pid 5074] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5075] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5074] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5077 attached [pid 5075] <... openat resumed>) = 5 [pid 5077] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5074] <... clone3 resumed> => {parent_tid=[5077]}, 88) = 5077 [pid 5075] <... futex resumed>) = 0 [pid 5077] <... rseq resumed>) = 0 [pid 5074] rt_sigprocmask(SIG_SETMASK, [], [pid 5077] set_robust_list(0x7fd868e9f9a0, 24 [pid 5075] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5077] <... set_robust_list resumed>) = 0 [pid 5074] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] rt_sigprocmask(SIG_SETMASK, [], [pid 5074] <... futex resumed>) = 0 [pid 5077] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5074] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5077] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5077] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5074] <... futex resumed>) = 0 [pid 5077] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5074] exit_group(0) = ? [pid 5077] <... futex resumed>) = ? [pid 5075] <... futex resumed>) = ? [pid 5077] +++ exited with 0 +++ [pid 5075] +++ exited with 0 +++ [pid 5074] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 56.058336][ T5075] reiserfs: enabling write barrier flush mode [ 56.066687][ T5075] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 56.087789][ T5075] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./2/binderfs") = 0 umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./2/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./2") = 0 mkdir("./3", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached , child_tidptr=0x5555565f3690) = 5078 [pid 5078] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5078] chdir("./3") = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5078] setpgid(0, 0) = 0 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5078] write(3, "1000", 4) = 4 [pid 5078] close(3) = 0 [pid 5078] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5078] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5078] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5078] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5078] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5079 attached => {parent_tid=[5079]}, 88) = 5079 [pid 5079] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5078] rt_sigprocmask(SIG_SETMASK, [], [pid 5079] <... rseq resumed>) = 0 [pid 5078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5079] set_robust_list(0x7fd868ec09a0, 24 [pid 5078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5078] <... futex resumed>) = 0 [pid 5079] rt_sigprocmask(SIG_SETMASK, [], [pid 5078] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5079] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5079] memfd_create("syzkaller", 0) = 3 [pid 5079] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5079] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5079] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5079] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5079] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5079] close(3) = 0 [pid 5079] mkdir("./file0", 0777) = 0 [ 56.378488][ T5079] loop0: detected capacity change from 0 to 8192 [ 56.394360][ T5079] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.407417][ T5079] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.416915][ T5079] REISERFS (device loop0): using ordered data mode [ 56.423492][ T5079] reiserfs: using flush barriers [pid 5079] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5079] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5079] chdir("./file0") = 0 [pid 5079] ioctl(4, LOOP_CLR_FD) = 0 [pid 5079] close(4) = 0 [pid 5079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5078] <... futex resumed>) = 0 [pid 5078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5079] mkdir(".", 0777) = -1 EEXIST (File exists) [ 56.429839][ T5079] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.446548][ T5079] REISERFS (device loop0): checking transaction log (loop0) [ 56.455128][ T5079] REISERFS (device loop0): Using r5 hash to sort names [pid 5079] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5079] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5079] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5078] <... futex resumed>) = 0 [pid 5079] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5079] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5078] <... futex resumed>) = 0 [pid 5079] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5078] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5079] <... mount resumed>) = 0 [pid 5078] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5079] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5078] <... mprotect resumed>) = 0 [pid 5079] <... openat resumed>) = 5 [pid 5078] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5078] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5079] <... futex resumed>) = 0 [pid 5078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5079] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5078] <... clone3 resumed> => {parent_tid=[5081]}, 88) = 5081 ./strace-static-x86_64: Process 5081 attached [pid 5081] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5078] rt_sigprocmask(SIG_SETMASK, [], [pid 5081] <... rseq resumed>) = 0 [pid 5078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5081] set_robust_list(0x7fd868e9f9a0, 24 [pid 5078] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5078] <... futex resumed>) = 0 [pid 5081] rt_sigprocmask(SIG_SETMASK, [], [pid 5078] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5081] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5081] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5081] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5081] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5078] <... futex resumed>) = 0 [pid 5078] exit_group(0) = ? [ 56.482828][ T5079] reiserfs: enabling write barrier flush mode [ 56.492059][ T5079] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 56.519107][ T5079] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5081] <... futex resumed>) = ? [pid 5079] <... futex resumed>) = ? [pid 5081] +++ exited with 0 +++ [pid 5079] +++ exited with 0 +++ [pid 5078] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5078, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./3/binderfs") = 0 umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./3/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./3") = 0 mkdir("./4", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached [pid 5082] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5082] chdir("./4") = 0 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5082 [pid 5082] <... setpgid resumed>) = 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1000", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5082] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5082] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5082] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5082] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5082] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5082] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5083 attached [pid 5083] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5083] set_robust_list(0x7fd868ec09a0, 24 [pid 5082] <... clone3 resumed> => {parent_tid=[5083]}, 88) = 5083 [pid 5083] <... set_robust_list resumed>) = 0 [pid 5082] rt_sigprocmask(SIG_SETMASK, [], [pid 5083] rt_sigprocmask(SIG_SETMASK, [], [pid 5082] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5083] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] memfd_create("syzkaller", 0 [pid 5082] <... futex resumed>) = 0 [pid 5082] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5083] <... memfd_create resumed>) = 3 [pid 5083] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5083] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5083] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5083] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5083] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5083] close(3) = 0 [pid 5083] mkdir("./file0", 0777) = 0 [ 56.866381][ T5083] loop0: detected capacity change from 0 to 8192 [ 56.898129][ T5083] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5083] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5083] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5083] chdir("./file0") = 0 [pid 5083] ioctl(4, LOOP_CLR_FD) = 0 [pid 5083] close(4) = 0 [ 56.911404][ T5083] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.920643][ T5083] REISERFS (device loop0): using ordered data mode [ 56.927251][ T5083] reiserfs: using flush barriers [ 56.933308][ T5083] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.950290][ T5083] REISERFS (device loop0): checking transaction log (loop0) [ 56.958767][ T5083] REISERFS (device loop0): Using r5 hash to sort names [pid 5083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5082] <... futex resumed>) = 0 [pid 5083] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5082] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5083] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5083] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5083] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5083] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] <... futex resumed>) = 0 [pid 5082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] <... futex resumed>) = 0 [pid 5082] <... futex resumed>) = 1 [pid 5083] mkdir(".", 0777 [pid 5082] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5083] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5082] <... futex resumed>) = 0 [pid 5083] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5082] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5082] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5083] <... mount resumed>) = 0 [pid 5083] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5082] <... mprotect resumed>) = 0 [pid 5083] <... openat resumed>) = 5 [pid 5083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5082] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5083] <... futex resumed>) = 0 [pid 5082] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5083] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5085 attached => {parent_tid=[5085]}, 88) = 5085 [pid 5082] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5085] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5082] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5085] set_robust_list(0x7fd868e9f9a0, 24 [pid 5082] <... futex resumed>) = 0 [pid 5085] <... set_robust_list resumed>) = 0 [pid 5082] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5085] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5085] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5085] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5085] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5082] <... futex resumed>) = 0 [pid 5082] exit_group(0 [pid 5085] <... futex resumed>) = ? [pid 5083] <... futex resumed>) = ? [pid 5082] <... exit_group resumed>) = ? [pid 5085] +++ exited with 0 +++ [pid 5083] +++ exited with 0 +++ [pid 5082] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5082, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./4/binderfs") = 0 [ 57.019429][ T5083] reiserfs: enabling write barrier flush mode [ 57.027655][ T5083] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 57.057764][ T5083] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./4/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./4") = 0 mkdir("./5", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached , child_tidptr=0x5555565f3690) = 5086 [pid 5086] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5086] chdir("./5") = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5086] setpgid(0, 0) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5086] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5086] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5086] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5086] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5086] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0} => {parent_tid=[5087]}, 88) = 5087 ./strace-static-x86_64: Process 5087 attached [pid 5086] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5087] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5087] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5087] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5087] memfd_create("syzkaller", 0) = 3 [pid 5087] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5087] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5087] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5087] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5087] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5087] close(3) = 0 [pid 5087] mkdir("./file0", 0777) = 0 [ 57.365807][ T5087] loop0: detected capacity change from 0 to 8192 [ 57.382447][ T5087] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 57.395601][ T5087] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 57.404900][ T5087] REISERFS (device loop0): using ordered data mode [pid 5087] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5087] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5087] chdir("./file0") = 0 [pid 5087] ioctl(4, LOOP_CLR_FD) = 0 [pid 5087] close(4) = 0 [pid 5087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5087] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5086] <... futex resumed>) = 0 [pid 5086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... futex resumed>) = 0 [pid 5086] <... futex resumed>) = 1 [pid 5087] mkdir(".", 0777 [pid 5086] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5087] <... mkdir resumed>) = -1 EEXIST (File exists) [ 57.411436][ T5087] reiserfs: using flush barriers [ 57.417584][ T5087] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 57.434402][ T5087] REISERFS (device loop0): checking transaction log (loop0) [ 57.442842][ T5087] REISERFS (device loop0): Using r5 hash to sort names [pid 5087] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5087] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5086] <... futex resumed>) = 0 [pid 5087] <... futex resumed>) = 1 [pid 5086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] mkdir(".", 0777 [pid 5086] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5086] <... futex resumed>) = 0 [pid 5087] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 57.478621][ T5087] reiserfs: enabling write barrier flush mode [ 57.487116][ T5087] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5086] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5086] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5086] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5089 attached [pid 5089] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5086] <... clone3 resumed> => {parent_tid=[5089]}, 88) = 5089 [pid 5089] <... rseq resumed>) = 0 [pid 5086] rt_sigprocmask(SIG_SETMASK, [], [pid 5089] set_robust_list(0x7fd868e9f9a0, 24 [pid 5086] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5089] <... set_robust_list resumed>) = 0 [pid 5086] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5089] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5086] <... futex resumed>) = 0 [pid 5089] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5086] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5087] <... mount resumed>) = 0 [pid 5087] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5089] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5089] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5086] <... futex resumed>) = 0 [pid 5087] <... openat resumed>) = 5 [pid 5089] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5086] exit_group(0 [pid 5087] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5089] <... futex resumed>) = ? [pid 5089] +++ exited with 0 +++ [pid 5086] <... exit_group resumed>) = ? [pid 5087] <... futex resumed>) = ? [pid 5087] +++ exited with 0 +++ [pid 5086] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5086, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 57.530935][ T5087] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./5/binderfs") = 0 umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./5/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./5") = 0 mkdir("./6", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5090 ./strace-static-x86_64: Process 5090 attached [pid 5090] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5090] chdir("./6") = 0 [pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5090] setpgid(0, 0) = 0 [pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5090] write(3, "1000", 4) = 4 [pid 5090] close(3) = 0 [pid 5090] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5090] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5090] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5090] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5090] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5090] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5090] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5091 attached [pid 5091] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5090] <... clone3 resumed> => {parent_tid=[5091]}, 88) = 5091 [pid 5091] <... rseq resumed>) = 0 [pid 5090] rt_sigprocmask(SIG_SETMASK, [], [pid 5091] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5090] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5091] rt_sigprocmask(SIG_SETMASK, [], [pid 5090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5091] memfd_create("syzkaller", 0 [pid 5090] <... futex resumed>) = 0 [pid 5091] <... memfd_create resumed>) = 3 [pid 5091] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5090] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5091] <... mmap resumed>) = 0x7fd860aa0000 [pid 5091] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5091] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5091] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5091] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5091] close(3) = 0 [pid 5091] mkdir("./file0", 0777) = 0 [ 57.890156][ T5091] loop0: detected capacity change from 0 to 8192 [ 57.905934][ T5091] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 57.919122][ T5091] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 57.928680][ T5091] REISERFS (device loop0): using ordered data mode [ 57.935465][ T5091] reiserfs: using flush barriers [pid 5091] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5091] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5091] chdir("./file0") = 0 [pid 5091] ioctl(4, LOOP_CLR_FD) = 0 [pid 5091] close(4) = 0 [pid 5091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5090] <... futex resumed>) = 0 [pid 5091] <... futex resumed>) = 1 [pid 5090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] mkdir(".", 0777 [pid 5090] <... futex resumed>) = 0 [pid 5091] <... mkdir resumed>) = -1 EEXIST (File exists) [ 57.941947][ T5091] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 57.958944][ T5091] REISERFS (device loop0): checking transaction log (loop0) [ 57.967541][ T5091] REISERFS (device loop0): Using r5 hash to sort names [pid 5090] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5091] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5091] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5090] <... futex resumed>) = 0 [pid 5091] mkdir(".", 0777 [pid 5090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5091] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5090] <... futex resumed>) = 0 [pid 5091] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5090] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5090] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5090] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5090] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5093 attached => {parent_tid=[5093]}, 88) = 5093 [pid 5093] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5090] rt_sigprocmask(SIG_SETMASK, [], [pid 5093] <... rseq resumed>) = 0 [pid 5093] set_robust_list(0x7fd868e9f9a0, 24 [pid 5090] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5093] <... set_robust_list resumed>) = 0 [pid 5090] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5093] rt_sigprocmask(SIG_SETMASK, [], [pid 5090] <... futex resumed>) = 0 [pid 5093] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5090] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 58.005733][ T5091] reiserfs: enabling write barrier flush mode [ 58.014448][ T5091] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5093] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5091] <... mount resumed>) = 0 [pid 5091] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5091] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5093] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5093] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5090] <... futex resumed>) = 0 [pid 5093] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5090] exit_group(0 [pid 5093] <... futex resumed>) = ? [pid 5093] +++ exited with 0 +++ [pid 5091] <... futex resumed>) = ? [pid 5090] <... exit_group resumed>) = ? [pid 5091] +++ exited with 0 +++ [pid 5090] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5090, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./6/binderfs") = 0 [ 58.059301][ T5091] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./6/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./6") = 0 mkdir("./7", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5094 attached [pid 5094] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5094] chdir("./7") = 0 [pid 5094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5094 [pid 5094] setpgid(0, 0) = 0 [pid 5094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5094] write(3, "1000", 4) = 4 [pid 5094] close(3) = 0 [pid 5094] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5094] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5094] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5094] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5094] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5094] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5094] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5094] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5095 attached => {parent_tid=[5095]}, 88) = 5095 [pid 5095] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5094] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5095] <... rseq resumed>) = 0 [pid 5095] set_robust_list(0x7fd868ec09a0, 24 [pid 5094] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5095] <... set_robust_list resumed>) = 0 [pid 5095] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5095] memfd_create("syzkaller", 0) = 3 [pid 5095] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5095] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5095] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5095] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5095] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5095] close(3) = 0 [pid 5095] mkdir("./file0", 0777) = 0 [ 58.315925][ T5095] loop0: detected capacity change from 0 to 8192 [ 58.341518][ T5095] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 58.354569][ T5095] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5095] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5095] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5095] chdir("./file0") = 0 [pid 5095] ioctl(4, LOOP_CLR_FD) = 0 [pid 5095] close(4) = 0 [pid 5095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5094] <... futex resumed>) = 0 [pid 5095] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5095] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5095] mkdir(".", 0777 [pid 5094] <... futex resumed>) = 0 [pid 5095] <... mkdir resumed>) = -1 EEXIST (File exists) [ 58.363893][ T5095] REISERFS (device loop0): using ordered data mode [ 58.370438][ T5095] reiserfs: using flush barriers [ 58.377076][ T5095] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 58.393913][ T5095] REISERFS (device loop0): checking transaction log (loop0) [ 58.402511][ T5095] REISERFS (device loop0): Using r5 hash to sort names [pid 5094] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5095] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5095] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5094] <... futex resumed>) = 0 [pid 5095] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5095] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5094] <... futex resumed>) = 0 [pid 5095] mkdir(".", 0777 [pid 5094] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5095] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5094] <... futex resumed>) = 0 [pid 5095] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5094] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5094] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5095] <... mount resumed>) = 0 [pid 5095] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5094] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5094] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5097 attached [pid 5097] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5095] <... openat resumed>) = 5 [pid 5095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] set_robust_list(0x7fd868e9f9a0, 24 [pid 5094] <... clone3 resumed> => {parent_tid=[5097]}, 88) = 5097 [pid 5097] <... set_robust_list resumed>) = 0 [pid 5094] rt_sigprocmask(SIG_SETMASK, [], [pid 5097] rt_sigprocmask(SIG_SETMASK, [], [pid 5094] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5097] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5094] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5097] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5094] <... futex resumed>) = 0 [pid 5095] <... futex resumed>) = 0 [pid 5097] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5095] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5094] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5097] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5094] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5097] <... futex resumed>) = 0 [pid 5094] exit_group(0 [pid 5097] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5095] <... futex resumed>) = ? [pid 5094] <... exit_group resumed>) = ? [pid 5097] +++ exited with 0 +++ [pid 5095] +++ exited with 0 +++ [pid 5094] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5094, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 58.428131][ T5095] reiserfs: enabling write barrier flush mode [ 58.441915][ T5095] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 58.462899][ T5095] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./7/binderfs") = 0 umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./7/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./7") = 0 mkdir("./8", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5098 attached [pid 5098] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5098] chdir("./8") = 0 [pid 5098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5098] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5098 [pid 5098] <... setpgid resumed>) = 0 [pid 5098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5098] write(3, "1000", 4) = 4 [pid 5098] close(3) = 0 [pid 5098] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5098] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5098] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5098] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5098] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5098] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5098] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5098] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5099 attached [pid 5099] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5099] set_robust_list(0x7fd868ec09a0, 24 [pid 5098] <... clone3 resumed> => {parent_tid=[5099]}, 88) = 5099 [pid 5099] <... set_robust_list resumed>) = 0 [pid 5098] rt_sigprocmask(SIG_SETMASK, [], [pid 5099] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5098] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5099] memfd_create("syzkaller", 0 [pid 5098] <... futex resumed>) = 0 [pid 5099] <... memfd_create resumed>) = 3 [pid 5098] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5099] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5099] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5099] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5099] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5099] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5099] close(3) = 0 [pid 5099] mkdir("./file0", 0777) = 0 [ 58.676785][ T5099] loop0: detected capacity change from 0 to 8192 [ 58.686693][ T5099] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 58.699787][ T5099] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 58.709177][ T5099] REISERFS (device loop0): using ordered data mode [ 58.715772][ T5099] reiserfs: using flush barriers [pid 5099] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5099] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5099] chdir("./file0") = 0 [pid 5099] ioctl(4, LOOP_CLR_FD) = 0 [pid 5099] close(4) = 0 [pid 5099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5098] <... futex resumed>) = 0 [pid 5099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5099] <... futex resumed>) = 0 [pid 5098] <... futex resumed>) = 1 [pid 5099] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5098] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 58.722393][ T5099] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 58.739004][ T5099] REISERFS (device loop0): checking transaction log (loop0) [ 58.747709][ T5099] REISERFS (device loop0): Using r5 hash to sort names [pid 5099] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5099] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5098] <... futex resumed>) = 0 [pid 5098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5099] <... futex resumed>) = 0 [pid 5098] <... futex resumed>) = 1 [pid 5099] mkdir(".", 0777 [pid 5098] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5099] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5098] <... futex resumed>) = 0 [pid 5099] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5098] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5098] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5098] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5099] <... mount resumed>) = 0 [pid 5098] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5098] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5101 attached [pid 5099] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5101] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5098] <... clone3 resumed> => {parent_tid=[5101]}, 88) = 5101 [pid 5099] <... openat resumed>) = 5 [pid 5101] <... rseq resumed>) = 0 [pid 5098] rt_sigprocmask(SIG_SETMASK, [], [pid 5101] set_robust_list(0x7fd868e9f9a0, 24 [pid 5099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5098] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5101] <... set_robust_list resumed>) = 0 [pid 5101] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5099] <... futex resumed>) = 0 [pid 5098] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5101] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5098] <... futex resumed>) = 0 [pid 5098] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5101] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5101] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5098] <... futex resumed>) = 0 [pid 5101] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5098] exit_group(0 [pid 5101] <... futex resumed>) = ? [pid 5099] <... futex resumed>) = ? [pid 5098] <... exit_group resumed>) = ? [pid 5101] +++ exited with 0 +++ [pid 5099] +++ exited with 0 +++ [pid 5098] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5098, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 58.790761][ T5099] reiserfs: enabling write barrier flush mode [ 58.799448][ T5099] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 58.821881][ T5099] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./8/binderfs") = 0 umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./8/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./8") = 0 mkdir("./9", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5102 attached , child_tidptr=0x5555565f3690) = 5102 [pid 5102] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5102] chdir("./9") = 0 [pid 5102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5102] setpgid(0, 0) = 0 [pid 5102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5102] write(3, "1000", 4) = 4 [pid 5102] close(3) = 0 [pid 5102] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5102] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5102] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5102] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5102] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5102] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5102] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5103 attached [pid 5103] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5102] <... clone3 resumed> => {parent_tid=[5103]}, 88) = 5103 [pid 5103] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5102] rt_sigprocmask(SIG_SETMASK, [], [pid 5103] rt_sigprocmask(SIG_SETMASK, [], [pid 5102] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5103] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5103] memfd_create("syzkaller", 0 [pid 5102] <... futex resumed>) = 0 [pid 5102] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5103] <... memfd_create resumed>) = 3 [pid 5103] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5103] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5103] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5103] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5103] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5103] close(3) = 0 [pid 5103] mkdir("./file0", 0777) = 0 [ 59.101338][ T5103] loop0: detected capacity change from 0 to 8192 [ 59.127325][ T5103] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 59.140731][ T5103] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5103] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5103] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5103] chdir("./file0") = 0 [pid 5103] ioctl(4, LOOP_CLR_FD) = 0 [pid 5103] close(4) = 0 [pid 5103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5102] <... futex resumed>) = 0 [pid 5102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 59.150053][ T5103] REISERFS (device loop0): using ordered data mode [ 59.156668][ T5103] reiserfs: using flush barriers [ 59.163100][ T5103] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 59.179557][ T5103] REISERFS (device loop0): checking transaction log (loop0) [ 59.188056][ T5103] REISERFS (device loop0): Using r5 hash to sort names [pid 5103] <... futex resumed>) = 0 [pid 5102] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5103] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5103] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5103] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5102] <... futex resumed>) = 0 [pid 5103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5103] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5102] <... futex resumed>) = 0 [pid 5103] mkdir(".", 0777 [pid 5102] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5103] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5102] <... futex resumed>) = 0 [pid 5103] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5102] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 59.222420][ T5103] reiserfs: enabling write barrier flush mode [ 59.232954][ T5103] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5102] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5103] <... mount resumed>) = 0 [pid 5102] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5105 attached [pid 5105] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5102] <... clone3 resumed> => {parent_tid=[5105]}, 88) = 5105 [pid 5105] <... rseq resumed>) = 0 [pid 5102] rt_sigprocmask(SIG_SETMASK, [], [pid 5105] set_robust_list(0x7fd868e9f9a0, 24 [pid 5102] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5105] <... set_robust_list resumed>) = 0 [pid 5105] rt_sigprocmask(SIG_SETMASK, [], [pid 5102] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5105] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5102] <... futex resumed>) = 0 [pid 5105] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5103] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5102] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5105] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5103] <... openat resumed>) = 5 [pid 5103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5105] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5105] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5102] <... futex resumed>) = 0 [pid 5102] exit_group(0 [pid 5105] <... futex resumed>) = ? [pid 5103] <... futex resumed>) = ? [pid 5102] <... exit_group resumed>) = ? [pid 5105] +++ exited with 0 +++ [pid 5103] +++ exited with 0 +++ [pid 5102] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5102, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./9/binderfs") = 0 [ 59.276322][ T5103] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./9/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./9") = 0 mkdir("./10", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5106 ./strace-static-x86_64: Process 5106 attached [pid 5106] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5106] chdir("./10") = 0 [pid 5106] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5106] setpgid(0, 0) = 0 [pid 5106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5106] write(3, "1000", 4) = 4 [pid 5106] close(3) = 0 [pid 5106] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5106] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5106] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5106] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5106] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5106] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5107 attached [pid 5107] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5106] <... clone3 resumed> => {parent_tid=[5107]}, 88) = 5107 [pid 5107] <... rseq resumed>) = 0 [pid 5107] set_robust_list(0x7fd868ec09a0, 24 [pid 5106] rt_sigprocmask(SIG_SETMASK, [], [pid 5107] <... set_robust_list resumed>) = 0 [pid 5106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5107] rt_sigprocmask(SIG_SETMASK, [], [pid 5106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5107] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5106] <... futex resumed>) = 0 [pid 5107] memfd_create("syzkaller", 0 [pid 5106] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5107] <... memfd_create resumed>) = 3 [pid 5107] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5107] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5107] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5107] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5107] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5107] close(3) = 0 [pid 5107] mkdir("./file0", 0777) = 0 [ 59.520339][ T5107] loop0: detected capacity change from 0 to 8192 [ 59.531115][ T5107] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 59.544220][ T5107] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 59.553603][ T5107] REISERFS (device loop0): using ordered data mode [ 59.560129][ T5107] reiserfs: using flush barriers [pid 5107] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5107] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5107] chdir("./file0") = 0 [pid 5107] ioctl(4, LOOP_CLR_FD) = 0 [pid 5107] close(4) = 0 [pid 5107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5107] mkdir(".", 0777 [pid 5106] <... futex resumed>) = 0 [pid 5107] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5106] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 59.566736][ T5107] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 59.583205][ T5107] REISERFS (device loop0): checking transaction log (loop0) [ 59.591756][ T5107] REISERFS (device loop0): Using r5 hash to sort names [pid 5107] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5107] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... futex resumed>) = 0 [pid 5106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5106] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5107] <... futex resumed>) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5107] mkdir(".", 0777 [pid 5106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5107] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5106] <... mmap resumed>) = 0x7fd868e7f000 [pid 5107] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5106] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5106] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5109 attached [pid 5109] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5107] <... mount resumed>) = 0 [pid 5106] <... clone3 resumed> => {parent_tid=[5109]}, 88) = 5109 [pid 5109] <... rseq resumed>) = 0 [pid 5107] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5106] rt_sigprocmask(SIG_SETMASK, [], [pid 5109] set_robust_list(0x7fd868e9f9a0, 24 [pid 5107] <... openat resumed>) = 5 [pid 5107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5109] <... set_robust_list resumed>) = 0 [pid 5106] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5109] rt_sigprocmask(SIG_SETMASK, [], [pid 5106] <... futex resumed>) = 0 [pid 5107] <... futex resumed>) = 0 [pid 5107] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5109] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5106] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5109] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5109] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5106] <... futex resumed>) = 0 [pid 5106] exit_group(0 [pid 5107] <... futex resumed>) = ? [pid 5107] +++ exited with 0 +++ [pid 5106] <... exit_group resumed>) = ? [ 59.625546][ T5107] reiserfs: enabling write barrier flush mode [ 59.633880][ T5107] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 59.664817][ T5107] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5109] +++ exited with 0 +++ [pid 5106] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5106, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./10", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./10/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./10/binderfs") = 0 umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./10/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./10/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./10") = 0 mkdir("./11", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5110 attached , child_tidptr=0x5555565f3690) = 5110 [pid 5110] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5110] chdir("./11") = 0 [pid 5110] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5110] setpgid(0, 0) = 0 [pid 5110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5110] write(3, "1000", 4) = 4 [pid 5110] close(3) = 0 [pid 5110] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5110] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5110] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5110] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5110] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5110] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5110] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5110] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5111 attached => {parent_tid=[5111]}, 88) = 5111 [pid 5110] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5111] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5110] <... futex resumed>) = 0 [pid 5111] <... rseq resumed>) = 0 [pid 5110] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5111] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5111] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5111] memfd_create("syzkaller", 0) = 3 [pid 5111] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5111] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5111] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5111] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5111] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5111] close(3) = 0 [pid 5111] mkdir("./file0", 0777) = 0 [ 59.944557][ T5111] loop0: detected capacity change from 0 to 8192 [ 59.970217][ T5111] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 59.983339][ T5111] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5111] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5111] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5111] chdir("./file0") = 0 [pid 5111] ioctl(4, LOOP_CLR_FD) = 0 [pid 5111] close(4) = 0 [pid 5111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5111] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5110] <... futex resumed>) = 0 [pid 5110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5111] <... futex resumed>) = 0 [pid 5110] <... futex resumed>) = 1 [pid 5111] mkdir(".", 0777) = -1 EEXIST (File exists) [ 59.992664][ T5111] REISERFS (device loop0): using ordered data mode [ 59.999190][ T5111] reiserfs: using flush barriers [ 60.005608][ T5111] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 60.022442][ T5111] REISERFS (device loop0): checking transaction log (loop0) [ 60.030709][ T5111] REISERFS (device loop0): Using r5 hash to sort names [pid 5111] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5110] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5111] <... mount resumed>) = 0 [pid 5111] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5110] <... futex resumed>) = 0 [pid 5111] <... futex resumed>) = 1 [pid 5110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5111] mkdir(".", 0777 [pid 5110] <... futex resumed>) = 0 [pid 5111] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5110] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5111] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5110] <... futex resumed>) = 0 [pid 5110] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5110] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5110] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5111] <... mount resumed>) = 0 [pid 5110] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5110] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5111] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5113 attached ) = 5 [pid 5111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5113] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5110] <... clone3 resumed> => {parent_tid=[5113]}, 88) = 5113 [pid 5113] <... rseq resumed>) = 0 [pid 5111] <... futex resumed>) = 0 [pid 5110] rt_sigprocmask(SIG_SETMASK, [], [pid 5113] set_robust_list(0x7fd868e9f9a0, 24 [pid 5111] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5110] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5113] <... set_robust_list resumed>) = 0 [pid 5110] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5113] rt_sigprocmask(SIG_SETMASK, [], [pid 5110] <... futex resumed>) = 0 [pid 5113] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5110] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5113] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5113] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5110] <... futex resumed>) = 0 [pid 5113] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5110] exit_group(0 [pid 5113] <... futex resumed>) = ? [pid 5111] <... futex resumed>) = ? [pid 5113] +++ exited with 0 +++ [pid 5111] +++ exited with 0 +++ [pid 5110] <... exit_group resumed>) = ? [pid 5110] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5110, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- umount2("./11", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 60.065230][ T5111] reiserfs: enabling write barrier flush mode [ 60.074094][ T5111] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 60.102732][ T5111] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./11/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./11/binderfs") = 0 umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./11/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./11/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./11") = 0 mkdir("./12", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5114 attached , child_tidptr=0x5555565f3690) = 5114 [pid 5114] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5114] chdir("./12") = 0 [pid 5114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5114] setpgid(0, 0) = 0 [pid 5114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5114] write(3, "1000", 4) = 4 [pid 5114] close(3) = 0 [pid 5114] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5114] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5114] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5114] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5114] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5114] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5114] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5115 attached [pid 5115] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5114] <... clone3 resumed> => {parent_tid=[5115]}, 88) = 5115 [pid 5115] <... rseq resumed>) = 0 [pid 5115] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5115] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5114] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5115] <... futex resumed>) = 0 [pid 5114] <... futex resumed>) = 1 [pid 5115] memfd_create("syzkaller", 0 [pid 5114] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5115] <... memfd_create resumed>) = 3 [pid 5115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5115] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5115] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5115] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5115] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5115] close(3) = 0 [pid 5115] mkdir("./file0", 0777) = 0 [ 60.358102][ T5115] loop0: detected capacity change from 0 to 8192 [ 60.375462][ T5115] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 60.388696][ T5115] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 60.398125][ T5115] REISERFS (device loop0): using ordered data mode [pid 5115] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5115] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5115] chdir("./file0") = 0 [pid 5115] ioctl(4, LOOP_CLR_FD) = 0 [pid 5115] close(4) = 0 [pid 5115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5114] <... futex resumed>) = 0 [pid 5115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5115] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5115] mkdir(".", 0777 [pid 5114] <... futex resumed>) = 0 [ 60.404709][ T5115] reiserfs: using flush barriers [ 60.411132][ T5115] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 60.428063][ T5115] REISERFS (device loop0): checking transaction log (loop0) [ 60.436630][ T5115] REISERFS (device loop0): Using r5 hash to sort names [pid 5115] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5114] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5115] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5115] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5114] <... futex resumed>) = 0 [pid 5115] <... futex resumed>) = 1 [pid 5114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5115] mkdir(".", 0777 [pid 5114] <... futex resumed>) = 0 [pid 5114] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5115] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5114] <... futex resumed>) = 0 [pid 5115] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5114] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5115] <... mount resumed>) = 0 [pid 5114] <... mprotect resumed>) = 0 [pid 5115] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5114] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5114] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5115] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5117 attached [pid 5115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5114] <... clone3 resumed> => {parent_tid=[5117]}, 88) = 5117 [pid 5117] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5115] <... futex resumed>) = 0 [pid 5117] <... rseq resumed>) = 0 [pid 5115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5114] rt_sigprocmask(SIG_SETMASK, [], [pid 5117] set_robust_list(0x7fd868e9f9a0, 24 [pid 5114] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5117] <... set_robust_list resumed>) = 0 [pid 5114] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5117] rt_sigprocmask(SIG_SETMASK, [], [pid 5114] <... futex resumed>) = 0 [pid 5117] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5114] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5117] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5117] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5114] <... futex resumed>) = 0 [pid 5117] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5114] exit_group(0 [pid 5117] <... futex resumed>) = ? [pid 5115] <... futex resumed>) = ? [pid 5117] +++ exited with 0 +++ [pid 5115] +++ exited with 0 +++ [pid 5114] <... exit_group resumed>) = ? [pid 5114] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5114, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- [ 60.479155][ T5115] reiserfs: enabling write barrier flush mode [ 60.488019][ T5115] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 60.513289][ T5115] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./12", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./12/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./12/binderfs") = 0 umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./12/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./12/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./12") = 0 mkdir("./13", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5118 attached , child_tidptr=0x5555565f3690) = 5118 [pid 5118] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5118] chdir("./13") = 0 [pid 5118] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5118] setpgid(0, 0) = 0 [pid 5118] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5118] write(3, "1000", 4) = 4 [pid 5118] close(3) = 0 [pid 5118] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5118] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5118] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5118] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5118] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5118] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5118] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5118] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5119 attached [pid 5119] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5118] <... clone3 resumed> => {parent_tid=[5119]}, 88) = 5119 [pid 5119] set_robust_list(0x7fd868ec09a0, 24 [pid 5118] rt_sigprocmask(SIG_SETMASK, [], [pid 5119] <... set_robust_list resumed>) = 0 [pid 5118] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5119] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5118] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5119] memfd_create("syzkaller", 0) = 3 [pid 5119] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5119] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5119] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5119] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5119] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5119] close(3) = 0 [pid 5119] mkdir("./file0", 0777) = 0 [ 60.830966][ T5119] loop0: detected capacity change from 0 to 8192 [ 60.857238][ T5119] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 60.870805][ T5119] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5119] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5119] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5119] chdir("./file0") = 0 [pid 5119] ioctl(4, LOOP_CLR_FD) = 0 [pid 5119] close(4) = 0 [pid 5119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5118] <... futex resumed>) = 0 [pid 5119] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 60.880110][ T5119] REISERFS (device loop0): using ordered data mode [ 60.886706][ T5119] reiserfs: using flush barriers [ 60.893139][ T5119] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 60.909568][ T5119] REISERFS (device loop0): checking transaction log (loop0) [ 60.918126][ T5119] REISERFS (device loop0): Using r5 hash to sort names [pid 5119] mkdir(".", 0777 [pid 5118] <... futex resumed>) = 0 [pid 5119] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5119] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5118] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5119] <... mount resumed>) = 0 [pid 5119] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5118] <... futex resumed>) = 0 [pid 5119] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5119] <... futex resumed>) = 0 [pid 5118] <... futex resumed>) = 1 [pid 5119] mkdir(".", 0777 [pid 5118] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5119] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5118] <... futex resumed>) = 0 [pid 5119] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5118] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5119] <... mount resumed>) = 0 [pid 5118] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5119] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5118] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5119] <... futex resumed>) = 0 [pid 5118] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5118] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5121 attached [pid 5121] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5118] <... clone3 resumed> => {parent_tid=[5121]}, 88) = 5121 [pid 5121] <... rseq resumed>) = 0 [pid 5118] rt_sigprocmask(SIG_SETMASK, [], [pid 5121] set_robust_list(0x7fd868e9f9a0, 24 [pid 5118] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5121] <... set_robust_list resumed>) = 0 [pid 5118] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5121] rt_sigprocmask(SIG_SETMASK, [], [pid 5118] <... futex resumed>) = 0 [pid 5121] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5121] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5118] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5121] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5119] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5121] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5118] <... futex resumed>) = 0 [pid 5121] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5118] exit_group(0 [pid 5121] <... futex resumed>) = ? [pid 5119] <... futex resumed>) = ? [pid 5118] <... exit_group resumed>) = ? [pid 5121] +++ exited with 0 +++ [pid 5119] +++ exited with 0 +++ [pid 5118] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5118, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./13", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 60.959863][ T5119] reiserfs: enabling write barrier flush mode [ 60.970064][ T5119] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 60.999251][ T5119] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./13/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./13/binderfs") = 0 umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./13/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./13/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./13") = 0 mkdir("./14", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5122 attached , child_tidptr=0x5555565f3690) = 5122 [pid 5122] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5122] chdir("./14") = 0 [pid 5122] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5122] setpgid(0, 0) = 0 [pid 5122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5122] write(3, "1000", 4) = 4 [pid 5122] close(3) = 0 [pid 5122] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5122] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5122] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5122] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5122] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5122] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5123 attached => {parent_tid=[5123]}, 88) = 5123 [pid 5123] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5122] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5122] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5123] <... rseq resumed>) = 0 [pid 5123] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5123] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5123] memfd_create("syzkaller", 0) = 3 [pid 5123] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5123] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5123] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5123] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5123] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5123] close(3) = 0 [pid 5123] mkdir("./file0", 0777) = 0 [ 61.279637][ T5123] loop0: detected capacity change from 0 to 8192 [ 61.295033][ T5123] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 61.308199][ T5123] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 61.317538][ T5123] REISERFS (device loop0): using ordered data mode [ 61.324106][ T5123] reiserfs: using flush barriers [pid 5123] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5123] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5123] chdir("./file0") = 0 [pid 5123] ioctl(4, LOOP_CLR_FD) = 0 [pid 5123] close(4) = 0 [pid 5123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5123] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = 0 [pid 5122] <... futex resumed>) = 1 [pid 5123] mkdir(".", 0777 [pid 5122] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5123] <... mkdir resumed>) = -1 EEXIST (File exists) [ 61.331023][ T5123] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 61.347806][ T5123] REISERFS (device loop0): checking transaction log (loop0) [ 61.356158][ T5123] REISERFS (device loop0): Using r5 hash to sort names [pid 5123] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5123] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... futex resumed>) = 1 [pid 5122] <... futex resumed>) = 0 [pid 5123] mkdir(".", 0777 [pid 5122] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5123] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5122] <... futex resumed>) = 0 [pid 5123] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5122] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5122] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5122] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5125 attached [pid 5125] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5125] set_robust_list(0x7fd868e9f9a0, 24 [pid 5122] <... clone3 resumed> => {parent_tid=[5125]}, 88) = 5125 [pid 5125] <... set_robust_list resumed>) = 0 [pid 5122] rt_sigprocmask(SIG_SETMASK, [], [ 61.384093][ T5123] reiserfs: enabling write barrier flush mode [ 61.393687][ T5123] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5125] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5122] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5122] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5125] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5122] <... futex resumed>) = 0 [pid 5122] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5125] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5123] <... mount resumed>) = 0 [pid 5123] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5125] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5123] <... futex resumed>) = 0 [pid 5122] <... futex resumed>) = 0 [pid 5125] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5123] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5122] exit_group(0 [pid 5125] <... futex resumed>) = ? [pid 5123] <... futex resumed>) = ? [pid 5122] <... exit_group resumed>) = ? [pid 5125] +++ exited with 0 +++ [pid 5123] +++ exited with 0 +++ [pid 5122] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5122, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./14", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./14/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./14/binderfs") = 0 [ 61.438596][ T5123] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./14/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./14/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./14") = 0 mkdir("./15", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5126 attached , child_tidptr=0x5555565f3690) = 5126 [pid 5126] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5126] chdir("./15") = 0 [pid 5126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5126] setpgid(0, 0) = 0 [pid 5126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5126] write(3, "1000", 4) = 4 [pid 5126] close(3) = 0 [pid 5126] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5126] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5126] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5126] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5126] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5126] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5126] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5127 attached [pid 5127] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5126] <... clone3 resumed> => {parent_tid=[5127]}, 88) = 5127 [pid 5127] <... rseq resumed>) = 0 [pid 5126] rt_sigprocmask(SIG_SETMASK, [], [pid 5127] set_robust_list(0x7fd868ec09a0, 24 [pid 5126] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5127] <... set_robust_list resumed>) = 0 [pid 5126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5127] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5126] <... futex resumed>) = 0 [pid 5127] memfd_create("syzkaller", 0 [pid 5126] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5127] <... memfd_create resumed>) = 3 [pid 5127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5127] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5127] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5127] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5127] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5127] close(3) = 0 [pid 5127] mkdir("./file0", 0777) = 0 [ 61.731192][ T5127] loop0: detected capacity change from 0 to 8192 [ 61.746846][ T5127] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 61.760334][ T5127] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 61.769665][ T5127] REISERFS (device loop0): using ordered data mode [ 61.776250][ T5127] reiserfs: using flush barriers [pid 5127] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5127] chdir("./file0") = 0 [pid 5127] ioctl(4, LOOP_CLR_FD) = 0 [pid 5127] close(4) = 0 [pid 5127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5126] <... futex resumed>) = 0 [pid 5127] <... futex resumed>) = 1 [pid 5126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5127] mkdir(".", 0777 [pid 5126] <... futex resumed>) = 0 [pid 5127] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5126] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 61.782821][ T5127] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 61.799666][ T5127] REISERFS (device loop0): checking transaction log (loop0) [ 61.807946][ T5127] REISERFS (device loop0): Using r5 hash to sort names [pid 5127] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [ 61.837257][ T5127] reiserfs: enabling write barrier flush mode [ 61.847458][ T5127] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5127] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5126] <... futex resumed>) = 0 [pid 5127] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5127] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5126] <... futex resumed>) = 0 [pid 5127] mkdir(".", 0777 [pid 5126] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5127] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5126] <... futex resumed>) = 0 [pid 5127] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5126] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5127] <... mount resumed>) = 0 [pid 5126] <... mprotect resumed>) = 0 [pid 5126] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5127] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5126] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5126] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5127] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5129 attached [pid 5127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5126] <... clone3 resumed> => {parent_tid=[5129]}, 88) = 5129 [pid 5129] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5127] <... futex resumed>) = 0 [pid 5129] <... rseq resumed>) = 0 [pid 5127] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5126] rt_sigprocmask(SIG_SETMASK, [], [pid 5129] set_robust_list(0x7fd868e9f9a0, 24 [pid 5126] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5129] <... set_robust_list resumed>) = 0 [pid 5126] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5129] rt_sigprocmask(SIG_SETMASK, [], [pid 5126] <... futex resumed>) = 0 [pid 5129] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5126] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5129] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5129] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5126] <... futex resumed>) = 0 [pid 5129] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5126] exit_group(0 [pid 5129] <... futex resumed>) = ? [pid 5129] +++ exited with 0 +++ [pid 5127] <... futex resumed>) = ? [pid 5126] <... exit_group resumed>) = ? [pid 5127] +++ exited with 0 +++ [pid 5126] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5126, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} --- umount2("./15", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 61.878134][ T5127] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./15/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./15/binderfs") = 0 umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./15/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./15/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./15") = 0 mkdir("./16", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5130 attached , child_tidptr=0x5555565f3690) = 5130 [pid 5130] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5130] chdir("./16") = 0 [pid 5130] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5130] setpgid(0, 0) = 0 [pid 5130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5130] write(3, "1000", 4) = 4 [pid 5130] close(3) = 0 [pid 5130] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5130] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5130] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5130] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5130] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5130] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5130] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5130] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5131 attached [pid 5131] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5130] <... clone3 resumed> => {parent_tid=[5131]}, 88) = 5131 [pid 5131] set_robust_list(0x7fd868ec09a0, 24 [pid 5130] rt_sigprocmask(SIG_SETMASK, [], [pid 5131] <... set_robust_list resumed>) = 0 [pid 5131] rt_sigprocmask(SIG_SETMASK, [], [pid 5130] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5131] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5131] memfd_create("syzkaller", 0 [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5131] <... memfd_create resumed>) = 3 [pid 5131] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5131] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5131] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5131] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5131] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5131] close(3) = 0 [pid 5131] mkdir("./file0", 0777) = 0 [ 62.135582][ T5131] loop0: detected capacity change from 0 to 8192 [ 62.156228][ T5131] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 62.169315][ T5131] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 62.178635][ T5131] REISERFS (device loop0): using ordered data mode [pid 5131] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5131] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5131] chdir("./file0") = 0 [pid 5131] ioctl(4, LOOP_CLR_FD) = 0 [pid 5131] close(4) = 0 [pid 5131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 62.185191][ T5131] reiserfs: using flush barriers [ 62.191487][ T5131] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 62.207883][ T5131] REISERFS (device loop0): checking transaction log (loop0) [ 62.216128][ T5131] REISERFS (device loop0): Using r5 hash to sort names [pid 5131] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5130] <... futex resumed>) = 0 [pid 5130] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5131] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5131] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5130] <... futex resumed>) = 0 [pid 5131] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5131] mkdir(".", 0777 [pid 5130] <... futex resumed>) = 0 [pid 5131] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5130] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5131] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5130] <... futex resumed>) = 0 [pid 5130] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 62.240213][ T5131] reiserfs: enabling write barrier flush mode [ 62.249757][ T5131] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5130] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5131] <... mount resumed>) = 0 [pid 5131] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5130] <... mprotect resumed>) = 0 [pid 5131] <... openat resumed>) = 5 [pid 5131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5130] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5131] <... futex resumed>) = 0 [pid 5130] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5131] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5130] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5133]}, 88) = 5133 ./strace-static-x86_64: Process 5133 attached [pid 5130] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5130] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5130] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5133] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5133] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5133] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5133] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5133] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5130] <... futex resumed>) = 0 [pid 5133] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5130] exit_group(0 [pid 5133] <... futex resumed>) = ? [pid 5131] <... futex resumed>) = ? [pid 5130] <... exit_group resumed>) = ? [pid 5133] +++ exited with 0 +++ [pid 5131] +++ exited with 0 +++ [pid 5130] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5130, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./16", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./16/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./16/binderfs") = 0 [ 62.292645][ T5131] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./16/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./16/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./16") = 0 mkdir("./17", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5134 attached , child_tidptr=0x5555565f3690) = 5134 [pid 5134] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5134] chdir("./17") = 0 [pid 5134] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5134] setpgid(0, 0) = 0 [pid 5134] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5134] write(3, "1000", 4) = 4 [pid 5134] close(3) = 0 [pid 5134] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5134] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5134] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5134] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5134] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5134] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5135 attached [pid 5135] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5135] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5134] <... clone3 resumed> => {parent_tid=[5135]}, 88) = 5135 [pid 5135] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5135] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5134] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5135] <... futex resumed>) = 0 [pid 5134] <... futex resumed>) = 1 [pid 5135] memfd_create("syzkaller", 0) = 3 [pid 5134] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5135] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5135] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5135] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5135] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5135] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5135] close(3) = 0 [pid 5135] mkdir("./file0", 0777) = 0 [ 62.535490][ T5135] loop0: detected capacity change from 0 to 8192 [ 62.553266][ T5135] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 62.566314][ T5135] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 62.575599][ T5135] REISERFS (device loop0): using ordered data mode [pid 5135] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5135] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5135] chdir("./file0") = 0 [pid 5135] ioctl(4, LOOP_CLR_FD) = 0 [pid 5135] close(4) = 0 [pid 5135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5134] <... futex resumed>) = 0 [pid 5134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5135] mkdir(".", 0777 [pid 5134] <... futex resumed>) = 0 [pid 5135] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5134] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 62.582414][ T5135] reiserfs: using flush barriers [ 62.588952][ T5135] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 62.605761][ T5135] REISERFS (device loop0): checking transaction log (loop0) [ 62.613995][ T5135] REISERFS (device loop0): Using r5 hash to sort names [pid 5135] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5135] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5134] <... futex resumed>) = 0 [pid 5135] <... futex resumed>) = 1 [pid 5134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5135] mkdir(".", 0777 [pid 5134] <... futex resumed>) = 0 [pid 5135] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5134] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5135] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5134] <... futex resumed>) = 0 [pid 5134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5134] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5134] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5137 attached [pid 5137] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5137] set_robust_list(0x7fd868e9f9a0, 24 [pid 5135] <... mount resumed>) = 0 [pid 5134] <... clone3 resumed> => {parent_tid=[5137]}, 88) = 5137 [pid 5137] <... set_robust_list resumed>) = 0 [pid 5137] rt_sigprocmask(SIG_SETMASK, [], [pid 5134] rt_sigprocmask(SIG_SETMASK, [], [pid 5137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5135] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5134] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5137] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5134] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5137] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5134] <... futex resumed>) = 0 [pid 5137] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5134] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5135] <... openat resumed>) = 5 [pid 5135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5137] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5135] <... futex resumed>) = 0 [pid 5137] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5135] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5137] <... futex resumed>) = 1 [pid 5137] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5134] <... futex resumed>) = 0 [pid 5134] exit_group(0 [pid 5137] <... futex resumed>) = ? [pid 5135] <... futex resumed>) = ? [pid 5135] +++ exited with 0 +++ [pid 5137] +++ exited with 0 +++ [pid 5134] <... exit_group resumed>) = ? [pid 5134] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5134, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- [ 62.658252][ T5135] reiserfs: enabling write barrier flush mode [ 62.667199][ T5135] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 62.689031][ T5135] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./17", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./17/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./17/binderfs") = 0 umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./17/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./17/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./17") = 0 mkdir("./18", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5138 ./strace-static-x86_64: Process 5138 attached [pid 5138] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5138] chdir("./18") = 0 [pid 5138] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5138] setpgid(0, 0) = 0 [pid 5138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5138] write(3, "1000", 4) = 4 [pid 5138] close(3) = 0 [pid 5138] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5138] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5138] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5138] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5138] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5138] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5138] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5139 attached => {parent_tid=[5139]}, 88) = 5139 [pid 5139] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5139] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5139] rt_sigprocmask(SIG_SETMASK, [], [pid 5138] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5139] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5138] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5139] memfd_create("syzkaller", 0) = 3 [pid 5139] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5139] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5139] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5139] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5139] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5139] close(3) = 0 [pid 5139] mkdir("./file0", 0777) = 0 [ 62.949674][ T5139] loop0: detected capacity change from 0 to 8192 [ 62.965975][ T5139] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 62.978991][ T5139] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 62.988687][ T5139] REISERFS (device loop0): using ordered data mode [pid 5139] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5139] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5139] chdir("./file0") = 0 [pid 5139] ioctl(4, LOOP_CLR_FD) = 0 [pid 5139] close(4) = 0 [ 62.995655][ T5139] reiserfs: using flush barriers [ 63.002568][ T5139] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 63.019062][ T5139] REISERFS (device loop0): checking transaction log (loop0) [ 63.027700][ T5139] REISERFS (device loop0): Using r5 hash to sort names [pid 5139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5138] <... futex resumed>) = 0 [pid 5138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5139] mkdir(".", 0777 [pid 5138] <... futex resumed>) = 0 [pid 5139] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5138] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5139] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5139] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5138] <... futex resumed>) = 0 [pid 5139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5139] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5139] mkdir(".", 0777 [pid 5138] <... futex resumed>) = 0 [pid 5139] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5138] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5139] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5138] <... futex resumed>) = 0 [pid 5138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5138] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5138] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5138] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5141 attached => {parent_tid=[5141]}, 88) = 5141 [pid 5141] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5138] rt_sigprocmask(SIG_SETMASK, [], [pid 5141] <... rseq resumed>) = 0 [pid 5141] set_robust_list(0x7fd868e9f9a0, 24 [pid 5138] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5138] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5141] <... set_robust_list resumed>) = 0 [ 63.052829][ T5139] reiserfs: enabling write barrier flush mode [ 63.061629][ T5139] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5138] <... futex resumed>) = 0 [pid 5141] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5138] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5141] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5139] <... mount resumed>) = 0 [pid 5141] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5139] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5141] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5139] <... openat resumed>) = 5 [pid 5141] <... futex resumed>) = 1 [pid 5138] <... futex resumed>) = 0 [pid 5141] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5138] exit_group(0 [pid 5141] <... futex resumed>) = ? [pid 5139] <... futex resumed>) = ? [pid 5138] <... exit_group resumed>) = ? [pid 5141] +++ exited with 0 +++ [pid 5139] +++ exited with 0 +++ [pid 5138] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5138, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./18", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./18/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./18/binderfs") = 0 [ 63.104299][ T5139] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./18/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./18/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./18") = 0 mkdir("./19", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5142 attached [pid 5142] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5142 [pid 5142] <... set_robust_list resumed>) = 0 [pid 5142] chdir("./19") = 0 [pid 5142] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5142] setpgid(0, 0) = 0 [pid 5142] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5142] write(3, "1000", 4) = 4 [pid 5142] close(3) = 0 [pid 5142] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5142] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5142] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5142] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5142] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5142] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5142] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5142] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5143 attached [pid 5143] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5143] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5143] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5143] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5142] <... clone3 resumed> => {parent_tid=[5143]}, 88) = 5143 [pid 5142] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5143] <... futex resumed>) = 0 [pid 5142] <... futex resumed>) = 1 [pid 5143] memfd_create("syzkaller", 0 [pid 5142] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5143] <... memfd_create resumed>) = 3 [pid 5143] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5143] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5143] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5143] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5143] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5143] close(3) = 0 [pid 5143] mkdir("./file0", 0777) = 0 [ 63.362987][ T5143] loop0: detected capacity change from 0 to 8192 [ 63.388554][ T5143] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 63.401659][ T5143] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5143] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5143] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5143] chdir("./file0") = 0 [pid 5143] ioctl(4, LOOP_CLR_FD) = 0 [pid 5143] close(4) = 0 [pid 5143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5142] <... futex resumed>) = 0 [pid 5143] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5143] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5142] <... futex resumed>) = 0 [pid 5143] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5142] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 63.410908][ T5143] REISERFS (device loop0): using ordered data mode [ 63.417490][ T5143] reiserfs: using flush barriers [ 63.423682][ T5143] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 63.440274][ T5143] REISERFS (device loop0): checking transaction log (loop0) [ 63.448652][ T5143] REISERFS (device loop0): Using r5 hash to sort names [pid 5143] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5143] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5142] <... futex resumed>) = 0 [pid 5143] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5143] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5142] <... futex resumed>) = 0 [pid 5143] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5142] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5143] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5142] <... futex resumed>) = 0 [pid 5142] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5142] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 63.478724][ T5143] reiserfs: enabling write barrier flush mode [ 63.486948][ T5143] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5142] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5143] <... mount resumed>) = 0 [pid 5142] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5143] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5142] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5143] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5145 attached [pid 5145] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5145] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5145] rt_sigprocmask(SIG_SETMASK, [], [pid 5142] <... clone3 resumed> => {parent_tid=[5145]}, 88) = 5145 [pid 5143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5142] rt_sigprocmask(SIG_SETMASK, [], [pid 5143] <... futex resumed>) = 0 [pid 5145] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5145] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5143] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5142] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5142] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5145] <... futex resumed>) = 0 [pid 5142] <... futex resumed>) = 1 [pid 5145] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5142] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5145] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5145] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5142] <... futex resumed>) = 0 [pid 5145] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5142] exit_group(0 [pid 5145] <... futex resumed>) = ? [pid 5143] <... futex resumed>) = ? [pid 5142] <... exit_group resumed>) = ? [pid 5145] +++ exited with 0 +++ [pid 5143] +++ exited with 0 +++ [pid 5142] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5142, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./19", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 63.518983][ T5143] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./19/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./19/binderfs") = 0 umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./19/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./19/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./19") = 0 mkdir("./20", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5146 ./strace-static-x86_64: Process 5146 attached [pid 5146] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5146] chdir("./20") = 0 [pid 5146] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5146] setpgid(0, 0) = 0 [pid 5146] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5146] write(3, "1000", 4) = 4 [pid 5146] close(3) = 0 [pid 5146] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5146] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5146] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5146] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5146] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5146] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5146] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5146] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5147 attached [pid 5147] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5146] <... clone3 resumed> => {parent_tid=[5147]}, 88) = 5147 [pid 5147] <... rseq resumed>) = 0 [pid 5146] rt_sigprocmask(SIG_SETMASK, [], [pid 5147] set_robust_list(0x7fd868ec09a0, 24 [pid 5146] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5147] <... set_robust_list resumed>) = 0 [pid 5146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5147] rt_sigprocmask(SIG_SETMASK, [], [pid 5146] <... futex resumed>) = 0 [pid 5147] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5146] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5147] memfd_create("syzkaller", 0) = 3 [pid 5147] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5147] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5147] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5147] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5147] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5147] close(3) = 0 [pid 5147] mkdir("./file0", 0777) = 0 [ 63.810176][ T5147] loop0: detected capacity change from 0 to 8192 [ 63.825881][ T5147] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 63.838960][ T5147] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 63.848304][ T5147] REISERFS (device loop0): using ordered data mode [ 63.854895][ T5147] reiserfs: using flush barriers [pid 5147] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5147] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5147] chdir("./file0") = 0 [pid 5147] ioctl(4, LOOP_CLR_FD) = 0 [pid 5147] close(4) = 0 [pid 5147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5146] <... futex resumed>) = 0 [pid 5147] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5147] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5146] <... futex resumed>) = 0 [pid 5147] mkdir(".", 0777 [pid 5146] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5147] <... mkdir resumed>) = -1 EEXIST (File exists) [ 63.861063][ T5147] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 63.877642][ T5147] REISERFS (device loop0): checking transaction log (loop0) [ 63.885939][ T5147] REISERFS (device loop0): Using r5 hash to sort names [pid 5147] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5147] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5146] <... futex resumed>) = 0 [pid 5147] mkdir(".", 0777 [pid 5146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5147] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5146] <... futex resumed>) = 0 [pid 5146] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5147] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5146] <... futex resumed>) = 0 [pid 5146] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5146] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 63.918397][ T5147] reiserfs: enabling write barrier flush mode [ 63.926947][ T5147] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5146] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5147] <... mount resumed>) = 0 [pid 5146] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5147] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5147] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5146] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5149 attached => {parent_tid=[5149]}, 88) = 5149 [pid 5149] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5146] rt_sigprocmask(SIG_SETMASK, [], [pid 5149] <... rseq resumed>) = 0 [pid 5146] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5149] set_robust_list(0x7fd868e9f9a0, 24 [pid 5146] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5149] <... set_robust_list resumed>) = 0 [pid 5146] <... futex resumed>) = 0 [pid 5149] rt_sigprocmask(SIG_SETMASK, [], [pid 5146] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5149] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5149] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5149] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5146] <... futex resumed>) = 0 [pid 5146] exit_group(0 [pid 5149] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5147] <... futex resumed>) = ? [pid 5146] <... exit_group resumed>) = ? [pid 5149] <... futex resumed>) = ? [pid 5149] +++ exited with 0 +++ [pid 5147] +++ exited with 0 +++ [pid 5146] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5146, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./20", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./20/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 63.969352][ T5147] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./20/binderfs") = 0 umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./20/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./20/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./20") = 0 mkdir("./21", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5150 attached , child_tidptr=0x5555565f3690) = 5150 [pid 5150] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5150] chdir("./21") = 0 [pid 5150] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5150] setpgid(0, 0) = 0 [pid 5150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5150] write(3, "1000", 4) = 4 [pid 5150] close(3) = 0 [pid 5150] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5150] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5150] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5150] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5150] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5150] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5150] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5151 attached [pid 5151] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5151] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5151] rt_sigprocmask(SIG_SETMASK, [], [pid 5150] <... clone3 resumed> => {parent_tid=[5151]}, 88) = 5151 [pid 5151] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5150] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5151] <... futex resumed>) = 0 [pid 5150] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5151] memfd_create("syzkaller", 0) = 3 [pid 5151] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5151] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5151] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5151] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5151] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5151] close(3) = 0 [pid 5151] mkdir("./file0", 0777) = 0 [ 64.179248][ T5151] loop0: detected capacity change from 0 to 8192 [ 64.205246][ T5151] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 64.218399][ T5151] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5151] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5151] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5151] chdir("./file0") = 0 [pid 5151] ioctl(4, LOOP_CLR_FD) = 0 [pid 5151] close(4) = 0 [pid 5151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5150] <... futex resumed>) = 0 [pid 5151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5151] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5150] <... futex resumed>) = 0 [pid 5151] mkdir(".", 0777 [pid 5150] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5151] <... mkdir resumed>) = -1 EEXIST (File exists) [ 64.227746][ T5151] REISERFS (device loop0): using ordered data mode [ 64.234341][ T5151] reiserfs: using flush barriers [ 64.240694][ T5151] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 64.257371][ T5151] REISERFS (device loop0): checking transaction log (loop0) [ 64.265723][ T5151] REISERFS (device loop0): Using r5 hash to sort names [pid 5151] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5151] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5150] <... futex resumed>) = 0 [pid 5151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5151] mkdir(".", 0777 [pid 5150] <... futex resumed>) = 0 [pid 5150] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5151] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5150] <... futex resumed>) = 0 [pid 5150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5150] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5151] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5150] <... mprotect resumed>) = 0 [pid 5150] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 64.306672][ T5151] reiserfs: enabling write barrier flush mode [ 64.315457][ T5151] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5150] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5153 attached [pid 5153] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5150] <... clone3 resumed> => {parent_tid=[5153]}, 88) = 5153 [pid 5153] <... rseq resumed>) = 0 [pid 5153] set_robust_list(0x7fd868e9f9a0, 24 [pid 5150] rt_sigprocmask(SIG_SETMASK, [], [pid 5153] <... set_robust_list resumed>) = 0 [pid 5151] <... mount resumed>) = 0 [pid 5150] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5153] rt_sigprocmask(SIG_SETMASK, [], [pid 5151] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5150] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5153] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5151] <... openat resumed>) = 5 [pid 5153] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5150] <... futex resumed>) = 0 [pid 5151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5153] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5150] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5153] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5150] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5153] <... futex resumed>) = 0 [pid 5153] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5150] exit_group(0 [pid 5153] <... futex resumed>) = ? [pid 5151] <... futex resumed>) = ? [pid 5153] +++ exited with 0 +++ [pid 5150] <... exit_group resumed>) = ? [pid 5151] +++ exited with 0 +++ [pid 5150] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5150, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./21", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./21/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./21/binderfs") = 0 [ 64.358897][ T5151] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./21/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./21/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./21") = 0 mkdir("./22", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5154 ./strace-static-x86_64: Process 5154 attached [pid 5154] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5154] chdir("./22") = 0 [pid 5154] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5154] setpgid(0, 0) = 0 [pid 5154] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5154] write(3, "1000", 4) = 4 [pid 5154] close(3) = 0 [pid 5154] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5154] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5154] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5154] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5154] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5154] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5154] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5154] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5155 attached [pid 5155] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5154] <... clone3 resumed> => {parent_tid=[5155]}, 88) = 5155 [pid 5155] <... rseq resumed>) = 0 [pid 5154] rt_sigprocmask(SIG_SETMASK, [], [pid 5155] set_robust_list(0x7fd868ec09a0, 24 [pid 5154] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5155] <... set_robust_list resumed>) = 0 [pid 5154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5155] rt_sigprocmask(SIG_SETMASK, [], [pid 5154] <... futex resumed>) = 0 [pid 5155] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5154] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5155] memfd_create("syzkaller", 0) = 3 [pid 5155] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5155] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5155] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5155] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5155] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5155] close(3) = 0 [pid 5155] mkdir("./file0", 0777) = 0 [ 64.686598][ T5155] loop0: detected capacity change from 0 to 8192 [ 64.702993][ T5155] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 64.716047][ T5155] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 64.725405][ T5155] REISERFS (device loop0): using ordered data mode [ 64.731963][ T5155] reiserfs: using flush barriers [pid 5155] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5155] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5155] chdir("./file0") = 0 [pid 5155] ioctl(4, LOOP_CLR_FD) = 0 [pid 5155] close(4) = 0 [pid 5155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5154] <... futex resumed>) = 0 [pid 5154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5155] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5154] <... futex resumed>) = 0 [pid 5155] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 64.738510][ T5155] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 64.755382][ T5155] REISERFS (device loop0): checking transaction log (loop0) [ 64.763886][ T5155] REISERFS (device loop0): Using r5 hash to sort names [pid 5154] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5155] <... mount resumed>) = 0 [pid 5155] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5154] <... futex resumed>) = 0 [pid 5154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5154] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5155] <... futex resumed>) = 1 [pid 5154] <... futex resumed>) = 0 [pid 5155] mkdir(".", 0777 [pid 5154] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5155] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5154] <... mmap resumed>) = 0x7fd868e7f000 [pid 5154] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5155] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5154] <... mprotect resumed>) = 0 [pid 5154] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5155] <... mount resumed>) = 0 [pid 5154] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5155] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5154] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5155] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5157 attached [pid 5157] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5157] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5157] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5154] <... clone3 resumed> => {parent_tid=[5157]}, 88) = 5157 [pid 5157] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5155] <... futex resumed>) = 0 [pid 5154] rt_sigprocmask(SIG_SETMASK, [], [pid 5155] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5154] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5154] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5157] <... futex resumed>) = 0 [pid 5157] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5154] <... futex resumed>) = 1 [pid 5154] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5157] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5157] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5154] <... futex resumed>) = 0 [pid 5157] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5154] exit_group(0 [pid 5157] <... futex resumed>) = ? [pid 5155] <... futex resumed>) = ? [pid 5157] +++ exited with 0 +++ [pid 5155] +++ exited with 0 +++ [pid 5154] <... exit_group resumed>) = ? [pid 5154] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5154, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./22", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./22/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 64.801496][ T5155] reiserfs: enabling write barrier flush mode [ 64.810809][ T5155] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 64.831793][ T5155] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./22/binderfs") = 0 umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./22/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./22/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./22") = 0 mkdir("./23", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5158 attached [pid 5158] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5158] chdir("./23") = 0 [pid 5158] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5158 [pid 5158] setpgid(0, 0) = 0 [pid 5158] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5158] write(3, "1000", 4) = 4 [pid 5158] close(3) = 0 [pid 5158] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5158] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5158] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5158] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5158] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5158] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5159 attached => {parent_tid=[5159]}, 88) = 5159 [pid 5158] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5159] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5158] <... futex resumed>) = 0 [pid 5158] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5159] <... rseq resumed>) = 0 [pid 5159] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5159] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5159] memfd_create("syzkaller", 0) = 3 [pid 5159] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5159] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5159] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5159] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5159] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5159] close(3) = 0 [pid 5159] mkdir("./file0", 0777) = 0 [ 65.143236][ T5159] loop0: detected capacity change from 0 to 8192 [ 65.166751][ T5159] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 65.179907][ T5159] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5159] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5159] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5159] chdir("./file0") = 0 [pid 5159] ioctl(4, LOOP_CLR_FD) = 0 [pid 5159] close(4) = 0 [pid 5159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5158] <... futex resumed>) = 0 [pid 5158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5159] mkdir(".", 0777 [pid 5158] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5159] <... mkdir resumed>) = -1 EEXIST (File exists) [ 65.189291][ T5159] REISERFS (device loop0): using ordered data mode [ 65.195859][ T5159] reiserfs: using flush barriers [ 65.202125][ T5159] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 65.218774][ T5159] REISERFS (device loop0): checking transaction log (loop0) [ 65.227415][ T5159] REISERFS (device loop0): Using r5 hash to sort names [pid 5159] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5159] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5159] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5158] <... futex resumed>) = 0 [pid 5159] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5159] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5158] <... futex resumed>) = 0 [pid 5159] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5158] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5158] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5159] <... mount resumed>) = 0 [pid 5158] <... mprotect resumed>) = 0 [pid 5158] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5159] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5158] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5159] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5161 attached [pid 5159] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5161] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5158] <... clone3 resumed> => {parent_tid=[5161]}, 88) = 5161 [pid 5161] <... rseq resumed>) = 0 [pid 5158] rt_sigprocmask(SIG_SETMASK, [], [pid 5161] set_robust_list(0x7fd868e9f9a0, 24 [pid 5158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5161] <... set_robust_list resumed>) = 0 [pid 5158] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5161] rt_sigprocmask(SIG_SETMASK, [], [pid 5158] <... futex resumed>) = 0 [pid 5161] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5161] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5158] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5161] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5161] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5158] <... futex resumed>) = 0 [pid 5161] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5158] exit_group(0 [pid 5161] <... futex resumed>) = ? [pid 5159] <... futex resumed>) = ? [pid 5161] +++ exited with 0 +++ [pid 5159] +++ exited with 0 +++ [pid 5158] <... exit_group resumed>) = ? [pid 5158] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5158, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 65.271949][ T5159] reiserfs: enabling write barrier flush mode [ 65.280319][ T5159] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 65.304641][ T5159] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./23", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./23/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./23/binderfs") = 0 umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./23/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./23/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./23") = 0 mkdir("./24", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5162 attached , child_tidptr=0x5555565f3690) = 5162 [pid 5162] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5162] chdir("./24") = 0 [pid 5162] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5162] setpgid(0, 0) = 0 [pid 5162] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5162] write(3, "1000", 4) = 4 [pid 5162] close(3) = 0 [pid 5162] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5162] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5162] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5162] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5162] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5162] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5162] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5163 attached [pid 5163] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5162] <... clone3 resumed> => {parent_tid=[5163]}, 88) = 5163 [pid 5162] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5162] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5163] <... rseq resumed>) = 0 [pid 5163] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5163] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5163] memfd_create("syzkaller", 0) = 3 [pid 5163] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5163] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5163] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5163] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5163] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5163] close(3) = 0 [pid 5163] mkdir("./file0", 0777) = 0 [ 65.602431][ T5163] loop0: detected capacity change from 0 to 8192 [ 65.612739][ T5163] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 65.625926][ T5163] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 65.635230][ T5163] REISERFS (device loop0): using ordered data mode [ 65.641807][ T5163] reiserfs: using flush barriers [pid 5163] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5163] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5163] chdir("./file0") = 0 [pid 5163] ioctl(4, LOOP_CLR_FD) = 0 [pid 5163] close(4) = 0 [pid 5163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5162] <... futex resumed>) = 0 [pid 5163] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [ 65.648050][ T5163] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 65.664854][ T5163] REISERFS (device loop0): checking transaction log (loop0) [ 65.673639][ T5163] REISERFS (device loop0): Using r5 hash to sort names [pid 5162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5163] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5162] <... futex resumed>) = 0 [pid 5163] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5162] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5163] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5163] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5162] <... futex resumed>) = 0 [pid 5163] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5163] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5162] <... futex resumed>) = 0 [pid 5163] mkdir(".", 0777 [pid 5162] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5163] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5162] <... futex resumed>) = 0 [pid 5163] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 65.701892][ T5163] reiserfs: enabling write barrier flush mode [ 65.712121][ T5163] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5162] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5162] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5163] <... mount resumed>) = 0 [pid 5162] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5163] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5165 attached [pid 5162] <... clone3 resumed> => {parent_tid=[5165]}, 88) = 5165 [pid 5165] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5163] <... openat resumed>) = 5 [pid 5165] <... rseq resumed>) = 0 [pid 5162] rt_sigprocmask(SIG_SETMASK, [], [pid 5165] set_robust_list(0x7fd868e9f9a0, 24 [pid 5162] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5165] <... set_robust_list resumed>) = 0 [pid 5162] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5165] rt_sigprocmask(SIG_SETMASK, [], [pid 5163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5162] <... futex resumed>) = 0 [pid 5165] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5165] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5163] <... futex resumed>) = 0 [pid 5165] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5162] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5163] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5165] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5162] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5162] exit_group(0 [pid 5163] <... futex resumed>) = ? [pid 5165] +++ exited with 0 +++ [pid 5162] <... exit_group resumed>) = ? [pid 5163] +++ exited with 0 +++ [pid 5162] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5162, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./24", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./24/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 65.751682][ T5163] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./24/binderfs") = 0 umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./24/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./24/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./24") = 0 mkdir("./25", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5166 attached , child_tidptr=0x5555565f3690) = 5166 [pid 5166] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5166] chdir("./25") = 0 [pid 5166] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5166] setpgid(0, 0) = 0 [pid 5166] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5166] write(3, "1000", 4) = 4 [pid 5166] close(3) = 0 [pid 5166] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5166] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5166] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5166] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5166] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5166] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5166] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5166] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5167 attached [pid 5167] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5166] <... clone3 resumed> => {parent_tid=[5167]}, 88) = 5167 [pid 5167] set_robust_list(0x7fd868ec09a0, 24 [pid 5166] rt_sigprocmask(SIG_SETMASK, [], [pid 5167] <... set_robust_list resumed>) = 0 [pid 5166] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5167] rt_sigprocmask(SIG_SETMASK, [], [pid 5166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5167] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5166] <... futex resumed>) = 0 [pid 5167] memfd_create("syzkaller", 0 [pid 5166] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5167] <... memfd_create resumed>) = 3 [pid 5167] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5167] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5167] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5167] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5167] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5167] close(3) = 0 [pid 5167] mkdir("./file0", 0777) = 0 [ 66.058359][ T5167] loop0: detected capacity change from 0 to 8192 [ 66.084788][ T5167] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 66.098206][ T5167] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5167] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5167] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5167] chdir("./file0") = 0 [pid 5167] ioctl(4, LOOP_CLR_FD) = 0 [pid 5167] close(4) = 0 [pid 5167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 66.107618][ T5167] REISERFS (device loop0): using ordered data mode [ 66.114200][ T5167] reiserfs: using flush barriers [ 66.120607][ T5167] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 66.137368][ T5167] REISERFS (device loop0): checking transaction log (loop0) [ 66.146381][ T5167] REISERFS (device loop0): Using r5 hash to sort names [pid 5167] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5166] <... futex resumed>) = 0 [pid 5166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5167] <... futex resumed>) = 0 [pid 5166] <... futex resumed>) = 1 [pid 5167] mkdir(".", 0777 [pid 5166] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5167] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5167] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5167] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5166] <... futex resumed>) = 0 [pid 5166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5166] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5167] <... futex resumed>) = 1 [pid 5166] <... futex resumed>) = 0 [pid 5167] mkdir(".", 0777 [pid 5166] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5167] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5166] <... mmap resumed>) = 0x7fd868e7f000 [pid 5167] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5166] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5166] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5166] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5169 attached => {parent_tid=[5169]}, 88) = 5169 [pid 5169] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5169] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5169] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5169] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5166] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5166] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5169] <... futex resumed>) = 0 [pid 5169] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5166] <... futex resumed>) = 1 [pid 5169] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [ 66.197688][ T5167] reiserfs: enabling write barrier flush mode [ 66.206746][ T5167] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5166] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5169] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5166] <... futex resumed>) = 0 [pid 5169] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5167] <... mount resumed>) = 0 [pid 5167] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5166] exit_group(0 [pid 5167] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5169] <... futex resumed>) = ? [pid 5167] <... futex resumed>) = ? [pid 5166] <... exit_group resumed>) = ? [pid 5169] +++ exited with 0 +++ [pid 5167] +++ exited with 0 +++ [pid 5166] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5166, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./25", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./25/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./25/binderfs") = 0 [ 66.240357][ T5167] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./25/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./25/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./25") = 0 mkdir("./26", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5170 ./strace-static-x86_64: Process 5170 attached [pid 5170] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5170] chdir("./26") = 0 [pid 5170] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5170] setpgid(0, 0) = 0 [pid 5170] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5170] write(3, "1000", 4) = 4 [pid 5170] close(3) = 0 [pid 5170] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5170] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5170] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5170] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5170] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5170] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5170] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5170] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5171 attached [pid 5171] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5170] <... clone3 resumed> => {parent_tid=[5171]}, 88) = 5171 [pid 5171] <... rseq resumed>) = 0 [pid 5171] set_robust_list(0x7fd868ec09a0, 24 [pid 5170] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5171] <... set_robust_list resumed>) = 0 [pid 5171] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5171] <... futex resumed>) = 0 [pid 5171] memfd_create("syzkaller", 0 [pid 5170] <... futex resumed>) = 1 [pid 5171] <... memfd_create resumed>) = 3 [pid 5170] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5171] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5171] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5171] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5171] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5171] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5171] close(3) = 0 [pid 5171] mkdir("./file0", 0777) = 0 [ 66.443143][ T5171] loop0: detected capacity change from 0 to 8192 [ 66.460069][ T5171] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 66.473448][ T5171] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 66.482905][ T5171] REISERFS (device loop0): using ordered data mode [pid 5171] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5171] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5171] chdir("./file0") = 0 [pid 5171] ioctl(4, LOOP_CLR_FD) = 0 [pid 5171] close(4) = 0 [pid 5171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5170] <... futex resumed>) = 0 [pid 5171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5171] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5171] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5170] <... futex resumed>) = 0 [ 66.489461][ T5171] reiserfs: using flush barriers [ 66.495874][ T5171] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 66.512396][ T5171] REISERFS (device loop0): checking transaction log (loop0) [ 66.520940][ T5171] REISERFS (device loop0): Using r5 hash to sort names [pid 5170] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5171] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5171] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5170] <... futex resumed>) = 0 [pid 5171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5171] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5170] <... futex resumed>) = 0 [pid 5171] mkdir(".", 0777 [pid 5170] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5171] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5170] <... futex resumed>) = 0 [pid 5171] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5170] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5170] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5170] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5170] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5173 attached [pid 5171] <... mount resumed>) = 0 [pid 5170] <... clone3 resumed> => {parent_tid=[5173]}, 88) = 5173 [pid 5171] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5173] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5173] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5173] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5173] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5171] <... openat resumed>) = 5 [pid 5170] rt_sigprocmask(SIG_SETMASK, [], [pid 5171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5170] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5171] <... futex resumed>) = 0 [pid 5171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5170] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5173] <... futex resumed>) = 0 [pid 5173] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5170] <... futex resumed>) = 1 [pid 5170] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5173] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5173] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5170] <... futex resumed>) = 0 [pid 5173] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5170] exit_group(0 [pid 5173] <... futex resumed>) = ? [pid 5171] <... futex resumed>) = ? [pid 5171] +++ exited with 0 +++ [pid 5173] +++ exited with 0 +++ [pid 5170] <... exit_group resumed>) = ? [pid 5170] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5170, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./26", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 66.576093][ T5171] reiserfs: enabling write barrier flush mode [ 66.584357][ T5171] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 66.613521][ T5171] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./26/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./26/binderfs") = 0 umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./26/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./26/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./26") = 0 mkdir("./27", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5174 attached , child_tidptr=0x5555565f3690) = 5174 [pid 5174] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5174] chdir("./27") = 0 [pid 5174] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5174] setpgid(0, 0) = 0 [pid 5174] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5174] write(3, "1000", 4) = 4 [pid 5174] close(3) = 0 [pid 5174] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5174] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5174] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5174] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5174] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5174] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5174] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5175 attached [pid 5175] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5174] <... clone3 resumed> => {parent_tid=[5175]}, 88) = 5175 [pid 5175] set_robust_list(0x7fd868ec09a0, 24 [pid 5174] rt_sigprocmask(SIG_SETMASK, [], [pid 5175] <... set_robust_list resumed>) = 0 [pid 5175] rt_sigprocmask(SIG_SETMASK, [], [pid 5174] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5175] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5175] memfd_create("syzkaller", 0 [pid 5174] <... futex resumed>) = 0 [pid 5175] <... memfd_create resumed>) = 3 [pid 5174] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5175] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5175] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5175] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5175] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5175] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5175] close(3) = 0 [pid 5175] mkdir("./file0", 0777) = 0 [ 66.874811][ T5175] loop0: detected capacity change from 0 to 8192 [ 66.890264][ T5175] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 66.903377][ T5175] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 66.912778][ T5175] REISERFS (device loop0): using ordered data mode [ 66.919290][ T5175] reiserfs: using flush barriers [pid 5175] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5175] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5175] chdir("./file0") = 0 [pid 5175] ioctl(4, LOOP_CLR_FD) = 0 [pid 5175] close(4) = 0 [pid 5175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5174] <... futex resumed>) = 0 [pid 5175] <... futex resumed>) = 1 [pid 5174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5175] mkdir(".", 0777 [pid 5174] <... futex resumed>) = 0 [pid 5175] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5175] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 66.926103][ T5175] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 66.942870][ T5175] REISERFS (device loop0): checking transaction log (loop0) [ 66.952000][ T5175] REISERFS (device loop0): Using r5 hash to sort names [pid 5174] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5175] <... mount resumed>) = 0 [pid 5175] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5174] <... futex resumed>) = 0 [pid 5175] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5175] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5174] <... futex resumed>) = 0 [pid 5175] mkdir(".", 0777 [pid 5174] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5175] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5174] <... futex resumed>) = 0 [pid 5174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5175] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5174] <... mmap resumed>) = 0x7fd868e7f000 [pid 5174] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5174] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5174] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5177 attached [pid 5177] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5177] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5177] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 66.986815][ T5175] reiserfs: enabling write barrier flush mode [ 66.995414][ T5175] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5177] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5174] <... clone3 resumed> => {parent_tid=[5177]}, 88) = 5177 [pid 5175] <... mount resumed>) = 0 [pid 5174] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5174] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5177] <... futex resumed>) = 0 [pid 5174] <... futex resumed>) = 1 [pid 5177] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5174] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5177] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5175] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5177] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5175] <... openat resumed>) = 5 [pid 5177] <... futex resumed>) = 1 [pid 5174] <... futex resumed>) = 0 [pid 5177] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5175] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5174] exit_group(0 [pid 5177] <... futex resumed>) = ? [pid 5175] <... futex resumed>) = ? [pid 5174] <... exit_group resumed>) = ? [pid 5177] +++ exited with 0 +++ [pid 5175] +++ exited with 0 +++ [pid 5174] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5174, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./27", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./27/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./27/binderfs") = 0 umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 67.040194][ T5175] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./27/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./27/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./27") = 0 mkdir("./28", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5178 attached [pid 5178] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5178 [pid 5178] <... set_robust_list resumed>) = 0 [pid 5178] chdir("./28") = 0 [pid 5178] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5178] setpgid(0, 0) = 0 [pid 5178] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5178] write(3, "1000", 4) = 4 [pid 5178] close(3) = 0 [pid 5178] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5178] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5178] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5178] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5178] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5178] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5178] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5178] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5179 attached [pid 5179] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5178] <... clone3 resumed> => {parent_tid=[5179]}, 88) = 5179 [pid 5179] <... rseq resumed>) = 0 [pid 5178] rt_sigprocmask(SIG_SETMASK, [], [pid 5179] set_robust_list(0x7fd868ec09a0, 24 [pid 5178] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5179] <... set_robust_list resumed>) = 0 [pid 5178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5179] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5178] <... futex resumed>) = 0 [pid 5178] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5179] memfd_create("syzkaller", 0) = 3 [pid 5179] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5179] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5179] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5179] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5179] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5179] close(3) = 0 [pid 5179] mkdir("./file0", 0777) = 0 [ 67.284023][ T5179] loop0: detected capacity change from 0 to 8192 [ 67.299923][ T5179] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 67.313529][ T5179] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 67.323992][ T5179] REISERFS (device loop0): using ordered data mode [pid 5179] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5179] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5179] chdir("./file0") = 0 [pid 5179] ioctl(4, LOOP_CLR_FD) = 0 [pid 5179] close(4) = 0 [pid 5179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5178] <... futex resumed>) = 0 [pid 5179] mkdir(".", 0777 [pid 5178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5179] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5179] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5178] <... futex resumed>) = 0 [ 67.330607][ T5179] reiserfs: using flush barriers [ 67.337263][ T5179] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 67.354147][ T5179] REISERFS (device loop0): checking transaction log (loop0) [ 67.362860][ T5179] REISERFS (device loop0): Using r5 hash to sort names [pid 5178] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5179] <... mount resumed>) = 0 [pid 5179] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5178] <... futex resumed>) = 0 [pid 5178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5178] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5178] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5179] <... futex resumed>) = 1 [pid 5179] mkdir(".", 0777 [pid 5178] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5179] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5178] <... mprotect resumed>) = 0 [pid 5179] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5178] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5178] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5181 attached [pid 5181] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5178] <... clone3 resumed> => {parent_tid=[5181]}, 88) = 5181 [pid 5181] <... rseq resumed>) = 0 [pid 5178] rt_sigprocmask(SIG_SETMASK, [], [pid 5181] set_robust_list(0x7fd868e9f9a0, 24 [pid 5179] <... mount resumed>) = 0 [pid 5178] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5181] <... set_robust_list resumed>) = 0 [pid 5179] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5178] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5181] rt_sigprocmask(SIG_SETMASK, [], [pid 5178] <... futex resumed>) = 0 [pid 5181] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5178] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5181] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5179] <... openat resumed>) = 5 [pid 5179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5181] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5181] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5179] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5181] <... futex resumed>) = 1 [pid 5178] <... futex resumed>) = 0 [pid 5181] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5178] exit_group(0 [pid 5181] <... futex resumed>) = ? [pid 5179] <... futex resumed>) = ? [pid 5181] +++ exited with 0 +++ [pid 5179] +++ exited with 0 +++ [pid 5178] <... exit_group resumed>) = ? [pid 5178] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5178, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=12 /* 0.12 s */} --- umount2("./28", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./28/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./28/binderfs") = 0 [ 67.407193][ T5179] reiserfs: enabling write barrier flush mode [ 67.416647][ T5179] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 67.439016][ T5179] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./28/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./28/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./28") = 0 mkdir("./29", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5182 attached , child_tidptr=0x5555565f3690) = 5182 [pid 5182] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5182] chdir("./29") = 0 [pid 5182] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5182] setpgid(0, 0) = 0 [pid 5182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5182] write(3, "1000", 4) = 4 [pid 5182] close(3) = 0 [pid 5182] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5182] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5182] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5182] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5182] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5182] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5182] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5182] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5183 attached [pid 5183] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5182] <... clone3 resumed> => {parent_tid=[5183]}, 88) = 5183 [pid 5183] set_robust_list(0x7fd868ec09a0, 24 [pid 5182] rt_sigprocmask(SIG_SETMASK, [], [pid 5183] <... set_robust_list resumed>) = 0 [pid 5182] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5183] rt_sigprocmask(SIG_SETMASK, [], [pid 5182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5183] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5182] <... futex resumed>) = 0 [pid 5183] memfd_create("syzkaller", 0 [pid 5182] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5183] <... memfd_create resumed>) = 3 [pid 5183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5183] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5183] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5183] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5183] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5183] close(3) = 0 [pid 5183] mkdir("./file0", 0777) = 0 [ 67.701658][ T5183] loop0: detected capacity change from 0 to 8192 [ 67.716950][ T5183] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 67.730118][ T5183] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 67.739686][ T5183] REISERFS (device loop0): using ordered data mode [ 67.746421][ T5183] reiserfs: using flush barriers [pid 5183] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5183] chdir("./file0") = 0 [pid 5183] ioctl(4, LOOP_CLR_FD) = 0 [pid 5183] close(4) = 0 [pid 5183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5182] <... futex resumed>) = 0 [pid 5183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5183] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5182] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5183] mkdir(".", 0777) = -1 EEXIST (File exists) [ 67.753141][ T5183] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 67.769961][ T5183] REISERFS (device loop0): checking transaction log (loop0) [ 67.778738][ T5183] REISERFS (device loop0): Using r5 hash to sort names [pid 5183] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5183] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5182] <... futex resumed>) = 0 [pid 5182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5182] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5183] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5182] <... futex resumed>) = 0 [pid 5183] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 67.818019][ T5183] reiserfs: enabling write barrier flush mode [ 67.826241][ T5183] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5182] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5182] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5183] <... mount resumed>) = 0 [pid 5183] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5182] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5183] <... openat resumed>) = 5 [pid 5182] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5182] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5183] <... futex resumed>) = 0 [pid 5183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5185 attached [pid 5182] <... clone3 resumed> => {parent_tid=[5185]}, 88) = 5185 [pid 5182] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5182] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5185] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5182] <... futex resumed>) = 0 [pid 5185] set_robust_list(0x7fd868e9f9a0, 24 [pid 5182] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5185] <... set_robust_list resumed>) = 0 [pid 5185] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5185] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5185] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5182] <... futex resumed>) = 0 [pid 5185] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5182] exit_group(0 [pid 5185] <... futex resumed>) = ? [pid 5183] <... futex resumed>) = ? [pid 5185] +++ exited with 0 +++ [pid 5183] +++ exited with 0 +++ [pid 5182] <... exit_group resumed>) = ? [pid 5182] +++ exited with 0 +++ [ 67.859282][ T5183] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5182, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./29", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./29/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./29/binderfs") = 0 umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./29/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./29/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./29") = 0 mkdir("./30", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5186 attached [pid 5186] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5186] chdir("./30") = 0 [pid 5186] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5186] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5186 [pid 5186] <... setpgid resumed>) = 0 [pid 5186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5186] write(3, "1000", 4) = 4 [pid 5186] close(3) = 0 [pid 5186] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5186] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5186] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5186] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5186] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5186] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5187 attached [pid 5187] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5186] <... clone3 resumed> => {parent_tid=[5187]}, 88) = 5187 [pid 5187] <... rseq resumed>) = 0 [pid 5186] rt_sigprocmask(SIG_SETMASK, [], [pid 5187] set_robust_list(0x7fd868ec09a0, 24 [pid 5186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5187] <... set_robust_list resumed>) = 0 [pid 5186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5187] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5186] <... futex resumed>) = 0 [pid 5186] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5187] memfd_create("syzkaller", 0) = 3 [pid 5187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5187] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5187] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5187] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5187] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5187] close(3) = 0 [pid 5187] mkdir("./file0", 0777) = 0 [ 68.185117][ T5187] loop0: detected capacity change from 0 to 8192 [ 68.210693][ T5187] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 68.224123][ T5187] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5187] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5187] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5187] chdir("./file0") = 0 [pid 5187] ioctl(4, LOOP_CLR_FD) = 0 [pid 5187] close(4) = 0 [pid 5187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5187] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5186] <... futex resumed>) = 0 [pid 5186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5187] <... futex resumed>) = 0 [pid 5186] <... futex resumed>) = 1 [pid 5187] mkdir(".", 0777 [pid 5186] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5187] <... mkdir resumed>) = -1 EEXIST (File exists) [ 68.233554][ T5187] REISERFS (device loop0): using ordered data mode [ 68.240180][ T5187] reiserfs: using flush barriers [ 68.246700][ T5187] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 68.263194][ T5187] REISERFS (device loop0): checking transaction log (loop0) [ 68.271749][ T5187] REISERFS (device loop0): Using r5 hash to sort names [pid 5187] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5187] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5186] <... futex resumed>) = 0 [pid 5187] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5187] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5187] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5186] <... futex resumed>) = 0 [pid 5186] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5186] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5186] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 68.323002][ T5187] reiserfs: enabling write barrier flush mode [ 68.331689][ T5187] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5189 attached [pid 5189] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5186] <... clone3 resumed> => {parent_tid=[5189]}, 88) = 5189 [pid 5189] set_robust_list(0x7fd868e9f9a0, 24 [pid 5186] rt_sigprocmask(SIG_SETMASK, [], [pid 5189] <... set_robust_list resumed>) = 0 [pid 5186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5189] rt_sigprocmask(SIG_SETMASK, [], [pid 5186] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5189] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5186] <... futex resumed>) = 0 [pid 5189] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5186] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5189] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5187] <... mount resumed>) = 0 [pid 5189] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5186] <... futex resumed>) = 0 [pid 5189] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5187] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5187] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5186] exit_group(0 [pid 5189] <... futex resumed>) = ? [pid 5187] <... futex resumed>) = ? [pid 5186] <... exit_group resumed>) = ? [pid 5189] +++ exited with 0 +++ [pid 5187] +++ exited with 0 +++ [pid 5186] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5186, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./30", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./30/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./30/binderfs") = 0 [ 68.385142][ T5187] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./30/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./30/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./30") = 0 mkdir("./31", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5190 attached [pid 5190] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5190] chdir("./31") = 0 [pid 5190] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5190] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5190 [pid 5190] <... setpgid resumed>) = 0 [pid 5190] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5190] write(3, "1000", 4) = 4 [pid 5190] close(3) = 0 [pid 5190] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5190] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5190] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5190] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5190] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5190] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5190] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5190] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5191 attached [pid 5191] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5190] <... clone3 resumed> => {parent_tid=[5191]}, 88) = 5191 [pid 5191] <... rseq resumed>) = 0 [pid 5190] rt_sigprocmask(SIG_SETMASK, [], [pid 5191] set_robust_list(0x7fd868ec09a0, 24 [pid 5190] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5191] <... set_robust_list resumed>) = 0 [pid 5190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5191] rt_sigprocmask(SIG_SETMASK, [], [pid 5190] <... futex resumed>) = 0 [pid 5191] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5190] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5191] memfd_create("syzkaller", 0) = 3 [pid 5191] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5191] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5191] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5191] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5191] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5191] close(3) = 0 [pid 5191] mkdir("./file0", 0777) = 0 [ 68.673234][ T5191] loop0: detected capacity change from 0 to 8192 [ 68.687935][ T5191] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 68.701004][ T5191] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 68.710344][ T5191] REISERFS (device loop0): using ordered data mode [ 68.716929][ T5191] reiserfs: using flush barriers [pid 5191] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5191] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5191] chdir("./file0") = 0 [pid 5191] ioctl(4, LOOP_CLR_FD) = 0 [pid 5191] close(4) = 0 [pid 5191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5190] <... futex resumed>) = 0 [pid 5191] mkdir(".", 0777 [pid 5190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5191] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5190] <... futex resumed>) = 0 [pid 5191] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 68.723374][ T5191] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 68.739883][ T5191] REISERFS (device loop0): checking transaction log (loop0) [ 68.748441][ T5191] REISERFS (device loop0): Using r5 hash to sort names [pid 5190] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5191] <... mount resumed>) = 0 [pid 5191] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5190] <... futex resumed>) = 0 [pid 5190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5191] <... futex resumed>) = 1 [pid 5190] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5190] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5190] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5191] mkdir(".", 0777 [pid 5190] <... mprotect resumed>) = 0 [pid 5191] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5190] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5191] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5190] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5190] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5193 attached [pid 5193] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5193] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5193] rt_sigprocmask(SIG_SETMASK, [], [pid 5190] <... clone3 resumed> => {parent_tid=[5193]}, 88) = 5193 [pid 5193] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5190] rt_sigprocmask(SIG_SETMASK, [], [pid 5193] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5190] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5190] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5193] <... futex resumed>) = 0 [pid 5190] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5193] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5191] <... mount resumed>) = 0 [pid 5191] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5193] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5191] <... futex resumed>) = 0 [pid 5191] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5193] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5190] <... futex resumed>) = 0 [pid 5193] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5190] exit_group(0 [pid 5193] <... futex resumed>) = ? [pid 5191] <... futex resumed>) = ? [pid 5190] <... exit_group resumed>) = ? [pid 5193] +++ exited with 0 +++ [pid 5191] +++ exited with 0 +++ [pid 5190] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5190, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./31", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./31/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 68.792413][ T5191] reiserfs: enabling write barrier flush mode [ 68.800469][ T5191] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 68.826041][ T5191] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./31/binderfs") = 0 umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./31/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./31/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./31") = 0 mkdir("./32", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5194 attached , child_tidptr=0x5555565f3690) = 5194 [pid 5194] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5194] chdir("./32") = 0 [pid 5194] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5194] setpgid(0, 0) = 0 [pid 5194] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5194] write(3, "1000", 4) = 4 [pid 5194] close(3) = 0 [pid 5194] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5194] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5194] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5194] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5194] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5194] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5194] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5194] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5195 attached [pid 5195] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5195] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5194] <... clone3 resumed> => {parent_tid=[5195]}, 88) = 5195 [pid 5195] rt_sigprocmask(SIG_SETMASK, [], [pid 5194] rt_sigprocmask(SIG_SETMASK, [], [pid 5195] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5194] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5195] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5194] <... futex resumed>) = 0 [pid 5194] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5195] memfd_create("syzkaller", 0) = 3 [pid 5195] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5195] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5195] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5195] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5195] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5195] close(3) = 0 [pid 5195] mkdir("./file0", 0777) = 0 [ 69.111210][ T5195] loop0: detected capacity change from 0 to 8192 [ 69.142932][ T5195] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5195] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5195] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5195] chdir("./file0") = 0 [pid 5195] ioctl(4, LOOP_CLR_FD) = 0 [pid 5195] close(4) = 0 [pid 5195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5194] <... futex resumed>) = 0 [pid 5194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5195] <... futex resumed>) = 0 [pid 5194] <... futex resumed>) = 1 [pid 5195] mkdir(".", 0777 [ 69.156104][ T5195] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 69.165529][ T5195] REISERFS (device loop0): using ordered data mode [ 69.172142][ T5195] reiserfs: using flush barriers [ 69.178422][ T5195] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 69.195222][ T5195] REISERFS (device loop0): checking transaction log (loop0) [ 69.203835][ T5195] REISERFS (device loop0): Using r5 hash to sort names [pid 5194] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5195] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5195] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5195] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5194] <... futex resumed>) = 0 [pid 5195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5195] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5194] <... futex resumed>) = 0 [pid 5195] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5194] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5194] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5194] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5194] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5194] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5197 attached [pid 5197] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5197] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5197] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5194] <... clone3 resumed> => {parent_tid=[5197]}, 88) = 5197 [ 69.252140][ T5195] reiserfs: enabling write barrier flush mode [ 69.260324][ T5195] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5194] rt_sigprocmask(SIG_SETMASK, [], [pid 5197] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5195] <... mount resumed>) = 0 [pid 5194] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5195] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5194] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5197] <... futex resumed>) = 0 [pid 5195] <... futex resumed>) = 0 [pid 5194] <... futex resumed>) = 1 [pid 5197] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5194] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5197] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5197] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5194] <... futex resumed>) = 0 [pid 5197] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5194] exit_group(0) = ? [pid 5197] <... futex resumed>) = ? [pid 5195] <... futex resumed>) = ? [pid 5197] +++ exited with 0 +++ [pid 5195] +++ exited with 0 +++ [pid 5194] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5194, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./32", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 69.300898][ T5195] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./32/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./32/binderfs") = 0 umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./32/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./32/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./32") = 0 mkdir("./33", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5198 attached [pid 5198] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5198] chdir("./33") = 0 [pid 5198] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5198] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5198 [pid 5198] <... setpgid resumed>) = 0 [pid 5198] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5198] write(3, "1000", 4) = 4 [pid 5198] close(3) = 0 [pid 5198] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5198] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5198] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5198] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5198] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5198] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5198] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5199 attached [pid 5199] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5198] <... clone3 resumed> => {parent_tid=[5199]}, 88) = 5199 [pid 5199] <... rseq resumed>) = 0 [pid 5198] rt_sigprocmask(SIG_SETMASK, [], [pid 5199] set_robust_list(0x7fd868ec09a0, 24 [pid 5198] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5199] <... set_robust_list resumed>) = 0 [pid 5198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5199] rt_sigprocmask(SIG_SETMASK, [], [pid 5198] <... futex resumed>) = 0 [pid 5199] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5198] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5199] memfd_create("syzkaller", 0) = 3 [pid 5199] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5199] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5199] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5199] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5199] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5199] close(3) = 0 [pid 5199] mkdir("./file0", 0777) = 0 [ 69.637164][ T5199] loop0: detected capacity change from 0 to 8192 [ 69.664878][ T5199] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 69.677969][ T5199] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5199] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5199] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5199] chdir("./file0") = 0 [pid 5199] ioctl(4, LOOP_CLR_FD) = 0 [pid 5199] close(4) = 0 [pid 5199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5199] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5198] <... futex resumed>) = 0 [pid 5198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5199] <... futex resumed>) = 0 [pid 5198] <... futex resumed>) = 1 [ 69.687313][ T5199] REISERFS (device loop0): using ordered data mode [ 69.693933][ T5199] reiserfs: using flush barriers [ 69.699980][ T5199] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 69.716709][ T5199] REISERFS (device loop0): checking transaction log (loop0) [ 69.725096][ T5199] REISERFS (device loop0): Using r5 hash to sort names [pid 5199] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5198] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5199] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5199] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5198] <... futex resumed>) = 0 [pid 5199] mkdir(".", 0777 [pid 5198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5199] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5198] <... futex resumed>) = 0 [pid 5199] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5198] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 69.749964][ T5199] reiserfs: enabling write barrier flush mode [ 69.758544][ T5199] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5199] <... mount resumed>) = 0 [pid 5198] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5199] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5198] <... mprotect resumed>) = 0 [pid 5199] <... openat resumed>) = 5 [pid 5198] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5199] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5198] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5198] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5201 attached => {parent_tid=[5201]}, 88) = 5201 [pid 5201] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5198] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5198] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5201] <... rseq resumed>) = 0 [pid 5201] set_robust_list(0x7fd868e9f9a0, 24 [pid 5198] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5201] <... set_robust_list resumed>) = 0 [pid 5201] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5201] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5201] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5198] <... futex resumed>) = 0 [pid 5201] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5198] exit_group(0 [pid 5201] <... futex resumed>) = ? [pid 5199] <... futex resumed>) = ? [pid 5198] <... exit_group resumed>) = ? [pid 5201] +++ exited with 0 +++ [pid 5199] +++ exited with 0 +++ [pid 5198] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5198, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./33", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 69.799459][ T5199] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./33/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./33/binderfs") = 0 umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./33/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./33/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./33") = 0 mkdir("./34", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5202 attached [pid 5202] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5202 [pid 5202] <... set_robust_list resumed>) = 0 [pid 5202] chdir("./34") = 0 [pid 5202] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5202] setpgid(0, 0) = 0 [pid 5202] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5202] write(3, "1000", 4) = 4 [pid 5202] close(3) = 0 [pid 5202] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5202] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5202] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5202] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5202] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5202] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5203 attached [pid 5203] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5202] <... clone3 resumed> => {parent_tid=[5203]}, 88) = 5203 [pid 5203] <... rseq resumed>) = 0 [pid 5203] set_robust_list(0x7fd868ec09a0, 24 [pid 5202] rt_sigprocmask(SIG_SETMASK, [], [pid 5203] <... set_robust_list resumed>) = 0 [pid 5203] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5203] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5202] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5203] <... futex resumed>) = 0 [pid 5203] memfd_create("syzkaller", 0 [pid 5202] <... futex resumed>) = 1 [pid 5202] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5203] <... memfd_create resumed>) = 3 [pid 5203] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5203] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5203] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5203] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5203] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5203] close(3) = 0 [pid 5203] mkdir("./file0", 0777) = 0 [ 70.098239][ T5203] loop0: detected capacity change from 0 to 8192 [ 70.129367][ T5203] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5203] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5203] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5203] chdir("./file0") = 0 [pid 5203] ioctl(4, LOOP_CLR_FD) = 0 [pid 5203] close(4) = 0 [pid 5203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5203] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5202] <... futex resumed>) = 0 [pid 5202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5203] <... futex resumed>) = 0 [pid 5202] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 70.142447][ T5203] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 70.151873][ T5203] REISERFS (device loop0): using ordered data mode [ 70.158400][ T5203] reiserfs: using flush barriers [ 70.164954][ T5203] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 70.181572][ T5203] REISERFS (device loop0): checking transaction log (loop0) [ 70.189961][ T5203] REISERFS (device loop0): Using r5 hash to sort names [pid 5203] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5203] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5203] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5202] <... futex resumed>) = 0 [pid 5203] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5203] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5202] <... futex resumed>) = 0 [pid 5203] mkdir(".", 0777 [pid 5202] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5203] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5202] <... futex resumed>) = 0 [pid 5203] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5202] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 70.239015][ T5203] reiserfs: enabling write barrier flush mode [ 70.247891][ T5203] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5202] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5205 attached [pid 5205] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5205] set_robust_list(0x7fd868e9f9a0, 24 [pid 5203] <... mount resumed>) = 0 [pid 5202] <... clone3 resumed> => {parent_tid=[5205]}, 88) = 5205 [pid 5205] <... set_robust_list resumed>) = 0 [pid 5202] rt_sigprocmask(SIG_SETMASK, [], [pid 5205] rt_sigprocmask(SIG_SETMASK, [], [pid 5202] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5205] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5202] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5205] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5203] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5202] <... futex resumed>) = 0 [pid 5203] <... openat resumed>) = 5 [pid 5203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5203] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5205] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5205] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5202] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5205] <... futex resumed>) = 0 [pid 5205] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5202] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5202] exit_group(0 [pid 5205] <... futex resumed>) = ? [pid 5203] <... futex resumed>) = ? [pid 5205] +++ exited with 0 +++ [pid 5203] +++ exited with 0 +++ [pid 5202] <... exit_group resumed>) = ? [pid 5202] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5202, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./34", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./34/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./34/binderfs") = 0 [ 70.280584][ T5203] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./34/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./34/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./34") = 0 mkdir("./35", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5206 attached , child_tidptr=0x5555565f3690) = 5206 [pid 5206] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5206] chdir("./35") = 0 [pid 5206] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5206] setpgid(0, 0) = 0 [pid 5206] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5206] write(3, "1000", 4) = 4 [pid 5206] close(3) = 0 [pid 5206] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5206] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5206] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5206] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5206] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5206] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5207 attached => {parent_tid=[5207]}, 88) = 5207 [pid 5207] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5206] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5207] <... rseq resumed>) = 0 [pid 5207] set_robust_list(0x7fd868ec09a0, 24 [pid 5206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5207] <... set_robust_list resumed>) = 0 [pid 5207] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5206] <... futex resumed>) = 0 [pid 5206] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5207] memfd_create("syzkaller", 0) = 3 [pid 5207] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5207] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5207] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5207] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5207] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5207] close(3) = 0 [pid 5207] mkdir("./file0", 0777) = 0 [ 70.580186][ T5207] loop0: detected capacity change from 0 to 8192 [ 70.596534][ T5207] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 70.609616][ T5207] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 70.619079][ T5207] REISERFS (device loop0): using ordered data mode [ 70.625643][ T5207] reiserfs: using flush barriers [pid 5207] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5207] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5207] chdir("./file0") = 0 [pid 5207] ioctl(4, LOOP_CLR_FD) = 0 [pid 5207] close(4) = 0 [pid 5207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5206] <... futex resumed>) = 0 [pid 5207] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5207] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5206] <... futex resumed>) = 0 [pid 5207] mkdir(".", 0777 [pid 5206] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5207] <... mkdir resumed>) = -1 EEXIST (File exists) [ 70.632104][ T5207] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 70.648520][ T5207] REISERFS (device loop0): checking transaction log (loop0) [ 70.656982][ T5207] REISERFS (device loop0): Using r5 hash to sort names [ 70.673312][ T5207] reiserfs: enabling write barrier flush mode [pid 5207] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5207] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5206] <... futex resumed>) = 0 [pid 5206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5207] mkdir(".", 0777 [pid 5206] <... futex resumed>) = 0 [pid 5206] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5207] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5206] <... futex resumed>) = 0 [pid 5207] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5206] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5207] <... mount resumed>) = 0 [pid 5207] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5206] <... mprotect resumed>) = 0 [pid 5207] <... openat resumed>) = 5 [pid 5206] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5209 attached [pid 5207] <... futex resumed>) = 0 [pid 5207] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5206] <... clone3 resumed> => {parent_tid=[5209]}, 88) = 5209 [pid 5209] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5206] rt_sigprocmask(SIG_SETMASK, [], [pid 5209] set_robust_list(0x7fd868e9f9a0, 24 [pid 5206] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5209] <... set_robust_list resumed>) = 0 [pid 5206] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5209] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5206] <... futex resumed>) = 0 [pid 5209] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5206] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5209] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5209] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5206] <... futex resumed>) = 0 [pid 5209] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5206] exit_group(0 [pid 5207] <... futex resumed>) = ? [pid 5207] +++ exited with 0 +++ [pid 5206] <... exit_group resumed>) = ? [pid 5209] <... futex resumed>) = ? [ 70.682391][ T5207] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 70.714703][ T5207] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5209] +++ exited with 0 +++ [pid 5206] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5206, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./35", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./35/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./35/binderfs") = 0 umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./35/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./35/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./35") = 0 mkdir("./36", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5210 ./strace-static-x86_64: Process 5210 attached [pid 5210] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5210] chdir("./36") = 0 [pid 5210] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5210] setpgid(0, 0) = 0 [pid 5210] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5210] write(3, "1000", 4) = 4 [pid 5210] close(3) = 0 [pid 5210] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5210] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5210] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5210] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5210] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5210] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5211 attached [pid 5211] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5210] <... clone3 resumed> => {parent_tid=[5211]}, 88) = 5211 [pid 5211] <... rseq resumed>) = 0 [pid 5210] rt_sigprocmask(SIG_SETMASK, [], [pid 5211] set_robust_list(0x7fd868ec09a0, 24 [pid 5210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5211] <... set_robust_list resumed>) = 0 [pid 5210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5211] rt_sigprocmask(SIG_SETMASK, [], [pid 5210] <... futex resumed>) = 0 [pid 5211] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5211] memfd_create("syzkaller", 0 [pid 5210] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5211] <... memfd_create resumed>) = 3 [pid 5211] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5211] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5211] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5211] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5211] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5211] close(3) = 0 [pid 5211] mkdir("./file0", 0777) = 0 [ 71.051435][ T5211] loop0: detected capacity change from 0 to 8192 [ 71.068096][ T5211] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 71.081457][ T5211] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 71.090894][ T5211] REISERFS (device loop0): using ordered data mode [pid 5211] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5211] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5211] chdir("./file0") = 0 [pid 5211] ioctl(4, LOOP_CLR_FD) = 0 [pid 5211] close(4) = 0 [pid 5211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5210] <... futex resumed>) = 0 [pid 5211] <... futex resumed>) = 1 [pid 5211] mkdir(".", 0777 [pid 5210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5211] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5210] <... futex resumed>) = 0 [pid 5211] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 71.097480][ T5211] reiserfs: using flush barriers [ 71.103939][ T5211] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 71.120537][ T5211] REISERFS (device loop0): checking transaction log (loop0) [ 71.129023][ T5211] REISERFS (device loop0): Using r5 hash to sort names [pid 5210] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5211] <... mount resumed>) = 0 [pid 5211] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5210] <... futex resumed>) = 0 [pid 5211] <... futex resumed>) = 1 [pid 5210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5211] mkdir(".", 0777 [pid 5210] <... futex resumed>) = 0 [pid 5211] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5210] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5211] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5210] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5210] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5211] <... mount resumed>) = 0 [pid 5210] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5211] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5211] <... openat resumed>) = 5 [pid 5211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5213 attached ) = 0 [pid 5210] <... clone3 resumed> => {parent_tid=[5213]}, 88) = 5213 [pid 5211] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5210] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5210] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5213] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5210] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5213] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5213] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 71.173776][ T5211] reiserfs: enabling write barrier flush mode [ 71.182912][ T5211] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 71.209353][ T5211] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5213] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5213] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5210] <... futex resumed>) = 0 [pid 5210] exit_group(0 [pid 5213] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5211] <... futex resumed>) = ? [pid 5210] <... exit_group resumed>) = ? [pid 5213] +++ exited with 0 +++ [pid 5211] +++ exited with 0 +++ [pid 5210] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5210, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./36", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./36/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./36/binderfs") = 0 umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./36/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./36/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./36") = 0 mkdir("./37", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5214 attached [pid 5214] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5214] chdir("./37" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5214 [pid 5214] <... chdir resumed>) = 0 [pid 5214] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5214] setpgid(0, 0) = 0 [pid 5214] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5214] write(3, "1000", 4) = 4 [pid 5214] close(3) = 0 [pid 5214] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5214] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5214] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5214] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5214] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5214] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5214] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5214] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5215 attached [pid 5215] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5214] <... clone3 resumed> => {parent_tid=[5215]}, 88) = 5215 [pid 5215] <... rseq resumed>) = 0 [pid 5215] set_robust_list(0x7fd868ec09a0, 24 [pid 5214] rt_sigprocmask(SIG_SETMASK, [], [pid 5215] <... set_robust_list resumed>) = 0 [pid 5214] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5215] rt_sigprocmask(SIG_SETMASK, [], [pid 5214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5215] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5214] <... futex resumed>) = 0 [pid 5215] memfd_create("syzkaller", 0 [pid 5214] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5215] <... memfd_create resumed>) = 3 [pid 5215] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5215] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5215] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5215] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5215] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5215] close(3) = 0 [pid 5215] mkdir("./file0", 0777) = 0 [ 71.490813][ T5215] loop0: detected capacity change from 0 to 8192 [ 71.501243][ T5215] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 71.514656][ T5215] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 71.523987][ T5215] REISERFS (device loop0): using ordered data mode [ 71.530560][ T5215] reiserfs: using flush barriers [pid 5215] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5215] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5215] chdir("./file0") = 0 [pid 5215] ioctl(4, LOOP_CLR_FD) = 0 [pid 5215] close(4) = 0 [pid 5215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5214] <... futex resumed>) = 0 [pid 5215] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5215] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5214] <... futex resumed>) = 0 [pid 5215] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5214] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 71.537128][ T5215] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 71.553554][ T5215] REISERFS (device loop0): checking transaction log (loop0) [ 71.562508][ T5215] REISERFS (device loop0): Using r5 hash to sort names [pid 5215] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5215] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5214] <... futex resumed>) = 0 [pid 5215] <... futex resumed>) = 1 [pid 5214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5215] mkdir(".", 0777 [pid 5214] <... futex resumed>) = 0 [pid 5215] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5214] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5215] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5214] <... futex resumed>) = 0 [pid 5214] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5214] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5215] <... mount resumed>) = 0 [pid 5214] <... mprotect resumed>) = 0 [pid 5215] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5214] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5214] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5214] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5215] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5217 attached [pid 5215] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5217] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5217] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5214] <... clone3 resumed> => {parent_tid=[5217]}, 88) = 5217 [pid 5217] rt_sigprocmask(SIG_SETMASK, [], [pid 5214] rt_sigprocmask(SIG_SETMASK, [], [pid 5217] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5214] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5217] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5214] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5217] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5214] <... futex resumed>) = 0 [pid 5217] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5214] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5217] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5217] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5214] <... futex resumed>) = 0 [pid 5217] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5214] exit_group(0 [pid 5217] <... futex resumed>) = ? [pid 5215] <... futex resumed>) = ? [pid 5217] +++ exited with 0 +++ [pid 5215] +++ exited with 0 +++ [pid 5214] <... exit_group resumed>) = ? [pid 5214] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5214, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./37", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 71.600163][ T5215] reiserfs: enabling write barrier flush mode [ 71.608450][ T5215] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 71.629542][ T5215] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./37/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./37/binderfs") = 0 umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./37/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./37/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./37") = 0 mkdir("./38", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5218 attached , child_tidptr=0x5555565f3690) = 5218 [pid 5218] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5218] chdir("./38") = 0 [pid 5218] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5218] setpgid(0, 0) = 0 [pid 5218] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5218] write(3, "1000", 4) = 4 [pid 5218] close(3) = 0 [pid 5218] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5218] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5218] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5218] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5218] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5218] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5218] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5218] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5219 attached [pid 5219] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5218] <... clone3 resumed> => {parent_tid=[5219]}, 88) = 5219 [pid 5219] <... rseq resumed>) = 0 [pid 5218] rt_sigprocmask(SIG_SETMASK, [], [pid 5219] set_robust_list(0x7fd868ec09a0, 24 [pid 5218] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5219] <... set_robust_list resumed>) = 0 [pid 5218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5219] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5218] <... futex resumed>) = 0 [pid 5219] memfd_create("syzkaller", 0 [pid 5218] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5219] <... memfd_create resumed>) = 3 [pid 5219] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5219] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5219] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5219] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5219] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5219] close(3) = 0 [pid 5219] mkdir("./file0", 0777) = 0 [ 71.890630][ T5219] loop0: detected capacity change from 0 to 8192 [ 71.902385][ T5219] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 71.915516][ T5219] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 71.924876][ T5219] REISERFS (device loop0): using ordered data mode [ 71.931446][ T5219] reiserfs: using flush barriers [pid 5219] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5219] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5219] chdir("./file0") = 0 [pid 5219] ioctl(4, LOOP_CLR_FD) = 0 [ 71.937589][ T5219] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 71.954369][ T5219] REISERFS (device loop0): checking transaction log (loop0) [ 71.962712][ T5219] REISERFS (device loop0): Using r5 hash to sort names [pid 5219] close(4) = 0 [pid 5219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5218] <... futex resumed>) = 0 [pid 5219] <... futex resumed>) = 1 [pid 5218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5219] mkdir(".", 0777 [pid 5218] <... futex resumed>) = 0 [pid 5219] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5218] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5219] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5219] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5218] <... futex resumed>) = 0 [pid 5219] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5219] mkdir(".", 0777 [pid 5218] <... futex resumed>) = 0 [pid 5219] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5219] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5218] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5218] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 71.995810][ T5219] reiserfs: enabling write barrier flush mode [ 72.004115][ T5219] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5218] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5219] <... mount resumed>) = 0 [pid 5219] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5218] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5218] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5219] <... openat resumed>) = 5 [pid 5219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5219] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5221 attached [pid 5218] <... clone3 resumed> => {parent_tid=[5221]}, 88) = 5221 [pid 5221] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5218] rt_sigprocmask(SIG_SETMASK, [], [pid 5221] <... rseq resumed>) = 0 [pid 5218] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5221] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5221] rt_sigprocmask(SIG_SETMASK, [], [pid 5218] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5221] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5221] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5218] <... futex resumed>) = 0 [pid 5218] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5221] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5221] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5218] <... futex resumed>) = 0 [pid 5221] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5218] exit_group(0 [pid 5221] <... futex resumed>) = ? [pid 5219] <... futex resumed>) = ? [pid 5221] +++ exited with 0 +++ [pid 5219] +++ exited with 0 +++ [pid 5218] <... exit_group resumed>) = ? [pid 5218] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5218, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./38", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 72.047370][ T5219] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./38/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./38/binderfs") = 0 umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./38/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./38/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./38") = 0 mkdir("./39", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5222 attached [pid 5222] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5222] chdir("./39") = 0 [pid 5222] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5222] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5222 [pid 5222] <... setpgid resumed>) = 0 [pid 5222] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5222] write(3, "1000", 4) = 4 [pid 5222] close(3) = 0 [pid 5222] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5222] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5222] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5222] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5222] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5222] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5222] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5223 attached [pid 5223] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5222] <... clone3 resumed> => {parent_tid=[5223]}, 88) = 5223 [pid 5223] <... rseq resumed>) = 0 [pid 5222] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5222] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5223] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5223] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5223] memfd_create("syzkaller", 0) = 3 [pid 5223] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5223] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5223] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5223] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5223] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5223] close(3) = 0 [pid 5223] mkdir("./file0", 0777) = 0 [ 72.292864][ T5223] loop0: detected capacity change from 0 to 8192 [ 72.307960][ T5223] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 72.324844][ T5223] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 72.334224][ T5223] REISERFS (device loop0): using ordered data mode [pid 5223] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5223] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5223] chdir("./file0") = 0 [pid 5223] ioctl(4, LOOP_CLR_FD) = 0 [pid 5223] close(4) = 0 [pid 5223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5222] <... futex resumed>) = 0 [pid 5223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5223] mkdir(".", 0777) = -1 EEXIST (File exists) [ 72.340871][ T5223] reiserfs: using flush barriers [ 72.347479][ T5223] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 72.364426][ T5223] REISERFS (device loop0): checking transaction log (loop0) [ 72.373077][ T5223] REISERFS (device loop0): Using r5 hash to sort names [pid 5222] <... futex resumed>) = 0 [pid 5223] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5222] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5223] <... mount resumed>) = 0 [pid 5223] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5222] <... futex resumed>) = 0 [pid 5222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5223] <... futex resumed>) = 0 [pid 5222] <... futex resumed>) = 1 [pid 5223] mkdir(".", 0777 [pid 5222] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5223] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5222] <... futex resumed>) = 0 [pid 5223] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5222] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 72.400243][ T5223] reiserfs: enabling write barrier flush mode [ 72.410839][ T5223] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5222] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5222] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5225]}, 88) = 5225 ./strace-static-x86_64: Process 5225 attached [pid 5223] <... mount resumed>) = 0 [pid 5222] rt_sigprocmask(SIG_SETMASK, [], [pid 5225] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5222] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5223] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5225] <... rseq resumed>) = 0 [pid 5222] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5223] <... openat resumed>) = 5 [pid 5222] <... futex resumed>) = 0 [pid 5225] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5225] rt_sigprocmask(SIG_SETMASK, [], [pid 5223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5222] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5225] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5225] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5223] <... futex resumed>) = 0 [pid 5225] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5225] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5225] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5222] <... futex resumed>) = 0 [pid 5222] exit_group(0 [pid 5225] <... futex resumed>) = ? [pid 5223] <... futex resumed>) = ? [pid 5222] <... exit_group resumed>) = ? [pid 5225] +++ exited with 0 +++ [pid 5223] +++ exited with 0 +++ [pid 5222] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5222, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./39", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 72.453917][ T5223] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./39/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./39/binderfs") = 0 umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./39/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./39/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./39") = 0 mkdir("./40", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5226 attached , child_tidptr=0x5555565f3690) = 5226 [pid 5226] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5226] chdir("./40") = 0 [pid 5226] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5226] setpgid(0, 0) = 0 [pid 5226] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5226] write(3, "1000", 4) = 4 [pid 5226] close(3) = 0 [pid 5226] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5226] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5226] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5226] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5226] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5226] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5226] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5226] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5227 attached [pid 5227] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5226] <... clone3 resumed> => {parent_tid=[5227]}, 88) = 5227 [pid 5227] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5226] rt_sigprocmask(SIG_SETMASK, [], [pid 5227] rt_sigprocmask(SIG_SETMASK, [], [pid 5226] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5227] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5227] memfd_create("syzkaller", 0 [pid 5226] <... futex resumed>) = 0 [pid 5226] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5227] <... memfd_create resumed>) = 3 [pid 5227] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5227] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5227] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5227] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5227] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5227] close(3) = 0 [pid 5227] mkdir("./file0", 0777) = 0 [ 72.753945][ T5227] loop0: detected capacity change from 0 to 8192 [ 72.768046][ T5227] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 72.781173][ T5227] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 72.790565][ T5227] REISERFS (device loop0): using ordered data mode [ 72.797132][ T5227] reiserfs: using flush barriers [pid 5227] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5227] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5227] chdir("./file0") = 0 [pid 5227] ioctl(4, LOOP_CLR_FD) = 0 [pid 5227] close(4) = 0 [pid 5227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5227] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5226] <... futex resumed>) = 0 [pid 5226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5227] <... futex resumed>) = 0 [pid 5226] <... futex resumed>) = 1 [pid 5227] mkdir(".", 0777 [pid 5226] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5227] <... mkdir resumed>) = -1 EEXIST (File exists) [ 72.803627][ T5227] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 72.820348][ T5227] REISERFS (device loop0): checking transaction log (loop0) [ 72.828831][ T5227] REISERFS (device loop0): Using r5 hash to sort names [pid 5227] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5227] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5227] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5226] <... futex resumed>) = 0 [pid 5226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5227] <... futex resumed>) = 0 [pid 5226] <... futex resumed>) = 1 [pid 5227] mkdir(".", 0777 [pid 5226] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5227] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5226] <... futex resumed>) = 0 [pid 5227] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5226] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5226] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 72.858341][ T5227] reiserfs: enabling write barrier flush mode [ 72.870408][ T5227] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5226] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5226] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5227] <... mount resumed>) = 0 ./strace-static-x86_64: Process 5229 attached [pid 5229] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5226] <... clone3 resumed> => {parent_tid=[5229]}, 88) = 5229 [pid 5226] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5226] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5229] <... rseq resumed>) = 0 [pid 5227] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5229] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5227] <... openat resumed>) = 5 [pid 5226] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5229] rt_sigprocmask(SIG_SETMASK, [], [pid 5227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5229] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5229] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5227] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5229] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5229] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5226] <... futex resumed>) = 0 [pid 5229] <... futex resumed>) = 1 [pid 5226] exit_group(0 [pid 5229] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5227] <... futex resumed>) = ? [pid 5226] <... exit_group resumed>) = ? [pid 5229] +++ exited with 0 +++ [pid 5227] +++ exited with 0 +++ [pid 5226] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5226, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- [ 72.902004][ T5227] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./40", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./40/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./40/binderfs") = 0 umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./40/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./40/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./40") = 0 mkdir("./41", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5230 attached , child_tidptr=0x5555565f3690) = 5230 [pid 5230] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5230] chdir("./41") = 0 [pid 5230] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5230] setpgid(0, 0) = 0 [pid 5230] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5230] write(3, "1000", 4) = 4 [pid 5230] close(3) = 0 [pid 5230] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5230] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5230] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5230] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5230] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5230] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5230] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5230] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5231 attached => {parent_tid=[5231]}, 88) = 5231 [pid 5231] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5230] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5230] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5231] <... rseq resumed>) = 0 [pid 5231] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5231] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5231] memfd_create("syzkaller", 0) = 3 [pid 5231] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5231] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5231] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5231] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5231] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5231] close(3) = 0 [pid 5231] mkdir("./file0", 0777) = 0 [ 73.225416][ T5231] loop0: detected capacity change from 0 to 8192 [ 73.235968][ T5231] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 73.249260][ T5231] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 73.258651][ T5231] REISERFS (device loop0): using ordered data mode [ 73.265336][ T5231] reiserfs: using flush barriers [pid 5231] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5231] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5231] chdir("./file0") = 0 [pid 5231] ioctl(4, LOOP_CLR_FD) = 0 [pid 5231] close(4) = 0 [pid 5231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5230] <... futex resumed>) = 0 [pid 5230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5231] <... futex resumed>) = 0 [pid 5230] <... futex resumed>) = 1 [pid 5231] mkdir(".", 0777 [pid 5230] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5231] <... mkdir resumed>) = -1 EEXIST (File exists) [ 73.271966][ T5231] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 73.288434][ T5231] REISERFS (device loop0): checking transaction log (loop0) [ 73.296988][ T5231] REISERFS (device loop0): Using r5 hash to sort names [pid 5231] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5231] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5230] <... futex resumed>) = 0 [pid 5231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5231] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5230] <... futex resumed>) = 0 [pid 5231] mkdir(".", 0777 [pid 5230] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5231] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5230] <... futex resumed>) = 0 [pid 5231] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5230] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5231] <... mount resumed>) = 0 [pid 5230] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5231] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5230] <... mprotect resumed>) = 0 [pid 5231] <... openat resumed>) = 5 [pid 5230] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5230] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5231] <... futex resumed>) = 0 [pid 5230] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5233 attached [pid 5230] <... clone3 resumed> => {parent_tid=[5233]}, 88) = 5233 [pid 5233] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5230] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5230] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5230] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5233] <... rseq resumed>) = 0 [pid 5233] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5233] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5233] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5233] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5230] <... futex resumed>) = 0 [pid 5233] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5230] exit_group(0 [pid 5233] <... futex resumed>) = ? [ 73.342779][ T5231] reiserfs: enabling write barrier flush mode [ 73.351329][ T5231] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 73.377330][ T5231] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5231] <... futex resumed>) = ? [pid 5230] <... exit_group resumed>) = ? [pid 5233] +++ exited with 0 +++ [pid 5231] +++ exited with 0 +++ [pid 5230] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5230, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./41", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./41/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./41/binderfs") = 0 umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./41/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./41/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./41/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./41") = 0 mkdir("./42", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5234 ./strace-static-x86_64: Process 5234 attached [pid 5234] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5234] chdir("./42") = 0 [pid 5234] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5234] setpgid(0, 0) = 0 [pid 5234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5234] write(3, "1000", 4) = 4 [pid 5234] close(3) = 0 [pid 5234] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5234] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5234] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5234] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5234] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5234] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5235 attached [pid 5235] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5235] set_robust_list(0x7fd868ec09a0, 24 [pid 5234] <... clone3 resumed> => {parent_tid=[5235]}, 88) = 5235 [pid 5235] <... set_robust_list resumed>) = 0 [pid 5234] rt_sigprocmask(SIG_SETMASK, [], [pid 5235] rt_sigprocmask(SIG_SETMASK, [], [pid 5234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5235] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5235] memfd_create("syzkaller", 0 [pid 5234] <... futex resumed>) = 0 [pid 5234] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5235] <... memfd_create resumed>) = 3 [pid 5235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5235] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5235] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5235] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5235] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5235] close(3) = 0 [pid 5235] mkdir("./file0", 0777) = 0 [ 73.631566][ T5235] loop0: detected capacity change from 0 to 8192 [ 73.656778][ T5235] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 73.669873][ T5235] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5235] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5235] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5235] chdir("./file0") = 0 [pid 5235] ioctl(4, LOOP_CLR_FD) = 0 [ 73.679208][ T5235] REISERFS (device loop0): using ordered data mode [ 73.685960][ T5235] reiserfs: using flush barriers [ 73.692391][ T5235] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 73.709366][ T5235] REISERFS (device loop0): checking transaction log (loop0) [ 73.718010][ T5235] REISERFS (device loop0): Using r5 hash to sort names [pid 5235] close(4) = 0 [pid 5235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5234] <... futex resumed>) = 0 [pid 5235] <... futex resumed>) = 1 [pid 5234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5235] mkdir(".", 0777 [pid 5234] <... futex resumed>) = 0 [pid 5235] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5234] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5235] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5235] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5234] <... futex resumed>) = 0 [pid 5235] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5235] <... futex resumed>) = 0 [pid 5234] <... futex resumed>) = 1 [pid 5235] mkdir(".", 0777 [pid 5234] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5235] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5234] <... futex resumed>) = 0 [pid 5235] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 73.753474][ T5235] reiserfs: enabling write barrier flush mode [ 73.762937][ T5235] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5234] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5235] <... mount resumed>) = 0 [pid 5234] <... mprotect resumed>) = 0 [pid 5235] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5234] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5237 attached ) = 0 [pid 5237] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5234] <... clone3 resumed> => {parent_tid=[5237]}, 88) = 5237 [pid 5235] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5237] <... rseq resumed>) = 0 [pid 5234] rt_sigprocmask(SIG_SETMASK, [], [pid 5237] set_robust_list(0x7fd868e9f9a0, 24 [pid 5234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5237] <... set_robust_list resumed>) = 0 [pid 5234] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5237] rt_sigprocmask(SIG_SETMASK, [], [pid 5234] <... futex resumed>) = 0 [pid 5237] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5234] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5237] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5237] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5234] <... futex resumed>) = 0 [pid 5237] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5234] exit_group(0) = ? [pid 5237] <... futex resumed>) = ? [pid 5235] <... futex resumed>) = ? [pid 5237] +++ exited with 0 +++ [pid 5235] +++ exited with 0 +++ [pid 5234] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5234, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./42", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./42/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 73.795359][ T5235] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./42/binderfs") = 0 umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./42/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./42/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./42") = 0 mkdir("./43", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5238 attached , child_tidptr=0x5555565f3690) = 5238 [pid 5238] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5238] chdir("./43") = 0 [pid 5238] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5238] setpgid(0, 0) = 0 [pid 5238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5238] write(3, "1000", 4) = 4 [pid 5238] close(3) = 0 [pid 5238] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5238] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5238] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5238] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5238] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5238] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5239 attached [pid 5239] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5238] <... clone3 resumed> => {parent_tid=[5239]}, 88) = 5239 [pid 5239] <... rseq resumed>) = 0 [pid 5238] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5238] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5239] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5239] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5239] memfd_create("syzkaller", 0) = 3 [pid 5239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5239] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5239] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5239] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5239] close(3) = 0 [pid 5239] mkdir("./file0", 0777) = 0 [ 74.128995][ T5239] loop0: detected capacity change from 0 to 8192 [ 74.143686][ T5239] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 74.156810][ T5239] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 74.166331][ T5239] REISERFS (device loop0): using ordered data mode [ 74.172921][ T5239] reiserfs: using flush barriers [pid 5239] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5239] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5239] chdir("./file0") = 0 [pid 5239] ioctl(4, LOOP_CLR_FD) = 0 [pid 5239] close(4) = 0 [pid 5239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5238] <... futex resumed>) = 0 [pid 5239] <... futex resumed>) = 1 [pid 5238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5239] mkdir(".", 0777 [pid 5238] <... futex resumed>) = 0 [pid 5238] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5239] <... mkdir resumed>) = -1 EEXIST (File exists) [ 74.179178][ T5239] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 74.197312][ T5239] REISERFS (device loop0): checking transaction log (loop0) [ 74.205920][ T5239] REISERFS (device loop0): Using r5 hash to sort names [pid 5239] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5239] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5238] <... futex resumed>) = 0 [pid 5239] mkdir(".", 0777 [pid 5238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5239] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5239] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5238] <... futex resumed>) = 0 [pid 5238] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 74.246555][ T5239] reiserfs: enabling write barrier flush mode [ 74.255379][ T5239] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5238] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5239] <... mount resumed>) = 0 [pid 5239] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5238] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5239] <... openat resumed>) = 5 [pid 5238] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5241 attached [pid 5239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5241] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5239] <... futex resumed>) = 0 [pid 5238] <... clone3 resumed> => {parent_tid=[5241]}, 88) = 5241 [pid 5241] <... rseq resumed>) = 0 [pid 5239] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5238] rt_sigprocmask(SIG_SETMASK, [], [pid 5241] set_robust_list(0x7fd868e9f9a0, 24 [pid 5238] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5241] <... set_robust_list resumed>) = 0 [pid 5238] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5241] rt_sigprocmask(SIG_SETMASK, [], [pid 5238] <... futex resumed>) = 0 [pid 5241] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5238] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5241] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5241] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5238] <... futex resumed>) = 0 [pid 5238] exit_group(0) = ? [pid 5239] <... futex resumed>) = ? [pid 5239] +++ exited with 0 +++ [pid 5241] <... futex resumed>) = ? [pid 5241] +++ exited with 0 +++ [pid 5238] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5238, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./43", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./43/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./43/binderfs") = 0 [ 74.307261][ T5239] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./43/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./43/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./43") = 0 mkdir("./44", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5242 attached [pid 5242] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5242] chdir("./44") = 0 [pid 5242] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5242] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5242 [pid 5242] <... setpgid resumed>) = 0 [pid 5242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5242] write(3, "1000", 4) = 4 [pid 5242] close(3) = 0 [pid 5242] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5242] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5242] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5242] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5242] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5242] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5242] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5242] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5243 attached [pid 5243] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5242] <... clone3 resumed> => {parent_tid=[5243]}, 88) = 5243 [pid 5243] <... rseq resumed>) = 0 [pid 5242] rt_sigprocmask(SIG_SETMASK, [], [pid 5243] set_robust_list(0x7fd868ec09a0, 24 [pid 5242] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5243] <... set_robust_list resumed>) = 0 [pid 5243] rt_sigprocmask(SIG_SETMASK, [], [pid 5242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5243] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5242] <... futex resumed>) = 0 [pid 5243] memfd_create("syzkaller", 0 [pid 5242] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5243] <... memfd_create resumed>) = 3 [pid 5243] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5243] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5243] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5243] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5243] close(3) = 0 [pid 5243] mkdir("./file0", 0777) = 0 [ 74.568574][ T5243] loop0: detected capacity change from 0 to 8192 [ 74.583928][ T5243] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 74.596980][ T5243] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 74.606334][ T5243] REISERFS (device loop0): using ordered data mode [ 74.612896][ T5243] reiserfs: using flush barriers [pid 5243] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5243] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5243] chdir("./file0") = 0 [pid 5243] ioctl(4, LOOP_CLR_FD) = 0 [pid 5243] close(4) = 0 [pid 5243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5242] <... futex resumed>) = 0 [pid 5243] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5243] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5242] <... futex resumed>) = 0 [pid 5243] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5242] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 74.619019][ T5243] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 74.635886][ T5243] REISERFS (device loop0): checking transaction log (loop0) [ 74.644454][ T5243] REISERFS (device loop0): Using r5 hash to sort names [pid 5243] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5243] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5242] <... futex resumed>) = 0 [pid 5243] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5243] <... futex resumed>) = 0 [pid 5242] <... futex resumed>) = 1 [pid 5243] mkdir(".", 0777 [pid 5242] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5243] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5242] <... futex resumed>) = 0 [pid 5243] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5242] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 74.678883][ T5243] reiserfs: enabling write barrier flush mode [ 74.687429][ T5243] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5242] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5243] <... mount resumed>) = 0 [pid 5242] <... mprotect resumed>) = 0 [pid 5243] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5242] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5243] <... openat resumed>) = 5 [pid 5242] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5242] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5243] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5245 attached [pid 5245] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5242] <... clone3 resumed> => {parent_tid=[5245]}, 88) = 5245 [pid 5245] set_robust_list(0x7fd868e9f9a0, 24 [pid 5242] rt_sigprocmask(SIG_SETMASK, [], [pid 5245] <... set_robust_list resumed>) = 0 [pid 5242] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5245] rt_sigprocmask(SIG_SETMASK, [], [pid 5242] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5245] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5242] <... futex resumed>) = 0 [pid 5242] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5245] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5245] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5245] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5242] <... futex resumed>) = 0 [pid 5242] exit_group(0 [pid 5245] <... futex resumed>) = ? [pid 5243] <... futex resumed>) = ? [pid 5245] +++ exited with 0 +++ [pid 5243] +++ exited with 0 +++ [pid 5242] <... exit_group resumed>) = ? [pid 5242] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5242, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./44", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./44/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./44/binderfs") = 0 [ 74.723388][ T5243] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./44/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./44/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./44") = 0 mkdir("./45", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5246 ./strace-static-x86_64: Process 5246 attached [pid 5246] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5246] chdir("./45") = 0 [pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] setpgid(0, 0) = 0 [pid 5246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "1000", 4) = 4 [pid 5246] close(3) = 0 [pid 5246] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5246] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5246] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5246] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5246] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5246] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5247 attached [pid 5247] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5246] <... clone3 resumed> => {parent_tid=[5247]}, 88) = 5247 [pid 5247] <... rseq resumed>) = 0 [pid 5246] rt_sigprocmask(SIG_SETMASK, [], [pid 5247] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5246] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5247] rt_sigprocmask(SIG_SETMASK, [], [pid 5246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5247] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5246] <... futex resumed>) = 0 [pid 5246] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5247] memfd_create("syzkaller", 0) = 3 [pid 5247] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5247] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5247] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5247] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5247] close(3) = 0 [pid 5247] mkdir("./file0", 0777) = 0 [ 74.969591][ T5247] loop0: detected capacity change from 0 to 8192 [ 74.980429][ T5247] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 74.993940][ T5247] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 75.003984][ T5247] REISERFS (device loop0): using ordered data mode [ 75.010836][ T5247] reiserfs: using flush barriers [pid 5247] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5247] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5247] chdir("./file0") = 0 [pid 5247] ioctl(4, LOOP_CLR_FD) = 0 [pid 5247] close(4) = 0 [pid 5247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5246] <... futex resumed>) = 0 [pid 5246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5247] mkdir(".", 0777 [pid 5246] <... futex resumed>) = 0 [pid 5247] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5246] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 75.017687][ T5247] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 75.034255][ T5247] REISERFS (device loop0): checking transaction log (loop0) [ 75.042596][ T5247] REISERFS (device loop0): Using r5 hash to sort names [pid 5247] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5247] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5246] <... futex resumed>) = 0 [pid 5247] <... futex resumed>) = 1 [pid 5246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5247] mkdir(".", 0777 [pid 5246] <... futex resumed>) = 0 [pid 5247] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5246] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5247] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5246] <... futex resumed>) = 0 [pid 5246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 75.094732][ T5247] reiserfs: enabling write barrier flush mode [ 75.103187][ T5247] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5246] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5247] <... mount resumed>) = 0 [pid 5246] <... mprotect resumed>) = 0 [pid 5247] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5247] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5246] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5246] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5249 attached => {parent_tid=[5249]}, 88) = 5249 [pid 5249] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5246] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5249] <... rseq resumed>) = 0 [pid 5246] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5246] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5249] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5249] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5249] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5249] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5246] <... futex resumed>) = 0 [pid 5249] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5246] exit_group(0) = ? [ 75.135092][ T5247] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5249] <... futex resumed>) = ? [pid 5247] <... futex resumed>) = ? [pid 5249] +++ exited with 0 +++ [pid 5247] +++ exited with 0 +++ [pid 5246] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5246, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./45", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./45/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./45/binderfs") = 0 umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./45/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./45/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./45/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./45") = 0 mkdir("./46", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5250 attached , child_tidptr=0x5555565f3690) = 5250 [pid 5250] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5250] chdir("./46") = 0 [pid 5250] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5250] setpgid(0, 0) = 0 [pid 5250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5250] write(3, "1000", 4) = 4 [pid 5250] close(3) = 0 [pid 5250] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5250] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5250] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5250] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5250] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5250] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5250] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5250] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5251 attached [pid 5251] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5250] <... clone3 resumed> => {parent_tid=[5251]}, 88) = 5251 [pid 5251] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5250] rt_sigprocmask(SIG_SETMASK, [], [pid 5251] rt_sigprocmask(SIG_SETMASK, [], [pid 5250] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5251] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5251] memfd_create("syzkaller", 0 [pid 5250] <... futex resumed>) = 0 [pid 5250] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5251] <... memfd_create resumed>) = 3 [pid 5251] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5251] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5251] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5251] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5251] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5251] close(3) = 0 [pid 5251] mkdir("./file0", 0777) = 0 [ 75.473152][ T5251] loop0: detected capacity change from 0 to 8192 [ 75.490621][ T5251] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 75.503709][ T5251] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 75.513017][ T5251] REISERFS (device loop0): using ordered data mode [pid 5251] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5251] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5251] chdir("./file0") = 0 [pid 5251] ioctl(4, LOOP_CLR_FD) = 0 [pid 5251] close(4) = 0 [pid 5251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5250] <... futex resumed>) = 0 [pid 5250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5251] mkdir(".", 0777 [pid 5250] <... futex resumed>) = 0 [pid 5251] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5250] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 75.519532][ T5251] reiserfs: using flush barriers [ 75.526110][ T5251] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 75.542573][ T5251] REISERFS (device loop0): checking transaction log (loop0) [ 75.550755][ T5251] REISERFS (device loop0): Using r5 hash to sort names [pid 5251] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5251] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5250] <... futex resumed>) = 0 [pid 5251] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5251] <... futex resumed>) = 0 [pid 5251] mkdir(".", 0777 [pid 5250] <... futex resumed>) = 1 [pid 5251] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5250] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5251] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5250] <... futex resumed>) = 0 [pid 5250] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5250] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5250] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5250] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5253 attached [pid 5253] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5250] <... clone3 resumed> => {parent_tid=[5253]}, 88) = 5253 [pid 5253] set_robust_list(0x7fd868e9f9a0, 24 [pid 5250] rt_sigprocmask(SIG_SETMASK, [], [pid 5253] <... set_robust_list resumed>) = 0 [pid 5253] rt_sigprocmask(SIG_SETMASK, [], [pid 5250] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5253] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5250] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5253] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5250] <... futex resumed>) = 0 [pid 5253] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5250] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5253] <... futex resumed>) = 0 [pid 5253] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5250] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5251] <... mount resumed>) = 0 [pid 5251] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5251] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5250] exit_group(0 [pid 5253] <... futex resumed>) = ? [pid 5253] +++ exited with 0 +++ [pid 5251] <... futex resumed>) = ? [pid 5250] <... exit_group resumed>) = ? [pid 5251] +++ exited with 0 +++ [pid 5250] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5250, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./46", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 75.593792][ T5251] reiserfs: enabling write barrier flush mode [ 75.605572][ T5251] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 75.633595][ T5251] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./46/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./46/binderfs") = 0 umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./46/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./46/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./46/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./46") = 0 mkdir("./47", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5254 attached , child_tidptr=0x5555565f3690) = 5254 [pid 5254] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5254] chdir("./47") = 0 [pid 5254] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5254] setpgid(0, 0) = 0 [pid 5254] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5254] write(3, "1000", 4) = 4 [pid 5254] close(3) = 0 [pid 5254] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5254] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5254] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5254] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5254] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5254] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5254] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5254] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5255 attached [pid 5255] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5254] <... clone3 resumed> => {parent_tid=[5255]}, 88) = 5255 [pid 5255] <... rseq resumed>) = 0 [pid 5254] rt_sigprocmask(SIG_SETMASK, [], [pid 5255] set_robust_list(0x7fd868ec09a0, 24 [pid 5254] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5254] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5255] <... set_robust_list resumed>) = 0 [pid 5255] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5255] memfd_create("syzkaller", 0) = 3 [pid 5255] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5255] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5255] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5255] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5255] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5255] close(3) = 0 [pid 5255] mkdir("./file0", 0777) = 0 [ 75.959817][ T5255] loop0: detected capacity change from 0 to 8192 [ 75.975942][ T5255] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 75.988982][ T5255] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 75.998250][ T5255] REISERFS (device loop0): using ordered data mode [ 76.004866][ T5255] reiserfs: using flush barriers [pid 5255] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5255] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5255] chdir("./file0") = 0 [pid 5255] ioctl(4, LOOP_CLR_FD) = 0 [pid 5255] close(4) = 0 [pid 5255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5254] <... futex resumed>) = 0 [pid 5255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5255] <... futex resumed>) = 0 [pid 5254] <... futex resumed>) = 1 [pid 5255] mkdir(".", 0777 [pid 5254] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5255] <... mkdir resumed>) = -1 EEXIST (File exists) [ 76.010963][ T5255] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 76.027787][ T5255] REISERFS (device loop0): checking transaction log (loop0) [ 76.036219][ T5255] REISERFS (device loop0): Using r5 hash to sort names [pid 5255] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5255] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5254] <... futex resumed>) = 0 [pid 5255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5255] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5254] <... futex resumed>) = 0 [pid 5255] mkdir(".", 0777 [pid 5254] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5255] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5254] <... futex resumed>) = 0 [pid 5255] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5254] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5254] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5255] <... mount resumed>) = 0 [pid 5254] <... mprotect resumed>) = 0 [pid 5255] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5254] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5255] <... openat resumed>) = 5 [pid 5254] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5254] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5255] <... futex resumed>) = 0 [pid 5255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5254] <... clone3 resumed> => {parent_tid=[5257]}, 88) = 5257 ./strace-static-x86_64: Process 5257 attached [pid 5254] rt_sigprocmask(SIG_SETMASK, [], [pid 5257] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5254] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5257] <... rseq resumed>) = 0 [pid 5257] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5257] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5254] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5257] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5254] <... futex resumed>) = 0 [pid 5254] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5257] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5257] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5254] <... futex resumed>) = 0 [pid 5257] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5254] exit_group(0) = ? [ 76.075488][ T5255] reiserfs: enabling write barrier flush mode [ 76.084298][ T5255] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 76.112519][ T5255] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5257] <... futex resumed>) = ? [pid 5255] <... futex resumed>) = ? [pid 5257] +++ exited with 0 +++ [pid 5255] +++ exited with 0 +++ [pid 5254] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5254, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./47", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./47/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./47/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./47/binderfs") = 0 [ 76.153825][ T9] cfg80211: failed to load regulatory.db umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./47/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./47/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./47/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./47") = 0 mkdir("./48", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5259 ./strace-static-x86_64: Process 5259 attached [pid 5259] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5259] chdir("./48") = 0 [pid 5259] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5259] setpgid(0, 0) = 0 [pid 5259] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5259] write(3, "1000", 4) = 4 [pid 5259] close(3) = 0 [pid 5259] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5259] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5259] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5259] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5259] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5259] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5259] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5259] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5260 attached => {parent_tid=[5260]}, 88) = 5260 [pid 5259] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5259] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5260] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5260] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5260] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5259] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5260] memfd_create("syzkaller", 0) = 3 [pid 5260] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5260] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5260] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5260] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5260] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5260] close(3) = 0 [pid 5260] mkdir("./file0", 0777) = 0 [ 76.417829][ T5260] loop0: detected capacity change from 0 to 8192 [ 76.433862][ T5260] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 76.447133][ T5260] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 76.456823][ T5260] REISERFS (device loop0): using ordered data mode [pid 5260] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5260] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5260] chdir("./file0") = 0 [pid 5260] ioctl(4, LOOP_CLR_FD) = 0 [pid 5260] close(4) = 0 [pid 5260] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5259] <... futex resumed>) = 0 [pid 5259] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5259] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5260] <... futex resumed>) = 1 [pid 5260] mkdir(".", 0777) = -1 EEXIST (File exists) [ 76.463519][ T5260] reiserfs: using flush barriers [ 76.470386][ T5260] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 76.486954][ T5260] REISERFS (device loop0): checking transaction log (loop0) [ 76.494958][ T5260] REISERFS (device loop0): Using r5 hash to sort names [pid 5260] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5260] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5260] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5259] <... futex resumed>) = 0 [pid 5260] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5259] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5260] <... futex resumed>) = 0 [pid 5259] <... futex resumed>) = 1 [pid 5260] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5259] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5260] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5259] <... futex resumed>) = 0 [pid 5259] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 76.529200][ T5260] reiserfs: enabling write barrier flush mode [ 76.537692][ T5260] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5259] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5259] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5260] <... mount resumed>) = 0 [pid 5259] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5260] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5262 attached ) = 5 [pid 5262] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5260] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5262] set_robust_list(0x7fd868e9f9a0, 24 [pid 5260] <... futex resumed>) = 0 [pid 5262] <... set_robust_list resumed>) = 0 [pid 5260] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5262] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5262] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5259] <... clone3 resumed> => {parent_tid=[5262]}, 88) = 5262 [pid 5259] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5259] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5262] <... futex resumed>) = 0 [pid 5259] <... futex resumed>) = 1 [pid 5262] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5259] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5262] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5262] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5259] <... futex resumed>) = 0 [pid 5259] exit_group(0 [pid 5262] <... futex resumed>) = ? [pid 5260] <... futex resumed>) = ? [pid 5259] <... exit_group resumed>) = ? [pid 5262] +++ exited with 0 +++ [pid 5260] +++ exited with 0 +++ [pid 5259] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5259, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./48", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./48/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./48/binderfs") = 0 [ 76.570749][ T5260] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./48/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./48/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./48/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./48/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./48") = 0 mkdir("./49", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5263 attached , child_tidptr=0x5555565f3690) = 5263 [pid 5263] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5263] chdir("./49") = 0 [pid 5263] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5263] setpgid(0, 0) = 0 [pid 5263] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5263] write(3, "1000", 4) = 4 [pid 5263] close(3) = 0 [pid 5263] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5263] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5263] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5263] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5263] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5263] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5263] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5263] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5264 attached [pid 5264] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5263] <... clone3 resumed> => {parent_tid=[5264]}, 88) = 5264 [pid 5264] <... rseq resumed>) = 0 [pid 5263] rt_sigprocmask(SIG_SETMASK, [], [pid 5264] set_robust_list(0x7fd868ec09a0, 24 [pid 5263] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5264] <... set_robust_list resumed>) = 0 [pid 5263] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5264] rt_sigprocmask(SIG_SETMASK, [], [pid 5263] <... futex resumed>) = 0 [pid 5264] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5263] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5264] memfd_create("syzkaller", 0) = 3 [pid 5264] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5264] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5264] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5264] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5264] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5264] close(3) = 0 [pid 5264] mkdir("./file0", 0777) = 0 [ 76.875941][ T5264] loop0: detected capacity change from 0 to 8192 [ 76.901627][ T5264] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 76.914648][ T5264] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5264] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5264] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5264] chdir("./file0") = 0 [pid 5264] ioctl(4, LOOP_CLR_FD) = 0 [pid 5264] close(4) = 0 [pid 5264] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5263] <... futex resumed>) = 0 [pid 5264] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5263] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5264] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5263] <... futex resumed>) = 0 [pid 5264] mkdir(".", 0777 [pid 5263] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5264] <... mkdir resumed>) = -1 EEXIST (File exists) [ 76.923950][ T5264] REISERFS (device loop0): using ordered data mode [ 76.930467][ T5264] reiserfs: using flush barriers [ 76.937002][ T5264] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 76.953605][ T5264] REISERFS (device loop0): checking transaction log (loop0) [ 76.962031][ T5264] REISERFS (device loop0): Using r5 hash to sort names [pid 5264] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5264] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5264] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5264] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5263] <... futex resumed>) = 0 [pid 5263] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5264] <... futex resumed>) = 0 [pid 5263] <... futex resumed>) = 1 [pid 5264] mkdir(".", 0777 [pid 5263] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5264] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5264] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5263] <... futex resumed>) = 0 [pid 5263] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5263] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5263] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5263] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5266 attached => {parent_tid=[5266]}, 88) = 5266 [pid 5266] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5263] rt_sigprocmask(SIG_SETMASK, [], [pid 5266] <... rseq resumed>) = 0 [pid 5266] set_robust_list(0x7fd868e9f9a0, 24 [pid 5263] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5266] <... set_robust_list resumed>) = 0 [pid 5263] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5266] rt_sigprocmask(SIG_SETMASK, [], [pid 5264] <... mount resumed>) = 0 [pid 5266] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5263] <... futex resumed>) = 0 [pid 5266] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5263] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5264] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5264] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5264] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5266] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5266] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5263] <... futex resumed>) = 0 [pid 5266] <... futex resumed>) = 1 [pid 5263] exit_group(0) = ? [pid 5264] <... futex resumed>) = ? [pid 5266] +++ exited with 0 +++ [pid 5264] +++ exited with 0 +++ [pid 5263] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5263, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./49", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./49/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 76.995960][ T5264] reiserfs: enabling write barrier flush mode [ 77.004148][ T5264] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 77.029939][ T5264] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./49/binderfs") = 0 umount2("./49/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./49/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./49/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./49/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./49") = 0 mkdir("./50", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5267 attached , child_tidptr=0x5555565f3690) = 5267 [pid 5267] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5267] chdir("./50") = 0 [pid 5267] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5267] setpgid(0, 0) = 0 [pid 5267] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5267] write(3, "1000", 4) = 4 [pid 5267] close(3) = 0 [pid 5267] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5267] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5267] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5267] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5267] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5267] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5267] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5267] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5268 attached [pid 5268] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5267] <... clone3 resumed> => {parent_tid=[5268]}, 88) = 5268 [pid 5268] set_robust_list(0x7fd868ec09a0, 24 [pid 5267] rt_sigprocmask(SIG_SETMASK, [], [pid 5268] <... set_robust_list resumed>) = 0 [pid 5267] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5268] rt_sigprocmask(SIG_SETMASK, [], [pid 5267] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5268] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5267] <... futex resumed>) = 0 [pid 5268] memfd_create("syzkaller", 0 [pid 5267] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5268] <... memfd_create resumed>) = 3 [pid 5268] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5268] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5268] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5268] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5268] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5268] close(3) = 0 [pid 5268] mkdir("./file0", 0777) = 0 [ 77.257797][ T5268] loop0: detected capacity change from 0 to 8192 [ 77.283957][ T5268] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 77.297052][ T5268] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5268] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5268] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5268] chdir("./file0") = 0 [pid 5268] ioctl(4, LOOP_CLR_FD) = 0 [pid 5268] close(4) = 0 [pid 5268] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5267] <... futex resumed>) = 0 [pid 5267] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5268] mkdir(".", 0777 [pid 5267] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5268] <... mkdir resumed>) = -1 EEXIST (File exists) [ 77.306414][ T5268] REISERFS (device loop0): using ordered data mode [ 77.312996][ T5268] reiserfs: using flush barriers [ 77.319470][ T5268] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 77.336164][ T5268] REISERFS (device loop0): checking transaction log (loop0) [ 77.344420][ T5268] REISERFS (device loop0): Using r5 hash to sort names [pid 5268] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5268] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5268] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5267] <... futex resumed>) = 0 [pid 5268] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5267] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5268] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5267] <... futex resumed>) = 0 [pid 5268] mkdir(".", 0777 [pid 5267] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5268] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5267] <... futex resumed>) = 0 [pid 5268] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5267] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5267] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5267] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5267] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5270 attached [pid 5270] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5267] <... clone3 resumed> => {parent_tid=[5270]}, 88) = 5270 [pid 5267] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5270] set_robust_list(0x7fd868e9f9a0, 24 [pid 5267] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5270] <... set_robust_list resumed>) = 0 [pid 5270] rt_sigprocmask(SIG_SETMASK, [], [pid 5267] <... futex resumed>) = 0 [pid 5270] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5270] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5267] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5270] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5270] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5270] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5267] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5268] <... mount resumed>) = 0 [pid 5268] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5268] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5267] exit_group(0 [pid 5270] <... futex resumed>) = ? [pid 5267] <... exit_group resumed>) = ? [pid 5270] +++ exited with 0 +++ [pid 5268] <... futex resumed>) = ? [pid 5268] +++ exited with 0 +++ [pid 5267] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5267, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./50", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 77.378926][ T5268] reiserfs: enabling write barrier flush mode [ 77.387165][ T5268] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 77.411342][ T5268] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./50/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./50/binderfs") = 0 umount2("./50/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./50/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./50/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./50/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./50") = 0 mkdir("./51", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5271 attached , child_tidptr=0x5555565f3690) = 5271 [pid 5271] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5271] chdir("./51") = 0 [pid 5271] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5271] setpgid(0, 0) = 0 [pid 5271] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5271] write(3, "1000", 4) = 4 [pid 5271] close(3) = 0 [pid 5271] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5271] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5271] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5271] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5271] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5271] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5271] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5271] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5272 attached [pid 5272] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5271] <... clone3 resumed> => {parent_tid=[5272]}, 88) = 5272 [pid 5272] <... rseq resumed>) = 0 [pid 5271] rt_sigprocmask(SIG_SETMASK, [], [pid 5272] set_robust_list(0x7fd868ec09a0, 24 [pid 5271] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5272] <... set_robust_list resumed>) = 0 [pid 5271] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5272] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5271] <... futex resumed>) = 0 [pid 5272] memfd_create("syzkaller", 0 [pid 5271] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5272] <... memfd_create resumed>) = 3 [pid 5272] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5272] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5272] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5272] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5272] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5272] close(3) = 0 [pid 5272] mkdir("./file0", 0777) = 0 [ 77.685844][ T5272] loop0: detected capacity change from 0 to 8192 [ 77.701836][ T5272] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 77.714959][ T5272] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 77.724273][ T5272] REISERFS (device loop0): using ordered data mode [ 77.730786][ T5272] reiserfs: using flush barriers [pid 5272] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5272] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5272] chdir("./file0") = 0 [pid 5272] ioctl(4, LOOP_CLR_FD) = 0 [pid 5272] close(4) = 0 [pid 5272] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5271] <... futex resumed>) = 0 [pid 5272] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5271] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5272] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5271] <... futex resumed>) = 0 [pid 5272] mkdir(".", 0777) = -1 EEXIST (File exists) [ 77.737060][ T5272] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 77.753607][ T5272] REISERFS (device loop0): checking transaction log (loop0) [ 77.761958][ T5272] REISERFS (device loop0): Using r5 hash to sort names [pid 5271] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5272] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5272] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5272] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5271] <... futex resumed>) = 0 [pid 5272] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5271] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5272] <... futex resumed>) = 0 [pid 5271] <... futex resumed>) = 1 [pid 5272] mkdir(".", 0777 [pid 5271] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5272] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5271] <... futex resumed>) = 0 [pid 5272] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5271] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5271] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5271] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5271] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5274 attached => {parent_tid=[5274]}, 88) = 5274 [pid 5274] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5271] rt_sigprocmask(SIG_SETMASK, [], [pid 5274] <... rseq resumed>) = 0 [pid 5271] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5274] set_robust_list(0x7fd868e9f9a0, 24 [pid 5271] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5274] <... set_robust_list resumed>) = 0 [pid 5274] rt_sigprocmask(SIG_SETMASK, [], [pid 5272] <... mount resumed>) = 0 [pid 5271] <... futex resumed>) = 0 [pid 5274] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5272] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5271] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5274] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5272] <... openat resumed>) = 5 [pid 5272] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5274] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5274] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5272] <... futex resumed>) = 0 [pid 5274] <... futex resumed>) = 1 [pid 5272] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5271] <... futex resumed>) = 0 [pid 5274] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5271] exit_group(0 [pid 5274] <... futex resumed>) = ? [pid 5272] <... futex resumed>) = ? [pid 5271] <... exit_group resumed>) = ? [pid 5274] +++ exited with 0 +++ [pid 5272] +++ exited with 0 +++ [pid 5271] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5271, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 77.794165][ T5272] reiserfs: enabling write barrier flush mode [ 77.802539][ T5272] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 77.825256][ T5272] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./51", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./51/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./51/binderfs") = 0 umount2("./51/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./51/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./51/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./51/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./51") = 0 mkdir("./52", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5275 attached , child_tidptr=0x5555565f3690) = 5275 [pid 5275] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5275] chdir("./52") = 0 [pid 5275] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5275] setpgid(0, 0) = 0 [pid 5275] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5275] write(3, "1000", 4) = 4 [pid 5275] close(3) = 0 [pid 5275] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5275] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5275] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5275] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5275] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5275] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5275] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5275] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5276 attached [pid 5276] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5275] <... clone3 resumed> => {parent_tid=[5276]}, 88) = 5276 [pid 5275] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5275] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5276] set_robust_list(0x7fd868ec09a0, 24 [pid 5275] <... futex resumed>) = 0 [pid 5275] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5276] <... set_robust_list resumed>) = 0 [pid 5276] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5276] memfd_create("syzkaller", 0) = 3 [pid 5276] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5276] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5276] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5276] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5276] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5276] close(3) = 0 [pid 5276] mkdir("./file0", 0777) = 0 [ 78.168067][ T5276] loop0: detected capacity change from 0 to 8192 [ 78.184484][ T5276] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 78.197615][ T5276] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 78.207080][ T5276] REISERFS (device loop0): using ordered data mode [pid 5276] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5276] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5276] chdir("./file0") = 0 [pid 5276] ioctl(4, LOOP_CLR_FD) = 0 [pid 5276] close(4) = 0 [pid 5276] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5275] <... futex resumed>) = 0 [pid 5276] <... futex resumed>) = 1 [pid 5275] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5276] mkdir(".", 0777 [pid 5275] <... futex resumed>) = 0 [pid 5276] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5275] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 78.213622][ T5276] reiserfs: using flush barriers [ 78.219656][ T5276] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 78.236415][ T5276] REISERFS (device loop0): checking transaction log (loop0) [ 78.244877][ T5276] REISERFS (device loop0): Using r5 hash to sort names [ 78.257644][ T5276] reiserfs: enabling write barrier flush mode [pid 5276] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5276] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5276] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5276] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5275] <... futex resumed>) = 0 [pid 5275] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5276] <... futex resumed>) = 0 [pid 5275] <... futex resumed>) = 1 [pid 5276] mkdir(".", 0777 [pid 5275] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5276] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5275] <... futex resumed>) = 0 [pid 5276] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5275] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5275] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5275] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5275] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5278 attached [pid 5278] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5275] <... clone3 resumed> => {parent_tid=[5278]}, 88) = 5278 [pid 5278] set_robust_list(0x7fd868e9f9a0, 24 [pid 5275] rt_sigprocmask(SIG_SETMASK, [], [pid 5276] <... mount resumed>) = 0 [pid 5275] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5278] <... set_robust_list resumed>) = 0 [pid 5275] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5278] rt_sigprocmask(SIG_SETMASK, [], [pid 5275] <... futex resumed>) = 0 [pid 5278] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5275] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5278] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5278] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5276] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5278] <... futex resumed>) = 1 [pid 5275] <... futex resumed>) = 0 [pid 5278] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5276] <... openat resumed>) = 5 [pid 5276] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5276] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5275] exit_group(0 [pid 5278] <... futex resumed>) = ? [pid 5278] +++ exited with 0 +++ [pid 5275] <... exit_group resumed>) = ? [pid 5276] <... futex resumed>) = ? [pid 5276] +++ exited with 0 +++ [pid 5275] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5275, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- umount2("./52", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 78.266872][ T5276] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 78.299253][ T5276] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./52/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./52/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./52/binderfs") = 0 umount2("./52/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./52/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./52/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./52/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./52") = 0 mkdir("./53", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5279 attached , child_tidptr=0x5555565f3690) = 5279 [pid 5279] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5279] chdir("./53") = 0 [pid 5279] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5279] setpgid(0, 0) = 0 [pid 5279] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5279] write(3, "1000", 4) = 4 [pid 5279] close(3) = 0 [pid 5279] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5279] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5279] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5279] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5279] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5279] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5279] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5279] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5280 attached [pid 5280] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5279] <... clone3 resumed> => {parent_tid=[5280]}, 88) = 5280 [pid 5280] <... rseq resumed>) = 0 [pid 5279] rt_sigprocmask(SIG_SETMASK, [], [pid 5280] set_robust_list(0x7fd868ec09a0, 24 [pid 5279] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5280] <... set_robust_list resumed>) = 0 [pid 5279] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5280] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5279] <... futex resumed>) = 0 [pid 5280] memfd_create("syzkaller", 0 [pid 5279] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5280] <... memfd_create resumed>) = 3 [pid 5280] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5280] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5280] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5280] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5280] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5280] close(3) = 0 [pid 5280] mkdir("./file0", 0777) = 0 [ 78.558958][ T5280] loop0: detected capacity change from 0 to 8192 [ 78.584366][ T5280] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 78.597458][ T5280] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5280] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5280] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5280] chdir("./file0") = 0 [pid 5280] ioctl(4, LOOP_CLR_FD) = 0 [pid 5280] close(4) = 0 [pid 5280] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5279] <... futex resumed>) = 0 [pid 5280] <... futex resumed>) = 1 [pid 5279] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5280] mkdir(".", 0777 [pid 5279] <... futex resumed>) = 0 [pid 5280] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5279] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 78.606708][ T5280] REISERFS (device loop0): using ordered data mode [ 78.613267][ T5280] reiserfs: using flush barriers [ 78.619606][ T5280] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 78.636364][ T5280] REISERFS (device loop0): checking transaction log (loop0) [ 78.644689][ T5280] REISERFS (device loop0): Using r5 hash to sort names [pid 5280] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5280] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5280] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5279] <... futex resumed>) = 0 [pid 5280] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5279] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5280] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5279] <... futex resumed>) = 0 [pid 5280] mkdir(".", 0777 [pid 5279] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5280] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5279] <... futex resumed>) = 0 [pid 5280] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5279] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5279] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5280] <... mount resumed>) = 0 [pid 5279] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5280] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5280] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5279] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5280] <... futex resumed>) = 0 [pid 5279] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5280] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5282 attached [pid 5282] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5279] <... clone3 resumed> => {parent_tid=[5282]}, 88) = 5282 [pid 5282] <... rseq resumed>) = 0 [pid 5282] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5282] rt_sigprocmask(SIG_SETMASK, [], [pid 5279] rt_sigprocmask(SIG_SETMASK, [], [pid 5282] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5279] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5282] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5279] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5282] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5279] <... futex resumed>) = 0 [pid 5282] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5279] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5282] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5282] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5282] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5279] <... futex resumed>) = 0 [pid 5279] exit_group(0) = ? [pid 5282] <... futex resumed>) = ? [pid 5280] <... futex resumed>) = ? [pid 5282] +++ exited with 0 +++ [pid 5280] +++ exited with 0 +++ [pid 5279] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5279, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- [ 78.670890][ T5280] reiserfs: enabling write barrier flush mode [ 78.679341][ T5280] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 78.701710][ T5280] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./53", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./53/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./53/binderfs") = 0 umount2("./53/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./53/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./53/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./53/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./53") = 0 mkdir("./54", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5283 attached [pid 5283] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5283] chdir("./54") = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5283 [pid 5283] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5283] setpgid(0, 0) = 0 [pid 5283] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5283] write(3, "1000", 4) = 4 [pid 5283] close(3) = 0 [pid 5283] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5283] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5283] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5283] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5283] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5283] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5283] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5283] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5284 attached [pid 5284] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5283] <... clone3 resumed> => {parent_tid=[5284]}, 88) = 5284 [pid 5284] <... rseq resumed>) = 0 [pid 5283] rt_sigprocmask(SIG_SETMASK, [], [pid 5284] set_robust_list(0x7fd868ec09a0, 24 [pid 5283] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5284] <... set_robust_list resumed>) = 0 [pid 5283] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5284] rt_sigprocmask(SIG_SETMASK, [], [pid 5283] <... futex resumed>) = 0 [pid 5284] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5283] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5284] memfd_create("syzkaller", 0) = 3 [pid 5284] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5284] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5284] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5284] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5284] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5284] close(3) = 0 [pid 5284] mkdir("./file0", 0777) = 0 [ 78.958717][ T5284] loop0: detected capacity change from 0 to 8192 [ 78.985045][ T5284] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 78.998176][ T5284] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5284] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5284] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5284] chdir("./file0") = 0 [pid 5284] ioctl(4, LOOP_CLR_FD) = 0 [pid 5284] close(4) = 0 [pid 5284] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5284] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5283] <... futex resumed>) = 0 [pid 5283] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5284] <... futex resumed>) = 0 [pid 5283] <... futex resumed>) = 1 [pid 5284] mkdir(".", 0777 [pid 5283] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5284] <... mkdir resumed>) = -1 EEXIST (File exists) [ 79.007477][ T5284] REISERFS (device loop0): using ordered data mode [ 79.014045][ T5284] reiserfs: using flush barriers [ 79.020576][ T5284] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 79.037380][ T5284] REISERFS (device loop0): checking transaction log (loop0) [ 79.045933][ T5284] REISERFS (device loop0): Using r5 hash to sort names [pid 5284] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5284] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5284] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5284] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5283] <... futex resumed>) = 0 [pid 5283] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5284] <... futex resumed>) = 0 [pid 5283] <... futex resumed>) = 1 [pid 5284] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5283] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5284] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5283] <... futex resumed>) = 0 [pid 5283] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5284] <... mount resumed>) = 0 [pid 5283] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5284] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5283] <... mprotect resumed>) = 0 [pid 5284] <... openat resumed>) = 5 [pid 5283] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5284] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5283] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5284] <... futex resumed>) = 0 [pid 5284] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5283] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5286 attached => {parent_tid=[5286]}, 88) = 5286 [pid 5286] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5286] set_robust_list(0x7fd868e9f9a0, 24 [pid 5283] rt_sigprocmask(SIG_SETMASK, [], [pid 5286] <... set_robust_list resumed>) = 0 [pid 5283] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5286] rt_sigprocmask(SIG_SETMASK, [], [pid 5283] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5286] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5283] <... futex resumed>) = 0 [pid 5286] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5283] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5286] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5286] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5283] <... futex resumed>) = 0 [pid 5286] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5283] exit_group(0 [pid 5286] <... futex resumed>) = ? [pid 5284] <... futex resumed>) = ? [pid 5283] <... exit_group resumed>) = ? [pid 5286] +++ exited with 0 +++ [pid 5284] +++ exited with 0 +++ [pid 5283] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5283, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- [ 79.079301][ T5284] reiserfs: enabling write barrier flush mode [ 79.087506][ T5284] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 79.119133][ T5284] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./54", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./54/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./54/binderfs") = 0 umount2("./54/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./54/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./54/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./54/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./54/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./54") = 0 mkdir("./55", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5287 ./strace-static-x86_64: Process 5287 attached [pid 5287] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5287] chdir("./55") = 0 [pid 5287] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5287] setpgid(0, 0) = 0 [pid 5287] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5287] write(3, "1000", 4) = 4 [pid 5287] close(3) = 0 [pid 5287] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5287] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5287] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5287] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5287] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5287] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5287] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5287] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5288 attached [pid 5288] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5287] <... clone3 resumed> => {parent_tid=[5288]}, 88) = 5288 [pid 5288] set_robust_list(0x7fd868ec09a0, 24 [pid 5287] rt_sigprocmask(SIG_SETMASK, [], [pid 5288] <... set_robust_list resumed>) = 0 [pid 5287] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5288] rt_sigprocmask(SIG_SETMASK, [], [pid 5287] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5288] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5288] memfd_create("syzkaller", 0 [pid 5287] <... futex resumed>) = 0 [pid 5287] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5288] <... memfd_create resumed>) = 3 [pid 5288] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5288] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5288] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5288] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5288] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5288] close(3) = 0 [pid 5288] mkdir("./file0", 0777) = 0 [ 79.407065][ T5288] loop0: detected capacity change from 0 to 8192 [ 79.423465][ T5288] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 79.436555][ T5288] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 79.445855][ T5288] REISERFS (device loop0): using ordered data mode [ 79.452398][ T5288] reiserfs: using flush barriers [pid 5288] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5288] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5288] chdir("./file0") = 0 [pid 5288] ioctl(4, LOOP_CLR_FD) = 0 [pid 5288] close(4) = 0 [pid 5288] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5287] <... futex resumed>) = 0 [pid 5287] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 79.458479][ T5288] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 79.475114][ T5288] REISERFS (device loop0): checking transaction log (loop0) [ 79.483389][ T5288] REISERFS (device loop0): Using r5 hash to sort names [pid 5288] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5287] <... futex resumed>) = 0 [pid 5287] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5288] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5288] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5288] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5287] <... futex resumed>) = 0 [pid 5287] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5288] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5287] <... futex resumed>) = 0 [pid 5288] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5287] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5287] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5287] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5287] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5287] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5290]}, 88) = 5290 ./strace-static-x86_64: Process 5290 attached [pid 5287] rt_sigprocmask(SIG_SETMASK, [], [pid 5290] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5287] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 79.526644][ T5288] reiserfs: enabling write barrier flush mode [ 79.535938][ T5288] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5290] <... rseq resumed>) = 0 [pid 5287] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5290] set_robust_list(0x7fd868e9f9a0, 24 [pid 5288] <... mount resumed>) = 0 [pid 5287] <... futex resumed>) = 0 [pid 5290] <... set_robust_list resumed>) = 0 [pid 5287] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5290] rt_sigprocmask(SIG_SETMASK, [], [pid 5288] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5290] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5290] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5288] <... openat resumed>) = 5 [pid 5288] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5290] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5288] <... futex resumed>) = 0 [pid 5288] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5290] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5287] <... futex resumed>) = 0 [pid 5290] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5287] exit_group(0) = ? [pid 5290] <... futex resumed>) = ? [pid 5288] <... futex resumed>) = ? [pid 5288] +++ exited with 0 +++ [pid 5290] +++ exited with 0 +++ [pid 5287] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5287, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- umount2("./55", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 79.579203][ T5288] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./55/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./55/binderfs") = 0 umount2("./55/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./55/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./55/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./55/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./55/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./55") = 0 mkdir("./56", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5291 attached , child_tidptr=0x5555565f3690) = 5291 [pid 5291] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5291] chdir("./56") = 0 [pid 5291] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5291] setpgid(0, 0) = 0 [pid 5291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5291] write(3, "1000", 4) = 4 [pid 5291] close(3) = 0 [pid 5291] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5291] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5291] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5291] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5291] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5291] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5292 attached => {parent_tid=[5292]}, 88) = 5292 [pid 5292] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5291] rt_sigprocmask(SIG_SETMASK, [], [pid 5292] <... rseq resumed>) = 0 [pid 5292] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5292] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5291] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5292] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5291] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5292] <... futex resumed>) = 0 [pid 5291] <... futex resumed>) = 1 [pid 5292] memfd_create("syzkaller", 0 [pid 5291] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5292] <... memfd_create resumed>) = 3 [pid 5292] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5292] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5292] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5292] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5292] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5292] close(3) = 0 [pid 5292] mkdir("./file0", 0777) = 0 [ 79.850238][ T5292] loop0: detected capacity change from 0 to 8192 [ 79.866702][ T5292] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 79.879704][ T5292] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 79.888997][ T5292] REISERFS (device loop0): using ordered data mode [ 79.895542][ T5292] reiserfs: using flush barriers [pid 5292] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5292] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5292] chdir("./file0") = 0 [pid 5292] ioctl(4, LOOP_CLR_FD) = 0 [pid 5292] close(4) = 0 [pid 5292] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5291] <... futex resumed>) = 0 [pid 5291] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5292] mkdir(".", 0777 [pid 5291] <... futex resumed>) = 0 [pid 5292] <... mkdir resumed>) = -1 EEXIST (File exists) [ 79.902196][ T5292] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 79.918591][ T5292] REISERFS (device loop0): checking transaction log (loop0) [ 79.927089][ T5292] REISERFS (device loop0): Using r5 hash to sort names [pid 5292] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5291] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5292] <... mount resumed>) = 0 [pid 5292] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5292] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5291] <... futex resumed>) = 0 [pid 5292] mkdir(".", 0777 [pid 5291] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5292] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5291] <... futex resumed>) = 0 [pid 5292] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5291] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5291] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5291] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5294 attached [pid 5294] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5291] <... clone3 resumed> => {parent_tid=[5294]}, 88) = 5294 [pid 5294] set_robust_list(0x7fd868e9f9a0, 24 [pid 5291] rt_sigprocmask(SIG_SETMASK, [], [pid 5294] <... set_robust_list resumed>) = 0 [pid 5291] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5294] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5291] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5294] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5291] <... futex resumed>) = 0 [pid 5292] <... mount resumed>) = 0 [pid 5291] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5292] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5294] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5294] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5292] <... openat resumed>) = 5 [pid 5294] <... futex resumed>) = 1 [pid 5294] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5292] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5292] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5291] <... futex resumed>) = 0 [pid 5291] exit_group(0 [pid 5294] <... futex resumed>) = ? [pid 5292] <... futex resumed>) = ? [pid 5291] <... exit_group resumed>) = ? [pid 5294] +++ exited with 0 +++ [pid 5292] +++ exited with 0 +++ [pid 5291] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5291, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./56", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 79.982961][ T5292] reiserfs: enabling write barrier flush mode [ 79.992089][ T5292] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 80.015053][ T5292] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./56/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./56/binderfs") = 0 umount2("./56/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./56/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./56/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./56/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./56") = 0 mkdir("./57", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5295 ./strace-static-x86_64: Process 5295 attached [pid 5295] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5295] chdir("./57") = 0 [pid 5295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5295] setpgid(0, 0) = 0 [pid 5295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5295] write(3, "1000", 4) = 4 [pid 5295] close(3) = 0 [pid 5295] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5295] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5295] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5295] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5295] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5295] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5296 attached [pid 5296] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5295] <... clone3 resumed> => {parent_tid=[5296]}, 88) = 5296 [pid 5295] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5295] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5296] <... rseq resumed>) = 0 [pid 5296] set_robust_list(0x7fd868ec09a0, 24 [pid 5295] <... futex resumed>) = 0 [pid 5296] <... set_robust_list resumed>) = 0 [pid 5295] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5296] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5296] memfd_create("syzkaller", 0) = 3 [pid 5296] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5296] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5296] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5296] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5296] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5296] close(3) = 0 [pid 5296] mkdir("./file0", 0777) = 0 [ 80.289457][ T5296] loop0: detected capacity change from 0 to 8192 [ 80.315495][ T5296] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 80.328590][ T5296] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5296] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5296] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5296] chdir("./file0") = 0 [pid 5296] ioctl(4, LOOP_CLR_FD) = 0 [pid 5296] close(4) = 0 [pid 5296] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5295] <... futex resumed>) = 0 [pid 5296] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5295] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5296] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5295] <... futex resumed>) = 0 [ 80.338064][ T5296] REISERFS (device loop0): using ordered data mode [ 80.344705][ T5296] reiserfs: using flush barriers [ 80.351322][ T5296] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 80.367859][ T5296] REISERFS (device loop0): checking transaction log (loop0) [ 80.376307][ T5296] REISERFS (device loop0): Using r5 hash to sort names [pid 5296] mkdir(".", 0777 [pid 5295] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5296] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5296] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5296] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5296] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5295] <... futex resumed>) = 0 [pid 5295] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5296] <... futex resumed>) = 1 [pid 5295] <... futex resumed>) = 0 [pid 5296] mkdir(".", 0777 [pid 5295] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5296] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5295] <... futex resumed>) = 0 [pid 5295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5296] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5295] <... mmap resumed>) = 0x7fd868e7f000 [pid 5295] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5296] <... mount resumed>) = 0 [pid 5295] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5296] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5295] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5296] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5298 attached [pid 5298] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5295] <... clone3 resumed> => {parent_tid=[5298]}, 88) = 5298 [pid 5298] <... rseq resumed>) = 0 [pid 5296] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5298] set_robust_list(0x7fd868e9f9a0, 24 [pid 5295] rt_sigprocmask(SIG_SETMASK, [], [pid 5298] <... set_robust_list resumed>) = 0 [pid 5298] rt_sigprocmask(SIG_SETMASK, [], [pid 5296] <... futex resumed>) = 0 [pid 5295] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5296] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5298] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5295] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5298] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5295] <... futex resumed>) = 0 [pid 5295] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5298] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5298] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5295] <... futex resumed>) = 0 [pid 5295] exit_group(0 [pid 5296] <... futex resumed>) = ? [pid 5295] <... exit_group resumed>) = ? [pid 5298] <... futex resumed>) = ? [pid 5296] +++ exited with 0 +++ [pid 5298] +++ exited with 0 +++ [pid 5295] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5295, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./57", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./57/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./57/binderfs") = 0 [ 80.420966][ T5296] reiserfs: enabling write barrier flush mode [ 80.429423][ T5296] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 80.451873][ T5296] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./57/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./57/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./57/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./57/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./57/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./57") = 0 mkdir("./58", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5299 attached [pid 5299] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5299 [pid 5299] <... set_robust_list resumed>) = 0 [pid 5299] chdir("./58") = 0 [pid 5299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5299] setpgid(0, 0) = 0 [pid 5299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5299] write(3, "1000", 4) = 4 [pid 5299] close(3) = 0 [pid 5299] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5299] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5299] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5299] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5299] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5299] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5299] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5299] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5300 attached => {parent_tid=[5300]}, 88) = 5300 [pid 5300] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5300] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5300] rt_sigprocmask(SIG_SETMASK, [], [pid 5299] rt_sigprocmask(SIG_SETMASK, [], [pid 5300] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5300] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5299] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5299] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5300] <... futex resumed>) = 0 [pid 5299] <... futex resumed>) = 1 [pid 5299] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5300] memfd_create("syzkaller", 0) = 3 [pid 5300] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5300] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5300] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5300] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5300] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5300] close(3) = 0 [pid 5300] mkdir("./file0", 0777) = 0 [ 80.698333][ T5300] loop0: detected capacity change from 0 to 8192 [ 80.708492][ T5300] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 80.721538][ T5300] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 80.730754][ T5300] REISERFS (device loop0): using ordered data mode [ 80.737415][ T5300] reiserfs: using flush barriers [pid 5300] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5300] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5300] chdir("./file0") = 0 [pid 5300] ioctl(4, LOOP_CLR_FD) = 0 [pid 5300] close(4) = 0 [pid 5300] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5299] <... futex resumed>) = 0 [pid 5300] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5299] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5300] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5300] mkdir(".", 0777 [pid 5299] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5300] <... mkdir resumed>) = -1 EEXIST (File exists) [ 80.743698][ T5300] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 80.760393][ T5300] REISERFS (device loop0): checking transaction log (loop0) [ 80.768856][ T5300] REISERFS (device loop0): Using r5 hash to sort names [pid 5300] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5300] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5300] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5299] <... futex resumed>) = 0 [pid 5300] mkdir(".", 0777 [pid 5299] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5300] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5300] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5299] <... futex resumed>) = 0 [pid 5299] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5299] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5299] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5299] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5299] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5302 attached [pid 5300] <... mount resumed>) = 0 [pid 5299] <... clone3 resumed> => {parent_tid=[5302]}, 88) = 5302 [pid 5302] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5302] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5302] rt_sigprocmask(SIG_SETMASK, [], [pid 5300] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5299] rt_sigprocmask(SIG_SETMASK, [], [pid 5302] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5300] <... openat resumed>) = 5 [pid 5299] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5302] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5299] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5302] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5300] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5299] <... futex resumed>) = 0 [pid 5300] <... futex resumed>) = 0 [pid 5299] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5302] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5300] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5302] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5299] <... futex resumed>) = 0 [pid 5302] <... futex resumed>) = 1 [pid 5299] exit_group(0 [pid 5302] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5300] <... futex resumed>) = ? [pid 5299] <... exit_group resumed>) = ? [pid 5302] <... futex resumed>) = ? [pid 5300] +++ exited with 0 +++ [pid 5302] +++ exited with 0 +++ [pid 5299] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5299, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./58", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 80.824742][ T5300] reiserfs: enabling write barrier flush mode [ 80.833241][ T5300] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 80.855513][ T5300] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./58/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./58/binderfs") = 0 umount2("./58/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./58/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./58/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./58/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./58/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./58") = 0 mkdir("./59", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5303 attached , child_tidptr=0x5555565f3690) = 5303 [pid 5303] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5303] chdir("./59") = 0 [pid 5303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5303] setpgid(0, 0) = 0 [pid 5303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5303] write(3, "1000", 4) = 4 [pid 5303] close(3) = 0 [pid 5303] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5303] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5303] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5303] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5303] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5303] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5303] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5303] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5304 attached [pid 5304] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5303] <... clone3 resumed> => {parent_tid=[5304]}, 88) = 5304 [pid 5304] <... rseq resumed>) = 0 [pid 5303] rt_sigprocmask(SIG_SETMASK, [], [pid 5304] set_robust_list(0x7fd868ec09a0, 24 [pid 5303] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5304] <... set_robust_list resumed>) = 0 [pid 5303] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5304] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5303] <... futex resumed>) = 0 [pid 5304] memfd_create("syzkaller", 0 [pid 5303] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5304] <... memfd_create resumed>) = 3 [pid 5304] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5304] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5304] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5304] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5304] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5304] close(3) = 0 [pid 5304] mkdir("./file0", 0777) = 0 [ 81.144083][ T5304] loop0: detected capacity change from 0 to 8192 [ 81.158928][ T5304] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 81.172029][ T5304] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 81.181573][ T5304] REISERFS (device loop0): using ordered data mode [ 81.188073][ T5304] reiserfs: using flush barriers [pid 5304] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5304] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5304] chdir("./file0") = 0 [pid 5304] ioctl(4, LOOP_CLR_FD) = 0 [pid 5304] close(4) = 0 [pid 5304] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5303] <... futex resumed>) = 0 [pid 5303] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5304] mkdir(".", 0777 [pid 5303] <... futex resumed>) = 0 [pid 5304] <... mkdir resumed>) = -1 EEXIST (File exists) [ 81.194399][ T5304] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 81.210782][ T5304] REISERFS (device loop0): checking transaction log (loop0) [ 81.219443][ T5304] REISERFS (device loop0): Using r5 hash to sort names [pid 5303] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5304] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5304] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5304] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5303] <... futex resumed>) = 0 [pid 5304] <... futex resumed>) = 1 [pid 5303] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5304] mkdir(".", 0777 [pid 5303] <... futex resumed>) = 0 [pid 5304] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5303] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5304] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5303] <... futex resumed>) = 0 [pid 5303] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5303] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5303] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5303] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5306 attached => {parent_tid=[5306]}, 88) = 5306 [pid 5306] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5303] rt_sigprocmask(SIG_SETMASK, [], [pid 5306] <... rseq resumed>) = 0 [pid 5306] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5306] rt_sigprocmask(SIG_SETMASK, [], [pid 5303] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5306] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5303] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5303] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5306] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5306] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5304] <... mount resumed>) = 0 [pid 5306] <... futex resumed>) = 1 [pid 5303] <... futex resumed>) = 0 [pid 5306] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5304] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5304] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5303] exit_group(0 [pid 5306] <... futex resumed>) = ? [pid 5306] +++ exited with 0 +++ [pid 5304] +++ exited with 0 +++ [pid 5303] <... exit_group resumed>) = ? [pid 5303] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5303, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./59", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 81.255665][ T5304] reiserfs: enabling write barrier flush mode [ 81.270343][ T5304] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 81.294542][ T5304] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./59/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./59/binderfs") = 0 umount2("./59/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./59/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./59/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./59/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./59/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./59") = 0 mkdir("./60", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5307 attached , child_tidptr=0x5555565f3690) = 5307 [pid 5307] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5307] chdir("./60") = 0 [pid 5307] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5307] setpgid(0, 0) = 0 [pid 5307] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5307] write(3, "1000", 4) = 4 [pid 5307] close(3) = 0 [pid 5307] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5307] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5307] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5307] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5307] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5307] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5307] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5307] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5308 attached [pid 5308] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5308] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5308] rt_sigprocmask(SIG_SETMASK, [], [pid 5307] <... clone3 resumed> => {parent_tid=[5308]}, 88) = 5308 [pid 5308] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5307] rt_sigprocmask(SIG_SETMASK, [], [pid 5308] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5307] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5307] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5308] <... futex resumed>) = 0 [pid 5308] memfd_create("syzkaller", 0 [pid 5307] <... futex resumed>) = 1 [pid 5307] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5308] <... memfd_create resumed>) = 3 [pid 5308] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5308] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5308] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5308] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5308] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5308] close(3) = 0 [pid 5308] mkdir("./file0", 0777) = 0 [ 81.556440][ T5308] loop0: detected capacity change from 0 to 8192 [ 81.571003][ T5308] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 81.584085][ T5308] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 81.593408][ T5308] REISERFS (device loop0): using ordered data mode [ 81.599917][ T5308] reiserfs: using flush barriers [pid 5308] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5308] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5308] chdir("./file0") = 0 [pid 5308] ioctl(4, LOOP_CLR_FD) = 0 [ 81.606119][ T5308] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 81.622517][ T5308] REISERFS (device loop0): checking transaction log (loop0) [ 81.630626][ T5308] REISERFS (device loop0): Using r5 hash to sort names [pid 5308] close(4) = 0 [pid 5308] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5307] <... futex resumed>) = 0 [pid 5308] <... futex resumed>) = 1 [pid 5307] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5308] mkdir(".", 0777 [pid 5307] <... futex resumed>) = 0 [pid 5308] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5307] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5308] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5308] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5308] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5307] <... futex resumed>) = 0 [pid 5308] <... futex resumed>) = 1 [pid 5307] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5308] mkdir(".", 0777 [pid 5307] <... futex resumed>) = 0 [pid 5308] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5307] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5308] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5307] <... futex resumed>) = 0 [pid 5307] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5307] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5307] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5308] <... mount resumed>) = 0 [pid 5307] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5308] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5307] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5308] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5310 attached [pid 5308] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5307] <... clone3 resumed> => {parent_tid=[5310]}, 88) = 5310 [pid 5310] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5308] <... futex resumed>) = 0 [pid 5307] rt_sigprocmask(SIG_SETMASK, [], [pid 5308] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5307] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5307] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5310] <... rseq resumed>) = 0 [pid 5307] <... futex resumed>) = 0 [pid 5307] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5310] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5310] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5310] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5310] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5307] <... futex resumed>) = 0 [pid 5310] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5307] exit_group(0 [pid 5310] <... futex resumed>) = ? [pid 5308] <... futex resumed>) = ? [pid 5310] +++ exited with 0 +++ [pid 5308] +++ exited with 0 +++ [pid 5307] <... exit_group resumed>) = ? [pid 5307] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5307, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./60", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./60/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 81.662070][ T5308] reiserfs: enabling write barrier flush mode [ 81.670160][ T5308] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 81.697990][ T5308] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./60/binderfs") = 0 umount2("./60/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./60/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./60/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./60/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./60") = 0 mkdir("./61", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5311 attached , child_tidptr=0x5555565f3690) = 5311 [pid 5311] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5311] chdir("./61") = 0 [pid 5311] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5311] setpgid(0, 0) = 0 [pid 5311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5311] write(3, "1000", 4) = 4 [pid 5311] close(3) = 0 [pid 5311] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5311] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5311] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5311] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5311] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5311] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5311] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5311] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5312 attached [pid 5312] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5311] <... clone3 resumed> => {parent_tid=[5312]}, 88) = 5312 [pid 5312] set_robust_list(0x7fd868ec09a0, 24 [pid 5311] rt_sigprocmask(SIG_SETMASK, [], [pid 5312] <... set_robust_list resumed>) = 0 [pid 5312] rt_sigprocmask(SIG_SETMASK, [], [pid 5311] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5312] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5312] memfd_create("syzkaller", 0 [pid 5311] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5311] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5312] <... memfd_create resumed>) = 3 [pid 5312] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5312] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5312] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5312] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5312] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5312] close(3) = 0 [pid 5312] mkdir("./file0", 0777) = 0 [ 81.978160][ T5312] loop0: detected capacity change from 0 to 8192 [ 81.999726][ T5312] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 82.012874][ T5312] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5312] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5312] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5312] chdir("./file0") = 0 [pid 5312] ioctl(4, LOOP_CLR_FD) = 0 [pid 5312] close(4) = 0 [pid 5312] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5312] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5311] <... futex resumed>) = 0 [pid 5311] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5312] <... futex resumed>) = 0 [pid 5311] <... futex resumed>) = 1 [pid 5312] mkdir(".", 0777 [pid 5311] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5312] <... mkdir resumed>) = -1 EEXIST (File exists) [ 82.022148][ T5312] REISERFS (device loop0): using ordered data mode [ 82.028674][ T5312] reiserfs: using flush barriers [ 82.035010][ T5312] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 82.051664][ T5312] REISERFS (device loop0): checking transaction log (loop0) [ 82.059890][ T5312] REISERFS (device loop0): Using r5 hash to sort names [pid 5312] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5312] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5312] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5312] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5311] <... futex resumed>) = 0 [pid 5311] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5312] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5311] <... futex resumed>) = 0 [pid 5312] mkdir(".", 0777 [pid 5311] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5312] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5311] <... futex resumed>) = 0 [pid 5311] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5312] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5311] <... mmap resumed>) = 0x7fd868e7f000 [pid 5311] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5312] <... mount resumed>) = 0 [pid 5311] <... mprotect resumed>) = 0 [pid 5312] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5312] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5312] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5311] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5311] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5314 attached => {parent_tid=[5314]}, 88) = 5314 [pid 5314] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5311] rt_sigprocmask(SIG_SETMASK, [], [pid 5314] <... rseq resumed>) = 0 [pid 5311] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5314] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5311] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5311] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5314] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5314] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5314] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5311] <... futex resumed>) = 0 [pid 5314] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5311] exit_group(0 [pid 5314] <... futex resumed>) = ? [pid 5312] <... futex resumed>) = ? [pid 5314] +++ exited with 0 +++ [pid 5312] +++ exited with 0 +++ [pid 5311] <... exit_group resumed>) = ? [pid 5311] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5311, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 82.105236][ T5312] reiserfs: enabling write barrier flush mode [ 82.113927][ T5312] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 82.135180][ T5312] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./61", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./61/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./61/binderfs") = 0 umount2("./61/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./61/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./61/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./61/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./61") = 0 mkdir("./62", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5315 attached [pid 5315] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5315 [pid 5315] <... set_robust_list resumed>) = 0 [pid 5315] chdir("./62") = 0 [pid 5315] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5315] setpgid(0, 0) = 0 [pid 5315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5315] write(3, "1000", 4) = 4 [pid 5315] close(3) = 0 [pid 5315] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5315] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5315] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5315] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5315] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5315] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5315] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5315] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5316 attached [pid 5316] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5315] <... clone3 resumed> => {parent_tid=[5316]}, 88) = 5316 [pid 5316] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5315] rt_sigprocmask(SIG_SETMASK, [], [pid 5316] rt_sigprocmask(SIG_SETMASK, [], [pid 5315] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5316] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5315] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5316] memfd_create("syzkaller", 0 [pid 5315] <... futex resumed>) = 0 [pid 5315] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5316] <... memfd_create resumed>) = 3 [pid 5316] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5316] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5316] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5316] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5316] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5316] close(3) = 0 [pid 5316] mkdir("./file0", 0777) = 0 [ 82.401230][ T5316] loop0: detected capacity change from 0 to 8192 [ 82.417050][ T5316] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 82.430189][ T5316] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 82.439519][ T5316] REISERFS (device loop0): using ordered data mode [ 82.446075][ T5316] reiserfs: using flush barriers [pid 5316] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5316] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5316] chdir("./file0") = 0 [pid 5316] ioctl(4, LOOP_CLR_FD) = 0 [pid 5316] close(4) = 0 [pid 5316] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5315] <... futex resumed>) = 0 [pid 5316] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5315] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5315] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5316] <... futex resumed>) = 0 [ 82.452458][ T5316] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 82.468851][ T5316] REISERFS (device loop0): checking transaction log (loop0) [ 82.477420][ T5316] REISERFS (device loop0): Using r5 hash to sort names [pid 5316] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5316] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5316] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5316] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5316] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5315] <... futex resumed>) = 0 [pid 5315] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5316] <... futex resumed>) = 0 [pid 5315] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5316] mkdir(".", 0777 [pid 5315] <... futex resumed>) = 0 [pid 5316] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5315] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5316] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5315] <... mmap resumed>) = 0x7fd868e7f000 [pid 5315] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5315] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5316] <... mount resumed>) = 0 [pid 5315] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5316] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5315] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5316] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5318 attached [pid 5318] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5316] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5315] <... clone3 resumed> => {parent_tid=[5318]}, 88) = 5318 [pid 5318] set_robust_list(0x7fd868e9f9a0, 24 [pid 5316] <... futex resumed>) = 0 [pid 5315] rt_sigprocmask(SIG_SETMASK, [], [pid 5318] <... set_robust_list resumed>) = 0 [pid 5316] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5315] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5318] rt_sigprocmask(SIG_SETMASK, [], [pid 5315] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5318] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5315] <... futex resumed>) = 0 [pid 5318] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5315] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5318] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5318] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5315] <... futex resumed>) = 0 [pid 5318] <... futex resumed>) = 1 [pid 5315] exit_group(0 [pid 5318] +++ exited with 0 +++ [pid 5316] <... futex resumed>) = ? [pid 5315] <... exit_group resumed>) = ? [pid 5316] +++ exited with 0 +++ [pid 5315] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5315, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./62", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 82.506981][ T5316] reiserfs: enabling write barrier flush mode [ 82.519686][ T5316] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 82.540907][ T5316] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./62/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./62/binderfs") = 0 umount2("./62/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./62/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./62/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./62/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./62/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./62") = 0 mkdir("./63", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5319 ./strace-static-x86_64: Process 5319 attached [pid 5319] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5319] chdir("./63") = 0 [pid 5319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5319] setpgid(0, 0) = 0 [pid 5319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5319] write(3, "1000", 4) = 4 [pid 5319] close(3) = 0 [pid 5319] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5319] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5319] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5319] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5319] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5319] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5319] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5319] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5320 attached [pid 5320] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5320] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5320] rt_sigprocmask(SIG_SETMASK, [], [pid 5319] <... clone3 resumed> => {parent_tid=[5320]}, 88) = 5320 [pid 5320] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5320] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5319] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5319] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5320] <... futex resumed>) = 0 [pid 5320] memfd_create("syzkaller", 0 [pid 5319] <... futex resumed>) = 1 [pid 5319] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5320] <... memfd_create resumed>) = 3 [pid 5320] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5320] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5320] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5320] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5320] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5320] close(3) = 0 [pid 5320] mkdir("./file0", 0777) = 0 [ 82.833488][ T5320] loop0: detected capacity change from 0 to 8192 [ 82.848839][ T5320] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 82.861882][ T5320] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 82.871084][ T5320] REISERFS (device loop0): using ordered data mode [ 82.877655][ T5320] reiserfs: using flush barriers [pid 5320] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5320] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5320] chdir("./file0") = 0 [pid 5320] ioctl(4, LOOP_CLR_FD) = 0 [pid 5320] close(4) = 0 [pid 5320] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5319] <... futex resumed>) = 0 [pid 5320] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5319] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5320] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5319] <... futex resumed>) = 0 [pid 5320] mkdir(".", 0777 [pid 5319] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5320] <... mkdir resumed>) = -1 EEXIST (File exists) [ 82.883951][ T5320] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 82.900515][ T5320] REISERFS (device loop0): checking transaction log (loop0) [ 82.908920][ T5320] REISERFS (device loop0): Using r5 hash to sort names [pid 5320] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5320] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5320] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5319] <... futex resumed>) = 0 [pid 5319] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5319] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5319] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5320] <... futex resumed>) = 1 [pid 5319] <... mmap resumed>) = 0x7fd868e7f000 [pid 5319] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5319] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5319] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5322 attached [pid 5320] mkdir(".", 0777 [pid 5319] <... clone3 resumed> => {parent_tid=[5322]}, 88) = 5322 [pid 5322] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5320] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5322] <... rseq resumed>) = 0 [pid 5320] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5319] rt_sigprocmask(SIG_SETMASK, [], [pid 5322] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5319] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5322] rt_sigprocmask(SIG_SETMASK, [], [pid 5319] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5322] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5319] <... futex resumed>) = 0 [ 82.934068][ T5320] reiserfs: enabling write barrier flush mode [ 82.943137][ T5320] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5322] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5319] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5320] <... mount resumed>) = 0 [pid 5320] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5322] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5320] <... openat resumed>) = 5 [pid 5320] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5322] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5320] <... futex resumed>) = 0 [pid 5319] <... futex resumed>) = 0 [pid 5322] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5320] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5319] exit_group(0 [pid 5320] <... futex resumed>) = ? [pid 5322] <... futex resumed>) = ? [pid 5319] <... exit_group resumed>) = ? [pid 5320] +++ exited with 0 +++ [pid 5322] +++ exited with 0 +++ [pid 5319] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5319, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./63", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./63/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./63/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./63/binderfs") = 0 [ 82.982582][ T5320] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./63/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./63/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./63/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./63/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./63") = 0 mkdir("./64", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5323 attached , child_tidptr=0x5555565f3690) = 5323 [pid 5323] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5323] chdir("./64") = 0 [pid 5323] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5323] setpgid(0, 0) = 0 [pid 5323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5323] write(3, "1000", 4) = 4 [pid 5323] close(3) = 0 [pid 5323] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5323] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5323] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5323] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5323] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5323] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5323] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5323] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5324 attached [pid 5324] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5324] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5323] <... clone3 resumed> => {parent_tid=[5324]}, 88) = 5324 [pid 5324] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5324] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5323] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5323] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5324] <... futex resumed>) = 0 [pid 5323] <... futex resumed>) = 1 [pid 5324] memfd_create("syzkaller", 0 [pid 5323] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5324] <... memfd_create resumed>) = 3 [pid 5324] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5324] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5324] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5324] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5324] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5324] close(3) = 0 [pid 5324] mkdir("./file0", 0777) = 0 [ 83.234919][ T5324] loop0: detected capacity change from 0 to 8192 [ 83.255294][ T5324] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 83.268487][ T5324] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 83.277781][ T5324] REISERFS (device loop0): using ordered data mode [pid 5324] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5324] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5324] chdir("./file0") = 0 [pid 5324] ioctl(4, LOOP_CLR_FD) = 0 [pid 5324] close(4) = 0 [pid 5324] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5323] <... futex resumed>) = 0 [pid 5323] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5324] mkdir(".", 0777 [pid 5323] <... futex resumed>) = 0 [ 83.284354][ T5324] reiserfs: using flush barriers [ 83.290841][ T5324] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 83.307506][ T5324] REISERFS (device loop0): checking transaction log (loop0) [ 83.316200][ T5324] REISERFS (device loop0): Using r5 hash to sort names [pid 5324] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5323] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5324] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5324] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5324] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5323] <... futex resumed>) = 0 [pid 5324] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5323] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5324] <... futex resumed>) = 0 [pid 5323] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5324] mkdir(".", 0777 [pid 5323] <... futex resumed>) = 0 [pid 5324] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5324] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5323] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5323] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 83.343469][ T5324] reiserfs: enabling write barrier flush mode [ 83.354690][ T5324] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5323] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5324] <... mount resumed>) = 0 [pid 5324] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5323] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5323] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5326 attached [pid 5324] <... openat resumed>) = 5 [pid 5326] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5326] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5324] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5323] <... clone3 resumed> => {parent_tid=[5326]}, 88) = 5326 [pid 5326] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5326] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5324] <... futex resumed>) = 0 [pid 5324] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5323] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5323] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5326] <... futex resumed>) = 0 [pid 5323] <... futex resumed>) = 1 [pid 5326] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5323] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5326] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5326] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5323] <... futex resumed>) = 0 [pid 5326] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5323] exit_group(0 [pid 5326] <... futex resumed>) = ? [pid 5323] <... exit_group resumed>) = ? [pid 5326] +++ exited with 0 +++ [pid 5324] <... futex resumed>) = ? [pid 5324] +++ exited with 0 +++ [pid 5323] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5323, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./64", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./64/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./64/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./64/binderfs") = 0 [ 83.386335][ T5324] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./64/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./64/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./64/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./64/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./64") = 0 mkdir("./65", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5327 attached , child_tidptr=0x5555565f3690) = 5327 [pid 5327] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5327] chdir("./65") = 0 [pid 5327] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5327] setpgid(0, 0) = 0 [pid 5327] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5327] write(3, "1000", 4) = 4 [pid 5327] close(3) = 0 [pid 5327] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5327] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5327] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5327] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5327] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5327] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5327] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5327] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5328 attached => {parent_tid=[5328]}, 88) = 5328 [pid 5328] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5328] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5328] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5328] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5327] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5327] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5328] <... futex resumed>) = 0 [pid 5327] <... futex resumed>) = 1 [pid 5328] memfd_create("syzkaller", 0 [pid 5327] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5328] <... memfd_create resumed>) = 3 [pid 5328] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5328] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5328] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5328] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5328] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5328] close(3) = 0 [pid 5328] mkdir("./file0", 0777) = 0 [ 83.682719][ T5328] loop0: detected capacity change from 0 to 8192 [ 83.700947][ T5328] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 83.714078][ T5328] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 83.723368][ T5328] REISERFS (device loop0): using ordered data mode [pid 5328] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5328] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5328] chdir("./file0") = 0 [pid 5328] ioctl(4, LOOP_CLR_FD) = 0 [pid 5328] close(4) = 0 [pid 5328] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5328] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5327] <... futex resumed>) = 0 [pid 5327] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5328] <... futex resumed>) = 0 [pid 5328] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5327] <... futex resumed>) = 1 [pid 5327] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 83.730492][ T5328] reiserfs: using flush barriers [ 83.736858][ T5328] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 83.753382][ T5328] REISERFS (device loop0): checking transaction log (loop0) [ 83.762634][ T5328] REISERFS (device loop0): Using r5 hash to sort names [pid 5328] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5328] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5328] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5327] <... futex resumed>) = 0 [pid 5328] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5327] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5328] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5327] <... futex resumed>) = 0 [pid 5328] mkdir(".", 0777 [pid 5327] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5328] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5327] <... futex resumed>) = 0 [pid 5328] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5327] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5327] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5328] <... mount resumed>) = 0 [pid 5327] <... mprotect resumed>) = 0 [pid 5328] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5327] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5328] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5327] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5328] <... futex resumed>) = 0 [pid 5327] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5328] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5330 attached [pid 5330] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5327] <... clone3 resumed> => {parent_tid=[5330]}, 88) = 5330 [pid 5327] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5327] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5330] <... rseq resumed>) = 0 [pid 5327] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5330] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5330] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5330] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5330] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5327] <... futex resumed>) = 0 [pid 5330] <... futex resumed>) = 1 [pid 5330] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5327] exit_group(0 [pid 5328] <... futex resumed>) = ? [pid 5327] <... exit_group resumed>) = ? [pid 5330] <... futex resumed>) = ? [pid 5328] +++ exited with 0 +++ [ 83.810208][ T5328] reiserfs: enabling write barrier flush mode [ 83.818598][ T5328] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 83.846828][ T5328] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5330] +++ exited with 0 +++ [pid 5327] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5327, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./65", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./65/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./65/binderfs") = 0 umount2("./65/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./65/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./65/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./65/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./65/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./65") = 0 mkdir("./66", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5331 attached , child_tidptr=0x5555565f3690) = 5331 [pid 5331] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5331] chdir("./66") = 0 [pid 5331] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5331] setpgid(0, 0) = 0 [pid 5331] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5331] write(3, "1000", 4) = 4 [pid 5331] close(3) = 0 [pid 5331] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5331] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5331] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5331] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5331] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5331] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5331] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5331] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5332 attached => {parent_tid=[5332]}, 88) = 5332 [pid 5332] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5332] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5331] rt_sigprocmask(SIG_SETMASK, [], [pid 5332] rt_sigprocmask(SIG_SETMASK, [], [pid 5331] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5332] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5332] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5331] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5332] memfd_create("syzkaller", 0 [pid 5331] <... futex resumed>) = 0 [pid 5331] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5332] <... memfd_create resumed>) = 3 [pid 5332] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5332] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5332] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5332] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5332] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5332] close(3) = 0 [pid 5332] mkdir("./file0", 0777) = 0 [ 84.182951][ T5332] loop0: detected capacity change from 0 to 8192 [ 84.207284][ T5332] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 84.220315][ T5332] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5332] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5332] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5332] chdir("./file0") = 0 [pid 5332] ioctl(4, LOOP_CLR_FD) = 0 [pid 5332] close(4) = 0 [pid 5332] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5331] <... futex resumed>) = 0 [pid 5331] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 84.229672][ T5332] REISERFS (device loop0): using ordered data mode [ 84.236377][ T5332] reiserfs: using flush barriers [ 84.242969][ T5332] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 84.259550][ T5332] REISERFS (device loop0): checking transaction log (loop0) [ 84.267884][ T5332] REISERFS (device loop0): Using r5 hash to sort names [pid 5332] mkdir(".", 0777 [pid 5331] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5332] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5332] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5332] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5332] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5331] <... futex resumed>) = 0 [pid 5332] <... futex resumed>) = 1 [pid 5331] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5332] mkdir(".", 0777 [pid 5331] <... futex resumed>) = 0 [pid 5332] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5331] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5332] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5331] <... futex resumed>) = 0 [pid 5331] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5331] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5332] <... mount resumed>) = 0 [pid 5331] <... mprotect resumed>) = 0 [pid 5332] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5331] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5332] <... openat resumed>) = 5 [pid 5331] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5332] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5331] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5332] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5334 attached [pid 5332] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5334] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5331] <... clone3 resumed> => {parent_tid=[5334]}, 88) = 5334 [pid 5334] <... rseq resumed>) = 0 [pid 5331] rt_sigprocmask(SIG_SETMASK, [], [pid 5334] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5331] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5334] rt_sigprocmask(SIG_SETMASK, [], [pid 5331] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5331] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5334] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5334] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5334] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5331] <... futex resumed>) = 0 [pid 5334] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5331] exit_group(0 [pid 5332] <... futex resumed>) = ? [pid 5332] +++ exited with 0 +++ [pid 5334] <... futex resumed>) = ? [pid 5331] <... exit_group resumed>) = ? [pid 5334] +++ exited with 0 +++ [pid 5331] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5331, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./66", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./66/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./66/binderfs") = 0 [ 84.291927][ T5332] reiserfs: enabling write barrier flush mode [ 84.301593][ T5332] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 84.324203][ T5332] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./66/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./66/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./66/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./66/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./66") = 0 mkdir("./67", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5335 attached , child_tidptr=0x5555565f3690) = 5335 [pid 5335] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5335] chdir("./67") = 0 [pid 5335] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5335] setpgid(0, 0) = 0 [pid 5335] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5335] write(3, "1000", 4) = 4 [pid 5335] close(3) = 0 [pid 5335] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5335] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5335] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5335] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5335] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5335] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5335] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5335] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0} => {parent_tid=[5336]}, 88) = 5336 [pid 5335] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5336 attached NULL, 8) = 0 [pid 5335] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5336] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5335] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5336] <... rseq resumed>) = 0 [pid 5336] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5336] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5336] memfd_create("syzkaller", 0) = 3 [pid 5336] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5336] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5336] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5336] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5336] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5336] close(3) = 0 [pid 5336] mkdir("./file0", 0777) = 0 [ 84.610191][ T5336] loop0: detected capacity change from 0 to 8192 [ 84.625929][ T5336] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 84.639073][ T5336] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 84.648368][ T5336] REISERFS (device loop0): using ordered data mode [ 84.654922][ T5336] reiserfs: using flush barriers [pid 5336] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5336] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5336] chdir("./file0") = 0 [pid 5336] ioctl(4, LOOP_CLR_FD) = 0 [pid 5336] close(4) = 0 [pid 5336] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5336] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5335] <... futex resumed>) = 0 [pid 5335] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5335] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5336] <... futex resumed>) = 0 [pid 5336] mkdir(".", 0777) = -1 EEXIST (File exists) [ 84.660975][ T5336] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 84.678343][ T5336] REISERFS (device loop0): checking transaction log (loop0) [ 84.686628][ T5336] REISERFS (device loop0): Using r5 hash to sort names [pid 5336] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5336] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5336] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5335] <... futex resumed>) = 0 [pid 5336] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5335] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5336] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5335] <... futex resumed>) = 0 [pid 5336] mkdir(".", 0777 [pid 5335] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5336] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5335] <... futex resumed>) = 0 [pid 5335] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5336] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5335] <... mmap resumed>) = 0x7fd868e7f000 [pid 5335] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5336] <... mount resumed>) = 0 [pid 5335] <... mprotect resumed>) = 0 [pid 5336] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5335] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5336] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5335] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5336] <... futex resumed>) = 0 [pid 5336] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5335] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5338 attached => {parent_tid=[5338]}, 88) = 5338 [pid 5338] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5335] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5335] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5335] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5338] <... rseq resumed>) = 0 [pid 5338] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5338] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5338] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5338] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5335] <... futex resumed>) = 0 [pid 5338] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5335] exit_group(0 [pid 5336] <... futex resumed>) = ? [pid 5335] <... exit_group resumed>) = ? [pid 5336] +++ exited with 0 +++ [pid 5338] <... futex resumed>) = ? [pid 5338] +++ exited with 0 +++ [pid 5335] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5335, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [ 84.715624][ T5336] reiserfs: enabling write barrier flush mode [ 84.723801][ T5336] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 84.751412][ T5336] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./67", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./67/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./67/binderfs") = 0 umount2("./67/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./67/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./67/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./67/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./67/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./67") = 0 mkdir("./68", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5339 attached [pid 5339] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5339] chdir("./68") = 0 [pid 5339] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5339] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5339 [pid 5339] <... setpgid resumed>) = 0 [pid 5339] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5339] write(3, "1000", 4) = 4 [pid 5339] close(3) = 0 [pid 5339] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5339] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5339] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5339] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5339] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5339] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5339] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5340 attached [pid 5340] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5339] <... clone3 resumed> => {parent_tid=[5340]}, 88) = 5340 [pid 5340] set_robust_list(0x7fd868ec09a0, 24 [pid 5339] rt_sigprocmask(SIG_SETMASK, [], [pid 5340] <... set_robust_list resumed>) = 0 [pid 5339] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5340] rt_sigprocmask(SIG_SETMASK, [], [pid 5339] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5340] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5340] memfd_create("syzkaller", 0 [pid 5339] <... futex resumed>) = 0 [pid 5340] <... memfd_create resumed>) = 3 [pid 5340] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5339] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5340] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5340] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5340] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5340] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5340] close(3) = 0 [pid 5340] mkdir("./file0", 0777) = 0 [ 85.059507][ T5340] loop0: detected capacity change from 0 to 8192 [ 85.075052][ T5340] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 85.088049][ T5340] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 85.097420][ T5340] REISERFS (device loop0): using ordered data mode [ 85.103964][ T5340] reiserfs: using flush barriers [pid 5340] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5340] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5340] chdir("./file0") = 0 [pid 5340] ioctl(4, LOOP_CLR_FD) = 0 [pid 5340] close(4) = 0 [pid 5340] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5339] <... futex resumed>) = 0 [pid 5340] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5339] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5340] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5339] <... futex resumed>) = 0 [pid 5340] mkdir(".", 0777 [pid 5339] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5340] <... mkdir resumed>) = -1 EEXIST (File exists) [ 85.110231][ T5340] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 85.126977][ T5340] REISERFS (device loop0): checking transaction log (loop0) [ 85.135177][ T5340] REISERFS (device loop0): Using r5 hash to sort names [pid 5340] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5340] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5340] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5340] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5339] <... futex resumed>) = 0 [pid 5339] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5340] <... futex resumed>) = 0 [pid 5339] <... futex resumed>) = 1 [pid 5340] mkdir(".", 0777 [pid 5339] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5340] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5339] <... futex resumed>) = 0 [pid 5340] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5339] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5340] <... mount resumed>) = 0 [pid 5339] <... mprotect resumed>) = 0 [pid 5340] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5339] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5339] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5340] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5340] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5342 attached [pid 5342] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5339] <... clone3 resumed> => {parent_tid=[5342]}, 88) = 5342 [pid 5342] <... rseq resumed>) = 0 [pid 5339] rt_sigprocmask(SIG_SETMASK, [], [pid 5342] set_robust_list(0x7fd868e9f9a0, 24 [pid 5339] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5342] <... set_robust_list resumed>) = 0 [pid 5339] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5342] rt_sigprocmask(SIG_SETMASK, [], [pid 5339] <... futex resumed>) = 0 [pid 5342] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5339] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5342] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5342] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5339] <... futex resumed>) = 0 [pid 5342] <... futex resumed>) = 1 [pid 5339] exit_group(0 [pid 5342] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5340] <... futex resumed>) = ? [pid 5339] <... exit_group resumed>) = ? [pid 5340] +++ exited with 0 +++ [pid 5342] +++ exited with 0 +++ [pid 5339] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5339, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./68", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 85.178960][ T5340] reiserfs: enabling write barrier flush mode [ 85.187131][ T5340] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 85.218025][ T5340] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./68/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./68/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./68/binderfs") = 0 umount2("./68/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./68/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./68/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./68/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./68/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./68") = 0 mkdir("./69", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5343 attached , child_tidptr=0x5555565f3690) = 5343 [pid 5343] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5343] chdir("./69") = 0 [pid 5343] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5343] setpgid(0, 0) = 0 [pid 5343] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5343] write(3, "1000", 4) = 4 [pid 5343] close(3) = 0 [pid 5343] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5343] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5343] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5343] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5343] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5343] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5343] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5343] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5344 attached [pid 5344] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5343] <... clone3 resumed> => {parent_tid=[5344]}, 88) = 5344 [pid 5344] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5343] rt_sigprocmask(SIG_SETMASK, [], [pid 5344] rt_sigprocmask(SIG_SETMASK, [], [pid 5343] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5344] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5343] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5344] memfd_create("syzkaller", 0 [pid 5343] <... futex resumed>) = 0 [pid 5343] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5344] <... memfd_create resumed>) = 3 [pid 5344] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5344] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5344] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5344] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5344] close(3) = 0 [pid 5344] mkdir("./file0", 0777) = 0 [ 85.458488][ T5344] loop0: detected capacity change from 0 to 8192 [ 85.473772][ T5344] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 85.486787][ T5344] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 85.496174][ T5344] REISERFS (device loop0): using ordered data mode [ 85.502740][ T5344] reiserfs: using flush barriers [pid 5344] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5344] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5344] chdir("./file0") = 0 [pid 5344] ioctl(4, LOOP_CLR_FD) = 0 [pid 5344] close(4) = 0 [pid 5344] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5343] <... futex resumed>) = 0 [pid 5344] mkdir(".", 0777 [pid 5343] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5344] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5343] <... futex resumed>) = 0 [pid 5343] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 85.508769][ T5344] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 85.525525][ T5344] REISERFS (device loop0): checking transaction log (loop0) [ 85.533843][ T5344] REISERFS (device loop0): Using r5 hash to sort names [pid 5344] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5344] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5344] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5343] <... futex resumed>) = 0 [pid 5344] <... futex resumed>) = 1 [pid 5343] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5344] mkdir(".", 0777 [pid 5343] <... futex resumed>) = 0 [pid 5344] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5343] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5344] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5343] <... futex resumed>) = 0 [pid 5343] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5343] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5343] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5343] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5344] <... mount resumed>) = 0 [pid 5344] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5346 attached ) = 5 [pid 5346] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5343] <... clone3 resumed> => {parent_tid=[5346]}, 88) = 5346 [pid 5346] <... rseq resumed>) = 0 [pid 5343] rt_sigprocmask(SIG_SETMASK, [], [pid 5346] set_robust_list(0x7fd868e9f9a0, 24 [pid 5343] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5346] <... set_robust_list resumed>) = 0 [pid 5343] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5346] rt_sigprocmask(SIG_SETMASK, [], [pid 5343] <... futex resumed>) = 0 [pid 5346] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5343] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5346] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5344] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5344] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5346] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5346] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5343] <... futex resumed>) = 0 [pid 5346] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5343] exit_group(0 [pid 5346] <... futex resumed>) = ? [pid 5344] <... futex resumed>) = ? [pid 5346] +++ exited with 0 +++ [pid 5344] +++ exited with 0 +++ [pid 5343] <... exit_group resumed>) = ? [pid 5343] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5343, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./69", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./69/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./69/binderfs") = 0 [ 85.584555][ T5344] reiserfs: enabling write barrier flush mode [ 85.592801][ T5344] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 85.613754][ T5344] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./69/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./69/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./69/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./69/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./69/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./69") = 0 mkdir("./70", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5347 attached [pid 5347] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5347] chdir("./70") = 0 [pid 5347] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5347 [pid 5347] setpgid(0, 0) = 0 [pid 5347] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5347] write(3, "1000", 4) = 4 [pid 5347] close(3) = 0 [pid 5347] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5347] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5347] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5347] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5347] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5347] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5347] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5347] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5348 attached [pid 5348] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5347] <... clone3 resumed> => {parent_tid=[5348]}, 88) = 5348 [pid 5348] set_robust_list(0x7fd868ec09a0, 24 [pid 5347] rt_sigprocmask(SIG_SETMASK, [], [pid 5348] <... set_robust_list resumed>) = 0 [pid 5347] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5348] rt_sigprocmask(SIG_SETMASK, [], [pid 5347] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5348] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5347] <... futex resumed>) = 0 [pid 5348] memfd_create("syzkaller", 0 [pid 5347] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5348] <... memfd_create resumed>) = 3 [pid 5348] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5348] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5348] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5348] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5348] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5348] close(3) = 0 [pid 5348] mkdir("./file0", 0777) = 0 [ 85.882706][ T5348] loop0: detected capacity change from 0 to 8192 [ 85.898588][ T5348] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 85.911614][ T5348] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 85.920953][ T5348] REISERFS (device loop0): using ordered data mode [ 85.927739][ T5348] reiserfs: using flush barriers [pid 5348] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5348] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5348] chdir("./file0") = 0 [pid 5348] ioctl(4, LOOP_CLR_FD) = 0 [pid 5348] close(4) = 0 [pid 5348] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5347] <... futex resumed>) = 0 [pid 5347] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5348] mkdir(".", 0777 [pid 5347] <... futex resumed>) = 0 [ 85.934025][ T5348] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 85.950840][ T5348] REISERFS (device loop0): checking transaction log (loop0) [ 85.959262][ T5348] REISERFS (device loop0): Using r5 hash to sort names [pid 5348] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5347] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5348] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5348] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5348] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5347] <... futex resumed>) = 0 [pid 5348] <... futex resumed>) = 1 [pid 5347] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5348] mkdir(".", 0777 [pid 5347] <... futex resumed>) = 0 [pid 5348] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5347] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5348] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5347] <... futex resumed>) = 0 [pid 5347] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5347] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5347] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5348] <... mount resumed>) = 0 [pid 5348] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5347] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5348] <... openat resumed>) = 5 [pid 5347] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5350 attached [pid 5348] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5347] <... clone3 resumed> => {parent_tid=[5350]}, 88) = 5350 [pid 5350] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5348] <... futex resumed>) = 0 [pid 5347] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5347] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5347] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5350] <... rseq resumed>) = 0 [pid 5348] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5350] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5350] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5350] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5350] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5347] <... futex resumed>) = 0 [pid 5350] <... futex resumed>) = 1 [pid 5347] exit_group(0 [pid 5350] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5348] <... futex resumed>) = ? [pid 5347] <... exit_group resumed>) = ? [pid 5350] <... futex resumed>) = ? [pid 5348] +++ exited with 0 +++ [pid 5350] +++ exited with 0 +++ [pid 5347] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5347, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./70", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 85.994023][ T5348] reiserfs: enabling write barrier flush mode [ 86.002784][ T5348] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 86.032682][ T5348] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./70/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./70/binderfs") = 0 umount2("./70/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./70/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./70/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./70/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./70") = 0 mkdir("./71", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5351 ./strace-static-x86_64: Process 5351 attached [pid 5351] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5351] chdir("./71") = 0 [pid 5351] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5351] setpgid(0, 0) = 0 [pid 5351] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5351] write(3, "1000", 4) = 4 [pid 5351] close(3) = 0 [pid 5351] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5351] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5351] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5351] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5351] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5351] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5351] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5351] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5352 attached [pid 5352] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5352] set_robust_list(0x7fd868ec09a0, 24 [pid 5351] <... clone3 resumed> => {parent_tid=[5352]}, 88) = 5352 [pid 5352] <... set_robust_list resumed>) = 0 [pid 5351] rt_sigprocmask(SIG_SETMASK, [], [pid 5352] rt_sigprocmask(SIG_SETMASK, [], [pid 5351] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5352] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5351] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5352] memfd_create("syzkaller", 0 [pid 5351] <... futex resumed>) = 0 [pid 5351] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5352] <... memfd_create resumed>) = 3 [pid 5352] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5352] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5352] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5352] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5352] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5352] close(3) = 0 [pid 5352] mkdir("./file0", 0777) = 0 [ 86.282942][ T5352] loop0: detected capacity change from 0 to 8192 [ 86.309253][ T5352] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 86.322335][ T5352] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5352] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5352] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5352] chdir("./file0") = 0 [pid 5352] ioctl(4, LOOP_CLR_FD) = 0 [pid 5352] close(4) = 0 [pid 5352] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5351] <... futex resumed>) = 0 [pid 5351] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 86.331702][ T5352] REISERFS (device loop0): using ordered data mode [ 86.338219][ T5352] reiserfs: using flush barriers [ 86.344710][ T5352] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 86.361361][ T5352] REISERFS (device loop0): checking transaction log (loop0) [ 86.369733][ T5352] REISERFS (device loop0): Using r5 hash to sort names [pid 5352] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5352] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5351] <... futex resumed>) = 0 [pid 5351] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5352] <... mount resumed>) = 0 [pid 5352] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5352] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5351] <... futex resumed>) = 0 [pid 5352] mkdir(".", 0777 [pid 5351] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5352] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5351] <... futex resumed>) = 0 [pid 5351] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5352] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5351] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5351] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5351] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5351] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5354 attached [pid 5354] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5351] <... clone3 resumed> => {parent_tid=[5354]}, 88) = 5354 [pid 5354] <... rseq resumed>) = 0 [pid 5351] rt_sigprocmask(SIG_SETMASK, [], [pid 5354] set_robust_list(0x7fd868e9f9a0, 24 [pid 5351] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5354] <... set_robust_list resumed>) = 0 [pid 5351] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5354] rt_sigprocmask(SIG_SETMASK, [], [pid 5351] <... futex resumed>) = 0 [pid 5354] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5351] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5354] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5354] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5351] <... futex resumed>) = 0 [pid 5354] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5352] <... mount resumed>) = 0 [pid 5352] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5352] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5351] exit_group(0 [pid 5352] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5354] <... futex resumed>) = ? [pid 5352] <... futex resumed>) = ? [pid 5351] <... exit_group resumed>) = ? [pid 5354] +++ exited with 0 +++ [pid 5352] +++ exited with 0 +++ [pid 5351] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5351, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./71", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 86.394527][ T5352] reiserfs: enabling write barrier flush mode [ 86.403935][ T5352] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 86.430706][ T5352] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./71/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./71/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./71/binderfs") = 0 umount2("./71/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./71/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./71/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./71/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./71/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./71") = 0 mkdir("./72", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5355 attached , child_tidptr=0x5555565f3690) = 5355 [pid 5355] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5355] chdir("./72") = 0 [pid 5355] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5355] setpgid(0, 0) = 0 [pid 5355] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5355] write(3, "1000", 4) = 4 [pid 5355] close(3) = 0 [pid 5355] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5355] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5355] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5355] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5355] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5355] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5355] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5355] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5356 attached => {parent_tid=[5356]}, 88) = 5356 [pid 5355] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5355] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5356] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5355] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5356] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5356] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5356] memfd_create("syzkaller", 0) = 3 [pid 5356] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5356] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5356] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5356] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5356] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5356] close(3) = 0 [pid 5356] mkdir("./file0", 0777) = 0 [ 86.755392][ T5356] loop0: detected capacity change from 0 to 8192 [ 86.781444][ T5356] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 86.794830][ T5356] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5356] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5356] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5356] chdir("./file0") = 0 [pid 5356] ioctl(4, LOOP_CLR_FD) = 0 [pid 5356] close(4) = 0 [pid 5356] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5355] <... futex resumed>) = 0 [pid 5356] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5355] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5356] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5355] <... futex resumed>) = 0 [pid 5356] mkdir(".", 0777 [ 86.804219][ T5356] REISERFS (device loop0): using ordered data mode [ 86.810795][ T5356] reiserfs: using flush barriers [ 86.817385][ T5356] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 86.834213][ T5356] REISERFS (device loop0): checking transaction log (loop0) [ 86.842764][ T5356] REISERFS (device loop0): Using r5 hash to sort names [pid 5355] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5356] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5356] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5356] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5356] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5355] <... futex resumed>) = 0 [pid 5356] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5355] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5356] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5356] mkdir(".", 0777 [pid 5355] <... futex resumed>) = 0 [pid 5356] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5355] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5356] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5355] <... futex resumed>) = 0 [pid 5355] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5356] <... mount resumed>) = 0 [pid 5355] <... mmap resumed>) = 0x7fd868e7f000 [pid 5355] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5356] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5355] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5356] <... openat resumed>) = 5 [pid 5355] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5358 attached [pid 5356] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5358] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5356] <... futex resumed>) = 0 [pid 5358] <... rseq resumed>) = 0 [pid 5356] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5355] <... clone3 resumed> => {parent_tid=[5358]}, 88) = 5358 [pid 5358] set_robust_list(0x7fd868e9f9a0, 24 [pid 5355] rt_sigprocmask(SIG_SETMASK, [], [pid 5358] <... set_robust_list resumed>) = 0 [pid 5358] rt_sigprocmask(SIG_SETMASK, [], [pid 5355] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5358] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5355] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5358] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5355] <... futex resumed>) = 0 [pid 5355] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5358] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5358] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5355] <... futex resumed>) = 0 [pid 5355] exit_group(0 [pid 5356] <... futex resumed>) = ? [pid 5355] <... exit_group resumed>) = ? [pid 5358] <... futex resumed>) = ? [pid 5356] +++ exited with 0 +++ [pid 5358] +++ exited with 0 +++ [pid 5355] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5355, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./72", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 86.882828][ T5356] reiserfs: enabling write barrier flush mode [ 86.892190][ T5356] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 86.921029][ T5356] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./72/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./72/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./72/binderfs") = 0 umount2("./72/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./72/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./72/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./72/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./72/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./72") = 0 mkdir("./73", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5359 attached [pid 5359] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5359 [pid 5359] <... set_robust_list resumed>) = 0 [pid 5359] chdir("./73") = 0 [pid 5359] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5359] setpgid(0, 0) = 0 [pid 5359] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5359] write(3, "1000", 4) = 4 [pid 5359] close(3) = 0 [pid 5359] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5359] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5359] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5359] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5359] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5359] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5359] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5359] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5360 attached [pid 5360] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5359] <... clone3 resumed> => {parent_tid=[5360]}, 88) = 5360 [pid 5360] <... rseq resumed>) = 0 [pid 5359] rt_sigprocmask(SIG_SETMASK, [], [pid 5360] set_robust_list(0x7fd868ec09a0, 24 [pid 5359] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5360] <... set_robust_list resumed>) = 0 [pid 5359] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5360] rt_sigprocmask(SIG_SETMASK, [], [pid 5359] <... futex resumed>) = 0 [pid 5360] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5359] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5360] memfd_create("syzkaller", 0) = 3 [pid 5360] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5360] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5360] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5360] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5360] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5360] close(3) = 0 [pid 5360] mkdir("./file0", 0777) = 0 [ 87.219771][ T5360] loop0: detected capacity change from 0 to 8192 [ 87.234843][ T5360] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 87.248053][ T5360] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 87.257380][ T5360] REISERFS (device loop0): using ordered data mode [ 87.263915][ T5360] reiserfs: using flush barriers [pid 5360] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5360] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5360] chdir("./file0") = 0 [pid 5360] ioctl(4, LOOP_CLR_FD) = 0 [pid 5360] close(4) = 0 [pid 5360] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5360] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5359] <... futex resumed>) = 0 [pid 5359] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5360] <... futex resumed>) = 0 [pid 5359] <... futex resumed>) = 1 [pid 5360] mkdir(".", 0777 [pid 5359] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5360] <... mkdir resumed>) = -1 EEXIST (File exists) [ 87.270130][ T5360] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 87.286824][ T5360] REISERFS (device loop0): checking transaction log (loop0) [ 87.295415][ T5360] REISERFS (device loop0): Using r5 hash to sort names [ 87.309151][ T5360] reiserfs: enabling write barrier flush mode [pid 5360] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5360] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5360] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5359] <... futex resumed>) = 0 [pid 5360] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5359] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5360] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5359] <... futex resumed>) = 0 [pid 5360] mkdir(".", 0777 [pid 5359] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5360] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5360] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5359] <... futex resumed>) = 0 [ 87.321570][ T5360] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5359] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5359] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5360] <... mount resumed>) = 0 [pid 5360] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5359] <... mprotect resumed>) = 0 [pid 5360] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5359] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5360] <... futex resumed>) = 0 [pid 5360] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5359] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5359] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5362 attached [pid 5362] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5359] <... clone3 resumed> => {parent_tid=[5362]}, 88) = 5362 [pid 5362] <... rseq resumed>) = 0 [pid 5359] rt_sigprocmask(SIG_SETMASK, [], [pid 5362] set_robust_list(0x7fd868e9f9a0, 24 [pid 5359] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5362] <... set_robust_list resumed>) = 0 [pid 5359] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5362] rt_sigprocmask(SIG_SETMASK, [], [pid 5359] <... futex resumed>) = 0 [pid 5362] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5359] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5362] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5362] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5359] <... futex resumed>) = 0 [pid 5362] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5359] exit_group(0 [pid 5362] <... futex resumed>) = ? [pid 5360] <... futex resumed>) = ? [pid 5362] +++ exited with 0 +++ [pid 5360] +++ exited with 0 +++ [pid 5359] <... exit_group resumed>) = ? [pid 5359] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5359, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./73", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 87.364331][ T5360] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./73/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./73/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./73/binderfs") = 0 umount2("./73/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./73/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./73/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./73/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./73") = 0 mkdir("./74", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5363 attached [pid 5363] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5363 [pid 5363] <... set_robust_list resumed>) = 0 [pid 5363] chdir("./74") = 0 [pid 5363] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5363] setpgid(0, 0) = 0 [pid 5363] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5363] write(3, "1000", 4) = 4 [pid 5363] close(3) = 0 [pid 5363] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5363] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5363] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5363] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5363] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5363] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5363] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5363] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5364 attached => {parent_tid=[5364]}, 88) = 5364 [pid 5364] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5363] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5363] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5363] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5364] <... rseq resumed>) = 0 [pid 5364] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5364] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5364] memfd_create("syzkaller", 0) = 3 [pid 5364] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5364] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5364] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5364] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5364] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5364] close(3) = 0 [pid 5364] mkdir("./file0", 0777) = 0 [ 87.660507][ T5364] loop0: detected capacity change from 0 to 8192 [ 87.685816][ T5364] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 87.698807][ T5364] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5364] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5364] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5364] chdir("./file0") = 0 [pid 5364] ioctl(4, LOOP_CLR_FD) = 0 [pid 5364] close(4) = 0 [pid 5364] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5363] <... futex resumed>) = 0 [pid 5363] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5364] mkdir(".", 0777 [pid 5363] <... futex resumed>) = 0 [pid 5363] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5364] <... mkdir resumed>) = -1 EEXIST (File exists) [ 87.708115][ T5364] REISERFS (device loop0): using ordered data mode [ 87.714641][ T5364] reiserfs: using flush barriers [ 87.720747][ T5364] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 87.737477][ T5364] REISERFS (device loop0): checking transaction log (loop0) [ 87.745874][ T5364] REISERFS (device loop0): Using r5 hash to sort names [pid 5364] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5364] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5364] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5363] <... futex resumed>) = 0 [pid 5364] <... futex resumed>) = 1 [pid 5363] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5364] mkdir(".", 0777 [pid 5363] <... futex resumed>) = 0 [pid 5364] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5363] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5364] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5363] <... futex resumed>) = 0 [pid 5363] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5363] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5363] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5364] <... mount resumed>) = 0 [pid 5363] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5363] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5366 attached [pid 5366] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5364] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5363] <... clone3 resumed> => {parent_tid=[5366]}, 88) = 5366 [pid 5366] <... rseq resumed>) = 0 [pid 5364] <... openat resumed>) = 5 [pid 5363] rt_sigprocmask(SIG_SETMASK, [], [pid 5366] set_robust_list(0x7fd868e9f9a0, 24 [pid 5363] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5366] <... set_robust_list resumed>) = 0 [pid 5364] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5363] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5366] rt_sigprocmask(SIG_SETMASK, [], [pid 5364] <... futex resumed>) = 0 [pid 5363] <... futex resumed>) = 0 [pid 5366] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5364] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5363] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5366] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5366] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5363] <... futex resumed>) = 0 [pid 5366] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5363] exit_group(0 [pid 5364] <... futex resumed>) = ? [pid 5366] <... futex resumed>) = ? [pid 5364] +++ exited with 0 +++ [pid 5363] <... exit_group resumed>) = ? [pid 5366] +++ exited with 0 +++ [pid 5363] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5363, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- [ 87.768331][ T5364] reiserfs: enabling write barrier flush mode [ 87.777181][ T5364] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 87.804579][ T5364] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./74", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./74/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./74/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./74/binderfs") = 0 umount2("./74/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./74/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./74/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./74/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./74") = 0 mkdir("./75", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5367 attached [pid 5367] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5367] chdir("./75") = 0 [pid 5367] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5367] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5367 [pid 5367] <... setpgid resumed>) = 0 [pid 5367] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5367] write(3, "1000", 4) = 4 [pid 5367] close(3) = 0 [pid 5367] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5367] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5367] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5367] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5367] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5367] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5367] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5367] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5368 attached [pid 5368] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5368] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5368] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5368] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5367] <... clone3 resumed> => {parent_tid=[5368]}, 88) = 5368 [pid 5367] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5367] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5368] <... futex resumed>) = 0 [pid 5367] <... futex resumed>) = 1 [pid 5368] memfd_create("syzkaller", 0 [pid 5367] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5368] <... memfd_create resumed>) = 3 [pid 5368] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5368] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5368] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5368] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5368] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5368] close(3) = 0 [pid 5368] mkdir("./file0", 0777) = 0 [ 88.151207][ T5368] loop0: detected capacity change from 0 to 8192 [ 88.166988][ T5368] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 88.180027][ T5368] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 88.189315][ T5368] REISERFS (device loop0): using ordered data mode [ 88.195836][ T5368] reiserfs: using flush barriers [pid 5368] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5368] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5368] chdir("./file0") = 0 [pid 5368] ioctl(4, LOOP_CLR_FD) = 0 [pid 5368] close(4) = 0 [pid 5368] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5367] <... futex resumed>) = 0 [pid 5367] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5368] <... futex resumed>) = 1 [pid 5367] <... futex resumed>) = 0 [pid 5368] mkdir(".", 0777 [pid 5367] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5368] <... mkdir resumed>) = -1 EEXIST (File exists) [ 88.202437][ T5368] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 88.219548][ T5368] REISERFS (device loop0): checking transaction log (loop0) [ 88.227942][ T5368] REISERFS (device loop0): Using r5 hash to sort names [pid 5368] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5368] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5368] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5367] <... futex resumed>) = 0 [pid 5368] mkdir(".", 0777 [pid 5367] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5368] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5367] <... futex resumed>) = 0 [pid 5368] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5367] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5367] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5367] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 88.255040][ T5368] reiserfs: enabling write barrier flush mode [ 88.264390][ T5368] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5367] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5368] <... mount resumed>) = 0 [pid 5367] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5367] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5368] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5370 attached ) = 5 [pid 5368] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5368] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5370] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5367] <... clone3 resumed> => {parent_tid=[5370]}, 88) = 5370 [pid 5370] <... rseq resumed>) = 0 [pid 5367] rt_sigprocmask(SIG_SETMASK, [], [pid 5370] set_robust_list(0x7fd868e9f9a0, 24 [pid 5367] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5370] <... set_robust_list resumed>) = 0 [pid 5367] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5370] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5367] <... futex resumed>) = 0 [pid 5370] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5367] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5370] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5370] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5367] <... futex resumed>) = 0 [pid 5370] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5367] exit_group(0 [pid 5370] <... futex resumed>) = ? [pid 5368] <... futex resumed>) = ? [pid 5370] +++ exited with 0 +++ [pid 5368] +++ exited with 0 +++ [pid 5367] <... exit_group resumed>) = ? [pid 5367] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5367, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- umount2("./75", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./75/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 88.307040][ T5368] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./75/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./75/binderfs") = 0 umount2("./75/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./75/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./75/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./75/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./75/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./75") = 0 mkdir("./76", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5371 attached , child_tidptr=0x5555565f3690) = 5371 [pid 5371] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5371] chdir("./76") = 0 [pid 5371] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5371] setpgid(0, 0) = 0 [pid 5371] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5371] write(3, "1000", 4) = 4 [pid 5371] close(3) = 0 [pid 5371] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5371] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5371] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5371] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5371] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5371] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5371] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5371] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0} => {parent_tid=[5372]}, 88) = 5372 ./strace-static-x86_64: Process 5372 attached [pid 5372] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5371] rt_sigprocmask(SIG_SETMASK, [], [pid 5372] <... rseq resumed>) = 0 [pid 5371] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5372] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5371] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5372] rt_sigprocmask(SIG_SETMASK, [], [pid 5371] <... futex resumed>) = 0 [pid 5372] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5371] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5372] memfd_create("syzkaller", 0) = 3 [pid 5372] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5372] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5372] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5372] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5372] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5372] close(3) = 0 [pid 5372] mkdir("./file0", 0777) = 0 [ 88.558010][ T5372] loop0: detected capacity change from 0 to 8192 [ 88.572020][ T5372] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 88.585208][ T5372] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 88.594512][ T5372] REISERFS (device loop0): using ordered data mode [ 88.601019][ T5372] reiserfs: using flush barriers [pid 5372] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5372] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5372] chdir("./file0") = 0 [pid 5372] ioctl(4, LOOP_CLR_FD) = 0 [pid 5372] close(4) = 0 [pid 5372] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5371] <... futex resumed>) = 0 [pid 5372] <... futex resumed>) = 1 [pid 5371] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5372] mkdir(".", 0777 [pid 5371] <... futex resumed>) = 0 [ 88.607410][ T5372] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 88.623898][ T5372] REISERFS (device loop0): checking transaction log (loop0) [ 88.632654][ T5372] REISERFS (device loop0): Using r5 hash to sort names [pid 5372] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5371] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5372] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5372] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5372] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5371] <... futex resumed>) = 0 [pid 5372] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5371] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5372] mkdir(".", 0777 [pid 5371] <... futex resumed>) = 0 [pid 5372] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5371] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5372] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5371] <... futex resumed>) = 0 [pid 5371] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5371] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5371] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5371] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5374 attached => {parent_tid=[5374]}, 88) = 5374 [pid 5374] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5371] rt_sigprocmask(SIG_SETMASK, [], [pid 5374] <... rseq resumed>) = 0 [pid 5371] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5374] set_robust_list(0x7fd868e9f9a0, 24 [pid 5371] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5374] <... set_robust_list resumed>) = 0 [pid 5371] <... futex resumed>) = 0 [pid 5374] rt_sigprocmask(SIG_SETMASK, [], [pid 5371] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5374] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5374] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [ 88.653893][ T5372] reiserfs: enabling write barrier flush mode [ 88.662505][ T5372] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5374] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5372] <... mount resumed>) = 0 [pid 5374] <... futex resumed>) = 1 [pid 5374] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5372] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5371] <... futex resumed>) = 0 [pid 5372] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5372] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5371] exit_group(0 [pid 5374] <... futex resumed>) = ? [pid 5372] <... futex resumed>) = ? [pid 5371] <... exit_group resumed>) = ? [pid 5374] +++ exited with 0 +++ [pid 5372] +++ exited with 0 +++ [pid 5371] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5371, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./76", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./76/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./76/binderfs") = 0 [ 88.707348][ T5372] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./76/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./76/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./76/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./76/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./76/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./76") = 0 mkdir("./77", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5375 ./strace-static-x86_64: Process 5375 attached [pid 5375] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5375] chdir("./77") = 0 [pid 5375] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5375] setpgid(0, 0) = 0 [pid 5375] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5375] write(3, "1000", 4) = 4 [pid 5375] close(3) = 0 [pid 5375] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5375] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5375] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5375] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5375] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5375] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5375] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5375] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5376 attached [pid 5376] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5375] <... clone3 resumed> => {parent_tid=[5376]}, 88) = 5376 [pid 5376] <... rseq resumed>) = 0 [pid 5375] rt_sigprocmask(SIG_SETMASK, [], [pid 5376] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5375] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5376] rt_sigprocmask(SIG_SETMASK, [], [pid 5375] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5376] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5375] <... futex resumed>) = 0 [pid 5376] memfd_create("syzkaller", 0 [pid 5375] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5376] <... memfd_create resumed>) = 3 [pid 5376] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5376] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5376] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5376] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5376] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5376] close(3) = 0 [pid 5376] mkdir("./file0", 0777) = 0 [ 88.933862][ T5376] loop0: detected capacity change from 0 to 8192 [ 88.949302][ T5376] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 88.962301][ T5376] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 88.971656][ T5376] REISERFS (device loop0): using ordered data mode [ 88.978185][ T5376] reiserfs: using flush barriers [pid 5376] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5376] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5376] chdir("./file0") = 0 [pid 5376] ioctl(4, LOOP_CLR_FD) = 0 [pid 5376] close(4) = 0 [pid 5376] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5375] <... futex resumed>) = 0 [ 88.984685][ T5376] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 89.001814][ T5376] REISERFS (device loop0): checking transaction log (loop0) [ 89.010111][ T5376] REISERFS (device loop0): Using r5 hash to sort names [pid 5376] mkdir(".", 0777 [pid 5375] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5376] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5376] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5375] <... futex resumed>) = 0 [pid 5375] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5376] <... mount resumed>) = 0 [pid 5376] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5376] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5375] <... futex resumed>) = 0 [pid 5375] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5375] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5375] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5375] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5376] <... futex resumed>) = 1 [pid 5375] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5375] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5378 attached [pid 5378] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5375] <... clone3 resumed> => {parent_tid=[5378]}, 88) = 5378 [pid 5378] <... rseq resumed>) = 0 [pid 5375] rt_sigprocmask(SIG_SETMASK, [], [pid 5378] set_robust_list(0x7fd868e9f9a0, 24 [pid 5375] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5378] <... set_robust_list resumed>) = 0 [pid 5375] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5378] rt_sigprocmask(SIG_SETMASK, [], [pid 5375] <... futex resumed>) = 0 [pid 5378] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5375] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5378] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5378] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5375] <... futex resumed>) = 0 [pid 5378] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5376] mkdir(".", 0777) = -1 EEXIST (File exists) [ 89.043794][ T5376] reiserfs: enabling write barrier flush mode [ 89.055430][ T5376] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5376] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5376] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5376] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5375] exit_group(0 [pid 5378] <... futex resumed>) = ? [pid 5376] <... futex resumed>) = ? [pid 5375] <... exit_group resumed>) = ? [pid 5378] +++ exited with 0 +++ [pid 5376] +++ exited with 0 +++ [pid 5375] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5375, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./77", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 89.089609][ T5376] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./77/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./77/binderfs") = 0 umount2("./77/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./77/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./77/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./77/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./77") = 0 mkdir("./78", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5379 attached , child_tidptr=0x5555565f3690) = 5379 [pid 5379] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5379] chdir("./78") = 0 [pid 5379] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5379] setpgid(0, 0) = 0 [pid 5379] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5379] write(3, "1000", 4) = 4 [pid 5379] close(3) = 0 [pid 5379] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5379] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5379] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5379] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5379] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5379] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5379] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5379] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5380 attached [pid 5380] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5379] <... clone3 resumed> => {parent_tid=[5380]}, 88) = 5380 [pid 5380] set_robust_list(0x7fd868ec09a0, 24 [pid 5379] rt_sigprocmask(SIG_SETMASK, [], [pid 5380] <... set_robust_list resumed>) = 0 [pid 5379] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5380] rt_sigprocmask(SIG_SETMASK, [], [pid 5379] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5380] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5379] <... futex resumed>) = 0 [pid 5380] memfd_create("syzkaller", 0 [pid 5379] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5380] <... memfd_create resumed>) = 3 [pid 5380] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5380] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5380] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5380] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5380] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5380] close(3) = 0 [pid 5380] mkdir("./file0", 0777) = 0 [ 89.382842][ T5380] loop0: detected capacity change from 0 to 8192 [ 89.408065][ T5380] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 89.421150][ T5380] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5380] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5380] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5380] chdir("./file0") = 0 [pid 5380] ioctl(4, LOOP_CLR_FD) = 0 [pid 5380] close(4) = 0 [pid 5380] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5380] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5379] <... futex resumed>) = 0 [ 89.430458][ T5380] REISERFS (device loop0): using ordered data mode [ 89.437002][ T5380] reiserfs: using flush barriers [ 89.443365][ T5380] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 89.459775][ T5380] REISERFS (device loop0): checking transaction log (loop0) [ 89.468170][ T5380] REISERFS (device loop0): Using r5 hash to sort names [pid 5379] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5380] <... futex resumed>) = 0 [pid 5380] mkdir(".", 0777 [pid 5379] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5380] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5380] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5380] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5380] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5379] <... futex resumed>) = 0 [pid 5380] <... futex resumed>) = 1 [pid 5380] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5379] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5380] <... futex resumed>) = 0 [pid 5380] mkdir(".", 0777 [pid 5379] <... futex resumed>) = 1 [pid 5380] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5379] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5380] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5379] <... futex resumed>) = 0 [ 89.516430][ T5380] reiserfs: enabling write barrier flush mode [ 89.525004][ T5380] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5379] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5380] <... mount resumed>) = 0 [pid 5379] <... mmap resumed>) = 0x7fd868e7f000 [pid 5379] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5380] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5379] <... mprotect resumed>) = 0 [pid 5380] <... openat resumed>) = 5 [pid 5380] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5379] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5380] <... futex resumed>) = 0 [pid 5380] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5379] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5379] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5382 attached => {parent_tid=[5382]}, 88) = 5382 [pid 5382] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5379] rt_sigprocmask(SIG_SETMASK, [], [pid 5382] set_robust_list(0x7fd868e9f9a0, 24 [pid 5379] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5382] <... set_robust_list resumed>) = 0 [pid 5379] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5382] rt_sigprocmask(SIG_SETMASK, [], [pid 5379] <... futex resumed>) = 0 [pid 5382] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5379] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5382] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5382] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5379] <... futex resumed>) = 0 [pid 5382] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5379] exit_group(0 [pid 5382] <... futex resumed>) = ? [pid 5380] <... futex resumed>) = ? [pid 5379] <... exit_group resumed>) = ? [pid 5382] +++ exited with 0 +++ [pid 5380] +++ exited with 0 +++ [pid 5379] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5379, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./78", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 89.566921][ T5380] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./78/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./78/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./78/binderfs") = 0 umount2("./78/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./78/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./78/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./78/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./78/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./78") = 0 mkdir("./79", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5383 ./strace-static-x86_64: Process 5383 attached [pid 5383] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5383] chdir("./79") = 0 [pid 5383] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5383] setpgid(0, 0) = 0 [pid 5383] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5383] write(3, "1000", 4) = 4 [pid 5383] close(3) = 0 [pid 5383] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5383] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5383] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5383] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5383] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5383] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5383] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5383] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5384 attached [pid 5384] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5383] <... clone3 resumed> => {parent_tid=[5384]}, 88) = 5384 [pid 5384] <... rseq resumed>) = 0 [pid 5383] rt_sigprocmask(SIG_SETMASK, [], [pid 5384] set_robust_list(0x7fd868ec09a0, 24 [pid 5383] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5384] <... set_robust_list resumed>) = 0 [pid 5384] rt_sigprocmask(SIG_SETMASK, [], [pid 5383] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5384] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5383] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5384] memfd_create("syzkaller", 0) = 3 [pid 5384] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5384] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5384] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5384] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5384] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5384] close(3) = 0 [pid 5384] mkdir("./file0", 0777) = 0 [ 89.845950][ T5384] loop0: detected capacity change from 0 to 8192 [ 89.860333][ T5384] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 89.873428][ T5384] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 89.882705][ T5384] REISERFS (device loop0): using ordered data mode [ 89.889221][ T5384] reiserfs: using flush barriers [pid 5384] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5384] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5384] chdir("./file0") = 0 [pid 5384] ioctl(4, LOOP_CLR_FD) = 0 [pid 5384] close(4) = 0 [pid 5384] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5383] <... futex resumed>) = 0 [pid 5383] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5384] mkdir(".", 0777 [pid 5383] <... futex resumed>) = 0 [pid 5384] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5383] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 89.895544][ T5384] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 89.911976][ T5384] REISERFS (device loop0): checking transaction log (loop0) [ 89.920316][ T5384] REISERFS (device loop0): Using r5 hash to sort names [pid 5384] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5384] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5384] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5383] <... futex resumed>) = 0 [pid 5384] <... futex resumed>) = 1 [pid 5383] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5384] mkdir(".", 0777 [pid 5383] <... futex resumed>) = 0 [pid 5384] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5383] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5384] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5383] <... futex resumed>) = 0 [ 89.957703][ T5384] reiserfs: enabling write barrier flush mode [ 89.972927][ T5384] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5383] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5384] <... mount resumed>) = 0 [pid 5383] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5384] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5383] <... mprotect resumed>) = 0 [pid 5384] <... openat resumed>) = 5 [pid 5383] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5384] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5383] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5384] <... futex resumed>) = 0 [pid 5383] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5384] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5386 attached [pid 5386] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5383] <... clone3 resumed> => {parent_tid=[5386]}, 88) = 5386 [pid 5386] <... rseq resumed>) = 0 [pid 5383] rt_sigprocmask(SIG_SETMASK, [], [pid 5386] set_robust_list(0x7fd868e9f9a0, 24 [pid 5383] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5386] <... set_robust_list resumed>) = 0 [pid 5383] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5386] rt_sigprocmask(SIG_SETMASK, [], [pid 5383] <... futex resumed>) = 0 [pid 5386] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5383] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5386] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5386] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5383] <... futex resumed>) = 0 [pid 5386] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5383] exit_group(0 [pid 5384] <... futex resumed>) = ? [pid 5386] <... futex resumed>) = ? [pid 5383] <... exit_group resumed>) = ? [pid 5384] +++ exited with 0 +++ [pid 5386] +++ exited with 0 +++ [pid 5383] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5383, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./79", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 90.007718][ T5384] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./79/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./79/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./79/binderfs") = 0 umount2("./79/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./79/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./79/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./79/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./79") = 0 mkdir("./80", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5387 attached , child_tidptr=0x5555565f3690) = 5387 [pid 5387] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5387] chdir("./80") = 0 [pid 5387] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5387] setpgid(0, 0) = 0 [pid 5387] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5387] write(3, "1000", 4) = 4 [pid 5387] close(3) = 0 [pid 5387] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5387] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5387] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5387] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5387] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5387] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5387] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5387] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5388 attached [pid 5388] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5387] <... clone3 resumed> => {parent_tid=[5388]}, 88) = 5388 [pid 5388] set_robust_list(0x7fd868ec09a0, 24 [pid 5387] rt_sigprocmask(SIG_SETMASK, [], [pid 5388] <... set_robust_list resumed>) = 0 [pid 5387] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5388] rt_sigprocmask(SIG_SETMASK, [], [pid 5387] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5388] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5388] memfd_create("syzkaller", 0 [pid 5387] <... futex resumed>) = 0 [pid 5387] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5388] <... memfd_create resumed>) = 3 [pid 5388] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5388] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5388] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5388] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5388] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5388] close(3) = 0 [pid 5388] mkdir("./file0", 0777) = 0 [ 90.281783][ T5388] loop0: detected capacity change from 0 to 8192 [ 90.302524][ T5388] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 90.315693][ T5388] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 90.325073][ T5388] REISERFS (device loop0): using ordered data mode [pid 5388] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5388] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5388] chdir("./file0") = 0 [pid 5388] ioctl(4, LOOP_CLR_FD) = 0 [pid 5388] close(4) = 0 [pid 5388] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5387] <... futex resumed>) = 0 [pid 5388] mkdir(".", 0777 [pid 5387] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5388] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5387] <... futex resumed>) = 0 [pid 5388] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 90.331616][ T5388] reiserfs: using flush barriers [ 90.338160][ T5388] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 90.354813][ T5388] REISERFS (device loop0): checking transaction log (loop0) [ 90.363235][ T5388] REISERFS (device loop0): Using r5 hash to sort names [pid 5387] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5388] <... mount resumed>) = 0 [pid 5388] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5388] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5387] <... futex resumed>) = 0 [pid 5387] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5388] mkdir(".", 0777 [pid 5387] <... futex resumed>) = 0 [pid 5388] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5387] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5388] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5387] <... futex resumed>) = 0 [pid 5387] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5387] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 90.389490][ T5388] reiserfs: enabling write barrier flush mode [ 90.397884][ T5388] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5387] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5387] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5388] <... mount resumed>) = 0 ./strace-static-x86_64: Process 5390 attached [pid 5388] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5390] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5387] <... clone3 resumed> => {parent_tid=[5390]}, 88) = 5390 [pid 5390] <... rseq resumed>) = 0 [pid 5388] <... openat resumed>) = 5 [pid 5387] rt_sigprocmask(SIG_SETMASK, [], [pid 5390] set_robust_list(0x7fd868e9f9a0, 24 [pid 5387] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5387] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5387] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5390] <... set_robust_list resumed>) = 0 [pid 5388] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5390] rt_sigprocmask(SIG_SETMASK, [], [pid 5388] <... futex resumed>) = 0 [pid 5390] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5388] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5390] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5390] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5387] <... futex resumed>) = 0 [pid 5390] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5387] exit_group(0 [pid 5388] <... futex resumed>) = ? [pid 5390] <... futex resumed>) = ? [pid 5388] +++ exited with 0 +++ [pid 5387] <... exit_group resumed>) = ? [pid 5390] +++ exited with 0 +++ [pid 5387] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5387, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./80", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 90.430555][ T5388] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./80/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./80/binderfs") = 0 umount2("./80/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./80/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./80/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./80/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./80") = 0 mkdir("./81", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5391 attached , child_tidptr=0x5555565f3690) = 5391 [pid 5391] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5391] chdir("./81") = 0 [pid 5391] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5391] setpgid(0, 0) = 0 [pid 5391] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5391] write(3, "1000", 4) = 4 [pid 5391] close(3) = 0 [pid 5391] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5391] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5391] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5391] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5391] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5391] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5391] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5391] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5392 attached [pid 5392] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5391] <... clone3 resumed> => {parent_tid=[5392]}, 88) = 5392 [pid 5392] set_robust_list(0x7fd868ec09a0, 24 [pid 5391] rt_sigprocmask(SIG_SETMASK, [], [pid 5392] <... set_robust_list resumed>) = 0 [pid 5391] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5392] rt_sigprocmask(SIG_SETMASK, [], [pid 5391] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5391] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5392] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5392] memfd_create("syzkaller", 0) = 3 [pid 5392] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5392] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5392] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5392] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5392] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5392] close(3) = 0 [pid 5392] mkdir("./file0", 0777) = 0 [ 90.764377][ T5392] loop0: detected capacity change from 0 to 8192 [ 90.774778][ T5392] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 90.787897][ T5392] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 90.797319][ T5392] REISERFS (device loop0): using ordered data mode [ 90.803870][ T5392] reiserfs: using flush barriers [pid 5392] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5392] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5392] chdir("./file0") = 0 [pid 5392] ioctl(4, LOOP_CLR_FD) = 0 [pid 5392] close(4) = 0 [pid 5392] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5392] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5391] <... futex resumed>) = 0 [pid 5391] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5392] <... futex resumed>) = 0 [pid 5391] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5392] mkdir(".", 0777) = -1 EEXIST (File exists) [ 90.810095][ T5392] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 90.826776][ T5392] REISERFS (device loop0): checking transaction log (loop0) [ 90.835114][ T5392] REISERFS (device loop0): Using r5 hash to sort names [pid 5392] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5392] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5392] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5391] <... futex resumed>) = 0 [pid 5392] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5391] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5392] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5391] <... futex resumed>) = 0 [pid 5392] mkdir(".", 0777 [pid 5391] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5392] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5391] <... futex resumed>) = 0 [pid 5392] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5391] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5391] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5391] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5391] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5394 attached => {parent_tid=[5394]}, 88) = 5394 [pid 5394] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5391] rt_sigprocmask(SIG_SETMASK, [], [pid 5394] <... rseq resumed>) = 0 [pid 5391] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5394] set_robust_list(0x7fd868e9f9a0, 24 [pid 5391] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5394] <... set_robust_list resumed>) = 0 [pid 5391] <... futex resumed>) = 0 [pid 5391] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5394] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5394] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5394] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5391] <... futex resumed>) = 0 [pid 5394] <... futex resumed>) = 1 [pid 5394] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5392] <... mount resumed>) = 0 [pid 5392] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5392] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5392] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5391] exit_group(0 [pid 5394] <... futex resumed>) = ? [pid 5392] <... futex resumed>) = ? [pid 5391] <... exit_group resumed>) = ? [pid 5394] +++ exited with 0 +++ [pid 5392] +++ exited with 0 +++ [pid 5391] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5391, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./81", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./81/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./81/binderfs") = 0 [ 90.869485][ T5392] reiserfs: enabling write barrier flush mode [ 90.877355][ T5392] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 90.901584][ T5392] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./81/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./81/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./81/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./81/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./81") = 0 mkdir("./82", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5395 attached , child_tidptr=0x5555565f3690) = 5395 [pid 5395] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5395] chdir("./82") = 0 [pid 5395] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5395] setpgid(0, 0) = 0 [pid 5395] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5395] write(3, "1000", 4) = 4 [pid 5395] close(3) = 0 [pid 5395] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5395] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5395] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5395] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5395] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5395] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5395] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5395] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5396 attached [pid 5396] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5396] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5396] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5396] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5395] <... clone3 resumed> => {parent_tid=[5396]}, 88) = 5396 [pid 5395] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5395] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5396] <... futex resumed>) = 0 [pid 5395] <... futex resumed>) = 1 [pid 5396] memfd_create("syzkaller", 0 [pid 5395] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5396] <... memfd_create resumed>) = 3 [pid 5396] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5396] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5396] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5396] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5396] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5396] close(3) = 0 [pid 5396] mkdir("./file0", 0777) = 0 [ 91.178672][ T5396] loop0: detected capacity change from 0 to 8192 [ 91.189289][ T5396] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 91.202525][ T5396] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 91.211791][ T5396] REISERFS (device loop0): using ordered data mode [ 91.218308][ T5396] reiserfs: using flush barriers [pid 5396] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5396] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5396] chdir("./file0") = 0 [pid 5396] ioctl(4, LOOP_CLR_FD) = 0 [pid 5396] close(4) = 0 [pid 5396] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5395] <... futex resumed>) = 0 [pid 5395] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5396] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5395] <... futex resumed>) = 0 [pid 5395] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 91.224834][ T5396] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 91.241208][ T5396] REISERFS (device loop0): checking transaction log (loop0) [ 91.249598][ T5396] REISERFS (device loop0): Using r5 hash to sort names [ 91.262106][ T5396] reiserfs: enabling write barrier flush mode [pid 5396] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5396] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5396] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5395] <... futex resumed>) = 0 [pid 5396] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5395] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5396] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5395] <... futex resumed>) = 0 [pid 5396] mkdir(".", 0777 [pid 5395] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5396] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5395] <... futex resumed>) = 0 [pid 5396] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5395] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5395] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5395] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5396] <... mount resumed>) = 0 [pid 5395] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5396] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5395] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5396] <... openat resumed>) = 5 [pid 5396] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5398 attached ) = 0 [pid 5396] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5398] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5395] <... clone3 resumed> => {parent_tid=[5398]}, 88) = 5398 [pid 5398] <... rseq resumed>) = 0 [pid 5398] set_robust_list(0x7fd868e9f9a0, 24 [pid 5395] rt_sigprocmask(SIG_SETMASK, [], [pid 5398] <... set_robust_list resumed>) = 0 [pid 5395] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5398] rt_sigprocmask(SIG_SETMASK, [], [pid 5395] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5398] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5395] <... futex resumed>) = 0 [pid 5398] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5395] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5398] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5398] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5395] <... futex resumed>) = 0 [pid 5398] <... futex resumed>) = 1 [pid 5395] exit_group(0 [pid 5398] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5396] <... futex resumed>) = ? [pid 5395] <... exit_group resumed>) = ? [pid 5398] +++ exited with 0 +++ [pid 5396] +++ exited with 0 +++ [pid 5395] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5395, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./82", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./82/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 91.270485][ T5396] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 91.297623][ T5396] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./82/binderfs") = 0 umount2("./82/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./82/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./82/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./82/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./82") = 0 mkdir("./83", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5399 attached , child_tidptr=0x5555565f3690) = 5399 [pid 5399] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5399] chdir("./83") = 0 [pid 5399] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5399] setpgid(0, 0) = 0 [pid 5399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5399] write(3, "1000", 4) = 4 [pid 5399] close(3) = 0 [pid 5399] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5399] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5399] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5399] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5399] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5399] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5399] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5399] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5400 attached [pid 5400] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5399] <... clone3 resumed> => {parent_tid=[5400]}, 88) = 5400 [pid 5399] rt_sigprocmask(SIG_SETMASK, [], [pid 5400] <... rseq resumed>) = 0 [pid 5399] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5399] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5399] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5400] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5400] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5400] memfd_create("syzkaller", 0) = 3 [pid 5400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5400] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5400] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5400] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5400] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5400] close(3) = 0 [pid 5400] mkdir("./file0", 0777) = 0 [ 91.614993][ T5400] loop0: detected capacity change from 0 to 8192 [ 91.629755][ T5400] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 91.642768][ T5400] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 91.651976][ T5400] REISERFS (device loop0): using ordered data mode [ 91.658461][ T5400] reiserfs: using flush barriers [pid 5400] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5400] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5400] chdir("./file0") = 0 [pid 5400] ioctl(4, LOOP_CLR_FD) = 0 [pid 5400] close(4) = 0 [pid 5400] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5399] <... futex resumed>) = 0 [pid 5400] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5399] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5400] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5399] <... futex resumed>) = 0 [pid 5400] mkdir(".", 0777 [pid 5399] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5400] <... mkdir resumed>) = -1 EEXIST (File exists) [ 91.664810][ T5400] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 91.681686][ T5400] REISERFS (device loop0): checking transaction log (loop0) [ 91.689937][ T5400] REISERFS (device loop0): Using r5 hash to sort names [pid 5400] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5400] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5400] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5399] <... futex resumed>) = 0 [pid 5400] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5399] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5400] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5399] <... futex resumed>) = 0 [pid 5400] mkdir(".", 0777 [pid 5399] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5400] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5399] <... futex resumed>) = 0 [pid 5400] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5399] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5399] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 91.735398][ T5400] reiserfs: enabling write barrier flush mode [ 91.743436][ T5400] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5399] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5400] <... mount resumed>) = 0 [pid 5399] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5399] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5402 attached [pid 5400] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5399] <... clone3 resumed> => {parent_tid=[5402]}, 88) = 5402 [pid 5399] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5399] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5402] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5400] <... openat resumed>) = 5 [pid 5402] <... rseq resumed>) = 0 [pid 5400] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5399] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5402] set_robust_list(0x7fd868e9f9a0, 24 [pid 5400] <... futex resumed>) = 0 [pid 5402] <... set_robust_list resumed>) = 0 [pid 5402] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5402] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5400] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5402] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5402] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5399] <... futex resumed>) = 0 [pid 5402] <... futex resumed>) = 1 [pid 5399] exit_group(0 [pid 5400] <... futex resumed>) = ? [pid 5399] <... exit_group resumed>) = ? [pid 5402] +++ exited with 0 +++ [pid 5400] +++ exited with 0 +++ [pid 5399] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5399, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./83", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./83/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 91.778548][ T5400] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./83/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./83/binderfs") = 0 umount2("./83/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./83/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./83/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./83/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./83") = 0 mkdir("./84", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5403 attached , child_tidptr=0x5555565f3690) = 5403 [pid 5403] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5403] chdir("./84") = 0 [pid 5403] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5403] setpgid(0, 0) = 0 [pid 5403] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5403] write(3, "1000", 4) = 4 [pid 5403] close(3) = 0 [pid 5403] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5403] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5403] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5403] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5403] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5403] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5403] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5403] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5404 attached [pid 5404] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5404] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5404] rt_sigprocmask(SIG_SETMASK, [], [pid 5403] <... clone3 resumed> => {parent_tid=[5404]}, 88) = 5404 [pid 5404] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5403] rt_sigprocmask(SIG_SETMASK, [], [pid 5404] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5403] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5403] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5404] <... futex resumed>) = 0 [pid 5403] <... futex resumed>) = 1 [pid 5404] memfd_create("syzkaller", 0 [pid 5403] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5404] <... memfd_create resumed>) = 3 [pid 5404] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5404] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5404] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5404] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5404] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5404] close(3) = 0 [pid 5404] mkdir("./file0", 0777) = 0 [ 92.080478][ T5404] loop0: detected capacity change from 0 to 8192 [ 92.097943][ T5404] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 92.110981][ T5404] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 92.120338][ T5404] REISERFS (device loop0): using ordered data mode [pid 5404] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5404] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5404] chdir("./file0") = 0 [pid 5404] ioctl(4, LOOP_CLR_FD) = 0 [pid 5404] close(4) = 0 [pid 5404] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5403] <... futex resumed>) = 0 [pid 5404] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5403] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5404] mkdir(".", 0777 [pid 5403] <... futex resumed>) = 0 [pid 5404] <... mkdir resumed>) = -1 EEXIST (File exists) [ 92.126888][ T5404] reiserfs: using flush barriers [ 92.133161][ T5404] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 92.149922][ T5404] REISERFS (device loop0): checking transaction log (loop0) [ 92.158285][ T5404] REISERFS (device loop0): Using r5 hash to sort names [pid 5404] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5403] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5404] <... mount resumed>) = 0 [pid 5404] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5404] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5403] <... futex resumed>) = 0 [pid 5404] <... futex resumed>) = 1 [pid 5403] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5404] mkdir(".", 0777 [pid 5403] <... futex resumed>) = 0 [pid 5404] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5403] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5404] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5403] <... futex resumed>) = 0 [pid 5403] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5403] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5403] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 92.184497][ T5404] reiserfs: enabling write barrier flush mode [ 92.194661][ T5404] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5403] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5404] <... mount resumed>) = 0 ./strace-static-x86_64: Process 5406 attached [pid 5404] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5403] <... clone3 resumed> => {parent_tid=[5406]}, 88) = 5406 [pid 5403] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5406] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5404] <... openat resumed>) = 5 [pid 5406] <... rseq resumed>) = 0 [pid 5404] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5403] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5406] set_robust_list(0x7fd868e9f9a0, 24 [pid 5404] <... futex resumed>) = 0 [pid 5403] <... futex resumed>) = 0 [pid 5406] <... set_robust_list resumed>) = 0 [pid 5404] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5403] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5406] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5406] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5406] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5403] <... futex resumed>) = 0 [pid 5406] <... futex resumed>) = 1 [pid 5403] exit_group(0 [pid 5404] <... futex resumed>) = ? [pid 5406] +++ exited with 0 +++ [pid 5404] +++ exited with 0 +++ [pid 5403] <... exit_group resumed>) = ? [pid 5403] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5403, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./84", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 92.232177][ T5404] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./84/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./84/binderfs") = 0 umount2("./84/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./84/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./84/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./84/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./84") = 0 mkdir("./85", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5407 ./strace-static-x86_64: Process 5407 attached [pid 5407] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5407] chdir("./85") = 0 [pid 5407] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5407] setpgid(0, 0) = 0 [pid 5407] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5407] write(3, "1000", 4) = 4 [pid 5407] close(3) = 0 [pid 5407] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5407] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5407] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5407] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5407] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5407] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5407] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5407] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5408 attached => {parent_tid=[5408]}, 88) = 5408 [pid 5407] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5408] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5407] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5408] set_robust_list(0x7fd868ec09a0, 24 [pid 5407] <... futex resumed>) = 0 [pid 5408] <... set_robust_list resumed>) = 0 [pid 5408] rt_sigprocmask(SIG_SETMASK, [], [pid 5407] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5408] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5408] memfd_create("syzkaller", 0) = 3 [pid 5408] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5408] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5408] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5408] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5408] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5408] close(3) = 0 [pid 5408] mkdir("./file0", 0777) = 0 [ 92.526243][ T5408] loop0: detected capacity change from 0 to 8192 [ 92.550226][ T5408] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 92.563299][ T5408] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5408] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5408] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5408] chdir("./file0") = 0 [pid 5408] ioctl(4, LOOP_CLR_FD) = 0 [pid 5408] close(4) = 0 [pid 5408] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5407] <... futex resumed>) = 0 [pid 5408] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5407] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5408] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5407] <... futex resumed>) = 0 [pid 5408] mkdir(".", 0777 [pid 5407] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5408] <... mkdir resumed>) = -1 EEXIST (File exists) [ 92.572646][ T5408] REISERFS (device loop0): using ordered data mode [ 92.579164][ T5408] reiserfs: using flush barriers [ 92.585794][ T5408] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 92.602297][ T5408] REISERFS (device loop0): checking transaction log (loop0) [ 92.610684][ T5408] REISERFS (device loop0): Using r5 hash to sort names [pid 5408] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5408] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5408] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5407] <... futex resumed>) = 0 [pid 5408] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5407] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5408] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5407] <... futex resumed>) = 0 [pid 5408] mkdir(".", 0777 [pid 5407] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5408] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5407] <... futex resumed>) = 0 [pid 5408] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5407] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5407] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5407] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5408] <... mount resumed>) = 0 [pid 5407] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5407] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5410 attached [pid 5410] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5408] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5407] <... clone3 resumed> => {parent_tid=[5410]}, 88) = 5410 [pid 5410] <... rseq resumed>) = 0 [pid 5408] <... openat resumed>) = 5 [pid 5407] rt_sigprocmask(SIG_SETMASK, [], [pid 5410] set_robust_list(0x7fd868e9f9a0, 24 [pid 5407] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5410] <... set_robust_list resumed>) = 0 [pid 5408] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5407] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5410] rt_sigprocmask(SIG_SETMASK, [], [pid 5408] <... futex resumed>) = 0 [pid 5407] <... futex resumed>) = 0 [pid 5410] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5408] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5407] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5410] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5410] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5407] <... futex resumed>) = 0 [pid 5410] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5407] exit_group(0 [pid 5410] <... futex resumed>) = ? [pid 5408] <... futex resumed>) = ? [pid 5407] <... exit_group resumed>) = ? [pid 5410] +++ exited with 0 +++ [pid 5408] +++ exited with 0 +++ [ 92.654603][ T5408] reiserfs: enabling write barrier flush mode [ 92.663159][ T5408] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 92.693065][ T5408] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5407] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5407, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./85", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./85/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./85/binderfs") = 0 umount2("./85/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./85/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./85/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./85/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./85/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./85") = 0 mkdir("./86", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5412 attached , child_tidptr=0x5555565f3690) = 5412 [pid 5412] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5412] chdir("./86") = 0 [pid 5412] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5412] setpgid(0, 0) = 0 [pid 5412] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5412] write(3, "1000", 4) = 4 [pid 5412] close(3) = 0 [pid 5412] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5412] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5412] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5412] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5412] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5412] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5412] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5412] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5413 attached [pid 5413] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5412] <... clone3 resumed> => {parent_tid=[5413]}, 88) = 5413 [pid 5413] <... rseq resumed>) = 0 [pid 5412] rt_sigprocmask(SIG_SETMASK, [], [pid 5413] set_robust_list(0x7fd868ec09a0, 24 [pid 5412] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5413] <... set_robust_list resumed>) = 0 [pid 5412] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5413] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5412] <... futex resumed>) = 0 [pid 5413] memfd_create("syzkaller", 0 [pid 5412] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5413] <... memfd_create resumed>) = 3 [pid 5413] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5413] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5413] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5413] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5413] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5413] close(3) = 0 [pid 5413] mkdir("./file0", 0777) = 0 [ 93.022248][ T5413] loop0: detected capacity change from 0 to 8192 [ 93.047450][ T5413] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 93.060512][ T5413] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5413] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5413] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5413] chdir("./file0") = 0 [pid 5413] ioctl(4, LOOP_CLR_FD) = 0 [pid 5413] close(4) = 0 [pid 5413] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5412] <... futex resumed>) = 0 [pid 5412] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5413] mkdir(".", 0777 [pid 5412] <... futex resumed>) = 0 [pid 5413] <... mkdir resumed>) = -1 EEXIST (File exists) [ 93.069827][ T5413] REISERFS (device loop0): using ordered data mode [ 93.076402][ T5413] reiserfs: using flush barriers [ 93.082823][ T5413] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 93.099599][ T5413] REISERFS (device loop0): checking transaction log (loop0) [ 93.108217][ T5413] REISERFS (device loop0): Using r5 hash to sort names [pid 5412] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5413] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5413] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5413] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5413] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5412] <... futex resumed>) = 0 [pid 5412] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5413] <... futex resumed>) = 0 [pid 5412] <... futex resumed>) = 1 [pid 5413] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5412] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5413] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5412] <... futex resumed>) = 0 [pid 5412] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 93.142219][ T5413] reiserfs: enabling write barrier flush mode [ 93.150752][ T5413] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5413] <... mount resumed>) = 0 [pid 5412] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5413] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5412] <... mprotect resumed>) = 0 [pid 5413] <... openat resumed>) = 5 [pid 5412] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5413] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5412] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5413] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5412] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5415 attached [pid 5415] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5412] <... clone3 resumed> => {parent_tid=[5415]}, 88) = 5415 [pid 5415] <... rseq resumed>) = 0 [pid 5412] rt_sigprocmask(SIG_SETMASK, [], [pid 5415] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5415] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5415] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5412] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5412] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5415] <... futex resumed>) = 0 [pid 5415] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5412] <... futex resumed>) = 1 [pid 5412] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5415] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5415] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5412] <... futex resumed>) = 0 [pid 5415] <... futex resumed>) = 1 [pid 5412] exit_group(0 [pid 5415] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5413] <... futex resumed>) = ? [pid 5412] <... exit_group resumed>) = ? [pid 5415] +++ exited with 0 +++ [pid 5413] +++ exited with 0 +++ [pid 5412] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5412, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./86", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 93.184691][ T5413] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./86/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./86/binderfs") = 0 umount2("./86/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./86/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./86/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./86/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./86") = 0 mkdir("./87", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5417 attached [pid 5417] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5417] chdir("./87") = 0 [pid 5417] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5417] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5417 [pid 5417] <... setpgid resumed>) = 0 [pid 5417] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5417] write(3, "1000", 4) = 4 [pid 5417] close(3) = 0 [pid 5417] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5417] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5417] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5417] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5417] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5417] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5417] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5417] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5418 attached [pid 5418] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5418] set_robust_list(0x7fd868ec09a0, 24 [pid 5417] <... clone3 resumed> => {parent_tid=[5418]}, 88) = 5418 [pid 5418] <... set_robust_list resumed>) = 0 [pid 5417] rt_sigprocmask(SIG_SETMASK, [], [pid 5418] rt_sigprocmask(SIG_SETMASK, [], [pid 5417] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5418] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5417] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5418] memfd_create("syzkaller", 0 [pid 5417] <... futex resumed>) = 0 [pid 5418] <... memfd_create resumed>) = 3 [pid 5417] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5418] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5418] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5418] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5418] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5418] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5418] close(3) = 0 [pid 5418] mkdir("./file0", 0777) = 0 [ 93.481672][ T5418] loop0: detected capacity change from 0 to 8192 [ 93.492297][ T5418] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 93.505444][ T5418] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 93.514775][ T5418] REISERFS (device loop0): using ordered data mode [ 93.521381][ T5418] reiserfs: using flush barriers [pid 5418] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5418] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5418] chdir("./file0") = 0 [pid 5418] ioctl(4, LOOP_CLR_FD) = 0 [pid 5418] close(4) = 0 [pid 5418] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5418] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5417] <... futex resumed>) = 0 [pid 5418] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5417] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5418] mkdir(".", 0777 [pid 5417] <... futex resumed>) = 0 [ 93.528229][ T5418] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 93.544907][ T5418] REISERFS (device loop0): checking transaction log (loop0) [ 93.553299][ T5418] REISERFS (device loop0): Using r5 hash to sort names [pid 5418] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5417] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5418] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5418] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5418] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5417] <... futex resumed>) = 0 [pid 5418] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5417] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5418] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5417] <... futex resumed>) = 0 [pid 5418] mkdir(".", 0777 [pid 5417] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5418] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5417] <... futex resumed>) = 0 [pid 5418] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5417] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5417] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5417] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 93.599221][ T5418] reiserfs: enabling write barrier flush mode [ 93.608812][ T5418] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5417] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5421 attached [pid 5421] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5417] <... clone3 resumed> => {parent_tid=[5421]}, 88) = 5421 [pid 5421] <... rseq resumed>) = 0 [pid 5417] rt_sigprocmask(SIG_SETMASK, [], [pid 5418] <... mount resumed>) = 0 [pid 5421] set_robust_list(0x7fd868e9f9a0, 24 [pid 5418] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5417] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5421] <... set_robust_list resumed>) = 0 [pid 5418] <... openat resumed>) = 5 [pid 5417] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5421] rt_sigprocmask(SIG_SETMASK, [], [pid 5418] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5417] <... futex resumed>) = 0 [pid 5417] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5421] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5421] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5418] <... futex resumed>) = 0 [pid 5421] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5418] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5421] <... futex resumed>) = 1 [pid 5417] <... futex resumed>) = 0 [pid 5421] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5417] exit_group(0 [pid 5421] <... futex resumed>) = ? [pid 5418] <... futex resumed>) = ? [pid 5421] +++ exited with 0 +++ [pid 5418] +++ exited with 0 +++ [pid 5417] <... exit_group resumed>) = ? [pid 5417] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5417, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./87", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./87/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 93.651761][ T5418] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./87/binderfs") = 0 umount2("./87/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./87/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./87/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./87/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./87/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./87") = 0 mkdir("./88", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5422 attached , child_tidptr=0x5555565f3690) = 5422 [pid 5422] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5422] chdir("./88") = 0 [pid 5422] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5422] setpgid(0, 0) = 0 [pid 5422] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5422] write(3, "1000", 4) = 4 [pid 5422] close(3) = 0 [pid 5422] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5422] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5422] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5422] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5422] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5422] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5422] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5422] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5423 attached [pid 5423] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5422] <... clone3 resumed> => {parent_tid=[5423]}, 88) = 5423 [pid 5423] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5422] rt_sigprocmask(SIG_SETMASK, [], [pid 5423] rt_sigprocmask(SIG_SETMASK, [], [pid 5422] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5423] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5422] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5423] memfd_create("syzkaller", 0 [pid 5422] <... futex resumed>) = 0 [pid 5422] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5423] <... memfd_create resumed>) = 3 [pid 5423] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5423] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5423] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5423] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5423] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5423] close(3) = 0 [pid 5423] mkdir("./file0", 0777) = 0 [ 93.955545][ T5423] loop0: detected capacity change from 0 to 8192 [ 93.971579][ T5423] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 93.984660][ T5423] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 93.994012][ T5423] REISERFS (device loop0): using ordered data mode [ 94.000519][ T5423] reiserfs: using flush barriers [pid 5423] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5423] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5423] chdir("./file0") = 0 [pid 5423] ioctl(4, LOOP_CLR_FD) = 0 [pid 5423] close(4) = 0 [pid 5423] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5422] <... futex resumed>) = 0 [pid 5422] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5423] mkdir(".", 0777 [pid 5422] <... futex resumed>) = 0 [pid 5423] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5423] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 94.006982][ T5423] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 94.023419][ T5423] REISERFS (device loop0): checking transaction log (loop0) [ 94.032043][ T5423] REISERFS (device loop0): Using r5 hash to sort names [pid 5422] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5423] <... mount resumed>) = 0 [pid 5423] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5423] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5422] <... futex resumed>) = 0 [pid 5422] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5423] mkdir(".", 0777 [pid 5422] <... futex resumed>) = 0 [pid 5423] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5422] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5422] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5423] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5422] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5422] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5422] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5425 attached [pid 5425] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5422] <... clone3 resumed> => {parent_tid=[5425]}, 88) = 5425 [pid 5425] <... rseq resumed>) = 0 [pid 5422] rt_sigprocmask(SIG_SETMASK, [], [pid 5425] set_robust_list(0x7fd868e9f9a0, 24 [pid 5422] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5425] <... set_robust_list resumed>) = 0 [pid 5422] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5425] rt_sigprocmask(SIG_SETMASK, [], [pid 5422] <... futex resumed>) = 0 [pid 5425] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5422] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5425] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5423] <... mount resumed>) = 0 [pid 5423] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5425] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5423] <... openat resumed>) = 5 [pid 5423] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5425] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5423] <... futex resumed>) = 0 [pid 5422] <... futex resumed>) = 0 [pid 5425] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5423] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5422] exit_group(0 [pid 5425] <... futex resumed>) = ? [pid 5423] <... futex resumed>) = ? [pid 5422] <... exit_group resumed>) = ? [pid 5425] +++ exited with 0 +++ [pid 5423] +++ exited with 0 +++ [pid 5422] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5422, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./88", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./88/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 94.065111][ T5423] reiserfs: enabling write barrier flush mode [ 94.074501][ T5423] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 94.097522][ T5423] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./88/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./88/binderfs") = 0 umount2("./88/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./88/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./88/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./88/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./88") = 0 mkdir("./89", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5427 ./strace-static-x86_64: Process 5427 attached [pid 5427] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5427] chdir("./89") = 0 [pid 5427] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5427] setpgid(0, 0) = 0 [pid 5427] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5427] write(3, "1000", 4) = 4 [pid 5427] close(3) = 0 [pid 5427] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5427] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5427] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5427] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5427] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5427] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5427] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5427] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5428 attached => {parent_tid=[5428]}, 88) = 5428 [pid 5428] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5428] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5428] rt_sigprocmask(SIG_SETMASK, [], [pid 5427] rt_sigprocmask(SIG_SETMASK, [], [pid 5428] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5427] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5428] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5427] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5427] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5428] memfd_create("syzkaller", 0) = 3 [pid 5428] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5428] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5428] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5428] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5428] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5428] close(3) = 0 [pid 5428] mkdir("./file0", 0777) = 0 [ 94.398178][ T5428] loop0: detected capacity change from 0 to 8192 [ 94.418914][ T5428] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 94.431978][ T5428] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 94.441531][ T5428] REISERFS (device loop0): using ordered data mode [pid 5428] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5428] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5428] chdir("./file0") = 0 [pid 5428] ioctl(4, LOOP_CLR_FD) = 0 [pid 5428] close(4) = 0 [pid 5428] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5427] <... futex resumed>) = 0 [pid 5427] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5428] mkdir(".", 0777 [pid 5427] <... futex resumed>) = 0 [ 94.448222][ T5428] reiserfs: using flush barriers [ 94.454836][ T5428] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 94.472445][ T5428] REISERFS (device loop0): checking transaction log (loop0) [ 94.480997][ T5428] REISERFS (device loop0): Using r5 hash to sort names [pid 5428] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5427] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5428] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5428] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5428] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5427] <... futex resumed>) = 0 [pid 5427] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5428] <... futex resumed>) = 1 [pid 5427] <... futex resumed>) = 0 [pid 5428] mkdir(".", 0777 [pid 5427] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5428] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5427] <... futex resumed>) = 0 [pid 5428] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5427] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5427] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5427] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5428] <... mount resumed>) = 0 [pid 5427] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5427] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5430 attached [pid 5428] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5427] <... clone3 resumed> => {parent_tid=[5430]}, 88) = 5430 [pid 5430] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5427] rt_sigprocmask(SIG_SETMASK, [], [pid 5430] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5427] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5430] rt_sigprocmask(SIG_SETMASK, [], [pid 5427] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5428] <... openat resumed>) = 5 [pid 5430] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5428] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5427] <... futex resumed>) = 0 [pid 5430] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5427] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5428] <... futex resumed>) = 0 [pid 5428] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5430] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5430] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5427] <... futex resumed>) = 0 [pid 5430] <... futex resumed>) = 1 [pid 5427] exit_group(0 [pid 5428] <... futex resumed>) = ? [pid 5427] <... exit_group resumed>) = ? [pid 5430] +++ exited with 0 +++ [pid 5428] +++ exited with 0 +++ [pid 5427] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5427, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./89", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./89/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./89/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./89/binderfs") = 0 [ 94.513561][ T5428] reiserfs: enabling write barrier flush mode [ 94.522750][ T5428] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 94.549553][ T5428] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./89/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./89/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./89/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./89/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./89/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./89") = 0 mkdir("./90", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5431 attached , child_tidptr=0x5555565f3690) = 5431 [pid 5431] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5431] chdir("./90") = 0 [pid 5431] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5431] setpgid(0, 0) = 0 [pid 5431] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5431] write(3, "1000", 4) = 4 [pid 5431] close(3) = 0 [pid 5431] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5431] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5431] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5431] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5431] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5431] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5431] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5431] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5432 attached [pid 5432] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5431] <... clone3 resumed> => {parent_tid=[5432]}, 88) = 5432 [pid 5432] set_robust_list(0x7fd868ec09a0, 24 [pid 5431] rt_sigprocmask(SIG_SETMASK, [], [pid 5432] <... set_robust_list resumed>) = 0 [pid 5431] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5432] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5431] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5432] memfd_create("syzkaller", 0 [pid 5431] <... futex resumed>) = 0 [pid 5431] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5432] <... memfd_create resumed>) = 3 [pid 5432] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5432] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5432] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5432] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5432] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5432] close(3) = 0 [pid 5432] mkdir("./file0", 0777) = 0 [ 94.824205][ T5432] loop0: detected capacity change from 0 to 8192 [ 94.839775][ T5432] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 94.852822][ T5432] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 94.862158][ T5432] REISERFS (device loop0): using ordered data mode [ 94.868699][ T5432] reiserfs: using flush barriers [pid 5432] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5432] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5432] chdir("./file0") = 0 [pid 5432] ioctl(4, LOOP_CLR_FD) = 0 [pid 5432] close(4) = 0 [pid 5432] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5431] <... futex resumed>) = 0 [pid 5432] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5431] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5432] mkdir(".", 0777 [pid 5431] <... futex resumed>) = 0 [pid 5432] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5431] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 94.875425][ T5432] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 94.892139][ T5432] REISERFS (device loop0): checking transaction log (loop0) [ 94.900509][ T5432] REISERFS (device loop0): Using r5 hash to sort names [pid 5432] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5432] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5432] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5432] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5431] <... futex resumed>) = 0 [pid 5431] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5432] <... futex resumed>) = 0 [pid 5431] <... futex resumed>) = 1 [pid 5432] mkdir(".", 0777 [pid 5431] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5432] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5432] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5431] <... futex resumed>) = 0 [pid 5431] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 94.939338][ T5432] reiserfs: enabling write barrier flush mode [ 94.947440][ T5432] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5431] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5432] <... mount resumed>) = 0 [pid 5431] <... mprotect resumed>) = 0 [pid 5432] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5431] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5432] <... openat resumed>) = 5 [pid 5431] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5432] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5432] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5431] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5435 attached => {parent_tid=[5435]}, 88) = 5435 [pid 5435] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5431] rt_sigprocmask(SIG_SETMASK, [], [pid 5435] <... rseq resumed>) = 0 [pid 5431] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5435] set_robust_list(0x7fd868e9f9a0, 24 [pid 5431] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5435] <... set_robust_list resumed>) = 0 [pid 5435] rt_sigprocmask(SIG_SETMASK, [], [pid 5431] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5435] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5435] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5435] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5431] <... futex resumed>) = 0 [pid 5431] exit_group(0 [pid 5432] <... futex resumed>) = ? [pid 5431] <... exit_group resumed>) = ? [pid 5432] +++ exited with 0 +++ [pid 5435] +++ exited with 0 +++ [pid 5431] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5431, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./90", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./90/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./90/binderfs") = 0 [ 94.986012][ T5432] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./90/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./90/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./90/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./90/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./90/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./90") = 0 mkdir("./91", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5436 attached , child_tidptr=0x5555565f3690) = 5436 [pid 5436] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5436] chdir("./91") = 0 [pid 5436] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5436] setpgid(0, 0) = 0 [pid 5436] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5436] write(3, "1000", 4) = 4 [pid 5436] close(3) = 0 [pid 5436] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5436] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5436] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5436] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5436] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5436] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5436] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5436] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5438 attached [pid 5438] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5436] <... clone3 resumed> => {parent_tid=[5438]}, 88) = 5438 [pid 5438] <... rseq resumed>) = 0 [pid 5436] rt_sigprocmask(SIG_SETMASK, [], [pid 5438] set_robust_list(0x7fd868ec09a0, 24 [pid 5436] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5436] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5436] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5438] <... set_robust_list resumed>) = 0 [pid 5438] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5438] memfd_create("syzkaller", 0) = 3 [pid 5438] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5438] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5438] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5438] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5438] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5438] close(3) = 0 [pid 5438] mkdir("./file0", 0777) = 0 [ 95.277191][ T5438] loop0: detected capacity change from 0 to 8192 [ 95.291947][ T5438] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 95.304957][ T5438] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 95.314310][ T5438] REISERFS (device loop0): using ordered data mode [ 95.320847][ T5438] reiserfs: using flush barriers [pid 5438] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5438] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5438] chdir("./file0") = 0 [pid 5438] ioctl(4, LOOP_CLR_FD) = 0 [pid 5438] close(4) = 0 [pid 5438] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5436] <... futex resumed>) = 0 [pid 5438] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5436] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5438] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5436] <... futex resumed>) = 0 [pid 5438] mkdir(".", 0777 [pid 5436] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5438] <... mkdir resumed>) = -1 EEXIST (File exists) [ 95.327359][ T5438] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 95.343984][ T5438] REISERFS (device loop0): checking transaction log (loop0) [ 95.353684][ T5438] REISERFS (device loop0): Using r5 hash to sort names [pid 5438] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5438] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5438] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5438] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5436] <... futex resumed>) = 0 [pid 5436] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5438] <... futex resumed>) = 0 [pid 5436] <... futex resumed>) = 1 [pid 5438] mkdir(".", 0777 [pid 5436] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5438] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5436] <... futex resumed>) = 0 [pid 5438] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5436] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5436] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 95.376542][ T5438] reiserfs: enabling write barrier flush mode [ 95.385087][ T5438] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5436] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5436] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5440 attached [pid 5438] <... mount resumed>) = 0 [pid 5440] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5436] <... clone3 resumed> => {parent_tid=[5440]}, 88) = 5440 [pid 5440] set_robust_list(0x7fd868e9f9a0, 24 [pid 5436] rt_sigprocmask(SIG_SETMASK, [], [pid 5440] <... set_robust_list resumed>) = 0 [pid 5440] rt_sigprocmask(SIG_SETMASK, [], [pid 5436] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5440] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5436] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5440] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5436] <... futex resumed>) = 0 [pid 5436] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5438] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5440] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5440] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5436] <... futex resumed>) = 0 [pid 5440] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5438] <... openat resumed>) = 5 [pid 5438] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5438] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5436] exit_group(0 [pid 5440] <... futex resumed>) = ? [pid 5438] <... futex resumed>) = ? [pid 5436] <... exit_group resumed>) = ? [pid 5440] +++ exited with 0 +++ [pid 5438] +++ exited with 0 +++ [pid 5436] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5436, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./91", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./91/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./91/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./91/binderfs") = 0 umount2("./91/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./91/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./91/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 95.428453][ T5438] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./91/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./91/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./91") = 0 mkdir("./92", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5441 attached [pid 5441] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5441] chdir("./92" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5441 [pid 5441] <... chdir resumed>) = 0 [pid 5441] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5441] setpgid(0, 0) = 0 [pid 5441] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5441] write(3, "1000", 4) = 4 [pid 5441] close(3) = 0 [pid 5441] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5441] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5441] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5441] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5441] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5441] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5441] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5441] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5442 attached [pid 5442] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5441] <... clone3 resumed> => {parent_tid=[5442]}, 88) = 5442 [pid 5442] <... rseq resumed>) = 0 [pid 5441] rt_sigprocmask(SIG_SETMASK, [], [pid 5442] set_robust_list(0x7fd868ec09a0, 24 [pid 5441] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5442] <... set_robust_list resumed>) = 0 [pid 5441] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5442] rt_sigprocmask(SIG_SETMASK, [], [pid 5441] <... futex resumed>) = 0 [pid 5442] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5441] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5442] memfd_create("syzkaller", 0) = 3 [pid 5442] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5442] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5442] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5442] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5442] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5442] close(3) = 0 [pid 5442] mkdir("./file0", 0777) = 0 [ 95.651526][ T5442] loop0: detected capacity change from 0 to 8192 [ 95.676377][ T5442] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 95.689385][ T5442] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5442] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5442] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5442] chdir("./file0") = 0 [pid 5442] ioctl(4, LOOP_CLR_FD) = 0 [pid 5442] close(4) = 0 [pid 5442] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5441] <... futex resumed>) = 0 [pid 5442] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5441] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5442] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5441] <... futex resumed>) = 0 [pid 5442] mkdir(".", 0777 [pid 5441] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5442] <... mkdir resumed>) = -1 EEXIST (File exists) [ 95.698663][ T5442] REISERFS (device loop0): using ordered data mode [ 95.705229][ T5442] reiserfs: using flush barriers [ 95.711696][ T5442] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 95.728334][ T5442] REISERFS (device loop0): checking transaction log (loop0) [ 95.736842][ T5442] REISERFS (device loop0): Using r5 hash to sort names [pid 5442] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5442] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5442] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5441] <... futex resumed>) = 0 [pid 5442] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5441] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5442] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5441] <... futex resumed>) = 0 [pid 5442] mkdir(".", 0777 [pid 5441] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5442] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5441] <... futex resumed>) = 0 [pid 5442] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5441] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 95.769342][ T5442] reiserfs: enabling write barrier flush mode [ 95.777879][ T5442] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5441] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5441] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5442] <... mount resumed>) = 0 [pid 5441] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5441] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5444 attached [pid 5444] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5444] set_robust_list(0x7fd868e9f9a0, 24 [pid 5442] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5441] <... clone3 resumed> => {parent_tid=[5444]}, 88) = 5444 [pid 5444] <... set_robust_list resumed>) = 0 [pid 5442] <... openat resumed>) = 5 [pid 5441] rt_sigprocmask(SIG_SETMASK, [], [pid 5444] rt_sigprocmask(SIG_SETMASK, [], [pid 5441] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5444] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5442] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5441] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5444] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5442] <... futex resumed>) = 0 [pid 5441] <... futex resumed>) = 0 [pid 5442] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5441] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5444] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5444] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5441] <... futex resumed>) = 0 [pid 5444] <... futex resumed>) = 1 [pid 5441] exit_group(0 [pid 5444] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5442] <... futex resumed>) = ? [pid 5441] <... exit_group resumed>) = ? [pid 5444] <... futex resumed>) = ? [pid 5442] +++ exited with 0 +++ [pid 5444] +++ exited with 0 +++ [pid 5441] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5441, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./92", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./92/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 95.810372][ T5442] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./92/binderfs") = 0 umount2("./92/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./92/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./92/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./92/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./92/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./92") = 0 mkdir("./93", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5445 ./strace-static-x86_64: Process 5445 attached [pid 5445] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5445] chdir("./93") = 0 [pid 5445] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5445] setpgid(0, 0) = 0 [pid 5445] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5445] write(3, "1000", 4) = 4 [pid 5445] close(3) = 0 [pid 5445] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5445] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5445] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5445] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5445] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5445] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5445] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5445] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5446 attached [pid 5446] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5446] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5445] <... clone3 resumed> => {parent_tid=[5446]}, 88) = 5446 [pid 5446] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5446] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5445] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5445] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5446] <... futex resumed>) = 0 [pid 5445] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5446] memfd_create("syzkaller", 0) = 3 [pid 5446] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5446] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5446] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5446] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5446] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5446] close(3) = 0 [pid 5446] mkdir("./file0", 0777) = 0 [ 96.115707][ T5446] loop0: detected capacity change from 0 to 8192 [ 96.127176][ T5446] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 96.140282][ T5446] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 96.149781][ T5446] REISERFS (device loop0): using ordered data mode [ 96.156510][ T5446] reiserfs: using flush barriers [pid 5446] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5446] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5446] chdir("./file0") = 0 [pid 5446] ioctl(4, LOOP_CLR_FD) = 0 [pid 5446] close(4) = 0 [pid 5446] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5445] <... futex resumed>) = 0 [pid 5446] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5445] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5446] mkdir(".", 0777 [pid 5445] <... futex resumed>) = 0 [pid 5446] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5445] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 96.162711][ T5446] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 96.179712][ T5446] REISERFS (device loop0): checking transaction log (loop0) [ 96.188061][ T5446] REISERFS (device loop0): Using r5 hash to sort names [ 96.208226][ T5446] reiserfs: enabling write barrier flush mode [pid 5446] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5446] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5446] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5445] <... futex resumed>) = 0 [pid 5446] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5445] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5446] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5446] mkdir(".", 0777 [pid 5445] <... futex resumed>) = 0 [pid 5446] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5445] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5446] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5445] <... futex resumed>) = 0 [pid 5445] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5445] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5445] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5445] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5448 attached [ 96.216789][ T5446] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. => {parent_tid=[5448]}, 88) = 5448 [pid 5448] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5446] <... mount resumed>) = 0 [pid 5448] <... rseq resumed>) = 0 [pid 5445] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5445] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5445] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5448] set_robust_list(0x7fd868e9f9a0, 24 [pid 5446] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5448] <... set_robust_list resumed>) = 0 [pid 5446] <... openat resumed>) = 5 [pid 5448] rt_sigprocmask(SIG_SETMASK, [], [pid 5446] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5448] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5446] <... futex resumed>) = 0 [pid 5448] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5446] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5448] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5448] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5445] <... futex resumed>) = 0 [pid 5448] <... futex resumed>) = 1 [pid 5445] exit_group(0 [pid 5448] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5446] <... futex resumed>) = ? [pid 5445] <... exit_group resumed>) = ? [pid 5448] +++ exited with 0 +++ [pid 5446] +++ exited with 0 +++ [pid 5445] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5445, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./93", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./93/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 96.258789][ T5446] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./93/binderfs") = 0 umount2("./93/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./93/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./93/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./93/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./93") = 0 mkdir("./94", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5449 ./strace-static-x86_64: Process 5449 attached [pid 5449] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5449] chdir("./94") = 0 [pid 5449] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5449] setpgid(0, 0) = 0 [pid 5449] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5449] write(3, "1000", 4) = 4 [pid 5449] close(3) = 0 [pid 5449] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5449] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5449] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5449] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5449] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5449] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5449] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5449] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5450 attached [pid 5450] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5449] <... clone3 resumed> => {parent_tid=[5450]}, 88) = 5450 [pid 5450] set_robust_list(0x7fd868ec09a0, 24 [pid 5449] rt_sigprocmask(SIG_SETMASK, [], [pid 5450] <... set_robust_list resumed>) = 0 [pid 5449] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5450] rt_sigprocmask(SIG_SETMASK, [], [pid 5449] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5450] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5449] <... futex resumed>) = 0 [pid 5450] memfd_create("syzkaller", 0 [pid 5449] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5450] <... memfd_create resumed>) = 3 [pid 5450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5450] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5450] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5450] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5450] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5450] close(3) = 0 [pid 5450] mkdir("./file0", 0777) = 0 [ 96.528872][ T5450] loop0: detected capacity change from 0 to 8192 [ 96.539089][ T5450] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 96.553168][ T5450] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 96.562571][ T5450] REISERFS (device loop0): using ordered data mode [ 96.569164][ T5450] reiserfs: using flush barriers [pid 5450] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5450] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5450] chdir("./file0") = 0 [pid 5450] ioctl(4, LOOP_CLR_FD) = 0 [pid 5450] close(4) = 0 [pid 5450] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5449] <... futex resumed>) = 0 [pid 5450] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5449] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5450] mkdir(".", 0777 [pid 5449] <... futex resumed>) = 0 [pid 5450] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5449] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 96.575834][ T5450] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 96.592603][ T5450] REISERFS (device loop0): checking transaction log (loop0) [ 96.601025][ T5450] REISERFS (device loop0): Using r5 hash to sort names [pid 5450] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5450] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5450] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5449] <... futex resumed>) = 0 [pid 5450] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5449] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5450] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5449] <... futex resumed>) = 0 [pid 5450] mkdir(".", 0777 [pid 5449] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5450] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5449] <... futex resumed>) = 0 [pid 5450] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5449] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5449] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5449] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5450] <... mount resumed>) = 0 [pid 5449] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5450] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5449] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5452 attached [pid 5450] <... openat resumed>) = 5 [pid 5452] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5452] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5450] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5449] <... clone3 resumed> => {parent_tid=[5452]}, 88) = 5452 [pid 5452] rt_sigprocmask(SIG_SETMASK, [], [pid 5450] <... futex resumed>) = 0 [pid 5449] rt_sigprocmask(SIG_SETMASK, [], [pid 5452] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5452] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5450] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5449] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5449] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5452] <... futex resumed>) = 0 [pid 5449] <... futex resumed>) = 1 [pid 5452] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5449] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5452] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5452] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5449] <... futex resumed>) = 0 [pid 5449] exit_group(0 [pid 5450] <... futex resumed>) = ? [pid 5449] <... exit_group resumed>) = ? [pid 5452] <... futex resumed>) = ? [pid 5450] +++ exited with 0 +++ [pid 5452] +++ exited with 0 +++ [pid 5449] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5449, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./94", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./94/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./94/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./94/binderfs") = 0 [ 96.642616][ T5450] reiserfs: enabling write barrier flush mode [ 96.651509][ T5450] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 96.679557][ T5450] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./94/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./94/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./94/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./94/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./94/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./94") = 0 mkdir("./95", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5453 attached , child_tidptr=0x5555565f3690) = 5453 [pid 5453] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5453] chdir("./95") = 0 [pid 5453] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5453] setpgid(0, 0) = 0 [pid 5453] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5453] write(3, "1000", 4) = 4 [pid 5453] close(3) = 0 [pid 5453] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5453] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5453] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5453] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5453] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5453] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5453] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5453] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5454 attached [pid 5454] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5454] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5454] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5453] <... clone3 resumed> => {parent_tid=[5454]}, 88) = 5454 [pid 5454] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5453] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5453] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5454] <... futex resumed>) = 0 [pid 5454] memfd_create("syzkaller", 0) = 3 [pid 5453] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5454] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5454] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5454] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5454] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5454] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5454] close(3) = 0 [pid 5454] mkdir("./file0", 0777) = 0 [ 96.903398][ T5454] loop0: detected capacity change from 0 to 8192 [ 96.931603][ T5454] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5454] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5454] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5454] chdir("./file0") = 0 [pid 5454] ioctl(4, LOOP_CLR_FD) = 0 [pid 5454] close(4) = 0 [ 96.944847][ T5454] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 96.954166][ T5454] REISERFS (device loop0): using ordered data mode [ 96.960692][ T5454] reiserfs: using flush barriers [ 96.967221][ T5454] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 96.984633][ T5454] REISERFS (device loop0): checking transaction log (loop0) [ 96.993633][ T5454] REISERFS (device loop0): Using r5 hash to sort names [pid 5454] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5453] <... futex resumed>) = 0 [pid 5454] <... futex resumed>) = 1 [pid 5453] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5454] mkdir(".", 0777 [pid 5453] <... futex resumed>) = 0 [pid 5454] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5453] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5454] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5454] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5454] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5453] <... futex resumed>) = 0 [pid 5454] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5453] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5453] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5454] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5454] mkdir(".", 0777 [pid 5453] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5454] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5453] <... mmap resumed>) = 0x7fd868e7f000 [pid 5454] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5453] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 97.035527][ T5454] reiserfs: enabling write barrier flush mode [ 97.044096][ T5454] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5453] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5454] <... mount resumed>) = 0 [pid 5453] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5454] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5453] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5454] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 5456 attached [pid 5456] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5454] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5453] <... clone3 resumed> => {parent_tid=[5456]}, 88) = 5456 [pid 5456] <... rseq resumed>) = 0 [pid 5453] rt_sigprocmask(SIG_SETMASK, [], [pid 5456] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5456] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5453] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5456] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5453] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5456] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5456] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5453] <... futex resumed>) = 0 [pid 5453] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5456] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5456] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5453] <... futex resumed>) = 0 [pid 5456] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5453] exit_group(0 [pid 5456] <... futex resumed>) = ? [pid 5454] <... futex resumed>) = ? [pid 5456] +++ exited with 0 +++ [pid 5454] +++ exited with 0 +++ [pid 5453] <... exit_group resumed>) = ? [pid 5453] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5453, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./95", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./95/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./95/binderfs") = 0 [ 97.090531][ T5454] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./95/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./95/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./95/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./95/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./95") = 0 mkdir("./96", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5457 attached , child_tidptr=0x5555565f3690) = 5457 [pid 5457] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5457] chdir("./96") = 0 [pid 5457] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5457] setpgid(0, 0) = 0 [pid 5457] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5457] write(3, "1000", 4) = 4 [pid 5457] close(3) = 0 [pid 5457] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5457] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5457] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5457] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5457] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5457] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5457] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5457] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5458 attached [pid 5458] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5457] <... clone3 resumed> => {parent_tid=[5458]}, 88) = 5458 [pid 5458] set_robust_list(0x7fd868ec09a0, 24 [pid 5457] rt_sigprocmask(SIG_SETMASK, [], [pid 5458] <... set_robust_list resumed>) = 0 [pid 5457] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5458] rt_sigprocmask(SIG_SETMASK, [], [pid 5457] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5458] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5457] <... futex resumed>) = 0 [pid 5458] memfd_create("syzkaller", 0 [pid 5457] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5458] <... memfd_create resumed>) = 3 [pid 5458] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5458] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5458] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5458] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5458] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5458] close(3) = 0 [pid 5458] mkdir("./file0", 0777) = 0 [ 97.357533][ T5458] loop0: detected capacity change from 0 to 8192 [ 97.373077][ T5458] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 97.386123][ T5458] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 97.395454][ T5458] REISERFS (device loop0): using ordered data mode [ 97.401996][ T5458] reiserfs: using flush barriers [pid 5458] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5458] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5458] chdir("./file0") = 0 [pid 5458] ioctl(4, LOOP_CLR_FD) = 0 [pid 5458] close(4) = 0 [pid 5458] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5458] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5457] <... futex resumed>) = 0 [pid 5457] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5458] <... futex resumed>) = 0 [pid 5457] <... futex resumed>) = 1 [pid 5458] mkdir(".", 0777) = -1 EEXIST (File exists) [ 97.408123][ T5458] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 97.424709][ T5458] REISERFS (device loop0): checking transaction log (loop0) [ 97.433372][ T5458] REISERFS (device loop0): Using r5 hash to sort names [pid 5457] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5458] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5458] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5458] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5457] <... futex resumed>) = 0 [pid 5458] mkdir(".", 0777 [pid 5457] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5458] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5457] <... futex resumed>) = 0 [pid 5458] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5457] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5457] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5457] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5458] <... mount resumed>) = 0 [pid 5457] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5458] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5457] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5458] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5460 attached ) = 0 [pid 5457] <... clone3 resumed> => {parent_tid=[5460]}, 88) = 5460 [pid 5460] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5458] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5460] <... rseq resumed>) = 0 [pid 5457] rt_sigprocmask(SIG_SETMASK, [], [pid 5460] set_robust_list(0x7fd868e9f9a0, 24 [pid 5457] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5460] <... set_robust_list resumed>) = 0 [pid 5457] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5460] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5457] <... futex resumed>) = 0 [pid 5460] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5457] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5460] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5460] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5460] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5457] <... futex resumed>) = 0 [pid 5457] exit_group(0 [pid 5460] <... futex resumed>) = ? [pid 5458] <... futex resumed>) = ? [pid 5457] <... exit_group resumed>) = ? [pid 5460] +++ exited with 0 +++ [pid 5458] +++ exited with 0 +++ [pid 5457] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5457, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./96", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 97.476334][ T5458] reiserfs: enabling write barrier flush mode [ 97.485116][ T5458] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 97.516223][ T5458] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./96/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./96/binderfs") = 0 umount2("./96/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./96/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./96/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./96/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./96/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./96") = 0 mkdir("./97", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5461 attached , child_tidptr=0x5555565f3690) = 5461 [pid 5461] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5461] chdir("./97") = 0 [pid 5461] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5461] setpgid(0, 0) = 0 [pid 5461] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5461] write(3, "1000", 4) = 4 [pid 5461] close(3) = 0 [pid 5461] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5461] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5461] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5461] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5461] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5461] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5461] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5461] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5462 attached [pid 5462] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5462] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5461] <... clone3 resumed> => {parent_tid=[5462]}, 88) = 5462 [pid 5462] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5461] rt_sigprocmask(SIG_SETMASK, [], [pid 5462] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5461] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5461] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5462] <... futex resumed>) = 0 [pid 5461] <... futex resumed>) = 1 [pid 5461] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5462] memfd_create("syzkaller", 0) = 3 [pid 5462] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5462] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5462] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5462] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5462] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5462] close(3) = 0 [pid 5462] mkdir("./file0", 0777) = 0 [ 97.788320][ T5462] loop0: detected capacity change from 0 to 8192 [ 97.814188][ T5462] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 97.827223][ T5462] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5462] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5462] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5462] chdir("./file0") = 0 [pid 5462] ioctl(4, LOOP_CLR_FD) = 0 [pid 5462] close(4) = 0 [pid 5462] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5461] <... futex resumed>) = 0 [pid 5462] mkdir(".", 0777 [pid 5461] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5462] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5461] <... futex resumed>) = 0 [pid 5462] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 97.836503][ T5462] REISERFS (device loop0): using ordered data mode [ 97.843139][ T5462] reiserfs: using flush barriers [ 97.849757][ T5462] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 97.866696][ T5462] REISERFS (device loop0): checking transaction log (loop0) [ 97.875165][ T5462] REISERFS (device loop0): Using r5 hash to sort names [pid 5461] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5462] <... mount resumed>) = 0 [pid 5462] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5462] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5461] <... futex resumed>) = 0 [pid 5461] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5461] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5461] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5461] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5461] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5462] <... futex resumed>) = 1 [pid 5461] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5462] mkdir(".", 0777 [pid 5461] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5462] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5461] <... clone3 resumed> => {parent_tid=[5464]}, 88) = 5464 [pid 5462] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5461] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5461] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 5464 attached [pid 5461] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5464] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5464] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5464] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 97.908915][ T5462] reiserfs: enabling write barrier flush mode [ 97.918181][ T5462] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5464] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5464] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5461] <... futex resumed>) = 0 [pid 5462] <... mount resumed>) = 0 [pid 5464] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5462] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5462] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5462] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5461] exit_group(0 [pid 5464] <... futex resumed>) = ? [pid 5462] <... futex resumed>) = ? [pid 5461] <... exit_group resumed>) = ? [pid 5464] +++ exited with 0 +++ [pid 5462] +++ exited with 0 +++ [pid 5461] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5461, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./97", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./97/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./97/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./97/binderfs") = 0 umount2("./97/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./97/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 97.951209][ T5462] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./97/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./97/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./97") = 0 mkdir("./98", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5465 attached , child_tidptr=0x5555565f3690) = 5465 [pid 5465] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5465] chdir("./98") = 0 [pid 5465] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5465] setpgid(0, 0) = 0 [pid 5465] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5465] write(3, "1000", 4) = 4 [pid 5465] close(3) = 0 [pid 5465] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5465] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5465] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5465] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5465] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5465] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5465] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5465] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5466 attached [pid 5466] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5465] <... clone3 resumed> => {parent_tid=[5466]}, 88) = 5466 [pid 5466] <... rseq resumed>) = 0 [pid 5465] rt_sigprocmask(SIG_SETMASK, [], [pid 5466] set_robust_list(0x7fd868ec09a0, 24 [pid 5465] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5466] <... set_robust_list resumed>) = 0 [pid 5465] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5466] rt_sigprocmask(SIG_SETMASK, [], [pid 5465] <... futex resumed>) = 0 [pid 5466] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5466] memfd_create("syzkaller", 0 [pid 5465] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5466] <... memfd_create resumed>) = 3 [pid 5466] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5466] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5466] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5466] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5466] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5466] close(3) = 0 [pid 5466] mkdir("./file0", 0777) = 0 [ 98.232346][ T5466] loop0: detected capacity change from 0 to 8192 [ 98.248390][ T5466] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 98.261638][ T5466] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 98.270809][ T5466] REISERFS (device loop0): using ordered data mode [ 98.277350][ T5466] reiserfs: using flush barriers [pid 5466] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5466] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5466] chdir("./file0") = 0 [pid 5466] ioctl(4, LOOP_CLR_FD) = 0 [pid 5466] close(4) = 0 [pid 5466] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5465] <... futex resumed>) = 0 [pid 5466] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5465] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5466] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5465] <... futex resumed>) = 0 [pid 5466] mkdir(".", 0777 [pid 5465] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5466] <... mkdir resumed>) = -1 EEXIST (File exists) [ 98.283461][ T5466] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 98.300045][ T5466] REISERFS (device loop0): checking transaction log (loop0) [ 98.308513][ T5466] REISERFS (device loop0): Using r5 hash to sort names [pid 5466] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5466] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5466] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5465] <... futex resumed>) = 0 [pid 5466] mkdir(".", 0777 [pid 5465] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5466] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5465] <... futex resumed>) = 0 [pid 5466] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5465] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5465] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5465] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5465] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5465] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5468 attached => {parent_tid=[5468]}, 88) = 5468 [pid 5465] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5465] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5465] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 98.348748][ T5466] reiserfs: enabling write barrier flush mode [ 98.357051][ T5466] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5468] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5468] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5468] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5466] <... mount resumed>) = 0 [pid 5468] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5466] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5466] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5466] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5468] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5468] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5465] <... futex resumed>) = 0 [pid 5465] exit_group(0) = ? [pid 5466] <... futex resumed>) = ? [pid 5466] +++ exited with 0 +++ [pid 5468] <... futex resumed>) = ? [pid 5468] +++ exited with 0 +++ [pid 5465] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5465, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./98", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./98", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./98/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 98.400363][ T5466] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./98/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./98/binderfs") = 0 umount2("./98/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./98/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./98/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./98/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./98/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./98/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./98") = 0 mkdir("./99", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5469 attached [pid 5469] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5469] chdir("./99") = 0 [pid 5469] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5469 [pid 5469] setpgid(0, 0) = 0 [pid 5469] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5469] write(3, "1000", 4) = 4 [pid 5469] close(3) = 0 [pid 5469] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5469] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5469] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5469] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5469] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5469] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5469] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5469] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5470 attached [pid 5470] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5469] <... clone3 resumed> => {parent_tid=[5470]}, 88) = 5470 [pid 5470] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5469] rt_sigprocmask(SIG_SETMASK, [], [pid 5470] rt_sigprocmask(SIG_SETMASK, [], [pid 5469] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5470] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5469] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5470] memfd_create("syzkaller", 0 [pid 5469] <... futex resumed>) = 0 [pid 5469] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5470] <... memfd_create resumed>) = 3 [pid 5470] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5470] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5470] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5470] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5470] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5470] close(3) = 0 [pid 5470] mkdir("./file0", 0777) = 0 [ 98.699354][ T5470] loop0: detected capacity change from 0 to 8192 [ 98.724834][ T5470] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 98.737944][ T5470] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5470] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5470] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5470] chdir("./file0") = 0 [pid 5470] ioctl(4, LOOP_CLR_FD) = 0 [pid 5470] close(4) = 0 [pid 5470] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5469] <... futex resumed>) = 0 [pid 5470] <... futex resumed>) = 1 [pid 5469] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5470] mkdir(".", 0777 [pid 5469] <... futex resumed>) = 0 [pid 5470] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5469] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 98.747310][ T5470] REISERFS (device loop0): using ordered data mode [ 98.753863][ T5470] reiserfs: using flush barriers [ 98.760078][ T5470] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 98.776797][ T5470] REISERFS (device loop0): checking transaction log (loop0) [ 98.785090][ T5470] REISERFS (device loop0): Using r5 hash to sort names [pid 5470] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5470] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5470] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5469] <... futex resumed>) = 0 [pid 5470] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5469] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5470] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5470] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5470] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5469] <... futex resumed>) = 0 [pid 5469] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5469] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5470] <... mount resumed>) = 0 [pid 5469] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5470] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5470] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5470] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5469] <... mprotect resumed>) = 0 [pid 5469] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5469] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5472 attached => {parent_tid=[5472]}, 88) = 5472 [pid 5469] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5472] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5469] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5472] set_robust_list(0x7fd868e9f9a0, 24 [pid 5469] <... futex resumed>) = 0 [pid 5472] <... set_robust_list resumed>) = 0 [pid 5472] rt_sigprocmask(SIG_SETMASK, [], [pid 5469] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5472] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5472] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5472] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5469] <... futex resumed>) = 0 [pid 5472] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5469] exit_group(0 [pid 5470] <... futex resumed>) = ? [ 98.822392][ T5470] reiserfs: enabling write barrier flush mode [ 98.830659][ T5470] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 98.851014][ T5470] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5472] <... futex resumed>) = ? [pid 5469] <... exit_group resumed>) = ? [pid 5470] +++ exited with 0 +++ [pid 5472] +++ exited with 0 +++ [pid 5469] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5469, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./99", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./99", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./99/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./99/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./99/binderfs") = 0 umount2("./99/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./99/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./99/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./99/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./99/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./99/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./99") = 0 mkdir("./100", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5473 attached [pid 5473] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5473] chdir("./100" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5473 [pid 5473] <... chdir resumed>) = 0 [pid 5473] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5473] setpgid(0, 0) = 0 [pid 5473] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5473] write(3, "1000", 4) = 4 [pid 5473] close(3) = 0 [pid 5473] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5473] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5473] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5473] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5473] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5473] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5473] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5473] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5474 attached [pid 5474] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5474] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5474] rt_sigprocmask(SIG_SETMASK, [], [pid 5473] <... clone3 resumed> => {parent_tid=[5474]}, 88) = 5474 [pid 5474] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5474] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5473] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5473] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5474] <... futex resumed>) = 0 [pid 5473] <... futex resumed>) = 1 [pid 5473] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5474] memfd_create("syzkaller", 0) = 3 [pid 5474] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5474] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5474] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5474] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5474] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5474] close(3) = 0 [pid 5474] mkdir("./file0", 0777) = 0 [ 99.196874][ T5474] loop0: detected capacity change from 0 to 8192 [ 99.222253][ T5474] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 99.235309][ T5474] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5474] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5474] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5474] chdir("./file0") = 0 [pid 5474] ioctl(4, LOOP_CLR_FD) = 0 [pid 5474] close(4) = 0 [pid 5474] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5473] <... futex resumed>) = 0 [pid 5473] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5474] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5473] <... futex resumed>) = 0 [pid 5474] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 99.244624][ T5474] REISERFS (device loop0): using ordered data mode [ 99.251159][ T5474] reiserfs: using flush barriers [ 99.257653][ T5474] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 99.274197][ T5474] REISERFS (device loop0): checking transaction log (loop0) [ 99.282762][ T5474] REISERFS (device loop0): Using r5 hash to sort names [pid 5473] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5474] <... mount resumed>) = 0 [pid 5474] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5474] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5473] <... futex resumed>) = 0 [pid 5474] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5473] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5474] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5473] <... futex resumed>) = 0 [pid 5474] mkdir(".", 0777 [pid 5473] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5474] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5474] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5473] <... futex resumed>) = 0 [pid 5473] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5473] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5474] <... mount resumed>) = 0 [pid 5474] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5473] <... mprotect resumed>) = 0 [pid 5474] <... openat resumed>) = 5 [pid 5474] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5474] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5473] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5473] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5476 attached => {parent_tid=[5476]}, 88) = 5476 [pid 5476] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5473] rt_sigprocmask(SIG_SETMASK, [], [pid 5476] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5473] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5476] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5476] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5473] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5476] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5473] <... futex resumed>) = 0 [pid 5473] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5476] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5476] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5473] <... futex resumed>) = 0 [pid 5476] <... futex resumed>) = 1 [pid 5473] exit_group(0 [pid 5476] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5474] <... futex resumed>) = ? [pid 5473] <... exit_group resumed>) = ? [pid 5476] +++ exited with 0 +++ [pid 5474] +++ exited with 0 +++ [pid 5473] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5473, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./100", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./100", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./100/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./100/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 99.325828][ T5474] reiserfs: enabling write barrier flush mode [ 99.334035][ T5474] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 99.360038][ T5474] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./100/binderfs") = 0 umount2("./100/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./100/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./100/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./100/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./100/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./100/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./100") = 0 mkdir("./101", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5477 attached [pid 5477] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5477] chdir("./101") = 0 [pid 5477] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5477] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5477 [pid 5477] <... setpgid resumed>) = 0 [pid 5477] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5477] write(3, "1000", 4) = 4 [pid 5477] close(3) = 0 [pid 5477] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5477] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5477] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5477] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5477] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5477] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5477] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5477] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5478 attached [pid 5478] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5477] <... clone3 resumed> => {parent_tid=[5478]}, 88) = 5478 [pid 5478] <... rseq resumed>) = 0 [pid 5477] rt_sigprocmask(SIG_SETMASK, [], [pid 5478] set_robust_list(0x7fd868ec09a0, 24 [pid 5477] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5478] <... set_robust_list resumed>) = 0 [pid 5477] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5478] rt_sigprocmask(SIG_SETMASK, [], [pid 5477] <... futex resumed>) = 0 [pid 5478] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5477] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5478] memfd_create("syzkaller", 0) = 3 [pid 5478] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5478] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5478] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5478] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5478] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5478] close(3) = 0 [pid 5478] mkdir("./file0", 0777) = 0 [ 99.632214][ T5478] loop0: detected capacity change from 0 to 8192 [ 99.647415][ T5478] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 99.660496][ T5478] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 99.669782][ T5478] REISERFS (device loop0): using ordered data mode [ 99.676351][ T5478] reiserfs: using flush barriers [pid 5478] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5478] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5478] chdir("./file0") = 0 [pid 5478] ioctl(4, LOOP_CLR_FD) = 0 [pid 5478] close(4) = 0 [pid 5478] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5478] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5477] <... futex resumed>) = 0 [pid 5477] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5478] <... futex resumed>) = 0 [pid 5477] <... futex resumed>) = 1 [pid 5478] mkdir(".", 0777 [pid 5477] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5478] <... mkdir resumed>) = -1 EEXIST (File exists) [ 99.682807][ T5478] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 99.699200][ T5478] REISERFS (device loop0): checking transaction log (loop0) [ 99.707726][ T5478] REISERFS (device loop0): Using r5 hash to sort names [pid 5478] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5478] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5478] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5477] <... futex resumed>) = 0 [pid 5477] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5478] <... futex resumed>) = 1 [pid 5477] <... futex resumed>) = 0 [pid 5478] mkdir(".", 0777 [pid 5477] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5478] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5477] <... futex resumed>) = 0 [pid 5478] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5477] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5477] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5477] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5478] <... mount resumed>) = 0 [pid 5477] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5477] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5480 attached [pid 5480] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5480] set_robust_list(0x7fd868e9f9a0, 24 [pid 5478] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5477] <... clone3 resumed> => {parent_tid=[5480]}, 88) = 5480 [pid 5480] <... set_robust_list resumed>) = 0 [pid 5478] <... openat resumed>) = 5 [pid 5477] rt_sigprocmask(SIG_SETMASK, [], [pid 5480] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5478] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5477] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5480] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5478] <... futex resumed>) = 0 [pid 5477] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5480] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5478] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5477] <... futex resumed>) = 0 [pid 5480] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5477] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5480] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5480] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5477] <... futex resumed>) = 0 [pid 5480] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5477] exit_group(0 [pid 5480] <... futex resumed>) = ? [pid 5478] <... futex resumed>) = ? [pid 5480] +++ exited with 0 +++ [pid 5477] <... exit_group resumed>) = ? [pid 5478] +++ exited with 0 +++ [pid 5477] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5477, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 99.754398][ T5478] reiserfs: enabling write barrier flush mode [ 99.762557][ T5478] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 99.787798][ T5478] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./101", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./101", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./101/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./101/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./101/binderfs") = 0 umount2("./101/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./101/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./101/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./101/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./101/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./101/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./101") = 0 mkdir("./102", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5481 attached [pid 5481] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5481] chdir("./102") = 0 [pid 5481] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5481] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5481 [pid 5481] <... setpgid resumed>) = 0 [pid 5481] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5481] write(3, "1000", 4) = 4 [pid 5481] close(3) = 0 [pid 5481] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5481] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5481] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5481] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5481] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5481] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5481] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5481] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5482 attached => {parent_tid=[5482]}, 88) = 5482 [pid 5482] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5482] set_robust_list(0x7fd868ec09a0, 24 [pid 5481] rt_sigprocmask(SIG_SETMASK, [], [pid 5482] <... set_robust_list resumed>) = 0 [pid 5481] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5482] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5481] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5482] memfd_create("syzkaller", 0 [pid 5481] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5482] <... memfd_create resumed>) = 3 [pid 5482] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5482] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5482] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5482] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5482] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5482] close(3) = 0 [pid 5482] mkdir("./file0", 0777) = 0 [ 100.057950][ T5482] loop0: detected capacity change from 0 to 8192 [ 100.084798][ T5482] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 100.097852][ T5482] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5482] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5482] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5482] chdir("./file0") = 0 [pid 5482] ioctl(4, LOOP_CLR_FD) = 0 [pid 5482] close(4) = 0 [pid 5482] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5481] <... futex resumed>) = 0 [pid 5482] mkdir(".", 0777 [pid 5481] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5482] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5482] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5481] <... futex resumed>) = 0 [ 100.107171][ T5482] REISERFS (device loop0): using ordered data mode [ 100.113705][ T5482] reiserfs: using flush barriers [ 100.120304][ T5482] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 100.137136][ T5482] REISERFS (device loop0): checking transaction log (loop0) [ 100.145684][ T5482] REISERFS (device loop0): Using r5 hash to sort names [pid 5481] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5482] <... mount resumed>) = 0 [pid 5482] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5482] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5482] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5481] <... futex resumed>) = 0 [pid 5481] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5482] <... futex resumed>) = 0 [pid 5481] <... futex resumed>) = 1 [pid 5482] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5481] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5482] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5481] <... futex resumed>) = 0 [pid 5481] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 100.174042][ T5482] reiserfs: enabling write barrier flush mode [ 100.182522][ T5482] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5481] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5482] <... mount resumed>) = 0 [pid 5481] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5482] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5481] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5482] <... openat resumed>) = 5 [pid 5481] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5482] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5484 attached ) = 0 [pid 5482] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5484] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5481] <... clone3 resumed> => {parent_tid=[5484]}, 88) = 5484 [pid 5484] <... rseq resumed>) = 0 [pid 5484] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5484] rt_sigprocmask(SIG_SETMASK, [], [pid 5481] rt_sigprocmask(SIG_SETMASK, [], [pid 5484] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5481] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5484] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5481] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5484] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5481] <... futex resumed>) = 0 [pid 5484] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5481] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5484] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5484] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5481] <... futex resumed>) = 0 [pid 5484] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5481] exit_group(0 [pid 5484] <... futex resumed>) = ? [pid 5482] <... futex resumed>) = ? [pid 5481] <... exit_group resumed>) = ? [pid 5484] +++ exited with 0 +++ [pid 5482] +++ exited with 0 +++ [pid 5481] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5481, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./102", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./102", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./102/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./102/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./102/binderfs") = 0 umount2("./102/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./102/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./102/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 100.223078][ T5482] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./102/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./102/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./102/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./102") = 0 mkdir("./103", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5485 attached , child_tidptr=0x5555565f3690) = 5485 [pid 5485] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5485] chdir("./103") = 0 [pid 5485] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5485] setpgid(0, 0) = 0 [pid 5485] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5485] write(3, "1000", 4) = 4 [pid 5485] close(3) = 0 [pid 5485] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5485] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5485] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5485] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5485] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5485] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5485] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5485] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5486 attached [pid 5486] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5485] <... clone3 resumed> => {parent_tid=[5486]}, 88) = 5486 [pid 5486] <... rseq resumed>) = 0 [pid 5486] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5486] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5486] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5485] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5485] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5486] <... futex resumed>) = 0 [pid 5485] <... futex resumed>) = 1 [pid 5486] memfd_create("syzkaller", 0) = 3 [pid 5485] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5486] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5486] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5486] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5486] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5486] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5486] close(3) = 0 [pid 5486] mkdir("./file0", 0777) = 0 [ 100.447629][ T5486] loop0: detected capacity change from 0 to 8192 [ 100.463105][ T5486] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 100.476676][ T5486] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 100.486013][ T5486] REISERFS (device loop0): using ordered data mode [ 100.492552][ T5486] reiserfs: using flush barriers [pid 5486] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5486] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5486] chdir("./file0") = 0 [pid 5486] ioctl(4, LOOP_CLR_FD) = 0 [pid 5486] close(4) = 0 [pid 5486] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5486] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5485] <... futex resumed>) = 0 [pid 5485] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5486] <... futex resumed>) = 0 [pid 5485] <... futex resumed>) = 1 [pid 5486] mkdir(".", 0777 [pid 5485] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5486] <... mkdir resumed>) = -1 EEXIST (File exists) [ 100.499174][ T5486] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 100.515875][ T5486] REISERFS (device loop0): checking transaction log (loop0) [ 100.524189][ T5486] REISERFS (device loop0): Using r5 hash to sort names [pid 5486] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5486] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5486] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5485] <... futex resumed>) = 0 [pid 5486] mkdir(".", 0777 [pid 5485] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5486] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5485] <... futex resumed>) = 0 [pid 5486] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5485] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5485] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5486] <... mount resumed>) = 0 [pid 5486] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5485] <... mmap resumed>) = 0x7fd868e7f000 [pid 5486] <... openat resumed>) = 5 [pid 5485] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5486] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5485] <... mprotect resumed>) = 0 [pid 5486] <... futex resumed>) = 0 [pid 5486] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5485] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5485] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5488 attached => {parent_tid=[5488]}, 88) = 5488 [pid 5488] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5485] rt_sigprocmask(SIG_SETMASK, [], [pid 5488] set_robust_list(0x7fd868e9f9a0, 24 [pid 5485] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5488] <... set_robust_list resumed>) = 0 [pid 5485] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5488] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5485] <... futex resumed>) = 0 [pid 5488] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5485] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5488] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5488] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5485] <... futex resumed>) = 0 [pid 5488] <... futex resumed>) = 1 [pid 5485] exit_group(0 [pid 5488] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5488] +++ exited with 0 +++ [pid 5486] <... futex resumed>) = ? [pid 5485] <... exit_group resumed>) = ? [pid 5486] +++ exited with 0 +++ [pid 5485] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5485, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./103", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./103", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 100.548225][ T5486] reiserfs: enabling write barrier flush mode [ 100.557257][ T5486] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 100.576836][ T5486] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./103/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./103/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./103/binderfs") = 0 umount2("./103/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./103/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./103/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./103/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./103/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./103/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./103") = 0 mkdir("./104", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5489 attached , child_tidptr=0x5555565f3690) = 5489 [pid 5489] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5489] chdir("./104") = 0 [pid 5489] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5489] setpgid(0, 0) = 0 [pid 5489] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5489] write(3, "1000", 4) = 4 [pid 5489] close(3) = 0 [pid 5489] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5489] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5489] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5489] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5489] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5489] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5489] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5489] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5490 attached [pid 5490] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5490] set_robust_list(0x7fd868ec09a0, 24 [pid 5489] <... clone3 resumed> => {parent_tid=[5490]}, 88) = 5490 [pid 5490] <... set_robust_list resumed>) = 0 [pid 5490] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5490] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5489] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5489] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5490] <... futex resumed>) = 0 [pid 5489] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5490] memfd_create("syzkaller", 0) = 3 [pid 5490] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5490] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5490] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5490] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5490] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5490] close(3) = 0 [pid 5490] mkdir("./file0", 0777) = 0 [ 100.793887][ T5490] loop0: detected capacity change from 0 to 8192 [ 100.814241][ T5490] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 100.827251][ T5490] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 100.836627][ T5490] REISERFS (device loop0): using ordered data mode [pid 5490] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5490] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5490] chdir("./file0") = 0 [pid 5490] ioctl(4, LOOP_CLR_FD) = 0 [pid 5490] close(4) = 0 [pid 5490] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5489] <... futex resumed>) = 0 [pid 5489] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5490] <... futex resumed>) = 1 [pid 5489] <... futex resumed>) = 0 [ 100.843159][ T5490] reiserfs: using flush barriers [ 100.849228][ T5490] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 100.866005][ T5490] REISERFS (device loop0): checking transaction log (loop0) [ 100.874350][ T5490] REISERFS (device loop0): Using r5 hash to sort names [pid 5490] mkdir(".", 0777 [pid 5489] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5490] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5490] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5490] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5490] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5490] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5489] <... futex resumed>) = 0 [pid 5489] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5490] <... futex resumed>) = 0 [pid 5490] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5490] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5489] <... futex resumed>) = 1 [pid 5489] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5489] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5489] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5490] <... mount resumed>) = 0 [pid 5489] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5490] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5489] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5490] <... openat resumed>) = 5 [pid 5489] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5490] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5492 attached ) = 0 [pid 5489] <... clone3 resumed> => {parent_tid=[5492]}, 88) = 5492 [pid 5492] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5490] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5492] <... rseq resumed>) = 0 [pid 5489] rt_sigprocmask(SIG_SETMASK, [], [pid 5492] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5492] rt_sigprocmask(SIG_SETMASK, [], [pid 5489] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5492] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5492] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5489] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5492] <... futex resumed>) = 0 [pid 5492] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5489] <... futex resumed>) = 1 [pid 5489] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5492] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5492] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5489] <... futex resumed>) = 0 [pid 5492] <... futex resumed>) = 1 [ 100.899773][ T5490] reiserfs: enabling write barrier flush mode [ 100.908320][ T5490] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 100.939496][ T5490] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5489] exit_group(0 [pid 5490] <... futex resumed>) = ? [pid 5489] <... exit_group resumed>) = ? [pid 5490] +++ exited with 0 +++ [pid 5492] +++ exited with 0 +++ [pid 5489] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5489, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./104", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./104", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./104/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./104/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./104/binderfs") = 0 umount2("./104/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./104/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./104/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./104/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./104/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./104/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./104") = 0 mkdir("./105", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5493 attached , child_tidptr=0x5555565f3690) = 5493 [pid 5493] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5493] chdir("./105") = 0 [pid 5493] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5493] setpgid(0, 0) = 0 [pid 5493] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5493] write(3, "1000", 4) = 4 [pid 5493] close(3) = 0 [pid 5493] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5493] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5493] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5493] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5493] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5493] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5493] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5493] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5494 attached [pid 5494] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5494] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5494] rt_sigprocmask(SIG_SETMASK, [], [pid 5493] <... clone3 resumed> => {parent_tid=[5494]}, 88) = 5494 [pid 5494] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5493] rt_sigprocmask(SIG_SETMASK, [], [pid 5494] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5493] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5493] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5494] <... futex resumed>) = 0 [pid 5493] <... futex resumed>) = 1 [pid 5494] memfd_create("syzkaller", 0 [pid 5493] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5494] <... memfd_create resumed>) = 3 [pid 5494] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5494] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5494] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5494] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5494] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5494] close(3) = 0 [pid 5494] mkdir("./file0", 0777) = 0 [ 101.264050][ T5494] loop0: detected capacity change from 0 to 8192 [ 101.284232][ T5494] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 101.297503][ T5494] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 101.306789][ T5494] REISERFS (device loop0): using ordered data mode [pid 5494] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5494] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5494] chdir("./file0") = 0 [pid 5494] ioctl(4, LOOP_CLR_FD) = 0 [pid 5494] close(4) = 0 [pid 5494] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5493] <... futex resumed>) = 0 [pid 5494] mkdir(".", 0777 [pid 5493] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5494] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5493] <... futex resumed>) = 0 [pid 5494] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 101.313318][ T5494] reiserfs: using flush barriers [ 101.319636][ T5494] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 101.336287][ T5494] REISERFS (device loop0): checking transaction log (loop0) [ 101.344915][ T5494] REISERFS (device loop0): Using r5 hash to sort names [pid 5493] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5494] <... mount resumed>) = 0 [pid 5494] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5494] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5493] <... futex resumed>) = 0 [pid 5494] <... futex resumed>) = 1 [pid 5493] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5494] mkdir(".", 0777 [pid 5493] <... futex resumed>) = 0 [pid 5494] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5493] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5494] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5493] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5493] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5493] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5493] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5494] <... mount resumed>) = 0 [pid 5494] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5496 attached ) = 5 [pid 5496] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5494] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5493] <... clone3 resumed> => {parent_tid=[5496]}, 88) = 5496 [pid 5496] <... rseq resumed>) = 0 [pid 5494] <... futex resumed>) = 0 [pid 5494] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5493] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5493] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5493] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5496] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5496] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5496] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5496] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5493] <... futex resumed>) = 0 [pid 5496] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5493] exit_group(0 [pid 5496] <... futex resumed>) = ? [pid 5494] <... futex resumed>) = ? [pid 5496] +++ exited with 0 +++ [pid 5494] +++ exited with 0 +++ [pid 5493] <... exit_group resumed>) = ? [pid 5493] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5493, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./105", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./105", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./105/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./105/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./105/binderfs") = 0 [ 101.369617][ T5494] reiserfs: enabling write barrier flush mode [ 101.377793][ T5494] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 101.404210][ T5494] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./105/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./105/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./105/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./105/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./105/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./105/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./105") = 0 mkdir("./106", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5497 attached , child_tidptr=0x5555565f3690) = 5497 [pid 5497] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5497] chdir("./106") = 0 [pid 5497] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5497] setpgid(0, 0) = 0 [pid 5497] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5497] write(3, "1000", 4) = 4 [pid 5497] close(3) = 0 [pid 5497] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5497] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5497] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5497] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5497] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5497] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5497] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5497] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5498 attached [pid 5498] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5497] <... clone3 resumed> => {parent_tid=[5498]}, 88) = 5498 [pid 5498] set_robust_list(0x7fd868ec09a0, 24 [pid 5497] rt_sigprocmask(SIG_SETMASK, [], [pid 5498] <... set_robust_list resumed>) = 0 [pid 5497] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5498] rt_sigprocmask(SIG_SETMASK, [], [pid 5497] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5498] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5497] <... futex resumed>) = 0 [pid 5498] memfd_create("syzkaller", 0 [pid 5497] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5498] <... memfd_create resumed>) = 3 [pid 5498] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5498] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5498] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5498] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5498] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5498] close(3) = 0 [pid 5498] mkdir("./file0", 0777) = 0 [ 101.700771][ T5498] loop0: detected capacity change from 0 to 8192 [ 101.716758][ T5498] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 101.729756][ T5498] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 101.739131][ T5498] REISERFS (device loop0): using ordered data mode [ 101.745654][ T5498] reiserfs: using flush barriers [pid 5498] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5498] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5498] chdir("./file0") = 0 [pid 5498] ioctl(4, LOOP_CLR_FD) = 0 [pid 5498] close(4) = 0 [pid 5498] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5497] <... futex resumed>) = 0 [pid 5498] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5497] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5498] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5497] <... futex resumed>) = 0 [pid 5497] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 101.752123][ T5498] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 101.768692][ T5498] REISERFS (device loop0): checking transaction log (loop0) [ 101.777241][ T5498] REISERFS (device loop0): Using r5 hash to sort names [pid 5498] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5498] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5498] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5498] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5497] <... futex resumed>) = 0 [pid 5497] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5497] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5497] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5497] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5497] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5497] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5500]}, 88) = 5500 [pid 5497] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5497] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5497] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5498] <... futex resumed>) = 1 [pid 5498] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5498] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, ""./strace-static-x86_64: Process 5500 attached [pid 5500] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5500] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5500] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 101.804353][ T5498] reiserfs: enabling write barrier flush mode [ 101.814891][ T5498] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5500] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5498] <... mount resumed>) = 0 [pid 5498] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5500] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5500] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5498] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5497] <... futex resumed>) = 0 [pid 5498] <... futex resumed>) = 0 [pid 5497] exit_group(0 [pid 5498] ???( [pid 5497] <... exit_group resumed>) = ? [pid 5498] <... ??? resumed>) = ? [pid 5500] +++ exited with 0 +++ [pid 5498] +++ exited with 0 +++ [pid 5497] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5497, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./106", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./106", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./106/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./106/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./106/binderfs") = 0 [ 101.859379][ T5498] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./106/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./106/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./106/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./106/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./106/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./106/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./106") = 0 mkdir("./107", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5501 attached , child_tidptr=0x5555565f3690) = 5501 [pid 5501] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5501] chdir("./107") = 0 [pid 5501] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5501] setpgid(0, 0) = 0 [pid 5501] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5501] write(3, "1000", 4) = 4 [pid 5501] close(3) = 0 [pid 5501] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5501] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5501] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5501] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5501] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5501] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5501] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5501] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5502 attached => {parent_tid=[5502]}, 88) = 5502 [pid 5501] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5501] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5502] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5501] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5502] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5502] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5502] memfd_create("syzkaller", 0) = 3 [pid 5502] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5502] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5502] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5502] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5502] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5502] close(3) = 0 [pid 5502] mkdir("./file0", 0777) = 0 [ 102.082963][ T5502] loop0: detected capacity change from 0 to 8192 [ 102.098797][ T5502] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 102.111802][ T5502] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 102.120972][ T5502] REISERFS (device loop0): using ordered data mode [ 102.127542][ T5502] reiserfs: using flush barriers [pid 5502] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5502] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5502] chdir("./file0") = 0 [pid 5502] ioctl(4, LOOP_CLR_FD) = 0 [pid 5502] close(4) = 0 [pid 5502] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5501] <... futex resumed>) = 0 [pid 5502] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5501] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5502] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5501] <... futex resumed>) = 0 [pid 5502] mkdir(".", 0777 [pid 5501] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5502] <... mkdir resumed>) = -1 EEXIST (File exists) [ 102.134145][ T5502] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 102.150952][ T5502] REISERFS (device loop0): checking transaction log (loop0) [ 102.159205][ T5502] REISERFS (device loop0): Using r5 hash to sort names [pid 5502] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5502] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5502] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5502] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5501] <... futex resumed>) = 0 [pid 5501] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5502] <... futex resumed>) = 0 [pid 5502] mkdir(".", 0777 [pid 5501] <... futex resumed>) = 1 [pid 5502] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5501] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5502] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5501] <... futex resumed>) = 0 [pid 5501] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5501] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5502] <... mount resumed>) = 0 [pid 5501] <... mprotect resumed>) = 0 [pid 5502] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5501] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5502] <... openat resumed>) = 5 [pid 5501] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5502] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5501] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5502] <... futex resumed>) = 0 [pid 5502] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5501] <... clone3 resumed> => {parent_tid=[5504]}, 88) = 5504 ./strace-static-x86_64: Process 5504 attached [pid 5504] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5501] rt_sigprocmask(SIG_SETMASK, [], [pid 5504] <... rseq resumed>) = 0 [pid 5501] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5504] set_robust_list(0x7fd868e9f9a0, 24 [pid 5501] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5504] <... set_robust_list resumed>) = 0 [pid 5501] <... futex resumed>) = 0 [pid 5504] rt_sigprocmask(SIG_SETMASK, [], [pid 5501] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5504] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5504] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5504] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5501] <... futex resumed>) = 0 [pid 5504] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5501] exit_group(0 [pid 5502] <... futex resumed>) = ? [pid 5504] <... futex resumed>) = ? [pid 5502] +++ exited with 0 +++ [pid 5504] +++ exited with 0 +++ [pid 5501] <... exit_group resumed>) = ? [pid 5501] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5501, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./107", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./107", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 102.197877][ T5502] reiserfs: enabling write barrier flush mode [ 102.206304][ T5502] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 102.227184][ T5502] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./107/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./107/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./107/binderfs") = 0 umount2("./107/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./107/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./107/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./107/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./107/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./107/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./107") = 0 mkdir("./108", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5505 ./strace-static-x86_64: Process 5505 attached [pid 5505] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5505] chdir("./108") = 0 [pid 5505] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5505] setpgid(0, 0) = 0 [pid 5505] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5505] write(3, "1000", 4) = 4 [pid 5505] close(3) = 0 [pid 5505] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5505] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5505] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5505] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5505] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5505] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5505] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5505] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5506 attached [pid 5506] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5506] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5505] <... clone3 resumed> => {parent_tid=[5506]}, 88) = 5506 [pid 5506] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5506] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5505] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5505] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5506] <... futex resumed>) = 0 [pid 5506] memfd_create("syzkaller", 0 [pid 5505] <... futex resumed>) = 1 [pid 5505] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5506] <... memfd_create resumed>) = 3 [pid 5506] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5506] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5506] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5506] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5506] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5506] close(3) = 0 [pid 5506] mkdir("./file0", 0777) = 0 [ 102.480510][ T5506] loop0: detected capacity change from 0 to 8192 [ 102.495501][ T5506] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 102.508583][ T5506] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 102.517989][ T5506] REISERFS (device loop0): using ordered data mode [ 102.524550][ T5506] reiserfs: using flush barriers [pid 5506] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5506] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5506] chdir("./file0") = 0 [pid 5506] ioctl(4, LOOP_CLR_FD) = 0 [pid 5506] close(4) = 0 [pid 5506] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5505] <... futex resumed>) = 0 [pid 5506] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5505] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5506] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5505] <... futex resumed>) = 0 [pid 5506] mkdir(".", 0777 [pid 5505] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5506] <... mkdir resumed>) = -1 EEXIST (File exists) [ 102.530891][ T5506] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 102.547639][ T5506] REISERFS (device loop0): checking transaction log (loop0) [ 102.555948][ T5506] REISERFS (device loop0): Using r5 hash to sort names [pid 5506] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5506] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5506] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5505] <... futex resumed>) = 0 [pid 5506] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5505] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5506] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5506] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5506] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5505] <... futex resumed>) = 0 [pid 5505] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5505] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5505] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5505] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5505] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5508 attached [pid 5508] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5505] <... clone3 resumed> => {parent_tid=[5508]}, 88) = 5508 [pid 5508] <... rseq resumed>) = 0 [pid 5505] rt_sigprocmask(SIG_SETMASK, [], [pid 5508] set_robust_list(0x7fd868e9f9a0, 24 [pid 5505] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5508] <... set_robust_list resumed>) = 0 [pid 5505] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5508] rt_sigprocmask(SIG_SETMASK, [], [pid 5505] <... futex resumed>) = 0 [pid 5508] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5505] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5508] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5508] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5508] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5505] <... futex resumed>) = 0 [pid 5506] <... mount resumed>) = 0 [pid 5506] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5506] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5506] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5505] exit_group(0) = ? [pid 5508] <... futex resumed>) = ? [pid 5506] <... futex resumed>) = ? [pid 5508] +++ exited with 0 +++ [pid 5506] +++ exited with 0 +++ [pid 5505] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5505, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./108", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./108", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 102.591464][ T5506] reiserfs: enabling write barrier flush mode [ 102.599126][ T5506] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 102.624719][ T5506] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./108/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./108/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./108/binderfs") = 0 umount2("./108/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./108/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./108/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./108/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./108/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./108/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./108") = 0 mkdir("./109", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5509 attached [pid 5509] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5509] chdir("./109") = 0 [pid 5509] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5509] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5509 [pid 5509] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5509] write(3, "1000", 4) = 4 [pid 5509] close(3) = 0 [pid 5509] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5509] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5509] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5509] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5509] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5509] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5509] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5509] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5510 attached [pid 5510] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5510] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5510] rt_sigprocmask(SIG_SETMASK, [], [pid 5509] <... clone3 resumed> => {parent_tid=[5510]}, 88) = 5510 [pid 5510] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5510] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5509] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5509] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5510] <... futex resumed>) = 0 [pid 5509] <... futex resumed>) = 1 [pid 5510] memfd_create("syzkaller", 0 [pid 5509] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5510] <... memfd_create resumed>) = 3 [pid 5510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5510] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5510] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5510] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5510] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5510] close(3) = 0 [pid 5510] mkdir("./file0", 0777) = 0 [ 102.937653][ T5510] loop0: detected capacity change from 0 to 8192 [ 102.947692][ T5510] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 102.960708][ T5510] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 102.970056][ T5510] REISERFS (device loop0): using ordered data mode [ 102.976632][ T5510] reiserfs: using flush barriers [pid 5510] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5510] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5510] chdir("./file0") = 0 [pid 5510] ioctl(4, LOOP_CLR_FD) = 0 [pid 5510] close(4) = 0 [pid 5510] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5509] <... futex resumed>) = 0 [pid 5509] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5510] mkdir(".", 0777 [pid 5509] <... futex resumed>) = 0 [pid 5510] <... mkdir resumed>) = -1 EEXIST (File exists) [ 102.982995][ T5510] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 102.999452][ T5510] REISERFS (device loop0): checking transaction log (loop0) [ 103.007929][ T5510] REISERFS (device loop0): Using r5 hash to sort names [pid 5509] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5510] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5510] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5510] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5509] <... futex resumed>) = 0 [pid 5510] mkdir(".", 0777 [pid 5509] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5510] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5509] <... futex resumed>) = 0 [pid 5510] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5509] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5509] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5509] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 103.037500][ T5510] reiserfs: enabling write barrier flush mode [ 103.045928][ T5510] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5509] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5510] <... mount resumed>) = 0 [pid 5509] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5509] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5512 attached [pid 5512] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5509] <... clone3 resumed> => {parent_tid=[5512]}, 88) = 5512 [pid 5512] <... rseq resumed>) = 0 [pid 5509] rt_sigprocmask(SIG_SETMASK, [], [pid 5512] set_robust_list(0x7fd868e9f9a0, 24 [pid 5509] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5512] <... set_robust_list resumed>) = 0 [pid 5510] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5509] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5512] rt_sigprocmask(SIG_SETMASK, [], [pid 5509] <... futex resumed>) = 0 [pid 5512] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5510] <... openat resumed>) = 5 [pid 5512] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5510] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5509] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5510] <... futex resumed>) = 0 [pid 5510] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5512] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5512] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5509] <... futex resumed>) = 0 [pid 5512] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5509] exit_group(0 [pid 5512] <... futex resumed>) = ? [pid 5509] <... exit_group resumed>) = ? [pid 5510] <... futex resumed>) = ? [pid 5512] +++ exited with 0 +++ [pid 5510] +++ exited with 0 +++ [pid 5509] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5509, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./109", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./109", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./109/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./109/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./109/binderfs") = 0 [ 103.079147][ T5510] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./109/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./109/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./109/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./109/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./109/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./109/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./109") = 0 mkdir("./110", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5513 attached [pid 5513] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5513] chdir("./110") = 0 [pid 5513] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5513] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5513 [pid 5513] <... setpgid resumed>) = 0 [pid 5513] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5513] write(3, "1000", 4) = 4 [pid 5513] close(3) = 0 [pid 5513] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5513] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5513] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5513] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5513] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5513] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5513] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5513] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5514 attached [pid 5514] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5513] <... clone3 resumed> => {parent_tid=[5514]}, 88) = 5514 [pid 5514] <... rseq resumed>) = 0 [pid 5513] rt_sigprocmask(SIG_SETMASK, [], [pid 5514] set_robust_list(0x7fd868ec09a0, 24 [pid 5513] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5514] <... set_robust_list resumed>) = 0 [pid 5513] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5514] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5513] <... futex resumed>) = 0 [pid 5514] memfd_create("syzkaller", 0 [pid 5513] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5514] <... memfd_create resumed>) = 3 [pid 5514] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5514] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5514] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5514] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5514] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5514] close(3) = 0 [pid 5514] mkdir("./file0", 0777) = 0 [ 103.363090][ T5514] loop0: detected capacity change from 0 to 8192 [ 103.384614][ T5514] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 103.397588][ T5514] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 103.406844][ T5514] REISERFS (device loop0): using ordered data mode [pid 5514] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5514] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5514] chdir("./file0") = 0 [pid 5514] ioctl(4, LOOP_CLR_FD) = 0 [pid 5514] close(4) = 0 [pid 5514] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5513] <... futex resumed>) = 0 [pid 5514] mkdir(".", 0777 [pid 5513] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5514] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5513] <... futex resumed>) = 0 [pid 5514] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 103.413391][ T5514] reiserfs: using flush barriers [ 103.419485][ T5514] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 103.436231][ T5514] REISERFS (device loop0): checking transaction log (loop0) [ 103.444501][ T5514] REISERFS (device loop0): Using r5 hash to sort names [pid 5513] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5514] <... mount resumed>) = 0 [pid 5514] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5514] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5513] <... futex resumed>) = 0 [pid 5514] mkdir(".", 0777 [pid 5513] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5514] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5513] <... futex resumed>) = 0 [pid 5514] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5513] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5513] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5513] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5513] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5513] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5516 attached => {parent_tid=[5516]}, 88) = 5516 [pid 5516] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5513] rt_sigprocmask(SIG_SETMASK, [], [pid 5516] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5513] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5516] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 103.483430][ T5514] reiserfs: enabling write barrier flush mode [ 103.492939][ T5514] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5516] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5513] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5516] <... futex resumed>) = 0 [pid 5516] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5513] <... futex resumed>) = 1 [pid 5514] <... mount resumed>) = 0 [pid 5514] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5513] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5516] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5514] <... openat resumed>) = 5 [pid 5516] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5514] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5516] <... futex resumed>) = 1 [pid 5514] <... futex resumed>) = 0 [pid 5513] <... futex resumed>) = 0 [pid 5516] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5514] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5513] exit_group(0 [pid 5516] <... futex resumed>) = ? [pid 5514] <... futex resumed>) = ? [pid 5513] <... exit_group resumed>) = ? [pid 5516] +++ exited with 0 +++ [pid 5514] +++ exited with 0 +++ [pid 5513] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5513, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./110", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./110", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./110/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./110/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./110/binderfs") = 0 [ 103.537041][ T5514] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./110/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./110/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./110/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./110/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./110/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./110/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./110") = 0 mkdir("./111", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5517 attached [pid 5517] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5517] chdir("./111") = 0 [pid 5517] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5517] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5517 [pid 5517] <... setpgid resumed>) = 0 [pid 5517] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5517] write(3, "1000", 4) = 4 [pid 5517] close(3) = 0 [pid 5517] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5517] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5517] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5517] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5517] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5517] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5517] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5517] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5518 attached [pid 5518] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5517] <... clone3 resumed> => {parent_tid=[5518]}, 88) = 5518 [pid 5518] <... rseq resumed>) = 0 [pid 5517] rt_sigprocmask(SIG_SETMASK, [], [pid 5518] set_robust_list(0x7fd868ec09a0, 24 [pid 5517] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5518] <... set_robust_list resumed>) = 0 [pid 5517] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5518] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5517] <... futex resumed>) = 0 [pid 5518] memfd_create("syzkaller", 0 [pid 5517] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5518] <... memfd_create resumed>) = 3 [pid 5518] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5518] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5518] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5518] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5518] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5518] close(3) = 0 [pid 5518] mkdir("./file0", 0777) = 0 [ 103.827752][ T5518] loop0: detected capacity change from 0 to 8192 [ 103.842687][ T5518] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 103.855672][ T5518] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 103.864951][ T5518] REISERFS (device loop0): using ordered data mode [ 103.871512][ T5518] reiserfs: using flush barriers [pid 5518] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5518] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5518] chdir("./file0") = 0 [pid 5518] ioctl(4, LOOP_CLR_FD) = 0 [pid 5518] close(4) = 0 [pid 5518] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5517] <... futex resumed>) = 0 [pid 5517] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5518] mkdir(".", 0777 [pid 5517] <... futex resumed>) = 0 [ 103.877956][ T5518] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 103.894608][ T5518] REISERFS (device loop0): checking transaction log (loop0) [ 103.903053][ T5518] REISERFS (device loop0): Using r5 hash to sort names [pid 5518] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5517] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5518] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5518] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5518] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5517] <... futex resumed>) = 0 [pid 5518] mkdir(".", 0777 [pid 5517] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5518] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5518] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5517] <... futex resumed>) = 0 [ 103.936126][ T5518] reiserfs: enabling write barrier flush mode [ 103.945134][ T5518] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5517] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5517] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5517] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5518] <... mount resumed>) = 0 [pid 5517] <... mprotect resumed>) = 0 [pid 5518] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5518] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5517] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5518] <... futex resumed>) = 0 [pid 5517] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5518] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5517] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5520 attached [pid 5520] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5517] <... clone3 resumed> => {parent_tid=[5520]}, 88) = 5520 [pid 5520] <... rseq resumed>) = 0 [pid 5517] rt_sigprocmask(SIG_SETMASK, [], [pid 5520] set_robust_list(0x7fd868e9f9a0, 24 [pid 5517] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5520] <... set_robust_list resumed>) = 0 [pid 5517] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5520] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5517] <... futex resumed>) = 0 [pid 5520] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5517] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5520] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5520] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5517] <... futex resumed>) = 0 [pid 5520] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5517] exit_group(0 [pid 5520] <... futex resumed>) = ? [pid 5518] <... futex resumed>) = ? [pid 5517] <... exit_group resumed>) = ? [pid 5520] +++ exited with 0 +++ [pid 5518] +++ exited with 0 +++ [pid 5517] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5517, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./111", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./111", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./111/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./111/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./111/binderfs") = 0 [ 103.986491][ T5518] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./111/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./111/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./111/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./111/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./111/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./111/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./111") = 0 mkdir("./112", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5521 attached , child_tidptr=0x5555565f3690) = 5521 [pid 5521] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5521] chdir("./112") = 0 [pid 5521] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5521] setpgid(0, 0) = 0 [pid 5521] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5521] write(3, "1000", 4) = 4 [pid 5521] close(3) = 0 [pid 5521] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5521] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5521] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5521] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5521] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5521] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5521] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5521] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5522 attached [pid 5522] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5521] <... clone3 resumed> => {parent_tid=[5522]}, 88) = 5522 [pid 5522] <... rseq resumed>) = 0 [pid 5521] rt_sigprocmask(SIG_SETMASK, [], [pid 5522] set_robust_list(0x7fd868ec09a0, 24 [pid 5521] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5522] <... set_robust_list resumed>) = 0 [pid 5521] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5522] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5521] <... futex resumed>) = 0 [pid 5522] memfd_create("syzkaller", 0 [pid 5521] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5522] <... memfd_create resumed>) = 3 [pid 5522] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5522] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5522] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5522] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5522] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5522] close(3) = 0 [pid 5522] mkdir("./file0", 0777) = 0 [ 104.268520][ T5522] loop0: detected capacity change from 0 to 8192 [ 104.284052][ T5522] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 104.297178][ T5522] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 104.306597][ T5522] REISERFS (device loop0): using ordered data mode [ 104.313159][ T5522] reiserfs: using flush barriers [pid 5522] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5522] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5522] chdir("./file0") = 0 [pid 5522] ioctl(4, LOOP_CLR_FD) = 0 [pid 5522] close(4) = 0 [pid 5522] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5522] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5521] <... futex resumed>) = 0 [pid 5521] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5521] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5522] <... futex resumed>) = 0 [pid 5522] mkdir(".", 0777) = -1 EEXIST (File exists) [ 104.319374][ T5522] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 104.336140][ T5522] REISERFS (device loop0): checking transaction log (loop0) [ 104.344402][ T5522] REISERFS (device loop0): Using r5 hash to sort names [pid 5522] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5522] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5522] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5521] <... futex resumed>) = 0 [pid 5522] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5521] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5522] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5521] <... futex resumed>) = 0 [pid 5522] mkdir(".", 0777 [pid 5521] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5522] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5521] <... futex resumed>) = 0 [pid 5522] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5521] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5521] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5521] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5521] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5524 attached [pid 5524] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5521] <... clone3 resumed> => {parent_tid=[5524]}, 88) = 5524 [pid 5524] set_robust_list(0x7fd868e9f9a0, 24 [pid 5521] rt_sigprocmask(SIG_SETMASK, [], [pid 5524] <... set_robust_list resumed>) = 0 [pid 5521] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5524] rt_sigprocmask(SIG_SETMASK, [], [pid 5521] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5524] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5521] <... futex resumed>) = 0 [pid 5524] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5521] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5524] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [ 104.381072][ T5522] reiserfs: enabling write barrier flush mode [ 104.389335][ T5522] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5524] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5521] <... futex resumed>) = 0 [pid 5524] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5522] <... mount resumed>) = 0 [pid 5522] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5522] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5521] exit_group(0 [pid 5522] <... futex resumed>) = 0 [pid 5522] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5524] <... futex resumed>) = ? [pid 5522] <... futex resumed>) = ? [pid 5524] +++ exited with 0 +++ [pid 5522] +++ exited with 0 +++ [pid 5521] <... exit_group resumed>) = ? [pid 5521] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5521, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./112", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./112", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./112/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 104.429317][ T5522] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./112/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./112/binderfs") = 0 umount2("./112/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./112/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./112/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./112/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./112/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./112/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./112") = 0 mkdir("./113", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5525 attached , child_tidptr=0x5555565f3690) = 5525 [pid 5525] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5525] chdir("./113") = 0 [pid 5525] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5525] setpgid(0, 0) = 0 [pid 5525] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5525] write(3, "1000", 4) = 4 [pid 5525] close(3) = 0 [pid 5525] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5525] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5525] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5525] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5525] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5525] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5525] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5525] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5526 attached => {parent_tid=[5526]}, 88) = 5526 [pid 5526] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5525] rt_sigprocmask(SIG_SETMASK, [], [pid 5526] set_robust_list(0x7fd868ec09a0, 24 [pid 5525] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5526] <... set_robust_list resumed>) = 0 [pid 5526] rt_sigprocmask(SIG_SETMASK, [], [pid 5525] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5526] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5525] <... futex resumed>) = 0 [pid 5525] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5526] memfd_create("syzkaller", 0) = 3 [pid 5526] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5526] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5526] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5526] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5526] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5526] close(3) = 0 [pid 5526] mkdir("./file0", 0777) = 0 [ 104.692129][ T5526] loop0: detected capacity change from 0 to 8192 [ 104.716568][ T5526] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 104.729654][ T5526] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5526] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5526] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5526] chdir("./file0") = 0 [pid 5526] ioctl(4, LOOP_CLR_FD) = 0 [pid 5526] close(4) = 0 [pid 5526] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5526] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5525] <... futex resumed>) = 0 [pid 5525] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5526] <... futex resumed>) = 0 [pid 5526] mkdir(".", 0777 [pid 5525] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5526] <... mkdir resumed>) = -1 EEXIST (File exists) [ 104.738938][ T5526] REISERFS (device loop0): using ordered data mode [ 104.745526][ T5526] reiserfs: using flush barriers [ 104.752255][ T5526] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 104.768723][ T5526] REISERFS (device loop0): checking transaction log (loop0) [ 104.777239][ T5526] REISERFS (device loop0): Using r5 hash to sort names [pid 5526] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5526] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5526] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5525] <... futex resumed>) = 0 [pid 5526] mkdir(".", 0777 [pid 5525] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5526] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5525] <... futex resumed>) = 0 [pid 5526] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5525] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5525] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5525] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5525] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 104.804588][ T5526] reiserfs: enabling write barrier flush mode [ 104.817008][ T5526] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5525] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5528 attached [pid 5526] <... mount resumed>) = 0 [pid 5528] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5525] <... clone3 resumed> => {parent_tid=[5528]}, 88) = 5528 [pid 5528] <... rseq resumed>) = 0 [pid 5525] rt_sigprocmask(SIG_SETMASK, [], [pid 5528] set_robust_list(0x7fd868e9f9a0, 24 [pid 5525] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5528] <... set_robust_list resumed>) = 0 [pid 5526] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5525] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5528] rt_sigprocmask(SIG_SETMASK, [], [pid 5525] <... futex resumed>) = 0 [pid 5528] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5526] <... openat resumed>) = 5 [pid 5525] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5526] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5528] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5526] <... futex resumed>) = 0 [pid 5526] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5528] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5528] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5525] <... futex resumed>) = 0 [pid 5525] exit_group(0 [pid 5526] <... futex resumed>) = ? [pid 5525] <... exit_group resumed>) = ? [pid 5526] +++ exited with 0 +++ [pid 5528] +++ exited with 0 +++ [pid 5525] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5525, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./113", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./113", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./113/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 104.860723][ T5526] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./113/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./113/binderfs") = 0 umount2("./113/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./113/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./113/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./113/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./113/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./113/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./113") = 0 mkdir("./114", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5530 attached [pid 5530] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5530 [pid 5530] <... set_robust_list resumed>) = 0 [pid 5530] chdir("./114") = 0 [pid 5530] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5530] setpgid(0, 0) = 0 [pid 5530] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5530] write(3, "1000", 4) = 4 [pid 5530] close(3) = 0 [pid 5530] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5530] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5530] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5530] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5530] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5530] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5530] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5530] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5531 attached [pid 5531] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5530] <... clone3 resumed> => {parent_tid=[5531]}, 88) = 5531 [pid 5531] set_robust_list(0x7fd868ec09a0, 24 [pid 5530] rt_sigprocmask(SIG_SETMASK, [], [pid 5531] <... set_robust_list resumed>) = 0 [pid 5531] rt_sigprocmask(SIG_SETMASK, [], [pid 5530] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5531] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5530] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5531] memfd_create("syzkaller", 0 [pid 5530] <... futex resumed>) = 0 [pid 5530] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5531] <... memfd_create resumed>) = 3 [pid 5531] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5531] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5531] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5531] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5531] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5531] close(3) = 0 [pid 5531] mkdir("./file0", 0777) = 0 [ 105.118402][ T5531] loop0: detected capacity change from 0 to 8192 [ 105.144365][ T5531] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 105.157503][ T5531] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5531] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5531] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5531] chdir("./file0") = 0 [pid 5531] ioctl(4, LOOP_CLR_FD) = 0 [pid 5531] close(4) = 0 [pid 5531] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5530] <... futex resumed>) = 0 [pid 5530] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5530] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5531] mkdir(".", 0777) = -1 EEXIST (File exists) [ 105.166784][ T5531] REISERFS (device loop0): using ordered data mode [ 105.173308][ T5531] reiserfs: using flush barriers [ 105.179638][ T5531] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 105.196360][ T5531] REISERFS (device loop0): checking transaction log (loop0) [ 105.204495][ T5531] REISERFS (device loop0): Using r5 hash to sort names [pid 5531] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5531] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5531] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5530] <... futex resumed>) = 0 [pid 5531] <... futex resumed>) = 1 [pid 5530] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5531] mkdir(".", 0777 [pid 5530] <... futex resumed>) = 0 [pid 5531] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5530] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5530] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5530] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5531] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5530] <... mprotect resumed>) = 0 [ 105.239926][ T5531] reiserfs: enabling write barrier flush mode [ 105.251965][ T5531] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5530] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5530] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5531] <... mount resumed>) = 0 [pid 5531] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5533 attached ) = 5 [pid 5533] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5531] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5530] <... clone3 resumed> => {parent_tid=[5533]}, 88) = 5533 [pid 5533] <... rseq resumed>) = 0 [pid 5531] <... futex resumed>) = 0 [pid 5533] set_robust_list(0x7fd868e9f9a0, 24 [pid 5531] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5530] rt_sigprocmask(SIG_SETMASK, [], [pid 5533] <... set_robust_list resumed>) = 0 [pid 5530] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5533] rt_sigprocmask(SIG_SETMASK, [], [pid 5530] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5533] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5530] <... futex resumed>) = 0 [pid 5533] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5530] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5533] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5533] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5530] <... futex resumed>) = 0 [pid 5533] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5530] exit_group(0 [pid 5533] <... futex resumed>) = ? [pid 5531] <... futex resumed>) = ? [pid 5533] +++ exited with 0 +++ [pid 5531] +++ exited with 0 +++ [pid 5530] <... exit_group resumed>) = ? [pid 5530] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5530, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./114", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./114", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./114/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./114/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./114/binderfs") = 0 [ 105.293784][ T5531] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./114/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./114/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./114/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./114/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./114/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./114/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./114") = 0 mkdir("./115", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5534 attached [pid 5534] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5534] chdir("./115") = 0 [pid 5534] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5534] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5534 [pid 5534] <... setpgid resumed>) = 0 [pid 5534] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5534] write(3, "1000", 4) = 4 [pid 5534] close(3) = 0 [pid 5534] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5534] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5534] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5534] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5534] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5534] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5534] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5534] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5535 attached => {parent_tid=[5535]}, 88) = 5535 [pid 5535] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5534] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5534] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5534] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5535] <... rseq resumed>) = 0 [pid 5535] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5535] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5535] memfd_create("syzkaller", 0) = 3 [pid 5535] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5535] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5535] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5535] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5535] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5535] close(3) = 0 [pid 5535] mkdir("./file0", 0777) = 0 [ 105.556885][ T5535] loop0: detected capacity change from 0 to 8192 [ 105.573490][ T5535] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 105.586580][ T5535] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 105.595902][ T5535] REISERFS (device loop0): using ordered data mode [ 105.602431][ T5535] reiserfs: using flush barriers [pid 5535] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5535] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5535] chdir("./file0") = 0 [pid 5535] ioctl(4, LOOP_CLR_FD) = 0 [pid 5535] close(4) = 0 [pid 5535] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5534] <... futex resumed>) = 0 [pid 5535] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5534] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5535] <... futex resumed>) = 0 [pid 5535] mkdir(".", 0777 [pid 5534] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5535] <... mkdir resumed>) = -1 EEXIST (File exists) [ 105.608717][ T5535] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 105.625517][ T5535] REISERFS (device loop0): checking transaction log (loop0) [ 105.633829][ T5535] REISERFS (device loop0): Using r5 hash to sort names [pid 5535] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5535] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5535] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5535] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5534] <... futex resumed>) = 0 [pid 5534] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5535] <... futex resumed>) = 0 [pid 5534] <... futex resumed>) = 1 [pid 5535] mkdir(".", 0777 [pid 5534] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5535] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5534] <... futex resumed>) = 0 [pid 5535] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5534] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5534] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5534] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 105.667704][ T5535] reiserfs: enabling write barrier flush mode [ 105.676862][ T5535] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5534] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5537 attached [pid 5535] <... mount resumed>) = 0 [pid 5534] <... clone3 resumed> => {parent_tid=[5537]}, 88) = 5537 [pid 5537] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5535] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5537] <... rseq resumed>) = 0 [pid 5534] rt_sigprocmask(SIG_SETMASK, [], [pid 5537] set_robust_list(0x7fd868e9f9a0, 24 [pid 5534] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5537] <... set_robust_list resumed>) = 0 [pid 5534] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5537] rt_sigprocmask(SIG_SETMASK, [], [pid 5534] <... futex resumed>) = 0 [pid 5537] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5535] <... openat resumed>) = 5 [pid 5534] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5537] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5535] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5535] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5537] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5537] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5534] <... futex resumed>) = 0 [pid 5537] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5534] exit_group(0 [pid 5537] <... futex resumed>) = ? [pid 5535] <... futex resumed>) = ? [pid 5535] +++ exited with 0 +++ [pid 5537] +++ exited with 0 +++ [pid 5534] <... exit_group resumed>) = ? [pid 5534] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5534, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./115", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./115", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 105.717701][ T5535] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./115/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./115/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./115/binderfs") = 0 umount2("./115/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./115/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./115/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./115/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./115/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./115/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./115") = 0 mkdir("./116", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5538 attached , child_tidptr=0x5555565f3690) = 5538 [pid 5538] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5538] chdir("./116") = 0 [pid 5538] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5538] setpgid(0, 0) = 0 [pid 5538] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5538] write(3, "1000", 4) = 4 [pid 5538] close(3) = 0 [pid 5538] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5538] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5538] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5538] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5538] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5538] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5538] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5538] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5539 attached => {parent_tid=[5539]}, 88) = 5539 [pid 5538] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5539] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5538] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5539] <... rseq resumed>) = 0 [pid 5538] <... futex resumed>) = 0 [pid 5538] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5539] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5539] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5539] memfd_create("syzkaller", 0) = 3 [pid 5539] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5539] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5539] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5539] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5539] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5539] close(3) = 0 [pid 5539] mkdir("./file0", 0777) = 0 [ 106.097484][ T5539] loop0: detected capacity change from 0 to 8192 [ 106.124189][ T5539] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 106.137231][ T5539] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5539] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5539] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5539] chdir("./file0") = 0 [pid 5539] ioctl(4, LOOP_CLR_FD) = 0 [pid 5539] close(4) = 0 [pid 5539] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5538] <... futex resumed>) = 0 [pid 5539] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5538] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5539] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5538] <... futex resumed>) = 0 [pid 5539] mkdir(".", 0777 [pid 5538] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5539] <... mkdir resumed>) = -1 EEXIST (File exists) [ 106.146616][ T5539] REISERFS (device loop0): using ordered data mode [ 106.153696][ T5539] reiserfs: using flush barriers [ 106.160150][ T5539] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 106.176565][ T5539] REISERFS (device loop0): checking transaction log (loop0) [ 106.184897][ T5539] REISERFS (device loop0): Using r5 hash to sort names [pid 5539] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5539] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5539] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5538] <... futex resumed>) = 0 [pid 5539] <... futex resumed>) = 1 [pid 5538] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5539] mkdir(".", 0777 [pid 5538] <... futex resumed>) = 0 [pid 5539] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5538] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5539] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5538] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5538] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5538] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5539] <... mount resumed>) = 0 [pid 5538] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5538] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5541 attached [pid 5541] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5539] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5538] <... clone3 resumed> => {parent_tid=[5541]}, 88) = 5541 [pid 5541] <... rseq resumed>) = 0 [pid 5539] <... openat resumed>) = 5 [pid 5538] rt_sigprocmask(SIG_SETMASK, [], [pid 5541] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5538] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5541] rt_sigprocmask(SIG_SETMASK, [], [pid 5539] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5538] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5541] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5539] <... futex resumed>) = 0 [pid 5538] <... futex resumed>) = 0 [pid 5541] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5539] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5538] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5541] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5541] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5538] <... futex resumed>) = 0 [pid 5541] <... futex resumed>) = 1 [pid 5538] exit_group(0 [pid 5539] <... futex resumed>) = ? [pid 5538] <... exit_group resumed>) = ? [pid 5541] +++ exited with 0 +++ [pid 5539] +++ exited with 0 +++ [pid 5538] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5538, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 106.220187][ T5539] reiserfs: enabling write barrier flush mode [ 106.228862][ T5539] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 106.255177][ T5539] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./116", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./116", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./116/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./116/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./116/binderfs") = 0 umount2("./116/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./116/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./116/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./116/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./116/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./116/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./116") = 0 mkdir("./117", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5542 ./strace-static-x86_64: Process 5542 attached [pid 5542] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5542] chdir("./117") = 0 [pid 5542] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5542] setpgid(0, 0) = 0 [pid 5542] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5542] write(3, "1000", 4) = 4 [pid 5542] close(3) = 0 [pid 5542] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5542] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5542] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5542] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5542] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5542] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5542] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5542] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5543 attached => {parent_tid=[5543]}, 88) = 5543 [pid 5542] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5543] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5542] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5543] set_robust_list(0x7fd868ec09a0, 24 [pid 5542] <... futex resumed>) = 0 [pid 5543] <... set_robust_list resumed>) = 0 [pid 5542] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5543] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5543] memfd_create("syzkaller", 0) = 3 [pid 5543] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5543] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5543] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5543] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5543] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5543] close(3) = 0 [pid 5543] mkdir("./file0", 0777) = 0 [ 106.528189][ T5543] loop0: detected capacity change from 0 to 8192 [ 106.553506][ T5543] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 106.566535][ T5543] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5543] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5543] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5543] chdir("./file0") = 0 [pid 5543] ioctl(4, LOOP_CLR_FD) = 0 [pid 5543] close(4) = 0 [pid 5543] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5542] <... futex resumed>) = 0 [pid 5543] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5542] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5542] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5543] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5543] mkdir(".", 0777) = -1 EEXIST (File exists) [ 106.575811][ T5543] REISERFS (device loop0): using ordered data mode [ 106.582342][ T5543] reiserfs: using flush barriers [ 106.588676][ T5543] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 106.605319][ T5543] REISERFS (device loop0): checking transaction log (loop0) [ 106.613620][ T5543] REISERFS (device loop0): Using r5 hash to sort names [pid 5543] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5543] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5543] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5543] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5542] <... futex resumed>) = 0 [pid 5542] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5543] <... futex resumed>) = 0 [pid 5542] <... futex resumed>) = 1 [pid 5543] mkdir(".", 0777 [pid 5542] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5543] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5542] <... futex resumed>) = 0 [pid 5543] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5542] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5542] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5542] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5542] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5545 attached [pid 5545] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5542] <... clone3 resumed> => {parent_tid=[5545]}, 88) = 5545 [pid 5543] <... mount resumed>) = 0 [pid 5545] set_robust_list(0x7fd868e9f9a0, 24 [pid 5542] rt_sigprocmask(SIG_SETMASK, [], [pid 5545] <... set_robust_list resumed>) = 0 [pid 5543] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5543] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5543] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5545] rt_sigprocmask(SIG_SETMASK, [], [pid 5542] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5545] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5542] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5545] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5542] <... futex resumed>) = 0 [pid 5542] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5545] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5545] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5542] <... futex resumed>) = 0 [pid 5545] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5542] exit_group(0 [pid 5545] <... futex resumed>) = ? [pid 5543] <... futex resumed>) = ? [pid 5545] +++ exited with 0 +++ [pid 5543] +++ exited with 0 +++ [pid 5542] <... exit_group resumed>) = ? [pid 5542] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5542, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./117", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./117", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./117/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 106.656627][ T5543] reiserfs: enabling write barrier flush mode [ 106.664833][ T5543] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 106.694101][ T5543] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./117/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./117/binderfs") = 0 umount2("./117/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./117/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./117/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./117/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./117/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./117/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./117") = 0 mkdir("./118", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5546 attached , child_tidptr=0x5555565f3690) = 5546 [pid 5546] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5546] chdir("./118") = 0 [pid 5546] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5546] setpgid(0, 0) = 0 [pid 5546] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5546] write(3, "1000", 4) = 4 [pid 5546] close(3) = 0 [pid 5546] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5546] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5546] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5546] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5546] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5546] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5546] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5546] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5547 attached [pid 5547] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5546] <... clone3 resumed> => {parent_tid=[5547]}, 88) = 5547 [pid 5547] <... rseq resumed>) = 0 [pid 5546] rt_sigprocmask(SIG_SETMASK, [], [pid 5547] set_robust_list(0x7fd868ec09a0, 24 [pid 5546] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5547] <... set_robust_list resumed>) = 0 [pid 5546] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5547] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5546] <... futex resumed>) = 0 [pid 5547] memfd_create("syzkaller", 0 [pid 5546] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5547] <... memfd_create resumed>) = 3 [pid 5547] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5547] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5547] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5547] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5547] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5547] close(3) = 0 [pid 5547] mkdir("./file0", 0777) = 0 [ 106.929656][ T5547] loop0: detected capacity change from 0 to 8192 [ 106.939700][ T5547] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 106.953124][ T5547] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 106.962436][ T5547] REISERFS (device loop0): using ordered data mode [ 106.968985][ T5547] reiserfs: using flush barriers [pid 5547] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5547] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5547] chdir("./file0") = 0 [pid 5547] ioctl(4, LOOP_CLR_FD) = 0 [pid 5547] close(4) = 0 [pid 5547] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5546] <... futex resumed>) = 0 [pid 5546] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5547] mkdir(".", 0777 [pid 5546] <... futex resumed>) = 0 [pid 5547] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5546] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 106.975361][ T5547] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 106.992005][ T5547] REISERFS (device loop0): checking transaction log (loop0) [ 107.000175][ T5547] REISERFS (device loop0): Using r5 hash to sort names [ 107.020830][ T5547] reiserfs: enabling write barrier flush mode [pid 5547] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5547] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5547] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5546] <... futex resumed>) = 0 [pid 5547] mkdir(".", 0777 [pid 5546] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5547] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5546] <... futex resumed>) = 0 [pid 5547] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5546] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5546] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5547] <... mount resumed>) = 0 [pid 5546] <... mmap resumed>) = 0x7fd868e7f000 [pid 5547] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5546] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5547] <... openat resumed>) = 5 [pid 5547] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5546] <... mprotect resumed>) = 0 [pid 5547] <... futex resumed>) = 0 [pid 5547] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5546] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5546] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5549 attached [pid 5549] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5546] <... clone3 resumed> => {parent_tid=[5549]}, 88) = 5549 [pid 5549] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5546] rt_sigprocmask(SIG_SETMASK, [], [pid 5549] rt_sigprocmask(SIG_SETMASK, [], [pid 5546] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5549] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5546] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5549] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5546] <... futex resumed>) = 0 [pid 5549] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5546] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5549] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5546] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5549] <... futex resumed>) = 0 [pid 5549] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5546] exit_group(0 [pid 5549] <... futex resumed>) = ? [pid 5546] <... exit_group resumed>) = ? [pid 5549] +++ exited with 0 +++ [pid 5547] <... futex resumed>) = ? [ 107.029926][ T5547] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 107.062115][ T5547] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5547] +++ exited with 0 +++ [pid 5546] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5546, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./118", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./118", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./118/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./118/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./118/binderfs") = 0 umount2("./118/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./118/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./118/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./118/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./118/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./118/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./118") = 0 mkdir("./119", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5550 attached [pid 5550] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5550] chdir("./119") = 0 [pid 5550] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5550] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5550 [pid 5550] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5550] write(3, "1000", 4) = 4 [pid 5550] close(3) = 0 [pid 5550] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5550] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5550] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5550] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5550] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5550] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5550] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5550] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5551 attached [pid 5551] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5550] <... clone3 resumed> => {parent_tid=[5551]}, 88) = 5551 [pid 5551] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5550] rt_sigprocmask(SIG_SETMASK, [], [pid 5551] rt_sigprocmask(SIG_SETMASK, [], [pid 5550] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5551] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5550] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5551] memfd_create("syzkaller", 0 [pid 5550] <... futex resumed>) = 0 [pid 5551] <... memfd_create resumed>) = 3 [pid 5551] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5550] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5551] <... mmap resumed>) = 0x7fd860aa0000 [pid 5551] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5551] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5551] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5551] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5551] close(3) = 0 [pid 5551] mkdir("./file0", 0777) = 0 [ 107.328535][ T5551] loop0: detected capacity change from 0 to 8192 [ 107.344655][ T5551] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 107.357726][ T5551] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 107.367090][ T5551] REISERFS (device loop0): using ordered data mode [ 107.373634][ T5551] reiserfs: using flush barriers [pid 5551] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5551] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5551] chdir("./file0") = 0 [pid 5551] ioctl(4, LOOP_CLR_FD) = 0 [pid 5551] close(4) = 0 [pid 5551] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 107.379799][ T5551] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 107.396480][ T5551] REISERFS (device loop0): checking transaction log (loop0) [ 107.404647][ T5551] REISERFS (device loop0): Using r5 hash to sort names [pid 5551] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5550] <... futex resumed>) = 0 [pid 5550] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5551] <... futex resumed>) = 0 [pid 5550] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5551] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5551] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5551] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5551] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5550] <... futex resumed>) = 0 [pid 5551] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5550] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5551] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5550] <... futex resumed>) = 0 [pid 5551] mkdir(".", 0777 [pid 5550] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5551] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5550] <... futex resumed>) = 0 [pid 5551] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5550] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5550] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5550] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 107.438342][ T5551] reiserfs: enabling write barrier flush mode [ 107.447462][ T5551] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5550] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5553 attached [pid 5551] <... mount resumed>) = 0 [pid 5553] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5550] <... clone3 resumed> => {parent_tid=[5553]}, 88) = 5553 [pid 5551] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5551] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5551] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5553] <... rseq resumed>) = 0 [pid 5553] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5553] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5553] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5550] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5550] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5553] <... futex resumed>) = 0 [pid 5553] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5550] <... futex resumed>) = 1 [pid 5550] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5553] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5553] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5550] <... futex resumed>) = 0 [pid 5553] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5550] exit_group(0 [pid 5553] <... futex resumed>) = ? [pid 5551] <... futex resumed>) = ? [pid 5553] +++ exited with 0 +++ [pid 5551] +++ exited with 0 +++ [pid 5550] <... exit_group resumed>) = ? [pid 5550] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5550, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./119", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./119", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./119/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./119/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./119/binderfs") = 0 [ 107.478732][ T5551] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./119/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./119/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./119/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./119/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./119/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./119/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./119") = 0 mkdir("./120", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5554 attached , child_tidptr=0x5555565f3690) = 5554 [pid 5554] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5554] chdir("./120") = 0 [pid 5554] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5554] setpgid(0, 0) = 0 [pid 5554] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5554] write(3, "1000", 4) = 4 [pid 5554] close(3) = 0 [pid 5554] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5554] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5554] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5554] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5554] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5554] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5554] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5554] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5555 attached [pid 5555] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5554] <... clone3 resumed> => {parent_tid=[5555]}, 88) = 5555 [pid 5555] set_robust_list(0x7fd868ec09a0, 24 [pid 5554] rt_sigprocmask(SIG_SETMASK, [], [pid 5555] <... set_robust_list resumed>) = 0 [pid 5554] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5555] rt_sigprocmask(SIG_SETMASK, [], [pid 5554] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5555] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5554] <... futex resumed>) = 0 [pid 5555] memfd_create("syzkaller", 0 [pid 5554] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5555] <... memfd_create resumed>) = 3 [pid 5555] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5555] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5555] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5555] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5555] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5555] close(3) = 0 [pid 5555] mkdir("./file0", 0777) = 0 [ 107.710913][ T5555] loop0: detected capacity change from 0 to 8192 [ 107.726239][ T5555] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 107.739300][ T5555] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 107.748565][ T5555] REISERFS (device loop0): using ordered data mode [ 107.755112][ T5555] reiserfs: using flush barriers [pid 5555] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5555] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5555] chdir("./file0") = 0 [pid 5555] ioctl(4, LOOP_CLR_FD) = 0 [pid 5555] close(4) = 0 [pid 5555] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5554] <... futex resumed>) = 0 [pid 5555] <... futex resumed>) = 1 [pid 5554] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5555] mkdir(".", 0777 [pid 5554] <... futex resumed>) = 0 [pid 5555] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5554] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 107.761162][ T5555] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 107.777999][ T5555] REISERFS (device loop0): checking transaction log (loop0) [ 107.786230][ T5555] REISERFS (device loop0): Using r5 hash to sort names [pid 5555] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5555] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5555] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5555] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5554] <... futex resumed>) = 0 [pid 5555] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5554] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5555] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5555] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5554] <... futex resumed>) = 0 [pid 5554] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 107.815987][ T5555] reiserfs: enabling write barrier flush mode [ 107.824767][ T5555] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5554] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5554] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5554] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5555] <... mount resumed>) = 0 [pid 5554] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5554] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5557 attached [pid 5557] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5554] <... clone3 resumed> => {parent_tid=[5557]}, 88) = 5557 [pid 5557] set_robust_list(0x7fd868e9f9a0, 24 [pid 5554] rt_sigprocmask(SIG_SETMASK, [], [pid 5557] <... set_robust_list resumed>) = 0 [pid 5554] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5557] rt_sigprocmask(SIG_SETMASK, [], [pid 5554] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5557] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5557] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5554] <... futex resumed>) = 0 [pid 5554] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5555] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5555] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5557] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5555] <... futex resumed>) = 0 [pid 5555] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5557] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5554] <... futex resumed>) = 0 [pid 5557] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5554] exit_group(0 [pid 5557] <... futex resumed>) = ? [pid 5555] <... futex resumed>) = ? [pid 5557] +++ exited with 0 +++ [pid 5555] +++ exited with 0 +++ [pid 5554] <... exit_group resumed>) = ? [pid 5554] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5554, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./120", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./120", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./120/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./120/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 107.866640][ T5555] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./120/binderfs") = 0 umount2("./120/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./120/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./120/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./120/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./120/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./120/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./120") = 0 mkdir("./121", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5558 attached , child_tidptr=0x5555565f3690) = 5558 [pid 5558] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5558] chdir("./121") = 0 [pid 5558] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5558] setpgid(0, 0) = 0 [pid 5558] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5558] write(3, "1000", 4) = 4 [pid 5558] close(3) = 0 [pid 5558] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5558] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5558] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5558] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5558] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5558] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5558] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5558] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5559 attached => {parent_tid=[5559]}, 88) = 5559 [pid 5558] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5559] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5558] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5559] set_robust_list(0x7fd868ec09a0, 24 [pid 5558] <... futex resumed>) = 0 [pid 5559] <... set_robust_list resumed>) = 0 [pid 5558] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5559] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5559] memfd_create("syzkaller", 0) = 3 [pid 5559] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5559] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5559] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5559] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5559] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5559] close(3) = 0 [pid 5559] mkdir("./file0", 0777) = 0 [ 108.093376][ T5559] loop0: detected capacity change from 0 to 8192 [ 108.118222][ T5559] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 108.131338][ T5559] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5559] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5559] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5559] chdir("./file0") = 0 [pid 5559] ioctl(4, LOOP_CLR_FD) = 0 [pid 5559] close(4) = 0 [pid 5559] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5558] <... futex resumed>) = 0 [pid 5559] <... futex resumed>) = 1 [pid 5558] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5559] mkdir(".", 0777 [pid 5558] <... futex resumed>) = 0 [pid 5559] <... mkdir resumed>) = -1 EEXIST (File exists) [ 108.140612][ T5559] REISERFS (device loop0): using ordered data mode [ 108.147238][ T5559] reiserfs: using flush barriers [ 108.154166][ T5559] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 108.170764][ T5559] REISERFS (device loop0): checking transaction log (loop0) [ 108.179231][ T5559] REISERFS (device loop0): Using r5 hash to sort names [pid 5559] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5558] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5559] <... mount resumed>) = 0 [pid 5559] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5559] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5559] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5558] <... futex resumed>) = 0 [pid 5558] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5559] <... futex resumed>) = 0 [pid 5558] <... futex resumed>) = 1 [pid 5559] mkdir(".", 0777 [pid 5558] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5559] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5558] <... futex resumed>) = 0 [pid 5559] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5558] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5558] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5558] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5558] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5561 attached [pid 5561] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5561] set_robust_list(0x7fd868e9f9a0, 24 [pid 5558] <... clone3 resumed> => {parent_tid=[5561]}, 88) = 5561 [pid 5561] <... set_robust_list resumed>) = 0 [pid 5558] rt_sigprocmask(SIG_SETMASK, [], [pid 5561] rt_sigprocmask(SIG_SETMASK, [], [pid 5558] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5561] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 108.207222][ T5559] reiserfs: enabling write barrier flush mode [ 108.215921][ T5559] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5558] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5561] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5558] <... futex resumed>) = 0 [pid 5559] <... mount resumed>) = 0 [pid 5559] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5558] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5559] <... openat resumed>) = 5 [pid 5559] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5559] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5561] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5561] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5558] <... futex resumed>) = 0 [pid 5561] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5558] exit_group(0 [pid 5559] <... futex resumed>) = ? [pid 5559] +++ exited with 0 +++ [pid 5561] <... futex resumed>) = ? [pid 5561] +++ exited with 0 +++ [pid 5558] <... exit_group resumed>) = ? [pid 5558] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5558, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./121", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./121", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./121/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./121/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./121/binderfs") = 0 [ 108.251444][ T5559] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./121/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./121/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./121/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./121/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./121/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./121/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./121") = 0 mkdir("./122", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5562 attached , child_tidptr=0x5555565f3690) = 5562 [pid 5562] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5562] chdir("./122") = 0 [pid 5562] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5562] setpgid(0, 0) = 0 [pid 5562] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5562] write(3, "1000", 4) = 4 [pid 5562] close(3) = 0 [pid 5562] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5562] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5562] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5562] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5562] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5562] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5562] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5562] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5563 attached [pid 5563] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5562] <... clone3 resumed> => {parent_tid=[5563]}, 88) = 5563 [pid 5563] <... rseq resumed>) = 0 [pid 5562] rt_sigprocmask(SIG_SETMASK, [], [pid 5563] set_robust_list(0x7fd868ec09a0, 24 [pid 5562] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5563] <... set_robust_list resumed>) = 0 [pid 5562] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5563] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5562] <... futex resumed>) = 0 [pid 5563] memfd_create("syzkaller", 0 [pid 5562] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5563] <... memfd_create resumed>) = 3 [pid 5563] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5563] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5563] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5563] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5563] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5563] close(3) = 0 [pid 5563] mkdir("./file0", 0777) = 0 [ 108.557722][ T5563] loop0: detected capacity change from 0 to 8192 [ 108.584141][ T5563] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 108.597327][ T5563] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5563] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5563] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5563] chdir("./file0") = 0 [pid 5563] ioctl(4, LOOP_CLR_FD) = 0 [pid 5563] close(4) = 0 [pid 5563] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5562] <... futex resumed>) = 0 [pid 5562] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5563] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5562] <... futex resumed>) = 0 [ 108.606625][ T5563] REISERFS (device loop0): using ordered data mode [ 108.613181][ T5563] reiserfs: using flush barriers [ 108.619372][ T5563] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 108.636045][ T5563] REISERFS (device loop0): checking transaction log (loop0) [ 108.644552][ T5563] REISERFS (device loop0): Using r5 hash to sort names [pid 5563] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5562] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5563] <... mount resumed>) = 0 [pid 5563] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5563] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5562] <... futex resumed>) = 0 [pid 5562] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5562] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5562] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5562] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5562] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5562] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5565 attached => {parent_tid=[5565]}, 88) = 5565 [pid 5565] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5562] rt_sigprocmask(SIG_SETMASK, [], [pid 5565] <... rseq resumed>) = 0 [pid 5562] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5562] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5565] set_robust_list(0x7fd868e9f9a0, 24 [pid 5563] <... futex resumed>) = 1 [pid 5562] <... futex resumed>) = 0 [pid 5565] <... set_robust_list resumed>) = 0 [pid 5563] mkdir(".", 0777 [pid 5562] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5565] rt_sigprocmask(SIG_SETMASK, [], [pid 5563] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5565] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5565] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5563] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5565] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5565] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5562] <... futex resumed>) = 0 [pid 5565] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5563] <... mount resumed>) = 0 [pid 5563] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5563] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5563] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5562] exit_group(0 [pid 5565] <... futex resumed>) = ? [pid 5565] +++ exited with 0 +++ [pid 5563] <... futex resumed>) = ? [pid 5562] <... exit_group resumed>) = ? [pid 5563] +++ exited with 0 +++ [pid 5562] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5562, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- umount2("./122", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./122", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 108.668688][ T5563] reiserfs: enabling write barrier flush mode [ 108.677869][ T5563] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 108.705051][ T5563] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./122/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./122/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./122/binderfs") = 0 umount2("./122/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./122/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./122/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./122/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./122/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./122/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./122") = 0 mkdir("./123", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5566 attached [pid 5566] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5566 [pid 5566] <... set_robust_list resumed>) = 0 [pid 5566] chdir("./123") = 0 [pid 5566] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5566] setpgid(0, 0) = 0 [pid 5566] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5566] write(3, "1000", 4) = 4 [pid 5566] close(3) = 0 [pid 5566] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5566] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5566] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5566] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5566] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5566] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5566] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5566] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5567 attached [pid 5567] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5566] <... clone3 resumed> => {parent_tid=[5567]}, 88) = 5567 [pid 5567] <... rseq resumed>) = 0 [pid 5566] rt_sigprocmask(SIG_SETMASK, [], [pid 5567] set_robust_list(0x7fd868ec09a0, 24 [pid 5566] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5567] <... set_robust_list resumed>) = 0 [pid 5566] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5567] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5566] <... futex resumed>) = 0 [pid 5567] memfd_create("syzkaller", 0 [pid 5566] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5567] <... memfd_create resumed>) = 3 [pid 5567] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5567] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5567] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5567] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5567] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5567] close(3) = 0 [pid 5567] mkdir("./file0", 0777) = 0 [ 109.026289][ T5567] loop0: detected capacity change from 0 to 8192 [ 109.042076][ T5567] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 109.055095][ T5567] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 109.064482][ T5567] REISERFS (device loop0): using ordered data mode [ 109.071079][ T5567] reiserfs: using flush barriers [pid 5567] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5567] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5567] chdir("./file0") = 0 [pid 5567] ioctl(4, LOOP_CLR_FD) = 0 [pid 5567] close(4) = 0 [pid 5567] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5566] <... futex resumed>) = 0 [pid 5567] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5566] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5567] mkdir(".", 0777 [pid 5566] <... futex resumed>) = 0 [pid 5567] <... mkdir resumed>) = -1 EEXIST (File exists) [ 109.077485][ T5567] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 109.093909][ T5567] REISERFS (device loop0): checking transaction log (loop0) [ 109.102627][ T5567] REISERFS (device loop0): Using r5 hash to sort names [pid 5566] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5567] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5567] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5567] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5566] <... futex resumed>) = 0 [pid 5567] mkdir(".", 0777 [pid 5566] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5567] <... mkdir resumed>) = -1 EEXIST (File exists) [ 109.134821][ T5567] reiserfs: enabling write barrier flush mode [ 109.144905][ T5567] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5567] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5566] <... futex resumed>) = 0 [pid 5566] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5567] <... mount resumed>) = 0 [pid 5566] <... futex resumed>) = 0 [pid 5566] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5566] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5567] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5566] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5566] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5569 attached [pid 5569] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5566] <... clone3 resumed> => {parent_tid=[5569]}, 88) = 5569 [pid 5569] <... rseq resumed>) = 0 [pid 5566] rt_sigprocmask(SIG_SETMASK, [], [pid 5569] set_robust_list(0x7fd868e9f9a0, 24 [pid 5566] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5569] <... set_robust_list resumed>) = 0 [pid 5567] <... openat resumed>) = 5 [pid 5566] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5567] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5569] rt_sigprocmask(SIG_SETMASK, [], [pid 5567] <... futex resumed>) = 0 [pid 5566] <... futex resumed>) = 0 [pid 5569] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5567] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5566] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5569] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5569] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5566] <... futex resumed>) = 0 [pid 5569] <... futex resumed>) = 1 [pid 5569] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5566] exit_group(0 [pid 5569] <... futex resumed>) = ? [pid 5567] <... futex resumed>) = ? [pid 5566] <... exit_group resumed>) = ? [pid 5569] +++ exited with 0 +++ [pid 5567] +++ exited with 0 +++ [pid 5566] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5566, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [ 109.185046][ T5567] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./123", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./123", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./123/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./123/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./123/binderfs") = 0 umount2("./123/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./123/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./123/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./123/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./123/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./123/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./123") = 0 mkdir("./124", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5570 attached [pid 5570] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5570 [pid 5570] <... set_robust_list resumed>) = 0 [pid 5570] chdir("./124") = 0 [pid 5570] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5570] setpgid(0, 0) = 0 [pid 5570] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5570] write(3, "1000", 4) = 4 [pid 5570] close(3) = 0 [pid 5570] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5570] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5570] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5570] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5570] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5570] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5570] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5570] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5571 attached [pid 5571] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5570] <... clone3 resumed> => {parent_tid=[5571]}, 88) = 5571 [pid 5571] <... rseq resumed>) = 0 [pid 5570] rt_sigprocmask(SIG_SETMASK, [], [pid 5571] set_robust_list(0x7fd868ec09a0, 24 [pid 5570] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5571] <... set_robust_list resumed>) = 0 [pid 5570] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5571] rt_sigprocmask(SIG_SETMASK, [], [pid 5570] <... futex resumed>) = 0 [pid 5571] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5570] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5571] memfd_create("syzkaller", 0) = 3 [pid 5571] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5571] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5571] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5571] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5571] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5571] close(3) = 0 [pid 5571] mkdir("./file0", 0777) = 0 [ 109.508126][ T5571] loop0: detected capacity change from 0 to 8192 [ 109.517918][ T5571] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 109.530959][ T5571] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 109.540414][ T5571] REISERFS (device loop0): using ordered data mode [ 109.546973][ T5571] reiserfs: using flush barriers [pid 5571] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5571] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5571] chdir("./file0") = 0 [pid 5571] ioctl(4, LOOP_CLR_FD) = 0 [pid 5571] close(4) = 0 [pid 5571] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5570] <... futex resumed>) = 0 [pid 5571] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5570] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5571] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5570] <... futex resumed>) = 0 [pid 5571] mkdir(".", 0777 [pid 5570] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5571] <... mkdir resumed>) = -1 EEXIST (File exists) [ 109.553064][ T5571] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 109.569661][ T5571] REISERFS (device loop0): checking transaction log (loop0) [ 109.577965][ T5571] REISERFS (device loop0): Using r5 hash to sort names [ 109.602090][ T5571] reiserfs: enabling write barrier flush mode [pid 5571] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5571] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5571] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5570] <... futex resumed>) = 0 [pid 5571] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5570] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5571] mkdir(".", 0777 [pid 5570] <... futex resumed>) = 0 [pid 5570] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5570] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5571] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5570] <... mmap resumed>) = 0x7fd868e7f000 [pid 5570] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5571] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5570] <... mprotect resumed>) = 0 [ 109.611752][ T5571] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5570] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5570] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5573 attached [pid 5573] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5570] <... clone3 resumed> => {parent_tid=[5573]}, 88) = 5573 [pid 5573] <... rseq resumed>) = 0 [pid 5570] rt_sigprocmask(SIG_SETMASK, [], [pid 5573] set_robust_list(0x7fd868e9f9a0, 24 [pid 5570] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5573] <... set_robust_list resumed>) = 0 [pid 5570] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5573] rt_sigprocmask(SIG_SETMASK, [], [pid 5570] <... futex resumed>) = 0 [pid 5573] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5571] <... mount resumed>) = 0 [pid 5570] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5573] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5571] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5571] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5573] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5571] <... futex resumed>) = 0 [pid 5571] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5573] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5570] <... futex resumed>) = 0 [pid 5573] <... futex resumed>) = 1 [pid 5570] exit_group(0 [pid 5571] <... futex resumed>) = ? [pid 5570] <... exit_group resumed>) = ? [pid 5573] +++ exited with 0 +++ [pid 5571] +++ exited with 0 +++ [pid 5570] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5570, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./124", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./124", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./124/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./124/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./124/binderfs") = 0 [ 109.655017][ T5571] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./124/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./124/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./124/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./124/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./124/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./124/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./124") = 0 mkdir("./125", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5574 attached [pid 5574] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5574] chdir("./125") = 0 [pid 5574] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5574] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5574 [pid 5574] <... setpgid resumed>) = 0 [pid 5574] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5574] write(3, "1000", 4) = 4 [pid 5574] close(3) = 0 [pid 5574] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5574] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5574] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5574] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5574] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5574] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5574] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5574] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5575 attached => {parent_tid=[5575]}, 88) = 5575 [pid 5575] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5575] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5574] rt_sigprocmask(SIG_SETMASK, [], [pid 5575] rt_sigprocmask(SIG_SETMASK, [], [pid 5574] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5575] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5574] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5575] memfd_create("syzkaller", 0 [pid 5574] <... futex resumed>) = 0 [pid 5574] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5575] <... memfd_create resumed>) = 3 [pid 5575] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5575] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5575] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5575] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5575] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5575] close(3) = 0 [pid 5575] mkdir("./file0", 0777) = 0 [ 109.942215][ T5575] loop0: detected capacity change from 0 to 8192 [ 109.958672][ T5575] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 109.971781][ T5575] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 109.980941][ T5575] REISERFS (device loop0): using ordered data mode [ 109.987492][ T5575] reiserfs: using flush barriers [pid 5575] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5575] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5575] chdir("./file0") = 0 [pid 5575] ioctl(4, LOOP_CLR_FD) = 0 [pid 5575] close(4) = 0 [pid 5575] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5574] <... futex resumed>) = 0 [pid 5575] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5574] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5575] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5574] <... futex resumed>) = 0 [pid 5575] mkdir(".", 0777 [ 109.993580][ T5575] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 110.010138][ T5575] REISERFS (device loop0): checking transaction log (loop0) [ 110.018499][ T5575] REISERFS (device loop0): Using r5 hash to sort names [pid 5574] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5575] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5575] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5575] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5575] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5574] <... futex resumed>) = 0 [pid 5575] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5574] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5575] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5574] <... futex resumed>) = 0 [pid 5575] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5575] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5574] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 110.043244][ T5575] reiserfs: enabling write barrier flush mode [ 110.052019][ T5575] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5574] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5575] <... mount resumed>) = 0 [pid 5574] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5575] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5574] <... mprotect resumed>) = 0 [pid 5574] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5574] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5577 attached [pid 5577] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5574] <... clone3 resumed> => {parent_tid=[5577]}, 88) = 5577 [pid 5577] <... rseq resumed>) = 0 [pid 5574] rt_sigprocmask(SIG_SETMASK, [], [pid 5577] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5574] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5577] rt_sigprocmask(SIG_SETMASK, [], [pid 5574] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5577] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5574] <... futex resumed>) = 0 [pid 5577] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5574] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5577] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5577] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5574] <... futex resumed>) = 0 [pid 5577] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5575] <... openat resumed>) = 5 [pid 5575] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5574] exit_group(0 [pid 5575] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5577] <... futex resumed>) = ? [pid 5575] <... futex resumed>) = ? [pid 5574] <... exit_group resumed>) = ? [pid 5577] +++ exited with 0 +++ [pid 5575] +++ exited with 0 +++ [pid 5574] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5574, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./125", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./125", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 110.090382][ T5575] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./125/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./125/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./125/binderfs") = 0 umount2("./125/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./125/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./125/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./125/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./125/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./125/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./125") = 0 mkdir("./126", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5578 ./strace-static-x86_64: Process 5578 attached [pid 5578] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5578] chdir("./126") = 0 [pid 5578] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5578] setpgid(0, 0) = 0 [pid 5578] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5578] write(3, "1000", 4) = 4 [pid 5578] close(3) = 0 [pid 5578] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5578] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5578] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5578] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5578] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5578] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5578] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5578] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5579 attached [pid 5579] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5578] <... clone3 resumed> => {parent_tid=[5579]}, 88) = 5579 [pid 5579] <... rseq resumed>) = 0 [pid 5578] rt_sigprocmask(SIG_SETMASK, [], [pid 5579] set_robust_list(0x7fd868ec09a0, 24 [pid 5578] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5579] <... set_robust_list resumed>) = 0 [pid 5578] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5579] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5578] <... futex resumed>) = 0 [pid 5579] memfd_create("syzkaller", 0 [pid 5578] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5579] <... memfd_create resumed>) = 3 [pid 5579] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5579] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5579] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5579] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5579] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5579] close(3) = 0 [pid 5579] mkdir("./file0", 0777) = 0 [ 110.370450][ T5579] loop0: detected capacity change from 0 to 8192 [ 110.384968][ T5579] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 110.397987][ T5579] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 110.407420][ T5579] REISERFS (device loop0): using ordered data mode [ 110.413974][ T5579] reiserfs: using flush barriers [pid 5579] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5579] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5579] chdir("./file0") = 0 [pid 5579] ioctl(4, LOOP_CLR_FD) = 0 [pid 5579] close(4) = 0 [pid 5579] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5579] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5578] <... futex resumed>) = 0 [pid 5578] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5579] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5578] <... futex resumed>) = 0 [pid 5579] mkdir(".", 0777 [pid 5578] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5579] <... mkdir resumed>) = -1 EEXIST (File exists) [ 110.420204][ T5579] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 110.437007][ T5579] REISERFS (device loop0): checking transaction log (loop0) [ 110.445194][ T5579] REISERFS (device loop0): Using r5 hash to sort names [pid 5579] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5579] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5579] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5579] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5578] <... futex resumed>) = 0 [pid 5578] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5579] <... futex resumed>) = 0 [pid 5578] <... futex resumed>) = 1 [pid 5579] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5578] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5579] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5578] <... futex resumed>) = 0 [pid 5578] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5578] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 110.488346][ T5579] reiserfs: enabling write barrier flush mode [ 110.496851][ T5579] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5578] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5578] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5581 attached [pid 5581] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5578] <... clone3 resumed> => {parent_tid=[5581]}, 88) = 5581 [pid 5581] set_robust_list(0x7fd868e9f9a0, 24 [pid 5579] <... mount resumed>) = 0 [pid 5578] rt_sigprocmask(SIG_SETMASK, [], [pid 5581] <... set_robust_list resumed>) = 0 [pid 5579] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5581] rt_sigprocmask(SIG_SETMASK, [], [pid 5579] <... openat resumed>) = 5 [pid 5578] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5579] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5581] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5578] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5581] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5579] <... futex resumed>) = 0 [pid 5578] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5579] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5581] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5581] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5578] <... futex resumed>) = 0 [pid 5581] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5578] exit_group(0 [pid 5581] <... futex resumed>) = ? [pid 5581] +++ exited with 0 +++ [pid 5578] <... exit_group resumed>) = ? [pid 5579] <... futex resumed>) = ? [pid 5579] +++ exited with 0 +++ [pid 5578] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5578, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./126", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./126", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./126/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 110.539485][ T5579] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./126/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./126/binderfs") = 0 umount2("./126/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./126/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./126/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./126/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./126/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./126/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./126") = 0 mkdir("./127", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5582 attached [pid 5582] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5582] chdir("./127") = 0 [pid 5582] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5582] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5582 [pid 5582] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5582] write(3, "1000", 4) = 4 [pid 5582] close(3) = 0 [pid 5582] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5582] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5582] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5582] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5582] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5582] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5582] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5582] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5583 attached [pid 5583] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5583] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5583] rt_sigprocmask(SIG_SETMASK, [], [pid 5582] <... clone3 resumed> => {parent_tid=[5583]}, 88) = 5583 [pid 5583] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5582] rt_sigprocmask(SIG_SETMASK, [], [pid 5583] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5582] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5582] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5583] <... futex resumed>) = 0 [pid 5582] <... futex resumed>) = 1 [pid 5583] memfd_create("syzkaller", 0 [pid 5582] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5583] <... memfd_create resumed>) = 3 [pid 5583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5583] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5583] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5583] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5583] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5583] close(3) = 0 [pid 5583] mkdir("./file0", 0777) = 0 [ 110.819999][ T5583] loop0: detected capacity change from 0 to 8192 [ 110.835835][ T5583] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 110.848968][ T5583] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 110.858278][ T5583] REISERFS (device loop0): using ordered data mode [ 110.864890][ T5583] reiserfs: using flush barriers [pid 5583] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5583] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5583] chdir("./file0") = 0 [pid 5583] ioctl(4, LOOP_CLR_FD) = 0 [pid 5583] close(4) = 0 [pid 5583] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5582] <... futex resumed>) = 0 [pid 5582] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5583] mkdir(".", 0777) = -1 EEXIST (File exists) [ 110.871013][ T5583] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 110.887698][ T5583] REISERFS (device loop0): checking transaction log (loop0) [ 110.896585][ T5583] REISERFS (device loop0): Using r5 hash to sort names [pid 5583] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5582] <... futex resumed>) = 0 [pid 5582] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5583] <... mount resumed>) = 0 [pid 5583] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5583] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5582] <... futex resumed>) = 0 [pid 5583] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5582] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5583] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5582] <... futex resumed>) = 0 [pid 5582] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5583] mkdir(".", 0777 [pid 5582] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5583] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5582] <... mmap resumed>) = 0x7fd868e7f000 [pid 5583] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5582] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5582] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5582] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5585 attached [pid 5585] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5582] <... clone3 resumed> => {parent_tid=[5585]}, 88) = 5585 [pid 5585] <... rseq resumed>) = 0 [pid 5582] rt_sigprocmask(SIG_SETMASK, [], [pid 5585] set_robust_list(0x7fd868e9f9a0, 24 [pid 5582] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5585] <... set_robust_list resumed>) = 0 [pid 5582] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5585] rt_sigprocmask(SIG_SETMASK, [], [pid 5582] <... futex resumed>) = 0 [pid 5585] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5582] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5585] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5585] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5582] <... futex resumed>) = 0 [ 110.939111][ T5583] reiserfs: enabling write barrier flush mode [ 110.948304][ T5583] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5585] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5583] <... mount resumed>) = 0 [pid 5583] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5583] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5582] exit_group(0 [pid 5585] <... futex resumed>) = ? [pid 5585] +++ exited with 0 +++ [pid 5583] +++ exited with 0 +++ [pid 5582] <... exit_group resumed>) = ? [pid 5582] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5582, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./127", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./127", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./127/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./127/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./127/binderfs") = 0 [ 110.984375][ T5583] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./127/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./127/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./127/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./127/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./127/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./127/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./127") = 0 mkdir("./128", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5586 ./strace-static-x86_64: Process 5586 attached [pid 5586] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5586] chdir("./128") = 0 [pid 5586] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5586] setpgid(0, 0) = 0 [pid 5586] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5586] write(3, "1000", 4) = 4 [pid 5586] close(3) = 0 [pid 5586] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5586] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5586] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5586] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5586] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5586] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5586] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5586] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5587 attached [pid 5587] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5586] <... clone3 resumed> => {parent_tid=[5587]}, 88) = 5587 [pid 5587] <... rseq resumed>) = 0 [pid 5586] rt_sigprocmask(SIG_SETMASK, [], [pid 5587] set_robust_list(0x7fd868ec09a0, 24 [pid 5586] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5587] <... set_robust_list resumed>) = 0 [pid 5587] rt_sigprocmask(SIG_SETMASK, [], [pid 5586] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5587] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5586] <... futex resumed>) = 0 [pid 5587] memfd_create("syzkaller", 0 [pid 5586] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5587] <... memfd_create resumed>) = 3 [pid 5587] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5587] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5587] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5587] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5587] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5587] close(3) = 0 [pid 5587] mkdir("./file0", 0777) = 0 [ 111.315053][ T5587] loop0: detected capacity change from 0 to 8192 [ 111.330642][ T5587] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 111.343851][ T5587] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 111.353123][ T5587] REISERFS (device loop0): using ordered data mode [ 111.359612][ T5587] reiserfs: using flush barriers [pid 5587] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5587] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5587] chdir("./file0") = 0 [pid 5587] ioctl(4, LOOP_CLR_FD) = 0 [pid 5587] close(4) = 0 [pid 5587] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5586] <... futex resumed>) = 0 [pid 5587] <... futex resumed>) = 1 [pid 5586] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5587] mkdir(".", 0777 [pid 5586] <... futex resumed>) = 0 [pid 5587] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5586] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 111.366154][ T5587] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 111.382512][ T5587] REISERFS (device loop0): checking transaction log (loop0) [ 111.390747][ T5587] REISERFS (device loop0): Using r5 hash to sort names [pid 5587] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5587] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5587] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5586] <... futex resumed>) = 0 [pid 5587] mkdir(".", 0777 [pid 5586] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5587] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5586] <... futex resumed>) = 0 [pid 5587] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5586] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5586] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5586] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5586] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5587] <... mount resumed>) = 0 [pid 5587] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5586] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5587] <... openat resumed>) = 5 [pid 5586] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5587] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5589 attached ) = 0 [pid 5589] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5587] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5589] <... rseq resumed>) = 0 [pid 5586] <... clone3 resumed> => {parent_tid=[5589]}, 88) = 5589 [pid 5589] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5589] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5589] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5586] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5586] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5589] <... futex resumed>) = 0 [pid 5586] <... futex resumed>) = 1 [pid 5586] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5589] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5589] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5586] <... futex resumed>) = 0 [pid 5589] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5586] exit_group(0 [pid 5589] <... futex resumed>) = ? [pid 5587] <... futex resumed>) = ? [pid 5586] <... exit_group resumed>) = ? [pid 5589] +++ exited with 0 +++ [pid 5587] +++ exited with 0 +++ [ 111.415104][ T5587] reiserfs: enabling write barrier flush mode [ 111.423441][ T5587] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 111.453955][ T5587] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5586] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5586, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./128", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./128", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./128/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./128/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./128/binderfs") = 0 umount2("./128/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./128/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./128/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./128/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./128/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./128/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./128") = 0 mkdir("./129", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5590 attached [pid 5590] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5590 [pid 5590] <... set_robust_list resumed>) = 0 [pid 5590] chdir("./129") = 0 [pid 5590] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5590] setpgid(0, 0) = 0 [pid 5590] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5590] write(3, "1000", 4) = 4 [pid 5590] close(3) = 0 [pid 5590] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5590] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5590] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5590] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5590] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5590] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5590] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5590] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5591 attached [pid 5591] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5590] <... clone3 resumed> => {parent_tid=[5591]}, 88) = 5591 [pid 5591] set_robust_list(0x7fd868ec09a0, 24 [pid 5590] rt_sigprocmask(SIG_SETMASK, [], [pid 5591] <... set_robust_list resumed>) = 0 [pid 5590] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5591] rt_sigprocmask(SIG_SETMASK, [], [pid 5590] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5591] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5590] <... futex resumed>) = 0 [pid 5591] memfd_create("syzkaller", 0 [pid 5590] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5591] <... memfd_create resumed>) = 3 [pid 5591] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5591] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5591] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5591] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5591] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5591] close(3) = 0 [pid 5591] mkdir("./file0", 0777) = 0 [ 111.729625][ T5591] loop0: detected capacity change from 0 to 8192 [ 111.755663][ T5591] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 111.768845][ T5591] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5591] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5591] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5591] chdir("./file0") = 0 [pid 5591] ioctl(4, LOOP_CLR_FD) = 0 [pid 5591] close(4) = 0 [pid 5591] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 111.778301][ T5591] REISERFS (device loop0): using ordered data mode [ 111.784896][ T5591] reiserfs: using flush barriers [ 111.791880][ T5591] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 111.808341][ T5591] REISERFS (device loop0): checking transaction log (loop0) [ 111.816817][ T5591] REISERFS (device loop0): Using r5 hash to sort names [pid 5590] <... futex resumed>) = 0 [pid 5591] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5590] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5591] <... futex resumed>) = 0 [pid 5590] <... futex resumed>) = 1 [pid 5591] mkdir(".", 0777 [pid 5590] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5591] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5591] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5591] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5591] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5590] <... futex resumed>) = 0 [pid 5591] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5590] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5590] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5590] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5591] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5590] <... mmap resumed>) = 0x7fd868e7f000 [pid 5590] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5591] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5590] <... mprotect resumed>) = 0 [pid 5591] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5590] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5590] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5593 attached [pid 5593] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5590] <... clone3 resumed> => {parent_tid=[5593]}, 88) = 5593 [pid 5593] set_robust_list(0x7fd868e9f9a0, 24 [pid 5590] rt_sigprocmask(SIG_SETMASK, [], [pid 5593] <... set_robust_list resumed>) = 0 [pid 5590] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5590] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5593] rt_sigprocmask(SIG_SETMASK, [], [pid 5590] <... futex resumed>) = 0 [pid 5593] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5590] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5593] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [ 111.873451][ T5591] reiserfs: enabling write barrier flush mode [ 111.881758][ T5591] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5593] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5591] <... mount resumed>) = 0 [pid 5593] <... futex resumed>) = 1 [pid 5593] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5591] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5590] <... futex resumed>) = 0 [pid 5591] <... openat resumed>) = 5 [pid 5591] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5591] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5590] exit_group(0 [pid 5593] <... futex resumed>) = ? [pid 5591] <... futex resumed>) = ? [pid 5590] <... exit_group resumed>) = ? [pid 5593] +++ exited with 0 +++ [pid 5591] +++ exited with 0 +++ [pid 5590] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5590, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./129", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./129", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./129/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./129/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./129/binderfs") = 0 [ 111.928136][ T5591] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./129/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./129/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./129/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./129/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./129/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./129/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./129") = 0 mkdir("./130", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5594 ./strace-static-x86_64: Process 5594 attached [pid 5594] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5594] chdir("./130") = 0 [pid 5594] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5594] setpgid(0, 0) = 0 [pid 5594] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5594] write(3, "1000", 4) = 4 [pid 5594] close(3) = 0 [pid 5594] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5594] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5594] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5594] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5594] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5594] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5594] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5594] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5595 attached [pid 5595] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5595] set_robust_list(0x7fd868ec09a0, 24 [pid 5594] <... clone3 resumed> => {parent_tid=[5595]}, 88) = 5595 [pid 5595] <... set_robust_list resumed>) = 0 [pid 5595] rt_sigprocmask(SIG_SETMASK, [], [pid 5594] rt_sigprocmask(SIG_SETMASK, [], [pid 5595] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5595] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5594] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5594] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5595] <... futex resumed>) = 0 [pid 5594] <... futex resumed>) = 1 [pid 5595] memfd_create("syzkaller", 0 [pid 5594] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5595] <... memfd_create resumed>) = 3 [pid 5595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5595] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5595] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5595] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5595] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5595] close(3) = 0 [pid 5595] mkdir("./file0", 0777) = 0 [ 112.153809][ T5595] loop0: detected capacity change from 0 to 8192 [ 112.184373][ T5595] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5595] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5595] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5595] chdir("./file0") = 0 [pid 5595] ioctl(4, LOOP_CLR_FD) = 0 [ 112.197444][ T5595] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 112.206797][ T5595] REISERFS (device loop0): using ordered data mode [ 112.213361][ T5595] reiserfs: using flush barriers [ 112.219663][ T5595] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 112.236466][ T5595] REISERFS (device loop0): checking transaction log (loop0) [ 112.244845][ T5595] REISERFS (device loop0): Using r5 hash to sort names [pid 5595] close(4) = 0 [pid 5595] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5594] <... futex resumed>) = 0 [pid 5595] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5594] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5595] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5594] <... futex resumed>) = 0 [pid 5595] mkdir(".", 0777 [pid 5594] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5595] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5595] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5595] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5595] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5594] <... futex resumed>) = 0 [pid 5595] mkdir(".", 0777 [pid 5594] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5595] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5594] <... futex resumed>) = 0 [pid 5594] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5595] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5594] <... futex resumed>) = 0 [pid 5594] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 112.276749][ T5595] reiserfs: enabling write barrier flush mode [ 112.285445][ T5595] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5594] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5594] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5595] <... mount resumed>) = 0 [pid 5594] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5594] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5597 attached [pid 5597] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5595] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5594] <... clone3 resumed> => {parent_tid=[5597]}, 88) = 5597 [pid 5597] set_robust_list(0x7fd868e9f9a0, 24 [pid 5595] <... openat resumed>) = 5 [pid 5594] rt_sigprocmask(SIG_SETMASK, [], [pid 5597] <... set_robust_list resumed>) = 0 [pid 5594] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5597] rt_sigprocmask(SIG_SETMASK, [], [pid 5595] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5594] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5597] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5595] <... futex resumed>) = 0 [pid 5594] <... futex resumed>) = 0 [pid 5597] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5595] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5594] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5597] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5597] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5594] <... futex resumed>) = 0 [pid 5597] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5594] exit_group(0 [pid 5597] <... futex resumed>) = ? [pid 5595] <... futex resumed>) = ? [pid 5597] +++ exited with 0 +++ [pid 5595] +++ exited with 0 +++ [pid 5594] <... exit_group resumed>) = ? [pid 5594] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5594, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./130", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 112.327928][ T5595] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./130", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./130/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./130/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./130/binderfs") = 0 umount2("./130/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./130/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./130/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./130/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./130/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./130/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./130") = 0 mkdir("./131", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5598 attached [pid 5598] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5598] chdir("./131") = 0 [pid 5598] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5598] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5598 [pid 5598] <... setpgid resumed>) = 0 [pid 5598] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5598] write(3, "1000", 4) = 4 [pid 5598] close(3) = 0 [pid 5598] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5598] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5598] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5598] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5598] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5598] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5598] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5598] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5599 attached [pid 5599] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5598] <... clone3 resumed> => {parent_tid=[5599]}, 88) = 5599 [pid 5599] <... rseq resumed>) = 0 [pid 5598] rt_sigprocmask(SIG_SETMASK, [], [pid 5599] set_robust_list(0x7fd868ec09a0, 24 [pid 5598] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5599] <... set_robust_list resumed>) = 0 [pid 5598] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5599] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5598] <... futex resumed>) = 0 [pid 5599] memfd_create("syzkaller", 0 [pid 5598] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5599] <... memfd_create resumed>) = 3 [pid 5599] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5599] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5599] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5599] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5599] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5599] close(3) = 0 [pid 5599] mkdir("./file0", 0777) = 0 [ 112.659579][ T5599] loop0: detected capacity change from 0 to 8192 [ 112.685590][ T5599] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 112.698745][ T5599] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5599] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5599] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5599] chdir("./file0") = 0 [pid 5599] ioctl(4, LOOP_CLR_FD) = 0 [pid 5599] close(4) = 0 [pid 5599] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5598] <... futex resumed>) = 0 [pid 5599] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5598] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5599] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5599] mkdir(".", 0777 [pid 5598] <... futex resumed>) = 0 [pid 5599] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5598] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 112.708045][ T5599] REISERFS (device loop0): using ordered data mode [ 112.714575][ T5599] reiserfs: using flush barriers [ 112.720603][ T5599] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 112.737231][ T5599] REISERFS (device loop0): checking transaction log (loop0) [ 112.745375][ T5599] REISERFS (device loop0): Using r5 hash to sort names [pid 5599] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5599] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5599] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5598] <... futex resumed>) = 0 [pid 5599] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5598] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5599] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5598] <... futex resumed>) = 0 [pid 5599] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5598] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 112.763321][ T5599] reiserfs: enabling write barrier flush mode [ 112.771486][ T5599] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5598] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5599] <... mount resumed>) = 0 [pid 5598] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5599] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5598] <... mprotect resumed>) = 0 [pid 5599] <... openat resumed>) = 5 [pid 5599] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5598] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5599] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5598] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5598] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5601 attached => {parent_tid=[5601]}, 88) = 5601 [pid 5601] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5598] rt_sigprocmask(SIG_SETMASK, [], [pid 5601] set_robust_list(0x7fd868e9f9a0, 24 [pid 5598] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5601] <... set_robust_list resumed>) = 0 [pid 5598] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5601] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5598] <... futex resumed>) = 0 [pid 5601] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5598] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5601] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5601] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5598] <... futex resumed>) = 0 [pid 5601] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5598] exit_group(0 [pid 5601] <... futex resumed>) = ? [pid 5599] <... futex resumed>) = ? [pid 5598] <... exit_group resumed>) = ? [pid 5601] +++ exited with 0 +++ [pid 5599] +++ exited with 0 +++ [pid 5598] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5598, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./131", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./131", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./131/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./131/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./131/binderfs") = 0 [ 112.814219][ T5599] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./131/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./131/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./131/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./131/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./131/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./131/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./131") = 0 mkdir("./132", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5602 attached , child_tidptr=0x5555565f3690) = 5602 [pid 5602] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5602] chdir("./132") = 0 [pid 5602] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5602] setpgid(0, 0) = 0 [pid 5602] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5602] write(3, "1000", 4) = 4 [pid 5602] close(3) = 0 [pid 5602] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5602] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5602] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5602] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5602] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5602] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5602] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5602] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5603 attached [pid 5603] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5602] <... clone3 resumed> => {parent_tid=[5603]}, 88) = 5603 [pid 5603] <... rseq resumed>) = 0 [pid 5602] rt_sigprocmask(SIG_SETMASK, [], [pid 5603] set_robust_list(0x7fd868ec09a0, 24 [pid 5602] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5603] <... set_robust_list resumed>) = 0 [pid 5602] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5603] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5602] <... futex resumed>) = 0 [pid 5602] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5603] memfd_create("syzkaller", 0) = 3 [pid 5603] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5603] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5603] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5603] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5603] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5603] close(3) = 0 [pid 5603] mkdir("./file0", 0777) = 0 [ 113.099055][ T5603] loop0: detected capacity change from 0 to 8192 [ 113.116707][ T5603] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 113.129838][ T5603] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 113.139194][ T5603] REISERFS (device loop0): using ordered data mode [pid 5603] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5603] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5603] chdir("./file0") = 0 [pid 5603] ioctl(4, LOOP_CLR_FD) = 0 [pid 5603] close(4) = 0 [pid 5603] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5602] <... futex resumed>) = 0 [pid 5602] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5602] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5603] mkdir(".", 0777) = -1 EEXIST (File exists) [ 113.145852][ T5603] reiserfs: using flush barriers [ 113.152527][ T5603] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 113.169219][ T5603] REISERFS (device loop0): checking transaction log (loop0) [ 113.177763][ T5603] REISERFS (device loop0): Using r5 hash to sort names [pid 5603] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5603] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5603] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5603] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5602] <... futex resumed>) = 0 [pid 5602] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5603] <... futex resumed>) = 0 [pid 5602] <... futex resumed>) = 1 [pid 5603] mkdir(".", 0777 [pid 5602] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5603] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5602] <... futex resumed>) = 0 [pid 5603] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5602] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 113.218619][ T5603] reiserfs: enabling write barrier flush mode [ 113.226457][ T5603] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5602] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5602] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5603] <... mount resumed>) = 0 [pid 5602] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5602] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5605 attached [pid 5605] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5602] <... clone3 resumed> => {parent_tid=[5605]}, 88) = 5605 [pid 5605] set_robust_list(0x7fd868e9f9a0, 24 [pid 5602] rt_sigprocmask(SIG_SETMASK, [], [pid 5605] <... set_robust_list resumed>) = 0 [pid 5602] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5605] rt_sigprocmask(SIG_SETMASK, [], [pid 5602] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5605] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5602] <... futex resumed>) = 0 [pid 5605] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5602] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5603] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5605] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5603] <... openat resumed>) = 5 [pid 5605] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5603] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5605] <... futex resumed>) = 1 [pid 5602] <... futex resumed>) = 0 [pid 5605] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5603] <... futex resumed>) = 0 [pid 5602] exit_group(0 [pid 5605] <... futex resumed>) = ? [pid 5602] <... exit_group resumed>) = ? [pid 5605] +++ exited with 0 +++ [pid 5603] +++ exited with 0 +++ [pid 5602] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5602, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./132", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./132", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 113.259433][ T5603] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./132/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./132/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./132/binderfs") = 0 umount2("./132/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./132/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./132/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./132/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./132/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./132/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./132") = 0 mkdir("./133", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5606 attached , child_tidptr=0x5555565f3690) = 5606 [pid 5606] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5606] chdir("./133") = 0 [pid 5606] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5606] setpgid(0, 0) = 0 [pid 5606] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5606] write(3, "1000", 4) = 4 [pid 5606] close(3) = 0 [pid 5606] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5606] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5606] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5606] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5606] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5606] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5606] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5606] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5607 attached [pid 5607] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5606] <... clone3 resumed> => {parent_tid=[5607]}, 88) = 5607 [pid 5607] <... rseq resumed>) = 0 [pid 5607] set_robust_list(0x7fd868ec09a0, 24 [pid 5606] rt_sigprocmask(SIG_SETMASK, [], [pid 5607] <... set_robust_list resumed>) = 0 [pid 5606] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5607] rt_sigprocmask(SIG_SETMASK, [], [pid 5606] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5607] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5606] <... futex resumed>) = 0 [pid 5607] memfd_create("syzkaller", 0 [pid 5606] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5607] <... memfd_create resumed>) = 3 [pid 5607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5607] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5607] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5607] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5607] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5607] close(3) = 0 [pid 5607] mkdir("./file0", 0777) = 0 [ 113.598103][ T5607] loop0: detected capacity change from 0 to 8192 [ 113.629388][ T5607] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [pid 5607] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5607] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5607] chdir("./file0") = 0 [pid 5607] ioctl(4, LOOP_CLR_FD) = 0 [pid 5607] close(4) = 0 [pid 5607] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5606] <... futex resumed>) = 0 [pid 5606] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5607] mkdir(".", 0777 [pid 5606] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5607] <... mkdir resumed>) = -1 EEXIST (File exists) [ 113.642414][ T5607] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 113.651686][ T5607] REISERFS (device loop0): using ordered data mode [ 113.658192][ T5607] reiserfs: using flush barriers [ 113.664864][ T5607] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 113.681933][ T5607] REISERFS (device loop0): checking transaction log (loop0) [ 113.690164][ T5607] REISERFS (device loop0): Using r5 hash to sort names [pid 5607] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5607] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5607] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5607] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5606] <... futex resumed>) = 0 [pid 5606] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5607] <... futex resumed>) = 0 [pid 5606] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5607] mkdir(".", 0777 [pid 5606] <... futex resumed>) = 0 [pid 5607] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5607] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5606] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5606] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5606] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5607] <... mount resumed>) = 0 [pid 5606] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5609 attached [pid 5609] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5606] <... clone3 resumed> => {parent_tid=[5609]}, 88) = 5609 [pid 5607] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5609] <... rseq resumed>) = 0 [pid 5606] rt_sigprocmask(SIG_SETMASK, [], [pid 5609] set_robust_list(0x7fd868e9f9a0, 24 [pid 5607] <... openat resumed>) = 5 [pid 5606] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5609] <... set_robust_list resumed>) = 0 [pid 5607] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5606] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5609] rt_sigprocmask(SIG_SETMASK, [], [pid 5606] <... futex resumed>) = 0 [pid 5609] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5607] <... futex resumed>) = 0 [pid 5606] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5609] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5607] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5609] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5609] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5606] <... futex resumed>) = 0 [pid 5609] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5606] exit_group(0 [pid 5607] <... futex resumed>) = ? [pid 5607] +++ exited with 0 +++ [pid 5609] <... futex resumed>) = ? [pid 5609] +++ exited with 0 +++ [pid 5606] <... exit_group resumed>) = ? [pid 5606] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5606, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- [ 113.724305][ T5607] reiserfs: enabling write barrier flush mode [ 113.732701][ T5607] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 113.763265][ T5607] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./133", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./133", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./133/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./133/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./133/binderfs") = 0 umount2("./133/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./133/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./133/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./133/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./133/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./133/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./133") = 0 mkdir("./134", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5610 ./strace-static-x86_64: Process 5610 attached [pid 5610] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5610] chdir("./134") = 0 [pid 5610] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5610] setpgid(0, 0) = 0 [pid 5610] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5610] write(3, "1000", 4) = 4 [pid 5610] close(3) = 0 [pid 5610] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5610] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5610] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5610] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5610] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5610] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5610] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5610] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5611 attached [pid 5611] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5610] <... clone3 resumed> => {parent_tid=[5611]}, 88) = 5611 [pid 5611] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5611] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5610] rt_sigprocmask(SIG_SETMASK, [], [pid 5611] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5610] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5610] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5611] <... futex resumed>) = 0 [pid 5610] <... futex resumed>) = 1 [pid 5611] memfd_create("syzkaller", 0 [pid 5610] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5611] <... memfd_create resumed>) = 3 [pid 5611] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5611] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5611] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5611] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5611] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5611] close(3) = 0 [pid 5611] mkdir("./file0", 0777) = 0 [ 114.079131][ T5611] loop0: detected capacity change from 0 to 8192 [ 114.090129][ T5611] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 114.103361][ T5611] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 114.112749][ T5611] REISERFS (device loop0): using ordered data mode [ 114.119257][ T5611] reiserfs: using flush barriers [pid 5611] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5611] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5611] chdir("./file0") = 0 [pid 5611] ioctl(4, LOOP_CLR_FD) = 0 [pid 5611] close(4) = 0 [pid 5611] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5610] <... futex resumed>) = 0 [pid 5611] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5610] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5611] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5611] mkdir(".", 0777 [pid 5610] <... futex resumed>) = 0 [pid 5611] <... mkdir resumed>) = -1 EEXIST (File exists) [ 114.125446][ T5611] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 114.141861][ T5611] REISERFS (device loop0): checking transaction log (loop0) [ 114.150117][ T5611] REISERFS (device loop0): Using r5 hash to sort names [pid 5611] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5610] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5611] <... mount resumed>) = 0 [pid 5611] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5611] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5610] <... futex resumed>) = 0 [pid 5610] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5611] <... futex resumed>) = 1 [pid 5610] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5611] mkdir(".", 0777 [pid 5610] <... futex resumed>) = 0 [pid 5611] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5610] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5611] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5610] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5610] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5610] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5613 attached [pid 5613] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5610] <... clone3 resumed> => {parent_tid=[5613]}, 88) = 5613 [pid 5613] set_robust_list(0x7fd868e9f9a0, 24 [pid 5611] <... mount resumed>) = 0 [pid 5610] rt_sigprocmask(SIG_SETMASK, [], [pid 5611] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5613] <... set_robust_list resumed>) = 0 [pid 5610] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5613] rt_sigprocmask(SIG_SETMASK, [], [pid 5611] <... openat resumed>) = 5 [pid 5610] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5613] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5611] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5610] <... futex resumed>) = 0 [pid 5613] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5611] <... futex resumed>) = 0 [pid 5610] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5611] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5613] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5613] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5610] <... futex resumed>) = 0 [pid 5613] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5610] exit_group(0 [pid 5613] <... futex resumed>) = ? [pid 5611] <... futex resumed>) = ? [pid 5610] <... exit_group resumed>) = ? [pid 5613] +++ exited with 0 +++ [pid 5611] +++ exited with 0 +++ [pid 5610] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5610, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- umount2("./134", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./134", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./134/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./134/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./134/binderfs") = 0 [ 114.183405][ T5611] reiserfs: enabling write barrier flush mode [ 114.192903][ T5611] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 114.213895][ T5611] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./134/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./134/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./134/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./134/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./134/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./134/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./134") = 0 mkdir("./135", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5614 attached [pid 5614] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5614] chdir("./135" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5614 [pid 5614] <... chdir resumed>) = 0 [pid 5614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5614] setpgid(0, 0) = 0 [pid 5614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5614] write(3, "1000", 4) = 4 [pid 5614] close(3) = 0 [pid 5614] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5614] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5614] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5614] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5614] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5614] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5614] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5614] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5615 attached => {parent_tid=[5615]}, 88) = 5615 [pid 5615] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5614] rt_sigprocmask(SIG_SETMASK, [], [pid 5615] <... rseq resumed>) = 0 [pid 5614] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5615] set_robust_list(0x7fd868ec09a0, 24 [pid 5614] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5615] <... set_robust_list resumed>) = 0 [pid 5614] <... futex resumed>) = 0 [pid 5615] rt_sigprocmask(SIG_SETMASK, [], [pid 5614] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5615] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5615] memfd_create("syzkaller", 0) = 3 [pid 5615] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5615] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5615] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5615] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5615] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5615] close(3) = 0 [pid 5615] mkdir("./file0", 0777) = 0 [ 114.507239][ T5615] loop0: detected capacity change from 0 to 8192 [ 114.521608][ T5615] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 114.534760][ T5615] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 114.544308][ T5615] REISERFS (device loop0): using ordered data mode [ 114.550826][ T5615] reiserfs: using flush barriers [pid 5615] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5615] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5615] chdir("./file0") = 0 [pid 5615] ioctl(4, LOOP_CLR_FD) = 0 [pid 5615] close(4) = 0 [pid 5615] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5614] <... futex resumed>) = 0 [pid 5615] <... futex resumed>) = 1 [pid 5614] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5615] mkdir(".", 0777 [pid 5614] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5615] <... mkdir resumed>) = -1 EEXIST (File exists) [ 114.557185][ T5615] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 114.573879][ T5615] REISERFS (device loop0): checking transaction log (loop0) [ 114.582353][ T5615] REISERFS (device loop0): Using r5 hash to sort names [pid 5615] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5615] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5615] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5614] <... futex resumed>) = 0 [pid 5615] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5614] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5615] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5614] <... futex resumed>) = 0 [pid 5615] mkdir(".", 0777 [pid 5614] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5615] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5614] <... futex resumed>) = 0 [pid 5615] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5614] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5614] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5614] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5614] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5617 attached [pid 5617] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5617] set_robust_list(0x7fd868e9f9a0, 24 [pid 5614] <... clone3 resumed> => {parent_tid=[5617]}, 88) = 5617 [pid 5617] <... set_robust_list resumed>) = 0 [pid 5614] rt_sigprocmask(SIG_SETMASK, [], [pid 5617] rt_sigprocmask(SIG_SETMASK, [], [pid 5614] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5617] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5614] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5617] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5614] <... futex resumed>) = 0 [pid 5617] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5614] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5617] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5614] <... futex resumed>) = 0 [ 114.605769][ T5615] reiserfs: enabling write barrier flush mode [ 114.614542][ T5615] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5617] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5615] <... mount resumed>) = 0 [pid 5615] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5615] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5615] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5614] exit_group(0 [pid 5617] <... futex resumed>) = ? [pid 5614] <... exit_group resumed>) = ? [pid 5615] <... futex resumed>) = ? [pid 5617] +++ exited with 0 +++ [pid 5615] +++ exited with 0 +++ [pid 5614] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5614, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./135", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./135", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./135/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./135/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./135/binderfs") = 0 [ 114.661414][ T5615] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./135/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./135/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./135/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./135/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./135/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./135/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./135") = 0 mkdir("./136", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5618 ./strace-static-x86_64: Process 5618 attached [pid 5618] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5618] chdir("./136") = 0 [pid 5618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5618] setpgid(0, 0) = 0 [pid 5618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5618] write(3, "1000", 4) = 4 [pid 5618] close(3) = 0 [pid 5618] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5618] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5618] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5618] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5618] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5618] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5618] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5618] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5619 attached [pid 5619] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5618] <... clone3 resumed> => {parent_tid=[5619]}, 88) = 5619 [pid 5619] <... rseq resumed>) = 0 [pid 5619] set_robust_list(0x7fd868ec09a0, 24 [pid 5618] rt_sigprocmask(SIG_SETMASK, [], [pid 5619] <... set_robust_list resumed>) = 0 [pid 5618] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5619] rt_sigprocmask(SIG_SETMASK, [], [pid 5618] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5619] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5618] <... futex resumed>) = 0 [pid 5619] memfd_create("syzkaller", 0 [pid 5618] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5619] <... memfd_create resumed>) = 3 [pid 5619] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5619] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5619] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5619] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5619] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5619] close(3) = 0 [pid 5619] mkdir("./file0", 0777) = 0 [ 114.870952][ T5619] loop0: detected capacity change from 0 to 8192 [ 114.886086][ T5619] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 114.899189][ T5619] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 114.908526][ T5619] REISERFS (device loop0): using ordered data mode [ 114.915169][ T5619] reiserfs: using flush barriers [pid 5619] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5619] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5619] chdir("./file0") = 0 [pid 5619] ioctl(4, LOOP_CLR_FD) = 0 [ 114.921221][ T5619] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 114.937692][ T5619] REISERFS (device loop0): checking transaction log (loop0) [ 114.946042][ T5619] REISERFS (device loop0): Using r5 hash to sort names [pid 5619] close(4) = 0 [pid 5619] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5618] <... futex resumed>) = 0 [pid 5619] <... futex resumed>) = 1 [pid 5618] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5619] mkdir(".", 0777 [pid 5618] <... futex resumed>) = 0 [pid 5619] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5618] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5619] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5619] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5619] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5618] <... futex resumed>) = 0 [pid 5618] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5619] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5619] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5618] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5618] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5618] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5618] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5618] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5621 attached [ 114.973516][ T5619] reiserfs: enabling write barrier flush mode [ 114.983632][ T5619] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5621] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5619] <... mount resumed>) = 0 [pid 5618] <... clone3 resumed> => {parent_tid=[5621]}, 88) = 5621 [pid 5621] <... rseq resumed>) = 0 [pid 5619] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5618] rt_sigprocmask(SIG_SETMASK, [], [pid 5621] set_robust_list(0x7fd868e9f9a0, 24 [pid 5619] <... openat resumed>) = 5 [pid 5618] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5621] <... set_robust_list resumed>) = 0 [pid 5619] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5618] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5621] rt_sigprocmask(SIG_SETMASK, [], [pid 5619] <... futex resumed>) = 0 [pid 5618] <... futex resumed>) = 0 [pid 5621] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5619] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5618] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5621] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5621] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5621] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5618] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5618] exit_group(0 [pid 5621] <... futex resumed>) = ? [pid 5621] +++ exited with 0 +++ [pid 5618] <... exit_group resumed>) = ? [pid 5619] <... futex resumed>) = ? [pid 5619] +++ exited with 0 +++ [pid 5618] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5618, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./136", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./136", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./136/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./136/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./136/binderfs") = 0 [ 115.015484][ T5619] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./136/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./136/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./136/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./136/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./136/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./136/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./136") = 0 mkdir("./137", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5622 ./strace-static-x86_64: Process 5622 attached [pid 5622] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5622] chdir("./137") = 0 [pid 5622] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5622] setpgid(0, 0) = 0 [pid 5622] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5622] write(3, "1000", 4) = 4 [pid 5622] close(3) = 0 [pid 5622] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5622] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5622] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5622] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5622] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5622] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5622] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5622] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5623 attached [pid 5623] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5623] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5622] <... clone3 resumed> => {parent_tid=[5623]}, 88) = 5623 [pid 5623] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5623] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5622] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5622] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5623] <... futex resumed>) = 0 [pid 5622] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5623] memfd_create("syzkaller", 0) = 3 [pid 5623] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5623] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5623] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5623] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5623] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5623] close(3) = 0 [pid 5623] mkdir("./file0", 0777) = 0 [ 115.220375][ T5623] loop0: detected capacity change from 0 to 8192 [ 115.237036][ T5623] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 115.250061][ T5623] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 115.259549][ T5623] REISERFS (device loop0): using ordered data mode [pid 5623] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5623] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5623] chdir("./file0") = 0 [pid 5623] ioctl(4, LOOP_CLR_FD) = 0 [pid 5623] close(4) = 0 [pid 5623] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5622] <... futex resumed>) = 0 [pid 5623] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5622] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5623] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5622] <... futex resumed>) = 0 [ 115.266096][ T5623] reiserfs: using flush barriers [ 115.272594][ T5623] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 115.288987][ T5623] REISERFS (device loop0): checking transaction log (loop0) [ 115.297311][ T5623] REISERFS (device loop0): Using r5 hash to sort names [pid 5623] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5622] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5623] <... mount resumed>) = 0 [pid 5623] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5623] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5623] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5622] <... futex resumed>) = 0 [pid 5622] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5623] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5622] <... futex resumed>) = 0 [pid 5623] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5622] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5623] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5622] <... futex resumed>) = 0 [pid 5622] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5622] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5622] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 115.332558][ T5623] reiserfs: enabling write barrier flush mode [ 115.342532][ T5623] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5622] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5625 attached [pid 5623] <... mount resumed>) = 0 [pid 5625] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5623] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5622] <... clone3 resumed> => {parent_tid=[5625]}, 88) = 5625 [pid 5625] <... rseq resumed>) = 0 [pid 5622] rt_sigprocmask(SIG_SETMASK, [], [pid 5625] set_robust_list(0x7fd868e9f9a0, 24 [pid 5623] <... openat resumed>) = 5 [pid 5622] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5625] <... set_robust_list resumed>) = 0 [pid 5623] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5622] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5625] rt_sigprocmask(SIG_SETMASK, [], [pid 5623] <... futex resumed>) = 0 [pid 5622] <... futex resumed>) = 0 [pid 5625] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5623] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5622] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5625] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5625] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5622] <... futex resumed>) = 0 [pid 5625] <... futex resumed>) = 1 [pid 5622] exit_group(0 [pid 5625] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5623] <... futex resumed>) = ? [pid 5622] <... exit_group resumed>) = ? [pid 5625] +++ exited with 0 +++ [pid 5623] +++ exited with 0 +++ [pid 5622] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5622, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./137", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./137", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./137/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./137/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./137/binderfs") = 0 umount2("./137/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./137/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 115.385678][ T5623] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./137/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./137/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./137/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./137/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./137") = 0 mkdir("./138", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5626 attached , child_tidptr=0x5555565f3690) = 5626 [pid 5626] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5626] chdir("./138") = 0 [pid 5626] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5626] setpgid(0, 0) = 0 [pid 5626] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5626] write(3, "1000", 4) = 4 [pid 5626] close(3) = 0 [pid 5626] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5626] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5626] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5626] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5626] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5626] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5626] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5626] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5627 attached [pid 5627] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5626] <... clone3 resumed> => {parent_tid=[5627]}, 88) = 5627 [pid 5627] set_robust_list(0x7fd868ec09a0, 24 [pid 5626] rt_sigprocmask(SIG_SETMASK, [], [pid 5627] <... set_robust_list resumed>) = 0 [pid 5626] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5627] rt_sigprocmask(SIG_SETMASK, [], [pid 5626] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5627] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5626] <... futex resumed>) = 0 [pid 5627] memfd_create("syzkaller", 0 [pid 5626] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5627] <... memfd_create resumed>) = 3 [pid 5627] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5627] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5627] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5627] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5627] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5627] close(3) = 0 [pid 5627] mkdir("./file0", 0777) = 0 [ 115.671373][ T5627] loop0: detected capacity change from 0 to 8192 [ 115.685102][ T5627] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 115.698132][ T5627] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 115.707422][ T5627] REISERFS (device loop0): using ordered data mode [ 115.713956][ T5627] reiserfs: using flush barriers [pid 5627] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5627] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5627] chdir("./file0") = 0 [pid 5627] ioctl(4, LOOP_CLR_FD) = 0 [pid 5627] close(4) = 0 [pid 5627] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5626] <... futex resumed>) = 0 [pid 5627] <... futex resumed>) = 1 [pid 5626] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5627] mkdir(".", 0777 [pid 5626] <... futex resumed>) = 0 [pid 5627] <... mkdir resumed>) = -1 EEXIST (File exists) [ 115.720232][ T5627] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 115.736861][ T5627] REISERFS (device loop0): checking transaction log (loop0) [ 115.745293][ T5627] REISERFS (device loop0): Using r5 hash to sort names [pid 5626] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5627] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5627] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5627] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5627] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5626] <... futex resumed>) = 0 [pid 5626] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5627] <... futex resumed>) = 0 [pid 5626] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5627] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5626] <... futex resumed>) = 0 [pid 5627] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5626] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 115.782134][ T5627] reiserfs: enabling write barrier flush mode [ 115.790626][ T5627] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5626] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5626] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5626] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5629 attached [pid 5629] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5626] <... clone3 resumed> => {parent_tid=[5629]}, 88) = 5629 [pid 5629] <... rseq resumed>) = 0 [pid 5626] rt_sigprocmask(SIG_SETMASK, [], [pid 5629] set_robust_list(0x7fd868e9f9a0, 24 [pid 5626] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5629] <... set_robust_list resumed>) = 0 [pid 5626] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5629] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5626] <... futex resumed>) = 0 [pid 5629] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5626] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5627] <... mount resumed>) = 0 [pid 5627] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5627] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5627] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5629] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5629] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5626] <... futex resumed>) = 0 [pid 5629] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5626] exit_group(0) = ? [pid 5629] <... futex resumed>) = ? [pid 5627] <... futex resumed>) = ? [pid 5629] +++ exited with 0 +++ [pid 5627] +++ exited with 0 +++ [pid 5626] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5626, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./138", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./138", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 115.830888][ T5627] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./138/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./138/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./138/binderfs") = 0 umount2("./138/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./138/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./138/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./138/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./138/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./138/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./138") = 0 mkdir("./139", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5630 attached [pid 5630] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5630 [pid 5630] <... set_robust_list resumed>) = 0 [pid 5630] chdir("./139") = 0 [pid 5630] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5630] setpgid(0, 0) = 0 [pid 5630] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5630] write(3, "1000", 4) = 4 [pid 5630] close(3) = 0 [pid 5630] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5630] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5630] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5630] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5630] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5630] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5630] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5630] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5631 attached [pid 5631] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5630] <... clone3 resumed> => {parent_tid=[5631]}, 88) = 5631 [pid 5631] <... rseq resumed>) = 0 [pid 5631] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5631] rt_sigprocmask(SIG_SETMASK, [], [pid 5630] rt_sigprocmask(SIG_SETMASK, [], [pid 5631] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5630] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5631] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5630] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5631] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5630] <... futex resumed>) = 0 [pid 5631] memfd_create("syzkaller", 0 [pid 5630] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5631] <... memfd_create resumed>) = 3 [pid 5631] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5631] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5631] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5631] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5631] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5631] close(3) = 0 [pid 5631] mkdir("./file0", 0777) = 0 [ 116.085354][ T5631] loop0: detected capacity change from 0 to 8192 [ 116.101226][ T5631] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 116.114388][ T5631] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 116.123791][ T5631] REISERFS (device loop0): using ordered data mode [ 116.130314][ T5631] reiserfs: using flush barriers [pid 5631] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5631] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5631] chdir("./file0") = 0 [pid 5631] ioctl(4, LOOP_CLR_FD) = 0 [pid 5631] close(4) = 0 [pid 5631] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5630] <... futex resumed>) = 0 [pid 5631] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5630] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5631] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5631] mkdir(".", 0777) = -1 EEXIST (File exists) [ 116.136789][ T5631] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 116.153569][ T5631] REISERFS (device loop0): checking transaction log (loop0) [ 116.162272][ T5631] REISERFS (device loop0): Using r5 hash to sort names [pid 5631] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5630] <... futex resumed>) = 0 [pid 5630] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5631] <... mount resumed>) = 0 [pid 5631] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5631] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5631] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5630] <... futex resumed>) = 0 [pid 5631] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5630] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5631] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5630] <... futex resumed>) = 0 [pid 5631] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5630] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5630] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5630] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5630] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5630] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5633 attached => {parent_tid=[5633]}, 88) = 5633 [pid 5630] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5630] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5630] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5633] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5633] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5631] <... mount resumed>) = 0 [pid 5631] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5633] rt_sigprocmask(SIG_SETMASK, [], [pid 5631] <... openat resumed>) = 5 [pid 5633] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5631] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5631] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5633] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5633] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5630] <... futex resumed>) = 0 [ 116.204903][ T5631] reiserfs: enabling write barrier flush mode [ 116.213581][ T5631] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 116.243618][ T5631] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5630] exit_group(0 [pid 5631] <... futex resumed>) = ? [pid 5630] <... exit_group resumed>) = ? [pid 5633] +++ exited with 0 +++ [pid 5631] +++ exited with 0 +++ [pid 5630] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5630, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./139", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./139", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./139/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./139/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./139/binderfs") = 0 umount2("./139/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./139/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./139/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./139/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./139/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./139/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./139") = 0 mkdir("./140", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5634 attached , child_tidptr=0x5555565f3690) = 5634 [pid 5634] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5634] chdir("./140") = 0 [pid 5634] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5634] setpgid(0, 0) = 0 [pid 5634] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5634] write(3, "1000", 4) = 4 [pid 5634] close(3) = 0 [pid 5634] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5634] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5634] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5634] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5634] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5634] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5634] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5634] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5635 attached [pid 5635] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5634] <... clone3 resumed> => {parent_tid=[5635]}, 88) = 5635 [pid 5635] <... rseq resumed>) = 0 [pid 5634] rt_sigprocmask(SIG_SETMASK, [], [pid 5635] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5635] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5635] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5634] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5634] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5635] <... futex resumed>) = 0 [pid 5634] <... futex resumed>) = 1 [pid 5635] memfd_create("syzkaller", 0 [pid 5634] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5635] <... memfd_create resumed>) = 3 [pid 5635] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5635] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5635] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5635] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5635] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5635] close(3) = 0 [pid 5635] mkdir("./file0", 0777) = 0 [ 116.515520][ T5635] loop0: detected capacity change from 0 to 8192 [ 116.532216][ T5635] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 116.545441][ T5635] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 116.554832][ T5635] REISERFS (device loop0): using ordered data mode [pid 5635] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5635] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5635] chdir("./file0") = 0 [pid 5635] ioctl(4, LOOP_CLR_FD) = 0 [pid 5635] close(4) = 0 [pid 5635] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5634] <... futex resumed>) = 0 [pid 5635] <... futex resumed>) = 1 [pid 5634] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5635] mkdir(".", 0777 [pid 5634] <... futex resumed>) = 0 [pid 5635] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5634] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 116.561436][ T5635] reiserfs: using flush barriers [ 116.567969][ T5635] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 116.584626][ T5635] REISERFS (device loop0): checking transaction log (loop0) [ 116.593323][ T5635] REISERFS (device loop0): Using r5 hash to sort names [pid 5635] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5635] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5635] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5634] <... futex resumed>) = 0 [pid 5635] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5634] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5635] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5634] <... futex resumed>) = 0 [pid 5635] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5634] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5635] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5634] <... futex resumed>) = 0 [pid 5634] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 116.616547][ T5635] reiserfs: enabling write barrier flush mode [ 116.624792][ T5635] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5634] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5635] <... mount resumed>) = 0 [pid 5634] <... mprotect resumed>) = 0 [pid 5635] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5634] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5635] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5635] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5634] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5634] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5637 attached [pid 5637] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5634] <... clone3 resumed> => {parent_tid=[5637]}, 88) = 5637 [pid 5637] <... rseq resumed>) = 0 [pid 5634] rt_sigprocmask(SIG_SETMASK, [], [pid 5637] set_robust_list(0x7fd868e9f9a0, 24 [pid 5634] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5637] <... set_robust_list resumed>) = 0 [pid 5634] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5634] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5637] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5637] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5637] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5634] <... futex resumed>) = 0 [pid 5637] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5634] exit_group(0 [pid 5637] <... futex resumed>) = ? [pid 5635] <... futex resumed>) = ? [pid 5634] <... exit_group resumed>) = ? [pid 5637] +++ exited with 0 +++ [pid 5635] +++ exited with 0 +++ [pid 5634] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5634, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./140", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./140", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./140/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./140/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./140/binderfs") = 0 [ 116.666639][ T5635] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./140/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./140/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./140/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./140/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./140/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./140/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./140") = 0 mkdir("./141", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5638 attached , child_tidptr=0x5555565f3690) = 5638 [pid 5638] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5638] chdir("./141") = 0 [pid 5638] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5638] setpgid(0, 0) = 0 [pid 5638] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5638] write(3, "1000", 4) = 4 [pid 5638] close(3) = 0 [pid 5638] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5638] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5638] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5638] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5638] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5638] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5638] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5638] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5639 attached [pid 5639] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5638] <... clone3 resumed> => {parent_tid=[5639]}, 88) = 5639 [pid 5639] <... rseq resumed>) = 0 [pid 5638] rt_sigprocmask(SIG_SETMASK, [], [pid 5639] set_robust_list(0x7fd868ec09a0, 24 [pid 5638] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5639] <... set_robust_list resumed>) = 0 [pid 5638] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5639] rt_sigprocmask(SIG_SETMASK, [], [pid 5638] <... futex resumed>) = 0 [pid 5639] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5638] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5639] memfd_create("syzkaller", 0) = 3 [pid 5639] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5639] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5639] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5639] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5639] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5639] close(3) = 0 [pid 5639] mkdir("./file0", 0777) = 0 [ 116.916867][ T5639] loop0: detected capacity change from 0 to 8192 [ 116.926939][ T5639] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 116.939985][ T5639] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 116.949356][ T5639] REISERFS (device loop0): using ordered data mode [ 116.955892][ T5639] reiserfs: using flush barriers [pid 5639] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5639] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5639] chdir("./file0") = 0 [pid 5639] ioctl(4, LOOP_CLR_FD) = 0 [pid 5639] close(4) = 0 [pid 5639] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5639] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5638] <... futex resumed>) = 0 [pid 5638] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5639] <... futex resumed>) = 0 [pid 5638] <... futex resumed>) = 1 [pid 5639] mkdir(".", 0777 [pid 5638] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5639] <... mkdir resumed>) = -1 EEXIST (File exists) [ 116.962589][ T5639] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 116.979031][ T5639] REISERFS (device loop0): checking transaction log (loop0) [ 116.987396][ T5639] REISERFS (device loop0): Using r5 hash to sort names [pid 5639] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5639] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5639] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5638] <... futex resumed>) = 0 [pid 5639] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5638] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5638] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5638] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5639] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5639] mkdir(".", 0777 [pid 5638] <... mmap resumed>) = 0x7fd868e7f000 [pid 5639] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5639] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 117.030634][ T5639] reiserfs: enabling write barrier flush mode [ 117.038816][ T5639] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5638] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5638] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5638] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5641 attached [pid 5641] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5638] <... clone3 resumed> => {parent_tid=[5641]}, 88) = 5641 [pid 5641] <... rseq resumed>) = 0 [pid 5638] rt_sigprocmask(SIG_SETMASK, [], [pid 5641] set_robust_list(0x7fd868e9f9a0, 24 [pid 5638] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5641] <... set_robust_list resumed>) = 0 [pid 5638] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5641] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5638] <... futex resumed>) = 0 [pid 5641] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5638] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5639] <... mount resumed>) = 0 [pid 5639] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5641] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5639] <... openat resumed>) = 5 [pid 5641] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5641] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5639] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5638] <... futex resumed>) = 0 [pid 5639] <... futex resumed>) = 0 [pid 5638] exit_group(0 [pid 5639] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5641] <... futex resumed>) = ? [pid 5639] <... futex resumed>) = ? [pid 5638] <... exit_group resumed>) = ? [pid 5641] +++ exited with 0 +++ [pid 5639] +++ exited with 0 +++ [pid 5638] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5638, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./141", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./141", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./141/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./141/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./141/binderfs") = 0 [ 117.080769][ T5639] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./141/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./141/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./141/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./141/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./141/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./141/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./141") = 0 mkdir("./142", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5642 attached , child_tidptr=0x5555565f3690) = 5642 [pid 5642] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5642] chdir("./142") = 0 [pid 5642] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5642] setpgid(0, 0) = 0 [pid 5642] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5642] write(3, "1000", 4) = 4 [pid 5642] close(3) = 0 [pid 5642] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5642] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5642] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5642] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5642] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5642] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5642] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5642] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5643 attached => {parent_tid=[5643]}, 88) = 5643 [pid 5643] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5643] set_robust_list(0x7fd868ec09a0, 24 [pid 5642] rt_sigprocmask(SIG_SETMASK, [], [pid 5643] <... set_robust_list resumed>) = 0 [pid 5642] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5643] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5643] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5642] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5643] <... futex resumed>) = 0 [pid 5642] <... futex resumed>) = 1 [pid 5643] memfd_create("syzkaller", 0 [pid 5642] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5643] <... memfd_create resumed>) = 3 [pid 5643] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5643] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5643] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5643] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5643] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5643] close(3) = 0 [pid 5643] mkdir("./file0", 0777) = 0 [ 117.365357][ T5643] loop0: detected capacity change from 0 to 8192 [ 117.380273][ T5643] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 117.393350][ T5643] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 117.402968][ T5643] REISERFS (device loop0): using ordered data mode [ 117.409463][ T5643] reiserfs: using flush barriers [pid 5643] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5643] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5643] chdir("./file0") = 0 [pid 5643] ioctl(4, LOOP_CLR_FD) = 0 [pid 5643] close(4) = 0 [pid 5643] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5642] <... futex resumed>) = 0 [pid 5643] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5642] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5643] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5642] <... futex resumed>) = 0 [pid 5642] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5643] mkdir(".", 0777) = -1 EEXIST (File exists) [ 117.415848][ T5643] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 117.432358][ T5643] REISERFS (device loop0): checking transaction log (loop0) [ 117.440692][ T5643] REISERFS (device loop0): Using r5 hash to sort names [pid 5643] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5643] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5643] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5642] <... futex resumed>) = 0 [pid 5643] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5642] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5643] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5643] mkdir(".", 0777 [pid 5642] <... futex resumed>) = 0 [pid 5643] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5642] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5643] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5642] <... futex resumed>) = 0 [pid 5642] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5642] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5643] <... mount resumed>) = 0 [pid 5642] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5643] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5642] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5643] <... openat resumed>) = 5 [pid 5643] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 5645 attached [pid 5643] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5645] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5642] <... clone3 resumed> => {parent_tid=[5645]}, 88) = 5645 [pid 5645] <... rseq resumed>) = 0 [pid 5642] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5642] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 117.482208][ T5643] reiserfs: enabling write barrier flush mode [ 117.490855][ T5643] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 117.521890][ T5643] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5642] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5645] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5645] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5645] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5645] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5642] <... futex resumed>) = 0 [pid 5645] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5642] exit_group(0 [pid 5645] <... futex resumed>) = ? [pid 5643] <... futex resumed>) = ? [pid 5645] +++ exited with 0 +++ [pid 5643] +++ exited with 0 +++ [pid 5642] <... exit_group resumed>) = ? [pid 5642] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5642, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=9 /* 0.09 s */} --- umount2("./142", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./142", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./142/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./142/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./142/binderfs") = 0 umount2("./142/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./142/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./142/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./142/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./142/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./142/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./142") = 0 mkdir("./143", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5646 attached , child_tidptr=0x5555565f3690) = 5646 [pid 5646] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5646] chdir("./143") = 0 [pid 5646] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5646] setpgid(0, 0) = 0 [pid 5646] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5646] write(3, "1000", 4) = 4 [pid 5646] close(3) = 0 [pid 5646] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5646] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5646] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5646] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5646] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5646] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5646] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5646] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5647 attached [pid 5647] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5647] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5646] <... clone3 resumed> => {parent_tid=[5647]}, 88) = 5647 [pid 5647] rt_sigprocmask(SIG_SETMASK, [], [pid 5646] rt_sigprocmask(SIG_SETMASK, [], [pid 5647] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5646] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5647] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5646] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5647] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5647] memfd_create("syzkaller", 0 [pid 5646] <... futex resumed>) = 0 [pid 5646] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5647] <... memfd_create resumed>) = 3 [pid 5647] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5647] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5647] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5647] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5647] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5647] close(3) = 0 [pid 5647] mkdir("./file0", 0777) = 0 [ 117.817749][ T5647] loop0: detected capacity change from 0 to 8192 [ 117.832490][ T5647] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 117.845583][ T5647] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 117.854984][ T5647] REISERFS (device loop0): using ordered data mode [ 117.861526][ T5647] reiserfs: using flush barriers [pid 5647] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5647] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5647] chdir("./file0") = 0 [pid 5647] ioctl(4, LOOP_CLR_FD) = 0 [pid 5647] close(4) = 0 [pid 5647] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5646] <... futex resumed>) = 0 [pid 5646] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5647] mkdir(".", 0777 [pid 5646] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5647] <... mkdir resumed>) = -1 EEXIST (File exists) [ 117.867759][ T5647] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 117.884587][ T5647] REISERFS (device loop0): checking transaction log (loop0) [ 117.892893][ T5647] REISERFS (device loop0): Using r5 hash to sort names [pid 5647] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5647] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5647] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5646] <... futex resumed>) = 0 [pid 5647] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5646] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5647] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5646] <... futex resumed>) = 0 [pid 5647] mkdir(".", 0777 [pid 5646] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5647] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5646] <... futex resumed>) = 0 [pid 5646] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5646] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5647] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5646] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5646] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5649 attached [pid 5649] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5646] <... clone3 resumed> => {parent_tid=[5649]}, 88) = 5649 [pid 5649] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5646] rt_sigprocmask(SIG_SETMASK, [], [pid 5649] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5646] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5649] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [ 117.926888][ T5647] reiserfs: enabling write barrier flush mode [ 117.935329][ T5647] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5646] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5646] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5649] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5647] <... mount resumed>) = 0 [pid 5649] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5647] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5649] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5649] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5647] <... openat resumed>) = 5 [pid 5649] <... futex resumed>) = 1 [pid 5646] <... futex resumed>) = 0 [pid 5649] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5647] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5646] exit_group(0 [pid 5649] <... futex resumed>) = ? [pid 5647] <... futex resumed>) = ? [pid 5649] +++ exited with 0 +++ [pid 5647] +++ exited with 0 +++ [pid 5646] <... exit_group resumed>) = ? [pid 5646] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5646, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./143", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./143", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 117.973463][ T5647] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./143/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./143/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./143/binderfs") = 0 umount2("./143/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./143/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./143/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./143/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./143/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./143/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./143") = 0 mkdir("./144", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5650 attached , child_tidptr=0x5555565f3690) = 5650 [pid 5650] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5650] chdir("./144") = 0 [pid 5650] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5650] setpgid(0, 0) = 0 [pid 5650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5650] write(3, "1000", 4) = 4 [pid 5650] close(3) = 0 [pid 5650] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5650] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5650] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5650] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5650] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5650] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5650] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5650] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5651 attached [pid 5651] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5650] <... clone3 resumed> => {parent_tid=[5651]}, 88) = 5651 [pid 5651] <... rseq resumed>) = 0 [pid 5651] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5651] rt_sigprocmask(SIG_SETMASK, [], [pid 5650] rt_sigprocmask(SIG_SETMASK, [], [pid 5651] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5650] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5651] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5650] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5651] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5650] <... futex resumed>) = 0 [pid 5651] memfd_create("syzkaller", 0) = 3 [pid 5650] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5651] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5651] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5651] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5651] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5651] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5651] close(3) = 0 [pid 5651] mkdir("./file0", 0777) = 0 [ 118.252245][ T5651] loop0: detected capacity change from 0 to 8192 [ 118.268746][ T5651] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 118.281904][ T5651] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 118.291135][ T5651] REISERFS (device loop0): using ordered data mode [pid 5651] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5651] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5651] chdir("./file0") = 0 [pid 5651] ioctl(4, LOOP_CLR_FD) = 0 [pid 5651] close(4) = 0 [pid 5651] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5650] <... futex resumed>) = 0 [pid 5651] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5650] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5651] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5650] <... futex resumed>) = 0 [ 118.298025][ T5651] reiserfs: using flush barriers [ 118.304391][ T5651] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 118.320763][ T5651] REISERFS (device loop0): checking transaction log (loop0) [ 118.329401][ T5651] REISERFS (device loop0): Using r5 hash to sort names [pid 5650] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5651] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5651] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5651] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5651] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5650] <... futex resumed>) = 0 [pid 5650] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5651] <... futex resumed>) = 1 [pid 5650] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5651] mkdir(".", 0777 [pid 5650] <... futex resumed>) = 0 [pid 5651] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5650] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5651] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5650] <... mmap resumed>) = 0x7fd868e7f000 [pid 5650] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5650] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5650] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5653 attached => {parent_tid=[5653]}, 88) = 5653 [pid 5653] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5650] rt_sigprocmask(SIG_SETMASK, [], [pid 5653] set_robust_list(0x7fd868e9f9a0, 24 [pid 5651] <... mount resumed>) = 0 [pid 5650] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5653] <... set_robust_list resumed>) = 0 [pid 5651] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5650] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5653] rt_sigprocmask(SIG_SETMASK, [], [pid 5650] <... futex resumed>) = 0 [pid 5653] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5650] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5653] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5651] <... openat resumed>) = 5 [pid 5651] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5653] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5651] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5653] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5650] <... futex resumed>) = 0 [pid 5653] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5650] exit_group(0 [pid 5653] <... futex resumed>) = ? [pid 5651] <... futex resumed>) = ? [pid 5650] <... exit_group resumed>) = ? [pid 5653] +++ exited with 0 +++ [pid 5651] +++ exited with 0 +++ [pid 5650] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5650, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- [ 118.366948][ T5651] reiserfs: enabling write barrier flush mode [ 118.381958][ T5651] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 118.402968][ T5651] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./144", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./144", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./144/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./144/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./144/binderfs") = 0 umount2("./144/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./144/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./144/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./144/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./144/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./144/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./144") = 0 mkdir("./145", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5654 attached [pid 5654] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5654] chdir("./145") = 0 [pid 5654] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5654 [pid 5654] setpgid(0, 0) = 0 [pid 5654] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5654] write(3, "1000", 4) = 4 [pid 5654] close(3) = 0 [pid 5654] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5654] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5654] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5654] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5654] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5654] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5654] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5654] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5655 attached [pid 5655] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5654] <... clone3 resumed> => {parent_tid=[5655]}, 88) = 5655 [pid 5655] set_robust_list(0x7fd868ec09a0, 24 [pid 5654] rt_sigprocmask(SIG_SETMASK, [], [pid 5655] <... set_robust_list resumed>) = 0 [pid 5654] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5655] rt_sigprocmask(SIG_SETMASK, [], [pid 5654] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5655] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5654] <... futex resumed>) = 0 [pid 5655] memfd_create("syzkaller", 0 [pid 5654] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5655] <... memfd_create resumed>) = 3 [pid 5655] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5655] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5655] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5655] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5655] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5655] close(3) = 0 [pid 5655] mkdir("./file0", 0777) = 0 [ 118.725982][ T5655] loop0: detected capacity change from 0 to 8192 [ 118.736975][ T5655] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 118.750146][ T5655] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 118.759492][ T5655] REISERFS (device loop0): using ordered data mode [ 118.766073][ T5655] reiserfs: using flush barriers [pid 5655] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5655] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5655] chdir("./file0") = 0 [pid 5655] ioctl(4, LOOP_CLR_FD) = 0 [pid 5655] close(4) = 0 [pid 5655] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5654] <... futex resumed>) = 0 [pid 5655] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5654] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5655] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5654] <... futex resumed>) = 0 [pid 5655] mkdir(".", 0777 [pid 5654] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5655] <... mkdir resumed>) = -1 EEXIST (File exists) [ 118.772349][ T5655] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 118.788750][ T5655] REISERFS (device loop0): checking transaction log (loop0) [ 118.797179][ T5655] REISERFS (device loop0): Using r5 hash to sort names [pid 5655] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5655] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5655] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5655] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5654] <... futex resumed>) = 0 [pid 5654] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5655] <... futex resumed>) = 0 [pid 5654] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5655] mkdir(".", 0777 [pid 5654] <... futex resumed>) = 0 [pid 5655] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5654] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5655] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5654] <... mmap resumed>) = 0x7fd868e7f000 [pid 5654] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5654] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5654] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5657 attached [pid 5657] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5654] <... clone3 resumed> => {parent_tid=[5657]}, 88) = 5657 [pid 5657] <... rseq resumed>) = 0 [pid 5654] rt_sigprocmask(SIG_SETMASK, [], [pid 5657] set_robust_list(0x7fd868e9f9a0, 24 [pid 5654] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5657] <... set_robust_list resumed>) = 0 [pid 5654] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5657] rt_sigprocmask(SIG_SETMASK, [], [pid 5654] <... futex resumed>) = 0 [pid 5657] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5654] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5657] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5657] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5655] <... mount resumed>) = 0 [pid 5657] <... futex resumed>) = 1 [pid 5655] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5654] <... futex resumed>) = 0 [pid 5657] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5655] <... openat resumed>) = 5 [pid 5655] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5655] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5654] exit_group(0 [pid 5657] <... futex resumed>) = ? [pid 5655] <... futex resumed>) = ? [pid 5654] <... exit_group resumed>) = ? [pid 5657] +++ exited with 0 +++ [pid 5655] +++ exited with 0 +++ [pid 5654] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5654, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./145", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./145", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 118.822165][ T5655] reiserfs: enabling write barrier flush mode [ 118.830153][ T5655] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 118.864658][ T5655] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./145/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./145/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./145/binderfs") = 0 umount2("./145/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./145/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./145/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./145/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./145/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./145/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./145") = 0 mkdir("./146", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5658 attached [pid 5658] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5658] chdir("./146") = 0 [pid 5658] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5658] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5658 [pid 5658] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5658] write(3, "1000", 4) = 4 [pid 5658] close(3) = 0 [pid 5658] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5658] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5658] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5658] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5658] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5658] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5658] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5658] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5659 attached [pid 5659] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5658] <... clone3 resumed> => {parent_tid=[5659]}, 88) = 5659 [pid 5659] <... rseq resumed>) = 0 [pid 5658] rt_sigprocmask(SIG_SETMASK, [], [pid 5659] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5659] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5658] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5659] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5658] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5659] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5658] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5659] memfd_create("syzkaller", 0) = 3 [pid 5659] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5659] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5659] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5659] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5659] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5659] close(3) = 0 [pid 5659] mkdir("./file0", 0777) = 0 [ 119.127421][ T5659] loop0: detected capacity change from 0 to 8192 [ 119.137564][ T5659] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 119.150578][ T5659] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 119.159961][ T5659] REISERFS (device loop0): using ordered data mode [ 119.166516][ T5659] reiserfs: using flush barriers [pid 5659] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5659] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5659] chdir("./file0") = 0 [pid 5659] ioctl(4, LOOP_CLR_FD) = 0 [pid 5659] close(4) = 0 [pid 5659] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5659] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5658] <... futex resumed>) = 0 [pid 5658] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5659] <... futex resumed>) = 0 [pid 5658] <... futex resumed>) = 1 [pid 5659] mkdir(".", 0777 [pid 5658] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5659] <... mkdir resumed>) = -1 EEXIST (File exists) [ 119.172987][ T5659] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 119.189399][ T5659] REISERFS (device loop0): checking transaction log (loop0) [ 119.197978][ T5659] REISERFS (device loop0): Using r5 hash to sort names [pid 5659] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5659] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5659] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5658] <... futex resumed>) = 0 [pid 5659] mkdir(".", 0777 [pid 5658] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5659] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5659] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5658] <... futex resumed>) = 0 [pid 5658] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 119.246156][ T5659] reiserfs: enabling write barrier flush mode [ 119.254298][ T5659] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5658] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5658] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5658] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5659] <... mount resumed>) = 0 [pid 5658] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5658] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5659] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5661 attached ) = 5 [pid 5659] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5659] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5658] <... clone3 resumed> => {parent_tid=[5661]}, 88) = 5661 [pid 5661] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5658] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5658] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5658] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5661] <... rseq resumed>) = 0 [pid 5661] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5661] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5661] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5661] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5661] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5658] <... futex resumed>) = 0 [pid 5658] exit_group(0 [pid 5661] <... futex resumed>) = ? [ 119.294875][ T5659] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5659] <... futex resumed>) = ? [pid 5658] <... exit_group resumed>) = ? [pid 5661] +++ exited with 0 +++ [pid 5659] +++ exited with 0 +++ [pid 5658] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5658, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./146", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./146", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./146/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./146/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./146/binderfs") = 0 umount2("./146/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./146/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./146/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./146/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./146/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./146/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./146") = 0 mkdir("./147", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5662 attached , child_tidptr=0x5555565f3690) = 5662 [pid 5662] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5662] chdir("./147") = 0 [pid 5662] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5662] setpgid(0, 0) = 0 [pid 5662] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5662] write(3, "1000", 4) = 4 [pid 5662] close(3) = 0 [pid 5662] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5662] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5662] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5662] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5662] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5662] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5662] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5662] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5663 attached [pid 5663] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5662] <... clone3 resumed> => {parent_tid=[5663]}, 88) = 5663 [pid 5663] <... rseq resumed>) = 0 [pid 5662] rt_sigprocmask(SIG_SETMASK, [], [pid 5663] set_robust_list(0x7fd868ec09a0, 24 [pid 5662] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5663] <... set_robust_list resumed>) = 0 [pid 5662] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5663] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5662] <... futex resumed>) = 0 [pid 5663] memfd_create("syzkaller", 0 [pid 5662] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5663] <... memfd_create resumed>) = 3 [pid 5663] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5663] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5663] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5663] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5663] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5663] close(3) = 0 [pid 5663] mkdir("./file0", 0777) = 0 [ 119.633628][ T5663] loop0: detected capacity change from 0 to 8192 [ 119.649100][ T5663] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 119.662174][ T5663] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 119.672067][ T5663] REISERFS (device loop0): using ordered data mode [ 119.678587][ T5663] reiserfs: using flush barriers [pid 5663] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5663] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5663] chdir("./file0") = 0 [pid 5663] ioctl(4, LOOP_CLR_FD) = 0 [pid 5663] close(4) = 0 [pid 5663] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5662] <... futex resumed>) = 0 [pid 5662] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5663] mkdir(".", 0777 [pid 5662] <... futex resumed>) = 0 [pid 5663] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5663] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 119.684956][ T5663] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 119.701577][ T5663] REISERFS (device loop0): checking transaction log (loop0) [ 119.709739][ T5663] REISERFS (device loop0): Using r5 hash to sort names [pid 5662] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5663] <... mount resumed>) = 0 [pid 5663] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5663] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] <... futex resumed>) = 0 [pid 5663] <... futex resumed>) = 1 [pid 5663] mkdir(".", 0777 [pid 5662] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5663] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5662] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5663] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5662] <... futex resumed>) = 0 [pid 5662] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5662] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5662] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5662] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5665 attached [pid 5665] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5662] <... clone3 resumed> => {parent_tid=[5665]}, 88) = 5665 [pid 5665] <... rseq resumed>) = 0 [pid 5662] rt_sigprocmask(SIG_SETMASK, [], [pid 5665] set_robust_list(0x7fd868e9f9a0, 24 [pid 5662] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5665] <... set_robust_list resumed>) = 0 [pid 5662] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5665] rt_sigprocmask(SIG_SETMASK, [], [pid 5662] <... futex resumed>) = 0 [pid 5665] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5663] <... mount resumed>) = 0 [pid 5662] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5665] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5663] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5663] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5665] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5663] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5665] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5662] <... futex resumed>) = 0 [pid 5662] exit_group(0) = ? [pid 5663] <... futex resumed>) = ? [pid 5663] +++ exited with 0 +++ [pid 5665] <... futex resumed>) = ? [pid 5665] +++ exited with 0 +++ [pid 5662] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5662, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./147", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./147", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 119.745138][ T5663] reiserfs: enabling write barrier flush mode [ 119.754758][ T5663] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 119.777567][ T5663] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./147/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./147/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./147/binderfs") = 0 umount2("./147/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./147/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./147/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./147/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./147/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./147/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./147") = 0 mkdir("./148", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5666 attached , child_tidptr=0x5555565f3690) = 5666 [pid 5666] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5666] chdir("./148") = 0 [pid 5666] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5666] setpgid(0, 0) = 0 [pid 5666] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5666] write(3, "1000", 4) = 4 [pid 5666] close(3) = 0 [pid 5666] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5666] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5666] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5666] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5666] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5666] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5666] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5667 attached [pid 5667] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5666] <... clone3 resumed> => {parent_tid=[5667]}, 88) = 5667 [pid 5667] set_robust_list(0x7fd868ec09a0, 24 [pid 5666] rt_sigprocmask(SIG_SETMASK, [], [pid 5667] <... set_robust_list resumed>) = 0 [pid 5666] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5667] rt_sigprocmask(SIG_SETMASK, [], [pid 5666] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5667] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5666] <... futex resumed>) = 0 [pid 5667] memfd_create("syzkaller", 0 [pid 5666] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5667] <... memfd_create resumed>) = 3 [pid 5667] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5667] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5667] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5667] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5667] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5667] close(3) = 0 [pid 5667] mkdir("./file0", 0777) = 0 [ 120.038126][ T5667] loop0: detected capacity change from 0 to 8192 [ 120.054352][ T5667] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 120.067320][ T5667] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 120.076619][ T5667] REISERFS (device loop0): using ordered data mode [ 120.083151][ T5667] reiserfs: using flush barriers [pid 5667] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5667] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5667] chdir("./file0") = 0 [pid 5667] ioctl(4, LOOP_CLR_FD) = 0 [pid 5667] close(4) = 0 [pid 5667] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5666] <... futex resumed>) = 0 [pid 5667] mkdir(".", 0777 [pid 5666] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5667] <... mkdir resumed>) = -1 EEXIST (File exists) [ 120.089295][ T5667] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 120.105959][ T5667] REISERFS (device loop0): checking transaction log (loop0) [ 120.115107][ T5667] REISERFS (device loop0): Using r5 hash to sort names [pid 5667] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5666] <... futex resumed>) = 0 [pid 5666] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5667] <... mount resumed>) = 0 [pid 5667] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5667] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5666] <... futex resumed>) = 0 [pid 5667] <... futex resumed>) = 1 [pid 5666] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5667] mkdir(".", 0777 [pid 5666] <... futex resumed>) = 0 [pid 5667] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5666] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5667] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5666] <... futex resumed>) = 0 [pid 5666] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5666] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5666] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5666] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5669 attached [pid 5667] <... mount resumed>) = 0 [pid 5666] <... clone3 resumed> => {parent_tid=[5669]}, 88) = 5669 [pid 5669] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5666] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5666] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5666] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5667] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5669] <... rseq resumed>) = 0 [pid 5669] set_robust_list(0x7fd868e9f9a0, 24 [pid 5667] <... openat resumed>) = 5 [pid 5669] <... set_robust_list resumed>) = 0 [pid 5669] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5669] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5667] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5667] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5669] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5669] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5666] <... futex resumed>) = 0 [pid 5669] <... futex resumed>) = 1 [pid 5666] exit_group(0 [pid 5667] <... futex resumed>) = ? [pid 5666] <... exit_group resumed>) = ? [pid 5669] +++ exited with 0 +++ [pid 5667] +++ exited with 0 +++ [pid 5666] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5666, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- [ 120.147686][ T5667] reiserfs: enabling write barrier flush mode [ 120.157599][ T5667] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 120.181164][ T5667] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./148", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./148", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./148/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./148/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./148/binderfs") = 0 umount2("./148/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./148/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./148/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./148/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./148/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./148/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./148") = 0 mkdir("./149", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5670 attached , child_tidptr=0x5555565f3690) = 5670 [pid 5670] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5670] chdir("./149") = 0 [pid 5670] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5670] setpgid(0, 0) = 0 [pid 5670] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5670] write(3, "1000", 4) = 4 [pid 5670] close(3) = 0 [pid 5670] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5670] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5670] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5670] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5670] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5670] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5670] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5670] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5671 attached [pid 5671] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5670] <... clone3 resumed> => {parent_tid=[5671]}, 88) = 5671 [pid 5671] <... rseq resumed>) = 0 [pid 5671] set_robust_list(0x7fd868ec09a0, 24 [pid 5670] rt_sigprocmask(SIG_SETMASK, [], [pid 5671] <... set_robust_list resumed>) = 0 [pid 5670] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5671] rt_sigprocmask(SIG_SETMASK, [], [pid 5670] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5671] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5670] <... futex resumed>) = 0 [pid 5671] memfd_create("syzkaller", 0 [pid 5670] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5671] <... memfd_create resumed>) = 3 [pid 5671] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5671] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5671] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5671] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5671] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5671] close(3) = 0 [pid 5671] mkdir("./file0", 0777) = 0 [ 120.437906][ T5671] loop0: detected capacity change from 0 to 8192 [ 120.462949][ T5671] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 120.476581][ T5671] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5671] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5671] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5671] chdir("./file0") = 0 [pid 5671] ioctl(4, LOOP_CLR_FD) = 0 [pid 5671] close(4) = 0 [pid 5671] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5670] <... futex resumed>) = 0 [pid 5670] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5671] mkdir(".", 0777 [pid 5670] <... futex resumed>) = 0 [ 120.485911][ T5671] REISERFS (device loop0): using ordered data mode [ 120.492685][ T5671] reiserfs: using flush barriers [ 120.498854][ T5671] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 120.515713][ T5671] REISERFS (device loop0): checking transaction log (loop0) [ 120.524579][ T5671] REISERFS (device loop0): Using r5 hash to sort names [pid 5671] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5670] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5671] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5671] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5671] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5670] <... futex resumed>) = 0 [pid 5671] <... futex resumed>) = 1 [pid 5670] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5671] mkdir(".", 0777 [pid 5670] <... futex resumed>) = 0 [pid 5671] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5670] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5671] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5670] <... futex resumed>) = 0 [pid 5670] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 120.557194][ T5671] reiserfs: enabling write barrier flush mode [ 120.569309][ T5671] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5670] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5670] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5671] <... mount resumed>) = 0 [pid 5670] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5670] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5673 attached [pid 5673] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5671] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5670] <... clone3 resumed> => {parent_tid=[5673]}, 88) = 5673 [pid 5673] set_robust_list(0x7fd868e9f9a0, 24 [pid 5671] <... openat resumed>) = 5 [pid 5670] rt_sigprocmask(SIG_SETMASK, [], [pid 5673] <... set_robust_list resumed>) = 0 [pid 5670] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5673] rt_sigprocmask(SIG_SETMASK, [], [pid 5671] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5670] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5673] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5671] <... futex resumed>) = 0 [pid 5670] <... futex resumed>) = 0 [pid 5673] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5671] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5670] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5673] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5673] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5670] <... futex resumed>) = 0 [pid 5673] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5670] exit_group(0 [pid 5673] <... futex resumed>) = ? [pid 5671] <... futex resumed>) = ? [pid 5673] +++ exited with 0 +++ [pid 5671] +++ exited with 0 +++ [pid 5670] <... exit_group resumed>) = ? [pid 5670] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5670, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./149", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./149", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 120.608083][ T5671] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./149/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./149/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./149/binderfs") = 0 umount2("./149/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./149/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./149/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./149/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./149/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./149/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./149") = 0 mkdir("./150", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5674 ./strace-static-x86_64: Process 5674 attached [pid 5674] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5674] chdir("./150") = 0 [pid 5674] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5674] setpgid(0, 0) = 0 [pid 5674] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5674] write(3, "1000", 4) = 4 [pid 5674] close(3) = 0 [pid 5674] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5674] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5674] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5674] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5674] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5674] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5674] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5674] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5675 attached [pid 5675] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5674] <... clone3 resumed> => {parent_tid=[5675]}, 88) = 5675 [pid 5674] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5675] <... rseq resumed>) = 0 [pid 5674] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5674] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5675] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5675] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5675] memfd_create("syzkaller", 0) = 3 [pid 5675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5675] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5675] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5675] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5675] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5675] close(3) = 0 [pid 5675] mkdir("./file0", 0777) = 0 [ 120.925437][ T5675] loop0: detected capacity change from 0 to 8192 [ 120.940405][ T5675] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 120.953472][ T5675] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 120.963112][ T5675] REISERFS (device loop0): using ordered data mode [ 120.969606][ T5675] reiserfs: using flush barriers [pid 5675] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5675] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5675] chdir("./file0") = 0 [pid 5675] ioctl(4, LOOP_CLR_FD) = 0 [pid 5675] close(4) = 0 [pid 5675] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5675] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5674] <... futex resumed>) = 0 [pid 5674] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5675] <... futex resumed>) = 0 [pid 5674] <... futex resumed>) = 1 [pid 5675] mkdir(".", 0777 [pid 5674] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5675] <... mkdir resumed>) = -1 EEXIST (File exists) [ 120.976271][ T5675] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 120.992947][ T5675] REISERFS (device loop0): checking transaction log (loop0) [ 121.001131][ T5675] REISERFS (device loop0): Using r5 hash to sort names [pid 5675] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5675] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5675] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5674] <... futex resumed>) = 0 [pid 5675] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5674] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5675] mkdir(".", 0777 [pid 5674] <... futex resumed>) = 0 [pid 5675] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5674] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5675] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5674] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 121.048277][ T5675] reiserfs: enabling write barrier flush mode [ 121.060279][ T5675] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5674] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5674] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5674] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5677 attached [pid 5677] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5675] <... mount resumed>) = 0 [pid 5674] <... clone3 resumed> => {parent_tid=[5677]}, 88) = 5677 [pid 5675] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5677] set_robust_list(0x7fd868e9f9a0, 24 [pid 5674] rt_sigprocmask(SIG_SETMASK, [], [pid 5677] <... set_robust_list resumed>) = 0 [pid 5674] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5677] rt_sigprocmask(SIG_SETMASK, [], [pid 5674] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5677] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5674] <... futex resumed>) = 0 [pid 5677] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5674] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5677] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5675] <... openat resumed>) = 5 [pid 5677] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5675] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5677] <... futex resumed>) = 1 [pid 5674] <... futex resumed>) = 0 [pid 5677] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5674] exit_group(0 [pid 5675] <... futex resumed>) = 0 [pid 5677] <... futex resumed>) = ? [pid 5674] <... exit_group resumed>) = ? [pid 5677] +++ exited with 0 +++ [pid 5675] +++ exited with 0 +++ [pid 5674] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5674, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./150", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./150", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./150/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./150/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 121.100867][ T5675] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./150/binderfs") = 0 umount2("./150/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./150/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./150/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./150/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./150/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./150/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./150") = 0 mkdir("./151", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5678 attached , child_tidptr=0x5555565f3690) = 5678 [pid 5678] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5678] chdir("./151") = 0 [pid 5678] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5678] setpgid(0, 0) = 0 [pid 5678] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5678] write(3, "1000", 4) = 4 [pid 5678] close(3) = 0 [pid 5678] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5678] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5678] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5678] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5678] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5678] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5678] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5678] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5679 attached => {parent_tid=[5679]}, 88) = 5679 [pid 5678] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5679] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5678] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5679] set_robust_list(0x7fd868ec09a0, 24 [pid 5678] <... futex resumed>) = 0 [pid 5679] <... set_robust_list resumed>) = 0 [pid 5678] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5679] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5679] memfd_create("syzkaller", 0) = 3 [pid 5679] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5679] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5679] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5679] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5679] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5679] close(3) = 0 [pid 5679] mkdir("./file0", 0777) = 0 [ 121.383644][ T5679] loop0: detected capacity change from 0 to 8192 [ 121.401966][ T5679] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 121.415055][ T5679] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 121.424432][ T5679] REISERFS (device loop0): using ordered data mode [pid 5679] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5679] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5679] chdir("./file0") = 0 [pid 5679] ioctl(4, LOOP_CLR_FD) = 0 [pid 5679] close(4) = 0 [pid 5679] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5678] <... futex resumed>) = 0 [pid 5679] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5678] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5679] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5678] <... futex resumed>) = 0 [pid 5679] mkdir(".", 0777 [pid 5678] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5679] <... mkdir resumed>) = -1 EEXIST (File exists) [ 121.430967][ T5679] reiserfs: using flush barriers [ 121.437591][ T5679] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 121.453977][ T5679] REISERFS (device loop0): checking transaction log (loop0) [ 121.462527][ T5679] REISERFS (device loop0): Using r5 hash to sort names [pid 5679] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5679] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5679] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5678] <... futex resumed>) = 0 [pid 5679] <... futex resumed>) = 1 [pid 5678] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5679] mkdir(".", 0777 [pid 5678] <... futex resumed>) = 0 [pid 5679] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5678] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5679] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5678] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5678] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5678] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5678] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5681 attached [pid 5681] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5681] set_robust_list(0x7fd868e9f9a0, 24 [pid 5678] <... clone3 resumed> => {parent_tid=[5681]}, 88) = 5681 [pid 5681] <... set_robust_list resumed>) = 0 [pid 5678] rt_sigprocmask(SIG_SETMASK, [], [pid 5681] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5678] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5681] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [ 121.496362][ T5679] reiserfs: enabling write barrier flush mode [ 121.505168][ T5679] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5678] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5681] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5678] <... futex resumed>) = 0 [pid 5681] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5678] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5681] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5679] <... mount resumed>) = 0 [pid 5681] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5679] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5681] <... futex resumed>) = 1 [pid 5678] <... futex resumed>) = 0 [pid 5681] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5679] <... openat resumed>) = 5 [pid 5679] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5679] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5678] exit_group(0 [pid 5681] <... futex resumed>) = ? [pid 5679] <... futex resumed>) = ? [pid 5681] +++ exited with 0 +++ [pid 5679] +++ exited with 0 +++ [pid 5678] <... exit_group resumed>) = ? [pid 5678] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5678, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./151", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./151", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./151/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./151/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 121.537518][ T5679] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./151/binderfs") = 0 umount2("./151/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./151/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./151/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./151/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./151/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./151/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./151") = 0 mkdir("./152", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5682 attached [pid 5682] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5682] chdir("./152") = 0 [pid 5682] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5682] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5682 [pid 5682] <... setpgid resumed>) = 0 [pid 5682] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5682] write(3, "1000", 4) = 4 [pid 5682] close(3) = 0 [pid 5682] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5682] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5682] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5682] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5682] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5682] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5682] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5682] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5683 attached [pid 5683] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5682] <... clone3 resumed> => {parent_tid=[5683]}, 88) = 5683 [pid 5683] <... rseq resumed>) = 0 [pid 5682] rt_sigprocmask(SIG_SETMASK, [], [pid 5683] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5682] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5683] rt_sigprocmask(SIG_SETMASK, [], [pid 5682] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5683] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5682] <... futex resumed>) = 0 [pid 5683] memfd_create("syzkaller", 0 [pid 5682] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5683] <... memfd_create resumed>) = 3 [pid 5683] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5683] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5683] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5683] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5683] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5683] close(3) = 0 [pid 5683] mkdir("./file0", 0777) = 0 [ 121.792534][ T5683] loop0: detected capacity change from 0 to 8192 [ 121.806596][ T5683] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 121.819632][ T5683] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 121.828918][ T5683] REISERFS (device loop0): using ordered data mode [ 121.835561][ T5683] reiserfs: using flush barriers [pid 5683] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5683] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5683] chdir("./file0") = 0 [pid 5683] ioctl(4, LOOP_CLR_FD) = 0 [pid 5683] close(4) = 0 [pid 5683] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5682] <... futex resumed>) = 0 [pid 5682] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5683] mkdir(".", 0777 [pid 5682] <... futex resumed>) = 0 [ 121.842270][ T5683] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 121.858835][ T5683] REISERFS (device loop0): checking transaction log (loop0) [ 121.867417][ T5683] REISERFS (device loop0): Using r5 hash to sort names [pid 5683] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5682] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5683] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5683] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5683] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5682] <... futex resumed>) = 0 [pid 5683] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5682] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5683] <... futex resumed>) = 0 [pid 5682] <... futex resumed>) = 1 [pid 5683] mkdir(".", 0777 [pid 5682] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5683] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5683] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5682] <... futex resumed>) = 0 [pid 5682] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5682] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 121.893780][ T5683] reiserfs: enabling write barrier flush mode [ 121.903593][ T5683] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5682] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5683] <... mount resumed>) = 0 [pid 5682] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5682] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5683] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 ./strace-static-x86_64: Process 5685 attached [pid 5683] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5685] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5683] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5682] <... clone3 resumed> => {parent_tid=[5685]}, 88) = 5685 [pid 5685] <... rseq resumed>) = 0 [pid 5685] set_robust_list(0x7fd868e9f9a0, 24 [pid 5682] rt_sigprocmask(SIG_SETMASK, [], [pid 5685] <... set_robust_list resumed>) = 0 [pid 5682] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5685] rt_sigprocmask(SIG_SETMASK, [], [pid 5682] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5685] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5682] <... futex resumed>) = 0 [pid 5685] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5682] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5685] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5685] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5682] <... futex resumed>) = 0 [pid 5685] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5682] exit_group(0 [pid 5685] <... futex resumed>) = ? [pid 5683] <... futex resumed>) = ? [pid 5682] <... exit_group resumed>) = ? [pid 5685] +++ exited with 0 +++ [pid 5683] +++ exited with 0 +++ [pid 5682] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5682, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- umount2("./152", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./152", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 121.935312][ T5683] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./152/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./152/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./152/binderfs") = 0 umount2("./152/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./152/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./152/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./152/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./152/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./152/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./152") = 0 mkdir("./153", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5686 attached [pid 5686] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5686 [pid 5686] <... set_robust_list resumed>) = 0 [pid 5686] chdir("./153") = 0 [pid 5686] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5686] setpgid(0, 0) = 0 [pid 5686] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5686] write(3, "1000", 4) = 4 [pid 5686] close(3) = 0 [pid 5686] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5686] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5686] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5686] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5686] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5686] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5686] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5686] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5687 attached => {parent_tid=[5687]}, 88) = 5687 [pid 5687] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5686] rt_sigprocmask(SIG_SETMASK, [], [pid 5687] <... rseq resumed>) = 0 [pid 5686] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5687] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5686] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5687] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5686] <... futex resumed>) = 0 [pid 5687] memfd_create("syzkaller", 0) = 3 [pid 5686] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5687] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5687] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5687] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5687] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5687] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5687] close(3) = 0 [pid 5687] mkdir("./file0", 0777) = 0 [ 122.248651][ T5687] loop0: detected capacity change from 0 to 8192 [ 122.262797][ T5687] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 122.275820][ T5687] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 122.285106][ T5687] REISERFS (device loop0): using ordered data mode [ 122.291634][ T5687] reiserfs: using flush barriers [pid 5687] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5687] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5687] chdir("./file0") = 0 [pid 5687] ioctl(4, LOOP_CLR_FD) = 0 [pid 5687] close(4) = 0 [pid 5687] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5686] <... futex resumed>) = 0 [pid 5686] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5687] mkdir(".", 0777 [pid 5686] <... futex resumed>) = 0 [ 122.297720][ T5687] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 122.314377][ T5687] REISERFS (device loop0): checking transaction log (loop0) [ 122.322721][ T5687] REISERFS (device loop0): Using r5 hash to sort names [pid 5687] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5686] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5687] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5687] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5687] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5686] <... futex resumed>) = 0 [pid 5686] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5687] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5686] <... futex resumed>) = 0 [pid 5687] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5686] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 122.357931][ T5687] reiserfs: enabling write barrier flush mode [ 122.366797][ T5687] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5686] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5686] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5687] <... mount resumed>) = 0 [pid 5686] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5686] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5687] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5689 attached ) = 5 [pid 5687] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5687] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5689] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5686] <... clone3 resumed> => {parent_tid=[5689]}, 88) = 5689 [pid 5689] set_robust_list(0x7fd868e9f9a0, 24 [pid 5686] rt_sigprocmask(SIG_SETMASK, [], [pid 5689] <... set_robust_list resumed>) = 0 [pid 5686] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5689] rt_sigprocmask(SIG_SETMASK, [], [pid 5686] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5689] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5686] <... futex resumed>) = 0 [pid 5689] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5686] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5689] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5689] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5686] <... futex resumed>) = 0 [pid 5689] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5686] exit_group(0 [pid 5689] <... futex resumed>) = ? [pid 5687] <... futex resumed>) = ? [pid 5686] <... exit_group resumed>) = ? [pid 5689] +++ exited with 0 +++ [pid 5687] +++ exited with 0 +++ [pid 5686] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5686, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- umount2("./153", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./153", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 122.404765][ T5687] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./153/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./153/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./153/binderfs") = 0 umount2("./153/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./153/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./153/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./153/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./153/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./153/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./153") = 0 mkdir("./154", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5690 attached [pid 5690] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5690] chdir("./154") = 0 [pid 5690] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5690 [pid 5690] setpgid(0, 0) = 0 [pid 5690] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5690] write(3, "1000", 4) = 4 [pid 5690] close(3) = 0 [pid 5690] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5690] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5690] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5690] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5690] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5690] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5690] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5690] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5691 attached [pid 5691] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5690] <... clone3 resumed> => {parent_tid=[5691]}, 88) = 5691 [pid 5691] <... rseq resumed>) = 0 [pid 5690] rt_sigprocmask(SIG_SETMASK, [], [pid 5691] set_robust_list(0x7fd868ec09a0, 24 [pid 5690] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5691] <... set_robust_list resumed>) = 0 [pid 5690] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] rt_sigprocmask(SIG_SETMASK, [], [pid 5690] <... futex resumed>) = 0 [pid 5691] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5690] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5691] memfd_create("syzkaller", 0) = 3 [pid 5691] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5691] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5691] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5691] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5691] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5691] close(3) = 0 [pid 5691] mkdir("./file0", 0777) = 0 [ 122.685239][ T5691] loop0: detected capacity change from 0 to 8192 [ 122.705450][ T5691] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 122.718584][ T5691] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 122.728067][ T5691] REISERFS (device loop0): using ordered data mode [pid 5691] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5691] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5691] chdir("./file0") = 0 [pid 5691] ioctl(4, LOOP_CLR_FD) = 0 [pid 5691] close(4) = 0 [pid 5691] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5690] <... futex resumed>) = 0 [pid 5691] mkdir(".", 0777 [pid 5690] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5690] <... futex resumed>) = 0 [pid 5691] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 122.734613][ T5691] reiserfs: using flush barriers [ 122.740879][ T5691] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 122.757689][ T5691] REISERFS (device loop0): checking transaction log (loop0) [ 122.766216][ T5691] REISERFS (device loop0): Using r5 hash to sort names [pid 5690] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5691] <... mount resumed>) = 0 [pid 5691] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5691] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5690] <... futex resumed>) = 0 [pid 5691] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5690] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] <... futex resumed>) = 0 [pid 5690] <... futex resumed>) = 1 [pid 5691] mkdir(".", 0777 [pid 5690] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5691] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5691] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5690] <... futex resumed>) = 0 [pid 5690] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5690] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5690] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5690] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5693 attached [pid 5693] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5690] <... clone3 resumed> => {parent_tid=[5693]}, 88) = 5693 [pid 5693] set_robust_list(0x7fd868e9f9a0, 24 [pid 5690] rt_sigprocmask(SIG_SETMASK, [], [pid 5693] <... set_robust_list resumed>) = 0 [pid 5690] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5693] rt_sigprocmask(SIG_SETMASK, [], [pid 5690] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5693] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5690] <... futex resumed>) = 0 [pid 5693] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5690] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5691] <... mount resumed>) = 0 [pid 5691] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5693] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5691] <... openat resumed>) = 5 [pid 5693] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5691] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5690] <... futex resumed>) = 0 [pid 5693] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5691] <... futex resumed>) = 0 [pid 5690] exit_group(0 [pid 5693] <... futex resumed>) = ? [pid 5690] <... exit_group resumed>) = ? [pid 5693] +++ exited with 0 +++ [pid 5691] +++ exited with 0 +++ [pid 5690] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5690, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./154", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./154", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./154/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./154/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 122.799868][ T5691] reiserfs: enabling write barrier flush mode [ 122.808191][ T5691] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 122.831454][ T5691] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./154/binderfs") = 0 umount2("./154/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./154/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./154/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./154/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./154/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./154/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./154") = 0 mkdir("./155", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5694 attached , child_tidptr=0x5555565f3690) = 5694 [pid 5694] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5694] chdir("./155") = 0 [pid 5694] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5694] setpgid(0, 0) = 0 [pid 5694] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5694] write(3, "1000", 4) = 4 [pid 5694] close(3) = 0 [pid 5694] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5694] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5694] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5694] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5694] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5694] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5694] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5694] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5695 attached [pid 5695] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5695] set_robust_list(0x7fd868ec09a0, 24 [pid 5694] <... clone3 resumed> => {parent_tid=[5695]}, 88) = 5695 [pid 5695] <... set_robust_list resumed>) = 0 [pid 5694] rt_sigprocmask(SIG_SETMASK, [], [pid 5695] rt_sigprocmask(SIG_SETMASK, [], [pid 5694] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5695] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5694] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] memfd_create("syzkaller", 0 [pid 5694] <... futex resumed>) = 0 [pid 5694] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5695] <... memfd_create resumed>) = 3 [pid 5695] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5695] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5695] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5695] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5695] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5695] close(3) = 0 [pid 5695] mkdir("./file0", 0777) = 0 [ 123.104753][ T5695] loop0: detected capacity change from 0 to 8192 [ 123.121050][ T5695] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 123.134126][ T5695] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 123.143510][ T5695] REISERFS (device loop0): using ordered data mode [ 123.150029][ T5695] reiserfs: using flush barriers [pid 5695] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5695] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5695] chdir("./file0") = 0 [pid 5695] ioctl(4, LOOP_CLR_FD) = 0 [pid 5695] close(4) = 0 [pid 5695] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5695] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5694] <... futex resumed>) = 0 [pid 5694] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... futex resumed>) = 0 [pid 5694] <... futex resumed>) = 1 [pid 5695] mkdir(".", 0777 [pid 5694] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5695] <... mkdir resumed>) = -1 EEXIST (File exists) [ 123.156207][ T5695] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 123.173208][ T5695] REISERFS (device loop0): checking transaction log (loop0) [ 123.181544][ T5695] REISERFS (device loop0): Using r5 hash to sort names [pid 5695] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5695] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5695] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5694] <... futex resumed>) = 0 [pid 5695] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5694] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5694] <... futex resumed>) = 0 [pid 5695] mkdir(".", 0777 [pid 5694] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5695] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5694] <... futex resumed>) = 0 [pid 5695] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5694] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5694] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5694] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5695] <... mount resumed>) = 0 [pid 5695] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5695] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5695] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5694] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5694] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5697 attached => {parent_tid=[5697]}, 88) = 5697 [pid 5697] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5694] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5697] <... rseq resumed>) = 0 [pid 5694] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5697] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5697] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5694] <... futex resumed>) = 0 [pid 5697] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5694] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5697] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5697] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5694] <... futex resumed>) = 0 [pid 5694] exit_group(0 [pid 5697] <... futex resumed>) = ? [pid 5695] <... futex resumed>) = ? [pid 5694] <... exit_group resumed>) = ? [pid 5697] +++ exited with 0 +++ [pid 5695] +++ exited with 0 +++ [pid 5694] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5694, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./155", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./155", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./155/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 123.213697][ T5695] reiserfs: enabling write barrier flush mode [ 123.221877][ T5695] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 123.248343][ T5695] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./155/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./155/binderfs") = 0 umount2("./155/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./155/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./155/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./155/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./155/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./155/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./155") = 0 mkdir("./156", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5698 attached , child_tidptr=0x5555565f3690) = 5698 [pid 5698] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5698] chdir("./156") = 0 [pid 5698] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5698] setpgid(0, 0) = 0 [pid 5698] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5698] write(3, "1000", 4) = 4 [pid 5698] close(3) = 0 [pid 5698] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5698] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5698] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5698] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5698] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5698] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5698] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5698] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5699 attached [pid 5699] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5699] set_robust_list(0x7fd868ec09a0, 24 [pid 5698] <... clone3 resumed> => {parent_tid=[5699]}, 88) = 5699 [pid 5699] <... set_robust_list resumed>) = 0 [pid 5699] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5699] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5698] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5698] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5699] <... futex resumed>) = 0 [pid 5698] <... futex resumed>) = 1 [pid 5699] memfd_create("syzkaller", 0 [pid 5698] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5699] <... memfd_create resumed>) = 3 [pid 5699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5699] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5699] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5699] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5699] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5699] close(3) = 0 [pid 5699] mkdir("./file0", 0777) = 0 [ 123.523629][ T5699] loop0: detected capacity change from 0 to 8192 [ 123.548807][ T5699] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 123.561815][ T5699] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5699] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5699] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5699] chdir("./file0") = 0 [pid 5699] ioctl(4, LOOP_CLR_FD) = 0 [pid 5699] close(4) = 0 [pid 5699] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5699] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5698] <... futex resumed>) = 0 [pid 5698] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5699] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5699] mkdir(".", 0777 [pid 5698] <... futex resumed>) = 0 [ 123.570996][ T5699] REISERFS (device loop0): using ordered data mode [ 123.577579][ T5699] reiserfs: using flush barriers [ 123.584086][ T5699] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 123.601045][ T5699] REISERFS (device loop0): checking transaction log (loop0) [ 123.609477][ T5699] REISERFS (device loop0): Using r5 hash to sort names [pid 5698] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5699] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5699] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5699] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5699] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5698] <... futex resumed>) = 0 [pid 5698] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5699] <... futex resumed>) = 1 [pid 5698] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5699] mkdir(".", 0777 [pid 5698] <... futex resumed>) = 0 [pid 5699] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5698] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5699] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5698] <... mmap resumed>) = 0x7fd868e7f000 [pid 5698] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5698] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5699] <... mount resumed>) = 0 [pid 5698] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5699] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5698] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5699] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5701 attached [pid 5701] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5699] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5698] <... clone3 resumed> => {parent_tid=[5701]}, 88) = 5701 [pid 5701] set_robust_list(0x7fd868e9f9a0, 24 [pid 5699] <... futex resumed>) = 0 [pid 5698] rt_sigprocmask(SIG_SETMASK, [], [pid 5701] <... set_robust_list resumed>) = 0 [pid 5701] rt_sigprocmask(SIG_SETMASK, [], [pid 5699] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5698] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5701] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5698] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5701] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5698] <... futex resumed>) = 0 [pid 5698] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5701] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5701] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5698] <... futex resumed>) = 0 [pid 5701] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5698] exit_group(0 [pid 5701] <... futex resumed>) = ? [pid 5699] <... futex resumed>) = ? [pid 5698] <... exit_group resumed>) = ? [pid 5701] +++ exited with 0 +++ [pid 5699] +++ exited with 0 +++ [pid 5698] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5698, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./156", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./156", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./156/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./156/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./156/binderfs") = 0 [ 123.664458][ T5699] reiserfs: enabling write barrier flush mode [ 123.672560][ T5699] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 123.693375][ T5699] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./156/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./156/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./156/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./156/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./156/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./156/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./156") = 0 mkdir("./157", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5702 attached , child_tidptr=0x5555565f3690) = 5702 [pid 5702] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5702] chdir("./157") = 0 [pid 5702] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5702] setpgid(0, 0) = 0 [pid 5702] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5702] write(3, "1000", 4) = 4 [pid 5702] close(3) = 0 [pid 5702] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5702] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5702] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5702] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5702] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5702] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5702] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5702] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5703 attached [pid 5703] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5702] <... clone3 resumed> => {parent_tid=[5703]}, 88) = 5703 [pid 5703] <... rseq resumed>) = 0 [pid 5703] set_robust_list(0x7fd868ec09a0, 24 [pid 5702] rt_sigprocmask(SIG_SETMASK, [], [pid 5703] <... set_robust_list resumed>) = 0 [pid 5702] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5703] rt_sigprocmask(SIG_SETMASK, [], [pid 5702] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5703] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5702] <... futex resumed>) = 0 [pid 5702] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5703] memfd_create("syzkaller", 0) = 3 [pid 5703] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5703] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5703] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5703] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5703] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5703] close(3) = 0 [pid 5703] mkdir("./file0", 0777) = 0 [ 123.968976][ T5703] loop0: detected capacity change from 0 to 8192 [ 123.994912][ T5703] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 124.007944][ T5703] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5703] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5703] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5703] chdir("./file0") = 0 [pid 5703] ioctl(4, LOOP_CLR_FD) = 0 [pid 5703] close(4) = 0 [pid 5703] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5703] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5702] <... futex resumed>) = 0 [pid 5702] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5703] <... futex resumed>) = 0 [pid 5702] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5703] mkdir(".", 0777) = -1 EEXIST (File exists) [ 124.017266][ T5703] REISERFS (device loop0): using ordered data mode [ 124.023845][ T5703] reiserfs: using flush barriers [ 124.030340][ T5703] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 124.046976][ T5703] REISERFS (device loop0): checking transaction log (loop0) [ 124.055503][ T5703] REISERFS (device loop0): Using r5 hash to sort names [pid 5703] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5703] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5703] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5702] <... futex resumed>) = 0 [pid 5703] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5702] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5703] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5703] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5703] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5702] <... futex resumed>) = 0 [pid 5702] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 124.109117][ T5703] reiserfs: enabling write barrier flush mode [ 124.117021][ T5703] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5702] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5702] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5703] <... mount resumed>) = 0 [pid 5703] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5703] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5702] <... mprotect resumed>) = 0 [pid 5703] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5702] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5702] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5705 attached [pid 5705] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5702] <... clone3 resumed> => {parent_tid=[5705]}, 88) = 5705 [pid 5705] <... rseq resumed>) = 0 [pid 5702] rt_sigprocmask(SIG_SETMASK, [], [pid 5705] set_robust_list(0x7fd868e9f9a0, 24 [pid 5702] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5705] <... set_robust_list resumed>) = 0 [pid 5702] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5705] rt_sigprocmask(SIG_SETMASK, [], [pid 5702] <... futex resumed>) = 0 [pid 5705] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5702] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5705] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5705] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5705] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5702] <... futex resumed>) = 0 [pid 5702] exit_group(0 [pid 5703] <... futex resumed>) = ? [pid 5705] <... futex resumed>) = ? [pid 5702] <... exit_group resumed>) = ? [pid 5703] +++ exited with 0 +++ [pid 5705] +++ exited with 0 +++ [pid 5702] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5702, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./157", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 124.154713][ T5703] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./157", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./157/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./157/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./157/binderfs") = 0 umount2("./157/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./157/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./157/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./157/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./157/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./157/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./157") = 0 mkdir("./158", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5706 attached , child_tidptr=0x5555565f3690) = 5706 [pid 5706] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5706] chdir("./158") = 0 [pid 5706] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5706] setpgid(0, 0) = 0 [pid 5706] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5706] write(3, "1000", 4) = 4 [pid 5706] close(3) = 0 [pid 5706] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5706] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5706] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5706] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5706] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5706] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5706] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5706] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5707 attached [pid 5707] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5707] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5707] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5707] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5706] <... clone3 resumed> => {parent_tid=[5707]}, 88) = 5707 [pid 5706] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5706] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5707] <... futex resumed>) = 0 [pid 5707] memfd_create("syzkaller", 0 [pid 5706] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5707] <... memfd_create resumed>) = 3 [pid 5707] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5707] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5707] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5707] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5707] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5707] close(3) = 0 [pid 5707] mkdir("./file0", 0777) = 0 [ 124.457379][ T5707] loop0: detected capacity change from 0 to 8192 [ 124.474257][ T5707] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 124.487261][ T5707] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 124.496563][ T5707] REISERFS (device loop0): using ordered data mode [pid 5707] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5707] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5707] chdir("./file0") = 0 [pid 5707] ioctl(4, LOOP_CLR_FD) = 0 [pid 5707] close(4) = 0 [pid 5707] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5707] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5706] <... futex resumed>) = 0 [pid 5706] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] <... futex resumed>) = 0 [pid 5707] mkdir(".", 0777 [pid 5706] <... futex resumed>) = 1 [pid 5707] <... mkdir resumed>) = -1 EEXIST (File exists) [ 124.503095][ T5707] reiserfs: using flush barriers [ 124.509278][ T5707] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 124.525959][ T5707] REISERFS (device loop0): checking transaction log (loop0) [ 124.534295][ T5707] REISERFS (device loop0): Using r5 hash to sort names [pid 5706] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5707] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5707] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5707] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5706] <... futex resumed>) = 0 [pid 5707] <... futex resumed>) = 1 [pid 5706] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] mkdir(".", 0777 [pid 5706] <... futex resumed>) = 0 [pid 5707] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5706] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5707] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5706] <... futex resumed>) = 0 [pid 5706] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5706] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5707] <... mount resumed>) = 0 [pid 5706] <... mprotect resumed>) = 0 [pid 5706] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5707] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5706] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5706] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5707] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5709 attached ) = 0 [pid 5709] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5707] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5706] <... clone3 resumed> => {parent_tid=[5709]}, 88) = 5709 [pid 5709] <... rseq resumed>) = 0 [pid 5706] rt_sigprocmask(SIG_SETMASK, [], [pid 5709] set_robust_list(0x7fd868e9f9a0, 24 [pid 5706] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5709] <... set_robust_list resumed>) = 0 [pid 5706] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5709] rt_sigprocmask(SIG_SETMASK, [], [ 124.574696][ T5707] reiserfs: enabling write barrier flush mode [ 124.584550][ T5707] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 124.613661][ T5707] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5706] <... futex resumed>) = 0 [pid 5709] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5706] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5709] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5709] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5706] <... futex resumed>) = 0 [pid 5709] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5706] exit_group(0 [pid 5709] <... futex resumed>) = ? [pid 5707] <... futex resumed>) = ? [pid 5709] +++ exited with 0 +++ [pid 5707] +++ exited with 0 +++ [pid 5706] <... exit_group resumed>) = ? [pid 5706] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5706, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./158", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./158", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./158/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./158/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./158/binderfs") = 0 umount2("./158/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./158/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./158/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./158/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./158/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./158/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./158") = 0 mkdir("./159", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5710 attached , child_tidptr=0x5555565f3690) = 5710 [pid 5710] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5710] chdir("./159") = 0 [pid 5710] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5710] setpgid(0, 0) = 0 [pid 5710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5710] write(3, "1000", 4) = 4 [pid 5710] close(3) = 0 [pid 5710] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5710] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5710] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5710] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5710] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5710] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5710] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5711 attached [pid 5711] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5710] <... clone3 resumed> => {parent_tid=[5711]}, 88) = 5711 [pid 5711] <... rseq resumed>) = 0 [pid 5710] rt_sigprocmask(SIG_SETMASK, [], [pid 5711] set_robust_list(0x7fd868ec09a0, 24 [pid 5710] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5711] <... set_robust_list resumed>) = 0 [pid 5710] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5711] rt_sigprocmask(SIG_SETMASK, [], [pid 5710] <... futex resumed>) = 0 [pid 5711] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5710] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5711] memfd_create("syzkaller", 0) = 3 [pid 5711] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5711] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5711] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5711] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5711] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5711] close(3) = 0 [pid 5711] mkdir("./file0", 0777) = 0 [ 124.875845][ T5711] loop0: detected capacity change from 0 to 8192 [ 124.890973][ T5711] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 124.904052][ T5711] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 124.913370][ T5711] REISERFS (device loop0): using ordered data mode [ 124.919877][ T5711] reiserfs: using flush barriers [pid 5711] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5711] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5711] chdir("./file0") = 0 [pid 5711] ioctl(4, LOOP_CLR_FD) = 0 [pid 5711] close(4) = 0 [pid 5711] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5711] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5710] <... futex resumed>) = 0 [pid 5710] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5711] <... futex resumed>) = 0 [pid 5711] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5710] <... futex resumed>) = 1 [pid 5711] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 124.926268][ T5711] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 124.942684][ T5711] REISERFS (device loop0): checking transaction log (loop0) [ 124.950923][ T5711] REISERFS (device loop0): Using r5 hash to sort names [pid 5710] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5711] <... mount resumed>) = 0 [pid 5711] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5711] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5710] <... futex resumed>) = 0 [pid 5710] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5711] mkdir(".", 0777 [pid 5710] <... futex resumed>) = 0 [pid 5711] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5711] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5710] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 124.995872][ T5711] reiserfs: enabling write barrier flush mode [ 125.003949][ T5711] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5710] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5710] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5711] <... mount resumed>) = 0 [pid 5710] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5711] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5713 attached [pid 5710] <... clone3 resumed> => {parent_tid=[5713]}, 88) = 5713 [pid 5710] rt_sigprocmask(SIG_SETMASK, [], [pid 5713] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5711] <... openat resumed>) = 5 [pid 5710] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5713] <... rseq resumed>) = 0 [pid 5711] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5710] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5713] set_robust_list(0x7fd868e9f9a0, 24 [pid 5711] <... futex resumed>) = 0 [pid 5710] <... futex resumed>) = 0 [pid 5713] <... set_robust_list resumed>) = 0 [pid 5711] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5710] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5713] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5713] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5713] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5710] <... futex resumed>) = 0 [pid 5713] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5710] exit_group(0 [pid 5711] <... futex resumed>) = ? [pid 5713] <... futex resumed>) = ? [pid 5710] <... exit_group resumed>) = ? [pid 5711] +++ exited with 0 +++ [ 125.045291][ T5711] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5713] +++ exited with 0 +++ [pid 5710] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5710, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./159", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./159", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./159/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./159/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./159/binderfs") = 0 umount2("./159/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./159/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./159/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./159/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./159/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./159/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./159") = 0 mkdir("./160", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5714 attached [pid 5714] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5714 [pid 5714] <... set_robust_list resumed>) = 0 [pid 5714] chdir("./160") = 0 [pid 5714] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5714] setpgid(0, 0) = 0 [pid 5714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5714] write(3, "1000", 4) = 4 [pid 5714] close(3) = 0 [pid 5714] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5714] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5714] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5714] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5714] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5714] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5714] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5714] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5715 attached [pid 5715] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5714] <... clone3 resumed> => {parent_tid=[5715]}, 88) = 5715 [pid 5715] <... rseq resumed>) = 0 [pid 5714] rt_sigprocmask(SIG_SETMASK, [], [pid 5715] set_robust_list(0x7fd868ec09a0, 24 [pid 5714] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5715] <... set_robust_list resumed>) = 0 [pid 5715] rt_sigprocmask(SIG_SETMASK, [], [pid 5714] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5714] <... futex resumed>) = 0 [pid 5714] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5715] memfd_create("syzkaller", 0) = 3 [pid 5715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5715] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5715] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5715] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5715] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5715] close(3) = 0 [pid 5715] mkdir("./file0", 0777) = 0 [ 125.326660][ T5715] loop0: detected capacity change from 0 to 8192 [ 125.336657][ T5715] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 125.349791][ T5715] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 125.359638][ T5715] REISERFS (device loop0): using ordered data mode [ 125.366174][ T5715] reiserfs: using flush barriers [pid 5715] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5715] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5715] chdir("./file0") = 0 [pid 5715] ioctl(4, LOOP_CLR_FD) = 0 [pid 5715] close(4) = 0 [pid 5715] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5715] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5714] <... futex resumed>) = 0 [pid 5715] mkdir(".", 0777 [pid 5714] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5715] <... mkdir resumed>) = -1 EEXIST (File exists) [ 125.372531][ T5715] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 125.388913][ T5715] REISERFS (device loop0): checking transaction log (loop0) [ 125.397283][ T5715] REISERFS (device loop0): Using r5 hash to sort names [ 125.418922][ T5715] reiserfs: enabling write barrier flush mode [pid 5715] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5715] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5715] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5715] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5714] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] mkdir(".", 0777 [pid 5714] <... futex resumed>) = 0 [pid 5715] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5714] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5715] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5714] <... futex resumed>) = 0 [pid 5714] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5714] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 125.429934][ T5715] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5714] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5714] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5715] <... mount resumed>) = 0 ./strace-static-x86_64: Process 5717 attached [pid 5715] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5717] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5715] <... openat resumed>) = 5 [pid 5714] <... clone3 resumed> => {parent_tid=[5717]}, 88) = 5717 [pid 5717] <... rseq resumed>) = 0 [pid 5715] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5714] rt_sigprocmask(SIG_SETMASK, [], [pid 5717] set_robust_list(0x7fd868e9f9a0, 24 [pid 5715] <... futex resumed>) = 0 [pid 5714] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5717] <... set_robust_list resumed>) = 0 [pid 5715] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5717] rt_sigprocmask(SIG_SETMASK, [], [pid 5714] <... futex resumed>) = 0 [pid 5717] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5714] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5717] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5717] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5714] <... futex resumed>) = 0 [pid 5717] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5714] exit_group(0 [pid 5717] <... futex resumed>) = ? [pid 5715] <... futex resumed>) = ? [pid 5714] <... exit_group resumed>) = ? [pid 5717] +++ exited with 0 +++ [pid 5715] +++ exited with 0 +++ [pid 5714] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5714, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./160", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./160", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./160/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./160/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./160/binderfs") = 0 [ 125.470458][ T5715] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./160/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./160/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./160/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./160/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./160/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./160/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./160") = 0 mkdir("./161", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5718 attached , child_tidptr=0x5555565f3690) = 5718 [pid 5718] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5718] chdir("./161") = 0 [pid 5718] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5718] setpgid(0, 0) = 0 [pid 5718] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5718] write(3, "1000", 4) = 4 [pid 5718] close(3) = 0 [pid 5718] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5718] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5718] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5718] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5718] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5718] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5718] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5718] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5719 attached [pid 5719] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5718] <... clone3 resumed> => {parent_tid=[5719]}, 88) = 5719 [pid 5719] set_robust_list(0x7fd868ec09a0, 24 [pid 5718] rt_sigprocmask(SIG_SETMASK, [], [pid 5719] <... set_robust_list resumed>) = 0 [pid 5718] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5719] rt_sigprocmask(SIG_SETMASK, [], [pid 5718] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5719] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5718] <... futex resumed>) = 0 [pid 5719] memfd_create("syzkaller", 0 [pid 5718] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5719] <... memfd_create resumed>) = 3 [pid 5719] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5719] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5719] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5719] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5719] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5719] close(3) = 0 [pid 5719] mkdir("./file0", 0777) = 0 [ 125.705690][ T5719] loop0: detected capacity change from 0 to 8192 [ 125.719223][ T5719] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 125.732325][ T5719] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 125.741531][ T5719] REISERFS (device loop0): using ordered data mode [ 125.748285][ T5719] reiserfs: using flush barriers [pid 5719] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5719] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5719] chdir("./file0") = 0 [pid 5719] ioctl(4, LOOP_CLR_FD) = 0 [pid 5719] close(4) = 0 [pid 5719] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5718] <... futex resumed>) = 0 [pid 5719] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5718] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5719] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5718] <... futex resumed>) = 0 [pid 5719] mkdir(".", 0777 [pid 5718] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5719] <... mkdir resumed>) = -1 EEXIST (File exists) [ 125.754802][ T5719] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 125.771397][ T5719] REISERFS (device loop0): checking transaction log (loop0) [ 125.779806][ T5719] REISERFS (device loop0): Using r5 hash to sort names [pid 5719] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5719] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5719] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] <... futex resumed>) = 0 [pid 5719] <... futex resumed>) = 1 [pid 5718] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5719] mkdir(".", 0777 [pid 5718] <... futex resumed>) = 0 [pid 5719] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5718] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5719] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5718] <... futex resumed>) = 0 [pid 5718] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5718] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5719] <... mount resumed>) = 0 [pid 5719] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5718] <... mprotect resumed>) = 0 [pid 5719] <... openat resumed>) = 5 [pid 5718] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5719] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5719] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5718] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5718] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5721 attached => {parent_tid=[5721]}, 88) = 5721 [pid 5718] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5721] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5718] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5721] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5718] <... futex resumed>) = 0 [pid 5721] rt_sigprocmask(SIG_SETMASK, [], [pid 5718] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5721] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5721] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5721] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5718] <... futex resumed>) = 0 [pid 5721] <... futex resumed>) = 1 [pid 5718] exit_group(0 [pid 5721] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5719] <... futex resumed>) = ? [pid 5718] <... exit_group resumed>) = ? [pid 5721] +++ exited with 0 +++ [pid 5719] +++ exited with 0 +++ [pid 5718] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5718, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- [ 125.817253][ T5719] reiserfs: enabling write barrier flush mode [ 125.828085][ T5719] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 125.856899][ T5719] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./161", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./161", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./161/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./161/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./161/binderfs") = 0 umount2("./161/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./161/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./161/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./161/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./161/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./161/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./161") = 0 mkdir("./162", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5722 attached , child_tidptr=0x5555565f3690) = 5722 [pid 5722] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5722] chdir("./162") = 0 [pid 5722] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5722] setpgid(0, 0) = 0 [pid 5722] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5722] write(3, "1000", 4) = 4 [pid 5722] close(3) = 0 [pid 5722] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5722] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5722] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5722] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5722] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5722] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5722] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5722] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5723 attached [pid 5723] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5723] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5722] <... clone3 resumed> => {parent_tid=[5723]}, 88) = 5723 [pid 5723] rt_sigprocmask(SIG_SETMASK, [], [pid 5722] rt_sigprocmask(SIG_SETMASK, [], [pid 5723] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5722] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5723] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5722] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5723] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5722] <... futex resumed>) = 0 [pid 5723] memfd_create("syzkaller", 0 [pid 5722] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5723] <... memfd_create resumed>) = 3 [pid 5723] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5723] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5723] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5723] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5723] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5723] close(3) = 0 [pid 5723] mkdir("./file0", 0777) = 0 [ 126.174749][ T5723] loop0: detected capacity change from 0 to 8192 [ 126.201103][ T5723] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 126.214152][ T5723] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5723] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5723] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5723] chdir("./file0") = 0 [pid 5723] ioctl(4, LOOP_CLR_FD) = 0 [pid 5723] close(4) = 0 [pid 5723] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5723] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5722] <... futex resumed>) = 0 [pid 5722] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5722] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5723] <... futex resumed>) = 0 [pid 5723] mkdir(".", 0777) = -1 EEXIST (File exists) [ 126.223485][ T5723] REISERFS (device loop0): using ordered data mode [ 126.229988][ T5723] reiserfs: using flush barriers [ 126.236357][ T5723] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 126.252698][ T5723] REISERFS (device loop0): checking transaction log (loop0) [ 126.260890][ T5723] REISERFS (device loop0): Using r5 hash to sort names [pid 5723] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5723] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5723] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5722] <... futex resumed>) = 0 [pid 5723] <... futex resumed>) = 1 [pid 5722] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5723] mkdir(".", 0777 [pid 5722] <... futex resumed>) = 0 [pid 5723] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5722] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5723] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5722] <... futex resumed>) = 0 [pid 5722] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5723] <... mount resumed>) = 0 [pid 5722] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5723] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5722] <... mprotect resumed>) = 0 [pid 5723] <... openat resumed>) = 5 [pid 5722] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5723] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5722] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5723] <... futex resumed>) = 0 [pid 5723] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5722] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5725 attached [pid 5725] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5722] <... clone3 resumed> => {parent_tid=[5725]}, 88) = 5725 [pid 5725] <... rseq resumed>) = 0 [pid 5722] rt_sigprocmask(SIG_SETMASK, [], [pid 5725] set_robust_list(0x7fd868e9f9a0, 24 [pid 5722] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5725] <... set_robust_list resumed>) = 0 [pid 5722] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5725] rt_sigprocmask(SIG_SETMASK, [], [pid 5722] <... futex resumed>) = 0 [pid 5725] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5725] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5722] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5725] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5725] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5722] <... futex resumed>) = 0 [pid 5725] <... futex resumed>) = 1 [pid 5722] exit_group(0 [pid 5723] <... futex resumed>) = ? [pid 5722] <... exit_group resumed>) = ? [pid 5725] +++ exited with 0 +++ [pid 5723] +++ exited with 0 +++ [pid 5722] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5722, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./162", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./162", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 126.297835][ T5723] reiserfs: enabling write barrier flush mode [ 126.306014][ T5723] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 126.337045][ T5723] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./162/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./162/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./162/binderfs") = 0 umount2("./162/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./162/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./162/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./162/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./162/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./162/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./162") = 0 mkdir("./163", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5726 attached , child_tidptr=0x5555565f3690) = 5726 [pid 5726] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5726] chdir("./163") = 0 [pid 5726] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5726] setpgid(0, 0) = 0 [pid 5726] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5726] write(3, "1000", 4) = 4 [pid 5726] close(3) = 0 [pid 5726] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5726] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5726] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5726] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5726] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5726] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5726] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5726] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5727 attached [pid 5727] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5726] <... clone3 resumed> => {parent_tid=[5727]}, 88) = 5727 [pid 5727] <... rseq resumed>) = 0 [pid 5726] rt_sigprocmask(SIG_SETMASK, [], [pid 5727] set_robust_list(0x7fd868ec09a0, 24 [pid 5726] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5727] <... set_robust_list resumed>) = 0 [pid 5726] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5726] <... futex resumed>) = 0 [pid 5727] memfd_create("syzkaller", 0 [pid 5726] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5727] <... memfd_create resumed>) = 3 [pid 5727] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5727] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5727] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5727] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5727] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5727] close(3) = 0 [pid 5727] mkdir("./file0", 0777) = 0 [ 126.651404][ T5727] loop0: detected capacity change from 0 to 8192 [ 126.667616][ T5727] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 126.680635][ T5727] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 126.690004][ T5727] REISERFS (device loop0): using ordered data mode [ 126.696764][ T5727] reiserfs: using flush barriers [pid 5727] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5727] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5727] chdir("./file0") = 0 [pid 5727] ioctl(4, LOOP_CLR_FD) = 0 [pid 5727] close(4) = 0 [pid 5727] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5726] <... futex resumed>) = 0 [pid 5726] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] mkdir(".", 0777 [pid 5726] <... futex resumed>) = 0 [pid 5727] <... mkdir resumed>) = -1 EEXIST (File exists) [ 126.703198][ T5727] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 126.719698][ T5727] REISERFS (device loop0): checking transaction log (loop0) [ 126.728353][ T5727] REISERFS (device loop0): Using r5 hash to sort names [pid 5726] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5727] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5727] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5727] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5726] <... futex resumed>) = 0 [pid 5727] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5726] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5726] <... futex resumed>) = 0 [pid 5727] mkdir(".", 0777 [pid 5726] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5727] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5727] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5726] <... futex resumed>) = 0 [ 126.758173][ T5727] reiserfs: enabling write barrier flush mode [ 126.767933][ T5727] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5726] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5727] <... mount resumed>) = 0 [pid 5726] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5727] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5726] <... mprotect resumed>) = 0 [pid 5726] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5727] <... openat resumed>) = 5 [pid 5727] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5726] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5727] <... futex resumed>) = 0 [pid 5726] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5727] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5729 attached [pid 5726] <... clone3 resumed> => {parent_tid=[5729]}, 88) = 5729 [pid 5726] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5726] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5729] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5726] <... futex resumed>) = 0 [pid 5729] set_robust_list(0x7fd868e9f9a0, 24 [pid 5726] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5729] <... set_robust_list resumed>) = 0 [pid 5729] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5729] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5729] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5726] <... futex resumed>) = 0 [pid 5729] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5726] exit_group(0 [pid 5729] <... futex resumed>) = ? [pid 5727] <... futex resumed>) = ? [pid 5726] <... exit_group resumed>) = ? [pid 5729] +++ exited with 0 +++ [pid 5727] +++ exited with 0 +++ [pid 5726] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5726, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./163", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 126.808516][ T5727] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./163", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./163/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./163/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./163/binderfs") = 0 umount2("./163/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./163/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./163/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./163/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./163/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./163/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./163") = 0 mkdir("./164", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5730 attached , child_tidptr=0x5555565f3690) = 5730 [pid 5730] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5730] chdir("./164") = 0 [pid 5730] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5730] setpgid(0, 0) = 0 [pid 5730] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5730] write(3, "1000", 4) = 4 [pid 5730] close(3) = 0 [pid 5730] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5730] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5730] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5730] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5730] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5730] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5730] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5730] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5731 attached => {parent_tid=[5731]}, 88) = 5731 [pid 5731] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5731] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5731] rt_sigprocmask(SIG_SETMASK, [], [pid 5730] rt_sigprocmask(SIG_SETMASK, [], [pid 5731] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5730] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5731] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5730] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5731] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5730] <... futex resumed>) = 0 [pid 5731] memfd_create("syzkaller", 0 [pid 5730] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5731] <... memfd_create resumed>) = 3 [pid 5731] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5731] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5731] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5731] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5731] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5731] close(3) = 0 [pid 5731] mkdir("./file0", 0777) = 0 [ 127.134320][ T5731] loop0: detected capacity change from 0 to 8192 [ 127.144744][ T5731] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 127.157813][ T5731] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 127.167087][ T5731] REISERFS (device loop0): using ordered data mode [ 127.173621][ T5731] reiserfs: using flush barriers [pid 5731] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5731] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5731] chdir("./file0") = 0 [pid 5731] ioctl(4, LOOP_CLR_FD) = 0 [pid 5731] close(4) = 0 [pid 5731] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5730] <... futex resumed>) = 0 [pid 5730] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5731] mkdir(".", 0777) = -1 EEXIST (File exists) [ 127.179778][ T5731] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 127.196458][ T5731] REISERFS (device loop0): checking transaction log (loop0) [ 127.204787][ T5731] REISERFS (device loop0): Using r5 hash to sort names [pid 5731] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5730] <... futex resumed>) = 0 [pid 5730] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5731] <... mount resumed>) = 0 [pid 5731] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5731] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5730] <... futex resumed>) = 0 [pid 5730] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5730] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5730] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5730] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5730] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5730] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5733]}, 88) = 5733 [pid 5730] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5733 attached NULL, 8) = 0 [pid 5733] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5730] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5733] <... rseq resumed>) = 0 [pid 5730] <... futex resumed>) = 0 [pid 5733] set_robust_list(0x7fd868e9f9a0, 24 [pid 5731] <... futex resumed>) = 1 [pid 5730] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5733] <... set_robust_list resumed>) = 0 [pid 5731] mkdir(".", 0777 [pid 5733] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5731] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5733] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5731] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5733] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5733] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5730] <... futex resumed>) = 0 [ 127.237364][ T5731] reiserfs: enabling write barrier flush mode [ 127.247073][ T5731] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5733] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5731] <... mount resumed>) = 0 [pid 5731] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5731] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5731] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5730] exit_group(0 [pid 5733] <... futex resumed>) = ? [pid 5731] <... futex resumed>) = ? [pid 5730] <... exit_group resumed>) = ? [pid 5733] +++ exited with 0 +++ [pid 5731] +++ exited with 0 +++ [pid 5730] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5730, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./164", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./164", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./164/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./164/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./164/binderfs") = 0 [ 127.280621][ T5731] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./164/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./164/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./164/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./164/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./164/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./164/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./164") = 0 mkdir("./165", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5734 attached , child_tidptr=0x5555565f3690) = 5734 [pid 5734] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5734] chdir("./165") = 0 [pid 5734] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5734] setpgid(0, 0) = 0 [pid 5734] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5734] write(3, "1000", 4) = 4 [pid 5734] close(3) = 0 [pid 5734] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5734] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5734] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5734] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5734] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5734] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5734] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5735 attached => {parent_tid=[5735]}, 88) = 5735 [pid 5734] rt_sigprocmask(SIG_SETMASK, [], [pid 5735] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5734] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] set_robust_list(0x7fd868ec09a0, 24 [pid 5734] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] <... set_robust_list resumed>) = 0 [pid 5734] <... futex resumed>) = 0 [pid 5735] rt_sigprocmask(SIG_SETMASK, [], [pid 5734] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5735] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] memfd_create("syzkaller", 0) = 3 [pid 5735] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5735] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5735] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5735] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5735] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5735] close(3) = 0 [pid 5735] mkdir("./file0", 0777) = 0 [ 127.573767][ T5735] loop0: detected capacity change from 0 to 8192 [ 127.598586][ T5735] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 127.611774][ T5735] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5735] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5735] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5735] chdir("./file0") = 0 [pid 5735] ioctl(4, LOOP_CLR_FD) = 0 [pid 5735] close(4) = 0 [pid 5735] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5734] <... futex resumed>) = 0 [pid 5735] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5734] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5734] <... futex resumed>) = 0 [pid 5734] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5735] mkdir(".", 0777) = -1 EEXIST (File exists) [ 127.621110][ T5735] REISERFS (device loop0): using ordered data mode [ 127.627640][ T5735] reiserfs: using flush barriers [ 127.633982][ T5735] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 127.650338][ T5735] REISERFS (device loop0): checking transaction log (loop0) [ 127.658835][ T5735] REISERFS (device loop0): Using r5 hash to sort names [pid 5735] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5735] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5735] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5734] <... futex resumed>) = 0 [pid 5735] <... futex resumed>) = 1 [pid 5735] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5734] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5734] <... futex resumed>) = 0 [pid 5735] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5734] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5734] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5734] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 127.692763][ T5735] reiserfs: enabling write barrier flush mode [ 127.700952][ T5735] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5734] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5737 attached [pid 5737] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5734] <... clone3 resumed> => {parent_tid=[5737]}, 88) = 5737 [pid 5737] <... rseq resumed>) = 0 [pid 5735] <... mount resumed>) = 0 [pid 5734] rt_sigprocmask(SIG_SETMASK, [], [pid 5737] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5737] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5737] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5735] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5734] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5735] <... openat resumed>) = 5 [pid 5734] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5737] <... futex resumed>) = 0 [pid 5734] <... futex resumed>) = 1 [pid 5737] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5735] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5734] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5737] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5735] <... futex resumed>) = 0 [pid 5737] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5735] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5737] <... futex resumed>) = 1 [pid 5734] <... futex resumed>) = 0 [pid 5737] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5734] exit_group(0 [pid 5737] <... futex resumed>) = ? [pid 5735] <... futex resumed>) = ? [pid 5734] <... exit_group resumed>) = ? [pid 5737] +++ exited with 0 +++ [pid 5735] +++ exited with 0 +++ [pid 5734] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5734, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./165", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./165", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./165/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./165/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./165/binderfs") = 0 [ 127.745714][ T5735] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./165/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./165/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./165/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./165/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./165/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./165/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./165") = 0 mkdir("./166", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5738 attached [pid 5738] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5738] chdir("./166" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5738 [pid 5738] <... chdir resumed>) = 0 [pid 5738] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5738] setpgid(0, 0) = 0 [pid 5738] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5738] write(3, "1000", 4) = 4 [pid 5738] close(3) = 0 [pid 5738] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5738] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5738] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5738] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5738] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5738] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5738] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5738] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5739 attached => {parent_tid=[5739]}, 88) = 5739 [pid 5738] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5739] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5738] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5739] set_robust_list(0x7fd868ec09a0, 24 [pid 5738] <... futex resumed>) = 0 [pid 5739] <... set_robust_list resumed>) = 0 [pid 5738] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5739] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5739] memfd_create("syzkaller", 0) = 3 [pid 5739] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5739] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5739] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5739] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5739] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5739] close(3) = 0 [pid 5739] mkdir("./file0", 0777) = 0 [ 127.990984][ T5739] loop0: detected capacity change from 0 to 8192 [ 128.001765][ T5739] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 128.014973][ T5739] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 128.024281][ T5739] REISERFS (device loop0): using ordered data mode [ 128.030785][ T5739] reiserfs: using flush barriers [pid 5739] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5739] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5739] chdir("./file0") = 0 [pid 5739] ioctl(4, LOOP_CLR_FD) = 0 [pid 5739] close(4) = 0 [pid 5739] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5738] <... futex resumed>) = 0 [pid 5739] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5738] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5739] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5738] <... futex resumed>) = 0 [pid 5738] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5739] mkdir(".", 0777) = -1 EEXIST (File exists) [ 128.037477][ T5739] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 128.053903][ T5739] REISERFS (device loop0): checking transaction log (loop0) [ 128.062385][ T5739] REISERFS (device loop0): Using r5 hash to sort names [pid 5739] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5739] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5739] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5738] <... futex resumed>) = 0 [pid 5738] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5739] mkdir(".", 0777 [pid 5738] <... futex resumed>) = 0 [pid 5739] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5739] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5738] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5738] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5738] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5738] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5739] <... mount resumed>) = 0 [pid 5738] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5738] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5741 attached [pid 5741] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5738] <... clone3 resumed> => {parent_tid=[5741]}, 88) = 5741 [pid 5741] <... rseq resumed>) = 0 [pid 5738] rt_sigprocmask(SIG_SETMASK, [], [pid 5741] set_robust_list(0x7fd868e9f9a0, 24 [pid 5738] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5741] <... set_robust_list resumed>) = 0 [pid 5738] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5741] rt_sigprocmask(SIG_SETMASK, [], [pid 5738] <... futex resumed>) = 0 [pid 5741] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5738] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5741] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5741] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5739] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5741] <... futex resumed>) = 1 [pid 5739] <... openat resumed>) = 5 [pid 5738] <... futex resumed>) = 0 [pid 5741] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5739] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5739] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5738] exit_group(0 [pid 5741] <... futex resumed>) = ? [pid 5738] <... exit_group resumed>) = ? [pid 5739] <... futex resumed>) = ? [pid 5739] +++ exited with 0 +++ [pid 5741] +++ exited with 0 +++ [pid 5738] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5738, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [ 128.098104][ T5739] reiserfs: enabling write barrier flush mode [ 128.106459][ T5739] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 128.138120][ T5739] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./166", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./166", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./166/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./166/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./166/binderfs") = 0 umount2("./166/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./166/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./166/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./166/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./166/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./166/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./166") = 0 mkdir("./167", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5742 attached [pid 5742] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5742] chdir("./167") = 0 [pid 5742] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5742] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5742 [pid 5742] <... setpgid resumed>) = 0 [pid 5742] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5742] write(3, "1000", 4) = 4 [pid 5742] close(3) = 0 [pid 5742] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5742] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5742] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5742] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5742] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5742] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5742] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5742] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0} => {parent_tid=[5743]}, 88) = 5743 ./strace-static-x86_64: Process 5743 attached [pid 5742] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5742] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5742] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5743] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5743] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5743] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5743] memfd_create("syzkaller", 0) = 3 [pid 5743] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5743] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5743] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5743] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5743] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5743] close(3) = 0 [pid 5743] mkdir("./file0", 0777) = 0 [ 128.441540][ T5743] loop0: detected capacity change from 0 to 8192 [ 128.458585][ T5743] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 128.471863][ T5743] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 128.481303][ T5743] REISERFS (device loop0): using ordered data mode [pid 5743] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5743] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5743] chdir("./file0") = 0 [pid 5743] ioctl(4, LOOP_CLR_FD) = 0 [pid 5743] close(4) = 0 [pid 5743] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5743] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5742] <... futex resumed>) = 0 [pid 5742] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5743] <... futex resumed>) = 0 [pid 5742] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5743] mkdir(".", 0777) = -1 EEXIST (File exists) [ 128.487840][ T5743] reiserfs: using flush barriers [ 128.494113][ T5743] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 128.510499][ T5743] REISERFS (device loop0): checking transaction log (loop0) [ 128.518861][ T5743] REISERFS (device loop0): Using r5 hash to sort names [pid 5743] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5743] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5743] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5743] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5742] <... futex resumed>) = 0 [pid 5742] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5743] <... futex resumed>) = 0 [pid 5742] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5743] mkdir(".", 0777 [pid 5742] <... futex resumed>) = 0 [pid 5743] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5743] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5742] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5742] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5742] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5743] <... mount resumed>) = 0 [pid 5742] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5743] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5745 attached ) = 5 [pid 5743] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5743] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5745] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5742] <... clone3 resumed> => {parent_tid=[5745]}, 88) = 5745 [pid 5745] <... rseq resumed>) = 0 [pid 5742] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5742] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5745] set_robust_list(0x7fd868e9f9a0, 24 [pid 5742] <... futex resumed>) = 0 [pid 5742] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5745] <... set_robust_list resumed>) = 0 [pid 5745] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5745] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5745] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5742] <... futex resumed>) = 0 [pid 5745] <... futex resumed>) = 1 [pid 5742] exit_group(0 [pid 5745] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5743] <... futex resumed>) = ? [pid 5742] <... exit_group resumed>) = ? [pid 5745] +++ exited with 0 +++ [pid 5743] +++ exited with 0 +++ [pid 5742] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5742, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./167", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./167", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./167/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./167/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./167/binderfs") = 0 [ 128.545873][ T5743] reiserfs: enabling write barrier flush mode [ 128.554340][ T5743] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 128.583709][ T5743] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./167/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./167/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./167/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./167/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./167/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./167/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./167") = 0 mkdir("./168", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5746 attached [pid 5746] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5746] chdir("./168") = 0 [pid 5746] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5746] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5746 [pid 5746] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5746] write(3, "1000", 4) = 4 [pid 5746] close(3) = 0 [pid 5746] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5746] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5746] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5746] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5746] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5746] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5746] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5746] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5747 attached [pid 5747] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5746] <... clone3 resumed> => {parent_tid=[5747]}, 88) = 5747 [pid 5747] <... rseq resumed>) = 0 [pid 5747] set_robust_list(0x7fd868ec09a0, 24 [pid 5746] rt_sigprocmask(SIG_SETMASK, [], [pid 5747] <... set_robust_list resumed>) = 0 [pid 5747] rt_sigprocmask(SIG_SETMASK, [], [pid 5746] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5747] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5746] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5746] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5747] memfd_create("syzkaller", 0) = 3 [pid 5747] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5747] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5747] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5747] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5747] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5747] close(3) = 0 [pid 5747] mkdir("./file0", 0777) = 0 [ 128.814445][ T5747] loop0: detected capacity change from 0 to 8192 [ 128.839906][ T5747] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 128.852940][ T5747] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5747] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5747] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5747] chdir("./file0") = 0 [pid 5747] ioctl(4, LOOP_CLR_FD) = 0 [pid 5747] close(4) = 0 [pid 5747] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5746] <... futex resumed>) = 0 [pid 5747] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5746] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5747] <... futex resumed>) = 0 [pid 5746] <... futex resumed>) = 1 [pid 5747] mkdir(".", 0777) = -1 EEXIST (File exists) [ 128.862245][ T5747] REISERFS (device loop0): using ordered data mode [ 128.868761][ T5747] reiserfs: using flush barriers [ 128.875453][ T5747] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 128.891902][ T5747] REISERFS (device loop0): checking transaction log (loop0) [ 128.900575][ T5747] REISERFS (device loop0): Using r5 hash to sort names [pid 5746] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5747] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5747] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5747] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5746] <... futex resumed>) = 0 [pid 5747] mkdir(".", 0777 [pid 5746] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5747] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5747] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5746] <... futex resumed>) = 0 [pid 5746] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5746] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 128.934168][ T5747] reiserfs: enabling write barrier flush mode [ 128.943178][ T5747] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5746] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5746] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5747] <... mount resumed>) = 0 [pid 5746] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5749 attached [pid 5747] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5746] <... clone3 resumed> => {parent_tid=[5749]}, 88) = 5749 [pid 5749] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5747] <... openat resumed>) = 5 [pid 5746] rt_sigprocmask(SIG_SETMASK, [], [pid 5749] <... rseq resumed>) = 0 [pid 5746] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5749] set_robust_list(0x7fd868e9f9a0, 24 [pid 5747] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5746] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5749] <... set_robust_list resumed>) = 0 [pid 5747] <... futex resumed>) = 0 [pid 5746] <... futex resumed>) = 0 [pid 5749] rt_sigprocmask(SIG_SETMASK, [], [pid 5747] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5746] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5749] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5749] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5749] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5746] <... futex resumed>) = 0 [pid 5749] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5746] exit_group(0 [pid 5749] <... futex resumed>) = ? [pid 5746] <... exit_group resumed>) = ? [pid 5749] +++ exited with 0 +++ [pid 5747] <... futex resumed>) = ? [pid 5747] +++ exited with 0 +++ [pid 5746] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5746, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./168", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./168", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./168/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./168/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 128.985541][ T5747] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./168/binderfs") = 0 umount2("./168/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./168/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./168/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./168/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./168/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./168/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./168") = 0 mkdir("./169", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5750 attached , child_tidptr=0x5555565f3690) = 5750 [pid 5750] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5750] chdir("./169") = 0 [pid 5750] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5750] setpgid(0, 0) = 0 [pid 5750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5750] write(3, "1000", 4) = 4 [pid 5750] close(3) = 0 [pid 5750] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5750] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5750] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5750] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5750] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5750] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5750] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5750] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5751 attached => {parent_tid=[5751]}, 88) = 5751 [pid 5750] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5751] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5750] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] set_robust_list(0x7fd868ec09a0, 24 [pid 5750] <... futex resumed>) = 0 [pid 5751] <... set_robust_list resumed>) = 0 [pid 5750] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5751] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5751] memfd_create("syzkaller", 0) = 3 [pid 5751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5751] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5751] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5751] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5751] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5751] close(3) = 0 [pid 5751] mkdir("./file0", 0777) = 0 [ 129.195022][ T5751] loop0: detected capacity change from 0 to 8192 [ 129.210087][ T5751] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 129.223071][ T5751] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 129.232351][ T5751] REISERFS (device loop0): using ordered data mode [ 129.238862][ T5751] reiserfs: using flush barriers [pid 5751] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5751] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5751] chdir("./file0") = 0 [pid 5751] ioctl(4, LOOP_CLR_FD) = 0 [pid 5751] close(4) = 0 [ 129.245320][ T5751] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 129.261805][ T5751] REISERFS (device loop0): checking transaction log (loop0) [ 129.270117][ T5751] REISERFS (device loop0): Using r5 hash to sort names [pid 5751] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5750] <... futex resumed>) = 0 [pid 5751] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5750] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5750] <... futex resumed>) = 0 [pid 5751] mkdir(".", 0777 [pid 5750] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5751] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5751] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5751] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5751] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5750] <... futex resumed>) = 0 [pid 5751] <... futex resumed>) = 1 [pid 5750] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] mkdir(".", 0777 [pid 5750] <... futex resumed>) = 0 [pid 5751] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5750] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5751] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5750] <... futex resumed>) = 0 [pid 5750] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5750] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5750] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5751] <... mount resumed>) = 0 [pid 5751] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5750] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5750] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5753 attached [pid 5753] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5751] <... openat resumed>) = 5 [pid 5750] <... clone3 resumed> => {parent_tid=[5753]}, 88) = 5753 [pid 5753] <... rseq resumed>) = 0 [pid 5751] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5750] rt_sigprocmask(SIG_SETMASK, [], [pid 5753] set_robust_list(0x7fd868e9f9a0, 24 [pid 5751] <... futex resumed>) = 0 [pid 5750] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5753] <... set_robust_list resumed>) = 0 [pid 5751] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5750] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5753] rt_sigprocmask(SIG_SETMASK, [], [pid 5750] <... futex resumed>) = 0 [pid 5753] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5750] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5753] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5753] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5750] <... futex resumed>) = 0 [pid 5753] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5750] exit_group(0 [pid 5753] <... futex resumed>) = ? [pid 5751] <... futex resumed>) = ? [pid 5753] +++ exited with 0 +++ [pid 5751] +++ exited with 0 +++ [pid 5750] <... exit_group resumed>) = ? [pid 5750] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5750, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- [ 129.292851][ T5751] reiserfs: enabling write barrier flush mode [ 129.301710][ T5751] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 129.322383][ T5751] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./169", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./169", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./169/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./169/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./169/binderfs") = 0 umount2("./169/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./169/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./169/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./169/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./169/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./169/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./169") = 0 mkdir("./170", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5754 attached , child_tidptr=0x5555565f3690) = 5754 [pid 5754] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5754] chdir("./170") = 0 [pid 5754] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5754] setpgid(0, 0) = 0 [pid 5754] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5754] write(3, "1000", 4) = 4 [pid 5754] close(3) = 0 [pid 5754] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5754] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5754] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5754] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5754] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5754] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5754] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5754] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5755 attached [pid 5755] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5754] <... clone3 resumed> => {parent_tid=[5755]}, 88) = 5755 [pid 5755] set_robust_list(0x7fd868ec09a0, 24 [pid 5754] rt_sigprocmask(SIG_SETMASK, [], [pid 5755] <... set_robust_list resumed>) = 0 [pid 5754] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5755] rt_sigprocmask(SIG_SETMASK, [], [pid 5754] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5755] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5754] <... futex resumed>) = 0 [pid 5754] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5755] memfd_create("syzkaller", 0) = 3 [pid 5755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5755] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5755] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5755] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5755] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5755] close(3) = 0 [pid 5755] mkdir("./file0", 0777) = 0 [ 129.624262][ T5755] loop0: detected capacity change from 0 to 8192 [ 129.639110][ T5755] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 129.652304][ T5755] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 129.662545][ T5755] REISERFS (device loop0): using ordered data mode [ 129.669042][ T5755] reiserfs: using flush barriers [pid 5755] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5755] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5755] chdir("./file0") = 0 [pid 5755] ioctl(4, LOOP_CLR_FD) = 0 [pid 5755] close(4) = 0 [pid 5755] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5755] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5754] <... futex resumed>) = 0 [pid 5754] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5755] <... futex resumed>) = 0 [pid 5754] <... futex resumed>) = 1 [pid 5755] mkdir(".", 0777 [pid 5754] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5755] <... mkdir resumed>) = -1 EEXIST (File exists) [ 129.675436][ T5755] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 129.691842][ T5755] REISERFS (device loop0): checking transaction log (loop0) [ 129.700170][ T5755] REISERFS (device loop0): Using r5 hash to sort names [pid 5755] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5755] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5755] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5754] <... futex resumed>) = 0 [pid 5754] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5755] <... futex resumed>) = 1 [pid 5754] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5755] mkdir(".", 0777 [pid 5754] <... futex resumed>) = 0 [pid 5755] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5754] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5755] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5754] <... mmap resumed>) = 0x7fd868e7f000 [pid 5754] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5754] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5754] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5757 attached [pid 5757] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5754] <... clone3 resumed> => {parent_tid=[5757]}, 88) = 5757 [pid 5757] <... rseq resumed>) = 0 [pid 5754] rt_sigprocmask(SIG_SETMASK, [], [pid 5757] set_robust_list(0x7fd868e9f9a0, 24 [pid 5754] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5757] <... set_robust_list resumed>) = 0 [pid 5754] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5757] rt_sigprocmask(SIG_SETMASK, [], [pid 5754] <... futex resumed>) = 0 [pid 5757] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5754] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5757] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5757] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5754] <... futex resumed>) = 0 [pid 5757] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5755] <... mount resumed>) = 0 [pid 5755] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5755] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5755] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5754] exit_group(0 [pid 5757] <... futex resumed>) = ? [pid 5755] <... futex resumed>) = ? [pid 5754] <... exit_group resumed>) = ? [pid 5755] +++ exited with 0 +++ [pid 5757] +++ exited with 0 +++ [pid 5754] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5754, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./170", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./170", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 129.744239][ T5755] reiserfs: enabling write barrier flush mode [ 129.752554][ T5755] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 129.783452][ T5755] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./170/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./170/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./170/binderfs") = 0 umount2("./170/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./170/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./170/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./170/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./170/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./170/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./170") = 0 mkdir("./171", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5758 attached , child_tidptr=0x5555565f3690) = 5758 [pid 5758] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5758] chdir("./171") = 0 [pid 5758] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5758] setpgid(0, 0) = 0 [pid 5758] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5758] write(3, "1000", 4) = 4 [pid 5758] close(3) = 0 [pid 5758] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5758] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5758] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5758] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5758] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5758] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5758] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5759 attached [pid 5759] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5759] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5759] rt_sigprocmask(SIG_SETMASK, [], [pid 5758] <... clone3 resumed> => {parent_tid=[5759]}, 88) = 5759 [pid 5759] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5759] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5758] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... futex resumed>) = 0 [pid 5759] memfd_create("syzkaller", 0 [pid 5758] <... futex resumed>) = 1 [pid 5758] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5759] <... memfd_create resumed>) = 3 [pid 5759] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5759] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5759] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5759] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5759] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5759] close(3) = 0 [pid 5759] mkdir("./file0", 0777) = 0 [ 130.066515][ T5759] loop0: detected capacity change from 0 to 8192 [ 130.087023][ T5759] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 130.100258][ T5759] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 130.109637][ T5759] REISERFS (device loop0): using ordered data mode [pid 5759] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5759] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5759] chdir("./file0") = 0 [pid 5759] ioctl(4, LOOP_CLR_FD) = 0 [pid 5759] close(4) = 0 [pid 5759] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5758] <... futex resumed>) = 0 [pid 5759] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... futex resumed>) = 0 [pid 5758] <... futex resumed>) = 1 [ 130.116226][ T5759] reiserfs: using flush barriers [ 130.122753][ T5759] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 130.139166][ T5759] REISERFS (device loop0): checking transaction log (loop0) [ 130.147525][ T5759] REISERFS (device loop0): Using r5 hash to sort names [pid 5759] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5758] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5759] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5759] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5759] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5758] <... futex resumed>) = 0 [pid 5759] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5758] <... futex resumed>) = 0 [pid 5759] mkdir(".", 0777 [pid 5758] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5759] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5758] <... futex resumed>) = 0 [pid 5759] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5758] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5758] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5758] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5761 attached => {parent_tid=[5761]}, 88) = 5761 [pid 5761] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5758] rt_sigprocmask(SIG_SETMASK, [], [pid 5761] <... rseq resumed>) = 0 [pid 5758] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5761] set_robust_list(0x7fd868e9f9a0, 24 [pid 5758] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5761] <... set_robust_list resumed>) = 0 [pid 5758] <... futex resumed>) = 0 [ 130.164993][ T5759] reiserfs: enabling write barrier flush mode [ 130.182545][ T5759] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5761] rt_sigprocmask(SIG_SETMASK, [], [pid 5758] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5761] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5761] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5759] <... mount resumed>) = 0 [pid 5759] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5759] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5761] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5759] <... futex resumed>) = 0 [pid 5758] <... futex resumed>) = 0 [pid 5761] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5759] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5758] exit_group(0 [pid 5761] <... futex resumed>) = ? [pid 5759] <... futex resumed>) = ? [pid 5758] <... exit_group resumed>) = ? [pid 5761] +++ exited with 0 +++ [pid 5759] +++ exited with 0 +++ [pid 5758] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5758, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./171", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./171", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./171/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./171/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 130.216749][ T5759] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./171/binderfs") = 0 umount2("./171/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./171/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./171/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./171/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./171/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./171/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./171") = 0 mkdir("./172", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5762 attached [pid 5762] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5762] chdir("./172") = 0 [pid 5762] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5762] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5762 [pid 5762] <... setpgid resumed>) = 0 [pid 5762] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5762] write(3, "1000", 4) = 4 [pid 5762] close(3) = 0 [pid 5762] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5762] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5762] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5762] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5762] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5762] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5762] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5763 attached [pid 5763] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5762] <... clone3 resumed> => {parent_tid=[5763]}, 88) = 5763 [pid 5763] <... rseq resumed>) = 0 [pid 5763] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5763] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5763] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5762] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5762] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5762] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5763] <... futex resumed>) = 0 [pid 5763] memfd_create("syzkaller", 0) = 3 [pid 5763] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5763] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5763] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5763] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5763] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5763] close(3) = 0 [pid 5763] mkdir("./file0", 0777) = 0 [ 130.486989][ T5763] loop0: detected capacity change from 0 to 8192 [ 130.512334][ T5763] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 130.525414][ T5763] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5763] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5763] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5763] chdir("./file0") = 0 [pid 5763] ioctl(4, LOOP_CLR_FD) = 0 [pid 5763] close(4) = 0 [pid 5763] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5763] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5762] <... futex resumed>) = 0 [ 130.534750][ T5763] REISERFS (device loop0): using ordered data mode [ 130.541326][ T5763] reiserfs: using flush barriers [ 130.547571][ T5763] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 130.564696][ T5763] REISERFS (device loop0): checking transaction log (loop0) [ 130.573021][ T5763] REISERFS (device loop0): Using r5 hash to sort names [pid 5762] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5763] <... futex resumed>) = 0 [pid 5762] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5763] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5763] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5763] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5763] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5762] <... futex resumed>) = 0 [pid 5763] mkdir(".", 0777 [pid 5762] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5763] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5762] <... futex resumed>) = 0 [pid 5763] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5762] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5762] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5762] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5762] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5763] <... mount resumed>) = 0 [pid 5762] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5762] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5765 attached [pid 5763] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5762] <... clone3 resumed> => {parent_tid=[5765]}, 88) = 5765 [pid 5765] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5763] <... openat resumed>) = 5 [pid 5765] <... rseq resumed>) = 0 [pid 5765] set_robust_list(0x7fd868e9f9a0, 24 [pid 5763] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5765] <... set_robust_list resumed>) = 0 [pid 5765] rt_sigprocmask(SIG_SETMASK, [], [pid 5763] <... futex resumed>) = 0 [pid 5765] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5763] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5765] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [ 130.638111][ T5763] reiserfs: enabling write barrier flush mode [ 130.646421][ T5763] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 130.678021][ T5763] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5762] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5762] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5762] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5765] <... futex resumed>) = 0 [pid 5765] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5765] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5762] <... futex resumed>) = 0 [pid 5765] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5762] exit_group(0 [pid 5765] <... futex resumed>) = ? [pid 5763] <... futex resumed>) = ? [pid 5762] <... exit_group resumed>) = ? [pid 5765] +++ exited with 0 +++ [pid 5763] +++ exited with 0 +++ [pid 5762] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5762, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- umount2("./172", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./172", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./172/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./172/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./172/binderfs") = 0 umount2("./172/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./172/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./172/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./172/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./172/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./172/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./172") = 0 mkdir("./173", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5766 attached [pid 5766] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5766 [pid 5766] <... set_robust_list resumed>) = 0 [pid 5766] chdir("./173") = 0 [pid 5766] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5766] setpgid(0, 0) = 0 [pid 5766] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5766] write(3, "1000", 4) = 4 [pid 5766] close(3) = 0 [pid 5766] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5766] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5766] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5766] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5766] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5766] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5766] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5766] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5767 attached [pid 5767] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5766] <... clone3 resumed> => {parent_tid=[5767]}, 88) = 5767 [pid 5767] <... rseq resumed>) = 0 [pid 5766] rt_sigprocmask(SIG_SETMASK, [], [pid 5767] set_robust_list(0x7fd868ec09a0, 24 [pid 5766] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5767] <... set_robust_list resumed>) = 0 [pid 5766] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5767] rt_sigprocmask(SIG_SETMASK, [], [pid 5766] <... futex resumed>) = 0 [pid 5767] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5766] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5767] memfd_create("syzkaller", 0) = 3 [pid 5767] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5767] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5767] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5767] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5767] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5767] close(3) = 0 [pid 5767] mkdir("./file0", 0777) = 0 [ 130.934356][ T5767] loop0: detected capacity change from 0 to 8192 [ 130.945896][ T5767] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 130.958921][ T5767] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 130.968331][ T5767] REISERFS (device loop0): using ordered data mode [ 130.974880][ T5767] reiserfs: using flush barriers [pid 5767] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5767] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5767] chdir("./file0") = 0 [pid 5767] ioctl(4, LOOP_CLR_FD) = 0 [pid 5767] close(4) = 0 [pid 5767] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5766] <... futex resumed>) = 0 [pid 5767] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5766] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5767] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5766] <... futex resumed>) = 0 [pid 5767] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5767] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 130.981137][ T5767] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 130.997918][ T5767] REISERFS (device loop0): checking transaction log (loop0) [ 131.006167][ T5767] REISERFS (device loop0): Using r5 hash to sort names [pid 5766] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5767] <... mount resumed>) = 0 [pid 5767] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5767] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5766] <... futex resumed>) = 0 [pid 5767] mkdir(".", 0777 [pid 5766] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5767] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5766] <... futex resumed>) = 0 [pid 5767] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5766] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5766] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5766] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5767] <... mount resumed>) = 0 [pid 5766] <... mprotect resumed>) = 0 [pid 5767] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5766] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5767] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5766] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5767] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5769 attached [pid 5769] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5769] set_robust_list(0x7fd868e9f9a0, 24 [pid 5766] <... clone3 resumed> => {parent_tid=[5769]}, 88) = 5769 [pid 5769] <... set_robust_list resumed>) = 0 [pid 5769] rt_sigprocmask(SIG_SETMASK, [], [pid 5766] rt_sigprocmask(SIG_SETMASK, [], [pid 5769] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5766] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5769] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5766] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5769] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5766] <... futex resumed>) = 0 [pid 5769] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5766] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5769] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5769] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5766] <... futex resumed>) = 0 [pid 5769] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5766] exit_group(0 [pid 5769] <... futex resumed>) = ? [pid 5767] <... futex resumed>) = ? [pid 5769] +++ exited with 0 +++ [pid 5767] +++ exited with 0 +++ [pid 5766] <... exit_group resumed>) = ? [pid 5766] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5766, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./173", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./173", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 131.039655][ T5767] reiserfs: enabling write barrier flush mode [ 131.047435][ T5767] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 131.078495][ T5767] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./173/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./173/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./173/binderfs") = 0 umount2("./173/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./173/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./173/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./173/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./173/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./173/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./173") = 0 mkdir("./174", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5770 attached , child_tidptr=0x5555565f3690) = 5770 [pid 5770] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5770] chdir("./174") = 0 [pid 5770] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5770] setpgid(0, 0) = 0 [pid 5770] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5770] write(3, "1000", 4) = 4 [pid 5770] close(3) = 0 [pid 5770] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5770] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5770] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5770] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5770] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5770] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5770] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5770] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5771 attached [pid 5771] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5771] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5771] rt_sigprocmask(SIG_SETMASK, [], [pid 5770] <... clone3 resumed> => {parent_tid=[5771]}, 88) = 5771 [pid 5771] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5770] rt_sigprocmask(SIG_SETMASK, [], [pid 5771] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5770] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5770] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5771] <... futex resumed>) = 0 [pid 5770] <... futex resumed>) = 1 [pid 5771] memfd_create("syzkaller", 0 [pid 5770] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5771] <... memfd_create resumed>) = 3 [pid 5771] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5771] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5771] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5771] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5771] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5771] close(3) = 0 [pid 5771] mkdir("./file0", 0777) = 0 [ 131.351151][ T5771] loop0: detected capacity change from 0 to 8192 [ 131.365887][ T5771] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 131.378918][ T5771] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 131.388270][ T5771] REISERFS (device loop0): using ordered data mode [ 131.394830][ T5771] reiserfs: using flush barriers [pid 5771] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5771] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5771] chdir("./file0") = 0 [pid 5771] ioctl(4, LOOP_CLR_FD) = 0 [pid 5771] close(4) = 0 [ 131.401449][ T5771] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 131.417913][ T5771] REISERFS (device loop0): checking transaction log (loop0) [ 131.426375][ T5771] REISERFS (device loop0): Using r5 hash to sort names [pid 5771] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5770] <... futex resumed>) = 0 [pid 5771] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5770] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5771] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5770] <... futex resumed>) = 0 [pid 5771] mkdir(".", 0777 [pid 5770] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5771] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5771] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5771] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5771] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5770] <... futex resumed>) = 0 [pid 5770] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5770] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5770] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5771] <... futex resumed>) = 1 [pid 5770] <... mmap resumed>) = 0x7fd868e7f000 [pid 5771] mkdir(".", 0777 [pid 5770] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5771] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5770] <... mprotect resumed>) = 0 [pid 5771] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5770] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5770] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5773 attached => {parent_tid=[5773]}, 88) = 5773 [pid 5773] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5770] rt_sigprocmask(SIG_SETMASK, [], [pid 5773] <... rseq resumed>) = 0 [pid 5773] set_robust_list(0x7fd868e9f9a0, 24 [pid 5770] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5773] <... set_robust_list resumed>) = 0 [pid 5773] rt_sigprocmask(SIG_SETMASK, [], [pid 5770] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5773] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5770] <... futex resumed>) = 0 [pid 5773] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [ 131.452883][ T5771] reiserfs: enabling write barrier flush mode [ 131.460785][ T5771] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5770] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5773] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5771] <... mount resumed>) = 0 [pid 5773] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5770] <... futex resumed>) = 0 [pid 5773] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5771] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5771] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5771] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5770] exit_group(0 [pid 5773] <... futex resumed>) = ? [pid 5771] <... futex resumed>) = ? [pid 5773] +++ exited with 0 +++ [pid 5771] +++ exited with 0 +++ [pid 5770] <... exit_group resumed>) = ? [pid 5770] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5770, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./174", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./174", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./174/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./174/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./174/binderfs") = 0 [ 131.503739][ T5771] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./174/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./174/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./174/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./174/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./174/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./174/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./174") = 0 mkdir("./175", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5774 attached , child_tidptr=0x5555565f3690) = 5774 [pid 5774] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5774] chdir("./175") = 0 [pid 5774] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5774] setpgid(0, 0) = 0 [pid 5774] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5774] write(3, "1000", 4) = 4 [pid 5774] close(3) = 0 [pid 5774] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5774] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5774] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5774] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5774] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5774] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5774] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5774] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5775 attached [pid 5775] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5775] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5774] <... clone3 resumed> => {parent_tid=[5775]}, 88) = 5775 [pid 5775] rt_sigprocmask(SIG_SETMASK, [], [pid 5774] rt_sigprocmask(SIG_SETMASK, [], [pid 5775] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5774] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5775] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5774] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5775] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5774] <... futex resumed>) = 0 [pid 5775] memfd_create("syzkaller", 0 [pid 5774] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5775] <... memfd_create resumed>) = 3 [pid 5775] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5775] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5775] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5775] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5775] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5775] close(3) = 0 [pid 5775] mkdir("./file0", 0777) = 0 [ 131.823263][ T5775] loop0: detected capacity change from 0 to 8192 [ 131.848615][ T5775] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 131.861656][ T5775] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5775] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5775] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5775] chdir("./file0") = 0 [pid 5775] ioctl(4, LOOP_CLR_FD) = 0 [pid 5775] close(4) = 0 [pid 5775] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5774] <... futex resumed>) = 0 [pid 5775] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5774] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5775] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5774] <... futex resumed>) = 0 [pid 5775] mkdir(".", 0777 [pid 5774] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5775] <... mkdir resumed>) = -1 EEXIST (File exists) [ 131.870845][ T5775] REISERFS (device loop0): using ordered data mode [ 131.877391][ T5775] reiserfs: using flush barriers [ 131.883479][ T5775] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 131.899987][ T5775] REISERFS (device loop0): checking transaction log (loop0) [ 131.908224][ T5775] REISERFS (device loop0): Using r5 hash to sort names [pid 5775] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5775] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5775] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5774] <... futex resumed>) = 0 [pid 5775] mkdir(".", 0777 [pid 5774] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5775] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5774] <... futex resumed>) = 0 [pid 5775] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5774] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5774] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5774] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5774] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5774] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5775] <... mount resumed>) = 0 ./strace-static-x86_64: Process 5777 attached [pid 5777] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5777] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5774] <... clone3 resumed> => {parent_tid=[5777]}, 88) = 5777 [pid 5777] rt_sigprocmask(SIG_SETMASK, [], [pid 5774] rt_sigprocmask(SIG_SETMASK, [], [pid 5777] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5777] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5774] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5774] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5777] <... futex resumed>) = 0 [pid 5774] <... futex resumed>) = 1 [pid 5777] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5774] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5777] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5777] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5774] <... futex resumed>) = 0 [pid 5777] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5775] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5775] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5775] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5774] exit_group(0 [pid 5777] <... futex resumed>) = ? [pid 5775] <... futex resumed>) = ? [pid 5774] <... exit_group resumed>) = ? [pid 5777] +++ exited with 0 +++ [pid 5775] +++ exited with 0 +++ [pid 5774] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5774, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- umount2("./175", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./175", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 131.935003][ T5775] reiserfs: enabling write barrier flush mode [ 131.943611][ T5775] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 131.975175][ T5775] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./175/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./175/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./175/binderfs") = 0 umount2("./175/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./175/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./175/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./175/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./175/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./175/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./175") = 0 mkdir("./176", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5778 attached , child_tidptr=0x5555565f3690) = 5778 [pid 5778] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5778] chdir("./176") = 0 [pid 5778] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5778] setpgid(0, 0) = 0 [pid 5778] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5778] write(3, "1000", 4) = 4 [pid 5778] close(3) = 0 [pid 5778] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5778] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5778] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5778] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5778] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5778] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5778] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5778] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5779 attached [pid 5779] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5778] <... clone3 resumed> => {parent_tid=[5779]}, 88) = 5779 [pid 5779] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5778] rt_sigprocmask(SIG_SETMASK, [], [pid 5779] rt_sigprocmask(SIG_SETMASK, [], [pid 5778] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5779] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5779] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5778] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5779] <... futex resumed>) = 0 [pid 5778] <... futex resumed>) = 1 [pid 5779] memfd_create("syzkaller", 0 [pid 5778] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5779] <... memfd_create resumed>) = 3 [pid 5779] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5779] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5779] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5779] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5779] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5779] close(3) = 0 [pid 5779] mkdir("./file0", 0777) = 0 [ 132.280705][ T5779] loop0: detected capacity change from 0 to 8192 [ 132.295471][ T5779] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 132.308472][ T5779] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 132.318212][ T5779] REISERFS (device loop0): using ordered data mode [ 132.325918][ T5779] reiserfs: using flush barriers [pid 5779] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5779] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5779] chdir("./file0") = 0 [pid 5779] ioctl(4, LOOP_CLR_FD) = 0 [pid 5779] close(4) = 0 [pid 5779] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5778] <... futex resumed>) = 0 [pid 5779] mkdir(".", 0777 [pid 5778] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5779] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5778] <... futex resumed>) = 0 [pid 5779] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 132.332775][ T5779] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 132.349165][ T5779] REISERFS (device loop0): checking transaction log (loop0) [ 132.357714][ T5779] REISERFS (device loop0): Using r5 hash to sort names [pid 5778] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5779] <... mount resumed>) = 0 [pid 5779] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5779] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5779] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5778] <... futex resumed>) = 0 [pid 5779] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5778] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5779] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5778] <... futex resumed>) = 0 [pid 5779] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5778] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5778] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5779] <... mount resumed>) = 0 [pid 5778] <... mmap resumed>) = 0x7fd868e7f000 [pid 5778] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5779] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5778] <... mprotect resumed>) = 0 [pid 5779] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5778] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5779] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5778] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5778] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5781 attached [pid 5781] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5778] <... clone3 resumed> => {parent_tid=[5781]}, 88) = 5781 [pid 5781] set_robust_list(0x7fd868e9f9a0, 24 [pid 5778] rt_sigprocmask(SIG_SETMASK, [], [pid 5781] <... set_robust_list resumed>) = 0 [pid 5778] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5781] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5778] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5781] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5778] <... futex resumed>) = 0 [pid 5778] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5781] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5781] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5778] <... futex resumed>) = 0 [pid 5781] <... futex resumed>) = 1 [pid 5778] exit_group(0 [pid 5781] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5779] <... futex resumed>) = ? [pid 5778] <... exit_group resumed>) = ? [pid 5781] +++ exited with 0 +++ [pid 5779] +++ exited with 0 +++ [pid 5778] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5778, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- [ 132.379307][ T5779] reiserfs: enabling write barrier flush mode [ 132.388602][ T5779] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 132.408553][ T5779] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./176", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./176", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./176/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./176/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./176/binderfs") = 0 umount2("./176/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./176/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./176/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./176/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./176/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./176/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./176") = 0 mkdir("./177", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5782 attached [pid 5782] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5782] chdir("./177") = 0 [pid 5782] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5782 [pid 5782] <... prctl resumed>) = 0 [pid 5782] setpgid(0, 0) = 0 [pid 5782] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5782] write(3, "1000", 4) = 4 [pid 5782] close(3) = 0 [pid 5782] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5782] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5782] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5782] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5782] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5782] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5782] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5782] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5783 attached [pid 5783] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5782] <... clone3 resumed> => {parent_tid=[5783]}, 88) = 5783 [pid 5783] <... rseq resumed>) = 0 [pid 5782] rt_sigprocmask(SIG_SETMASK, [], [pid 5783] set_robust_list(0x7fd868ec09a0, 24 [pid 5782] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5783] <... set_robust_list resumed>) = 0 [pid 5782] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5783] rt_sigprocmask(SIG_SETMASK, [], [pid 5782] <... futex resumed>) = 0 [pid 5783] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5782] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5783] memfd_create("syzkaller", 0) = 3 [pid 5783] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5783] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5783] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5783] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5783] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5783] close(3) = 0 [pid 5783] mkdir("./file0", 0777) = 0 [ 132.697360][ T5783] loop0: detected capacity change from 0 to 8192 [ 132.721719][ T5783] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 132.734720][ T5783] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5783] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5783] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5783] chdir("./file0") = 0 [pid 5783] ioctl(4, LOOP_CLR_FD) = 0 [pid 5783] close(4) = 0 [pid 5783] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5782] <... futex resumed>) = 0 [pid 5782] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5783] <... futex resumed>) = 1 [pid 5782] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5783] mkdir(".", 0777) = -1 EEXIST (File exists) [ 132.744021][ T5783] REISERFS (device loop0): using ordered data mode [ 132.750547][ T5783] reiserfs: using flush barriers [ 132.757538][ T5783] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 132.774391][ T5783] REISERFS (device loop0): checking transaction log (loop0) [ 132.782868][ T5783] REISERFS (device loop0): Using r5 hash to sort names [pid 5783] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5783] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5783] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5782] <... futex resumed>) = 0 [pid 5783] mkdir(".", 0777 [pid 5782] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5783] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5782] <... futex resumed>) = 0 [pid 5783] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5782] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5782] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 132.814503][ T5783] reiserfs: enabling write barrier flush mode [ 132.822877][ T5783] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5782] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5782] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5783] <... mount resumed>) = 0 [pid 5782] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5782] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5785 attached [pid 5785] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5785] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5782] <... clone3 resumed> => {parent_tid=[5785]}, 88) = 5785 [pid 5785] rt_sigprocmask(SIG_SETMASK, [], [pid 5782] rt_sigprocmask(SIG_SETMASK, [], [pid 5785] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5782] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5785] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5782] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5785] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5782] <... futex resumed>) = 0 [pid 5785] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5782] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5785] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5783] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5785] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5783] <... openat resumed>) = 5 [pid 5782] <... futex resumed>) = 0 [pid 5785] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5783] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5783] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5782] exit_group(0 [pid 5785] <... futex resumed>) = ? [pid 5783] <... futex resumed>) = ? [pid 5782] <... exit_group resumed>) = ? [pid 5785] +++ exited with 0 +++ [pid 5783] +++ exited with 0 +++ [pid 5782] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5782, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./177", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./177", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 132.858457][ T5783] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./177/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./177/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./177/binderfs") = 0 umount2("./177/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./177/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./177/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./177/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./177/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./177/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./177") = 0 mkdir("./178", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5786 attached [pid 5786] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5786] chdir("./178") = 0 [pid 5786] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5786] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5786 [pid 5786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5786] write(3, "1000", 4) = 4 [pid 5786] close(3) = 0 [pid 5786] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5786] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5786] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5786] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5786] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5786] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5786] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5786] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5787 attached [pid 5787] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5786] <... clone3 resumed> => {parent_tid=[5787]}, 88) = 5787 [pid 5787] <... rseq resumed>) = 0 [pid 5786] rt_sigprocmask(SIG_SETMASK, [], [pid 5787] set_robust_list(0x7fd868ec09a0, 24 [pid 5786] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5787] <... set_robust_list resumed>) = 0 [pid 5786] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] rt_sigprocmask(SIG_SETMASK, [], [pid 5786] <... futex resumed>) = 0 [pid 5787] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5786] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5787] memfd_create("syzkaller", 0) = 3 [pid 5787] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5787] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5787] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5787] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5787] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5787] close(3) = 0 [pid 5787] mkdir("./file0", 0777) = 0 [ 133.172156][ T5787] loop0: detected capacity change from 0 to 8192 [ 133.182006][ T5787] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 133.195114][ T5787] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 133.204463][ T5787] REISERFS (device loop0): using ordered data mode [ 133.210992][ T5787] reiserfs: using flush barriers [pid 5787] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5787] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5787] chdir("./file0") = 0 [pid 5787] ioctl(4, LOOP_CLR_FD) = 0 [pid 5787] close(4) = 0 [pid 5787] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5786] <... futex resumed>) = 0 [pid 5786] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] <... futex resumed>) = 1 [pid 5786] <... futex resumed>) = 0 [pid 5787] mkdir(".", 0777 [pid 5786] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5787] <... mkdir resumed>) = -1 EEXIST (File exists) [ 133.217521][ T5787] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 133.233908][ T5787] REISERFS (device loop0): checking transaction log (loop0) [ 133.242323][ T5787] REISERFS (device loop0): Using r5 hash to sort names [ 133.265347][ T5787] reiserfs: enabling write barrier flush mode [pid 5787] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5787] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5787] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5786] <... futex resumed>) = 0 [pid 5787] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5786] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5787] mkdir(".", 0777 [pid 5786] <... futex resumed>) = 0 [pid 5786] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5787] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5787] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5786] <... futex resumed>) = 0 [pid 5786] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5786] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 133.273826][ T5787] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5786] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5787] <... mount resumed>) = 0 [pid 5786] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5787] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5789 attached ) = 5 [pid 5786] <... clone3 resumed> => {parent_tid=[5789]}, 88) = 5789 [pid 5787] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5789] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5786] rt_sigprocmask(SIG_SETMASK, [], [pid 5789] <... rseq resumed>) = 0 [pid 5786] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5789] set_robust_list(0x7fd868e9f9a0, 24 [pid 5786] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5789] <... set_robust_list resumed>) = 0 [pid 5786] <... futex resumed>) = 0 [pid 5789] rt_sigprocmask(SIG_SETMASK, [], [pid 5786] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5789] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5789] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5787] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5789] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5789] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5789] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5786] <... futex resumed>) = 0 [pid 5786] exit_group(0 [pid 5789] <... futex resumed>) = ? [pid 5787] <... futex resumed>) = ? [pid 5787] +++ exited with 0 +++ [pid 5789] +++ exited with 0 +++ [pid 5786] <... exit_group resumed>) = ? [pid 5786] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5786, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./178", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./178", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./178/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./178/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 133.324763][ T5787] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./178/binderfs") = 0 umount2("./178/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./178/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./178/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./178/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./178/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./178/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./178") = 0 mkdir("./179", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5790 attached [pid 5790] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5790] chdir("./179") = 0 [pid 5790] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5790] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5790 [pid 5790] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5790] write(3, "1000", 4) = 4 [pid 5790] close(3) = 0 [pid 5790] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5790] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5790] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5790] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5790] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5790] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5790] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5790] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5791 attached [pid 5791] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5790] <... clone3 resumed> => {parent_tid=[5791]}, 88) = 5791 [pid 5791] <... rseq resumed>) = 0 [pid 5790] rt_sigprocmask(SIG_SETMASK, [], [pid 5791] set_robust_list(0x7fd868ec09a0, 24 [pid 5790] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5791] <... set_robust_list resumed>) = 0 [pid 5790] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5791] rt_sigprocmask(SIG_SETMASK, [], [pid 5790] <... futex resumed>) = 0 [pid 5791] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5790] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5791] memfd_create("syzkaller", 0) = 3 [pid 5791] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5791] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5791] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5791] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5791] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5791] close(3) = 0 [pid 5791] mkdir("./file0", 0777) = 0 [ 133.574897][ T5791] loop0: detected capacity change from 0 to 8192 [ 133.590719][ T5791] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 133.603857][ T5791] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 133.613129][ T5791] REISERFS (device loop0): using ordered data mode [ 133.619641][ T5791] reiserfs: using flush barriers [pid 5791] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5791] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5791] chdir("./file0") = 0 [pid 5791] ioctl(4, LOOP_CLR_FD) = 0 [pid 5791] close(4) = 0 [pid 5791] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5790] <... futex resumed>) = 0 [pid 5790] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5790] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5791] mkdir(".", 0777) = -1 EEXIST (File exists) [ 133.626168][ T5791] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 133.642730][ T5791] REISERFS (device loop0): checking transaction log (loop0) [ 133.650873][ T5791] REISERFS (device loop0): Using r5 hash to sort names [pid 5791] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5791] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5791] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5790] <... futex resumed>) = 0 [pid 5791] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5790] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5791] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5790] <... futex resumed>) = 0 [pid 5791] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5790] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5791] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5790] <... futex resumed>) = 0 [ 133.694972][ T5791] reiserfs: enabling write barrier flush mode [ 133.703742][ T5791] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5790] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5791] <... mount resumed>) = 0 [pid 5790] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5791] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5790] <... mprotect resumed>) = 0 [pid 5791] <... openat resumed>) = 5 [pid 5791] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5790] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5791] <... futex resumed>) = 0 [pid 5790] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5791] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5790] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5793 attached [pid 5793] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5793] set_robust_list(0x7fd868e9f9a0, 24 [pid 5790] <... clone3 resumed> => {parent_tid=[5793]}, 88) = 5793 [pid 5793] <... set_robust_list resumed>) = 0 [pid 5790] rt_sigprocmask(SIG_SETMASK, [], [pid 5793] rt_sigprocmask(SIG_SETMASK, [], [pid 5790] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5793] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5790] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5793] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5790] <... futex resumed>) = 0 [pid 5790] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5793] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5793] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5790] <... futex resumed>) = 0 [pid 5793] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5790] exit_group(0 [pid 5793] <... futex resumed>) = ? [pid 5791] <... futex resumed>) = ? [pid 5793] +++ exited with 0 +++ [pid 5791] +++ exited with 0 +++ [pid 5790] <... exit_group resumed>) = ? [pid 5790] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5790, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 133.735447][ T5791] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./179", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./179", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./179/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./179/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./179/binderfs") = 0 umount2("./179/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./179/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./179/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./179/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./179/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./179/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./179") = 0 mkdir("./180", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5794 attached , child_tidptr=0x5555565f3690) = 5794 [pid 5794] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5794] chdir("./180") = 0 [pid 5794] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5794] setpgid(0, 0) = 0 [pid 5794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5794] write(3, "1000", 4) = 4 [pid 5794] close(3) = 0 [pid 5794] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5794] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5794] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5794] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5794] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5794] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5794] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5794] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5795 attached [pid 5795] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5794] <... clone3 resumed> => {parent_tid=[5795]}, 88) = 5795 [pid 5795] <... rseq resumed>) = 0 [pid 5794] rt_sigprocmask(SIG_SETMASK, [], [pid 5795] set_robust_list(0x7fd868ec09a0, 24 [pid 5794] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5795] <... set_robust_list resumed>) = 0 [pid 5794] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5795] rt_sigprocmask(SIG_SETMASK, [], [pid 5794] <... futex resumed>) = 0 [pid 5795] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5794] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5795] memfd_create("syzkaller", 0) = 3 [pid 5795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5795] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5795] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5795] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5795] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5795] close(3) = 0 [pid 5795] mkdir("./file0", 0777) = 0 [ 134.029860][ T5795] loop0: detected capacity change from 0 to 8192 [ 134.055545][ T5795] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 134.068628][ T5795] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5795] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5795] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5795] chdir("./file0") = 0 [pid 5795] ioctl(4, LOOP_CLR_FD) = 0 [pid 5795] close(4) = 0 [pid 5795] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5794] <... futex resumed>) = 0 [pid 5795] <... futex resumed>) = 1 [pid 5794] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5795] mkdir(".", 0777 [pid 5794] <... futex resumed>) = 0 [pid 5795] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5794] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 134.077917][ T5795] REISERFS (device loop0): using ordered data mode [ 134.084462][ T5795] reiserfs: using flush barriers [ 134.090734][ T5795] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 134.107386][ T5795] REISERFS (device loop0): checking transaction log (loop0) [ 134.115676][ T5795] REISERFS (device loop0): Using r5 hash to sort names [pid 5795] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5795] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5795] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5794] <... futex resumed>) = 0 [pid 5795] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5794] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5795] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5794] <... futex resumed>) = 0 [pid 5795] mkdir(".", 0777 [pid 5794] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5795] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5794] <... futex resumed>) = 0 [pid 5794] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5795] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5794] <... mmap resumed>) = 0x7fd868e7f000 [ 134.139481][ T5795] reiserfs: enabling write barrier flush mode [ 134.147996][ T5795] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5794] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5794] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5795] <... mount resumed>) = 0 [pid 5794] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5797 attached [pid 5795] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5794] <... clone3 resumed> => {parent_tid=[5797]}, 88) = 5797 [pid 5797] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5794] rt_sigprocmask(SIG_SETMASK, [], [pid 5797] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5794] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5797] rt_sigprocmask(SIG_SETMASK, [], [pid 5794] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5797] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5795] <... openat resumed>) = 5 [pid 5794] <... futex resumed>) = 0 [pid 5797] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5795] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5794] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5797] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5795] <... futex resumed>) = 0 [pid 5797] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5795] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5794] <... futex resumed>) = 0 [pid 5797] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5794] exit_group(0 [pid 5797] <... futex resumed>) = ? [pid 5795] <... futex resumed>) = ? [pid 5794] <... exit_group resumed>) = ? [pid 5797] +++ exited with 0 +++ [pid 5795] +++ exited with 0 +++ [pid 5794] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5794, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./180", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./180", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 134.188981][ T5795] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./180/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./180/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./180/binderfs") = 0 umount2("./180/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./180/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./180/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./180/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./180/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./180/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./180") = 0 mkdir("./181", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5798 attached [pid 5798] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5798] chdir("./181") = 0 [pid 5798] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5798] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5798 [pid 5798] <... setpgid resumed>) = 0 [pid 5798] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5798] write(3, "1000", 4) = 4 [pid 5798] close(3) = 0 [pid 5798] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5798] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5798] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5798] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5798] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5798] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5798] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5798] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5799 attached => {parent_tid=[5799]}, 88) = 5799 [pid 5799] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5798] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5798] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5799] <... rseq resumed>) = 0 [pid 5799] set_robust_list(0x7fd868ec09a0, 24 [pid 5798] <... futex resumed>) = 0 [pid 5799] <... set_robust_list resumed>) = 0 [pid 5798] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5799] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5799] memfd_create("syzkaller", 0) = 3 [pid 5799] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5799] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5799] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5799] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5799] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5799] close(3) = 0 [pid 5799] mkdir("./file0", 0777) = 0 [ 134.456832][ T5799] loop0: detected capacity change from 0 to 8192 [ 134.484198][ T5799] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 134.497231][ T5799] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5799] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5799] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5799] chdir("./file0") = 0 [pid 5799] ioctl(4, LOOP_CLR_FD) = 0 [pid 5799] close(4) = 0 [pid 5799] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5798] <... futex resumed>) = 0 [pid 5799] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5798] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5799] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5798] <... futex resumed>) = 0 [pid 5799] mkdir(".", 0777 [pid 5798] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5799] <... mkdir resumed>) = -1 EEXIST (File exists) [ 134.506510][ T5799] REISERFS (device loop0): using ordered data mode [ 134.513056][ T5799] reiserfs: using flush barriers [ 134.519383][ T5799] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 134.535977][ T5799] REISERFS (device loop0): checking transaction log (loop0) [ 134.544177][ T5799] REISERFS (device loop0): Using r5 hash to sort names [pid 5799] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5799] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5799] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5799] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5798] <... futex resumed>) = 0 [pid 5798] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5799] <... futex resumed>) = 0 [pid 5799] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5799] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5798] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 134.569822][ T5799] reiserfs: enabling write barrier flush mode [ 134.578314][ T5799] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5798] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5798] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5799] <... mount resumed>) = 0 [pid 5798] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5798] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5801 attached [pid 5801] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5798] <... clone3 resumed> => {parent_tid=[5801]}, 88) = 5801 [pid 5801] <... rseq resumed>) = 0 [pid 5798] rt_sigprocmask(SIG_SETMASK, [], [pid 5801] set_robust_list(0x7fd868e9f9a0, 24 [pid 5799] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5798] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5801] <... set_robust_list resumed>) = 0 [pid 5798] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5801] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5798] <... futex resumed>) = 0 [pid 5801] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5799] <... openat resumed>) = 5 [pid 5798] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5799] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5799] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5801] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5801] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5798] <... futex resumed>) = 0 [pid 5801] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5798] exit_group(0 [pid 5799] <... futex resumed>) = ? [pid 5799] +++ exited with 0 +++ [pid 5801] <... futex resumed>) = ? [pid 5801] +++ exited with 0 +++ [pid 5798] <... exit_group resumed>) = ? [pid 5798] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5798, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./181", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./181", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 134.621502][ T5799] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./181/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./181/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./181/binderfs") = 0 umount2("./181/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./181/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./181/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./181/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./181/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./181/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./181") = 0 mkdir("./182", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5802 attached , child_tidptr=0x5555565f3690) = 5802 [pid 5802] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5802] chdir("./182") = 0 [pid 5802] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5802] setpgid(0, 0) = 0 [pid 5802] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5802] write(3, "1000", 4) = 4 [pid 5802] close(3) = 0 [pid 5802] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5802] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5802] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5802] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5802] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5802] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5802] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5802] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5803 attached [pid 5803] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5802] <... clone3 resumed> => {parent_tid=[5803]}, 88) = 5803 [pid 5803] <... rseq resumed>) = 0 [pid 5802] rt_sigprocmask(SIG_SETMASK, [], [pid 5803] set_robust_list(0x7fd868ec09a0, 24 [pid 5802] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5803] <... set_robust_list resumed>) = 0 [pid 5802] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5803] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5802] <... futex resumed>) = 0 [pid 5803] memfd_create("syzkaller", 0 [pid 5802] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5803] <... memfd_create resumed>) = 3 [pid 5803] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5803] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5803] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5803] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5803] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5803] close(3) = 0 [pid 5803] mkdir("./file0", 0777) = 0 [ 134.951837][ T5803] loop0: detected capacity change from 0 to 8192 [ 134.968217][ T5803] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 134.981468][ T5803] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 134.990694][ T5803] REISERFS (device loop0): using ordered data mode [ 134.997254][ T5803] reiserfs: using flush barriers [pid 5803] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5803] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5803] chdir("./file0") = 0 [pid 5803] ioctl(4, LOOP_CLR_FD) = 0 [pid 5803] close(4) = 0 [pid 5803] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5802] <... futex resumed>) = 0 [pid 5803] <... futex resumed>) = 1 [pid 5803] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5802] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5802] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5803] <... futex resumed>) = 0 [pid 5803] mkdir(".", 0777) = -1 EEXIST (File exists) [ 135.003720][ T5803] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 135.020125][ T5803] REISERFS (device loop0): checking transaction log (loop0) [ 135.028601][ T5803] REISERFS (device loop0): Using r5 hash to sort names [pid 5803] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5803] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5803] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5802] <... futex resumed>) = 0 [pid 5803] mkdir(".", 0777 [pid 5802] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5803] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5802] <... futex resumed>) = 0 [pid 5803] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5802] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5802] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5802] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5802] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5802] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5805 attached [pid 5805] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5802] <... clone3 resumed> => {parent_tid=[5805]}, 88) = 5805 [pid 5805] <... rseq resumed>) = 0 [pid 5802] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5802] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5805] set_robust_list(0x7fd868e9f9a0, 24 [pid 5803] <... mount resumed>) = 0 [pid 5802] <... futex resumed>) = 0 [pid 5805] <... set_robust_list resumed>) = 0 [pid 5805] rt_sigprocmask(SIG_SETMASK, [], [pid 5803] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5802] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5805] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5803] <... openat resumed>) = 5 [pid 5805] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5803] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5803] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5805] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5805] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5802] <... futex resumed>) = 0 [pid 5805] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5802] exit_group(0 [pid 5805] <... futex resumed>) = ? [pid 5803] <... futex resumed>) = ? [pid 5802] <... exit_group resumed>) = ? [pid 5805] +++ exited with 0 +++ [pid 5803] +++ exited with 0 +++ [pid 5802] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5802, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./182", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./182", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./182/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./182/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./182/binderfs") = 0 [ 135.084684][ T5803] reiserfs: enabling write barrier flush mode [ 135.092624][ T5803] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 135.114767][ T5803] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./182/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./182/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./182/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./182/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./182/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./182/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./182") = 0 mkdir("./183", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5806 attached , child_tidptr=0x5555565f3690) = 5806 [pid 5806] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5806] chdir("./183") = 0 [pid 5806] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5806] setpgid(0, 0) = 0 [pid 5806] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5806] write(3, "1000", 4) = 4 [pid 5806] close(3) = 0 [pid 5806] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5806] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5806] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5806] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5806] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5806] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5806] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5806] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5807 attached => {parent_tid=[5807]}, 88) = 5807 [pid 5806] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5806] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5807] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5806] <... futex resumed>) = 0 [pid 5807] set_robust_list(0x7fd868ec09a0, 24 [pid 5806] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5807] <... set_robust_list resumed>) = 0 [pid 5807] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5807] memfd_create("syzkaller", 0) = 3 [pid 5807] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5807] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5807] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5807] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5807] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5807] close(3) = 0 [pid 5807] mkdir("./file0", 0777) = 0 [ 135.361532][ T5807] loop0: detected capacity change from 0 to 8192 [ 135.387789][ T5807] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 135.400933][ T5807] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5807] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5807] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5807] chdir("./file0") = 0 [pid 5807] ioctl(4, LOOP_CLR_FD) = 0 [pid 5807] close(4) = 0 [pid 5807] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5807] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5806] <... futex resumed>) = 0 [pid 5806] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5807] <... futex resumed>) = 0 [pid 5806] <... futex resumed>) = 1 [pid 5807] mkdir(".", 0777 [pid 5806] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5807] <... mkdir resumed>) = -1 EEXIST (File exists) [ 135.410300][ T5807] REISERFS (device loop0): using ordered data mode [ 135.416994][ T5807] reiserfs: using flush barriers [ 135.423117][ T5807] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 135.440007][ T5807] REISERFS (device loop0): checking transaction log (loop0) [ 135.448452][ T5807] REISERFS (device loop0): Using r5 hash to sort names [pid 5807] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5807] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5807] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5806] <... futex resumed>) = 0 [pid 5807] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5806] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5807] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5806] <... futex resumed>) = 0 [pid 5807] mkdir(".", 0777 [pid 5806] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5807] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5806] <... futex resumed>) = 0 [pid 5806] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5806] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5807] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5806] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 135.490356][ T5807] reiserfs: enabling write barrier flush mode [ 135.498850][ T5807] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5806] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5809 attached [pid 5809] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5806] <... clone3 resumed> => {parent_tid=[5809]}, 88) = 5809 [pid 5809] <... rseq resumed>) = 0 [pid 5807] <... mount resumed>) = 0 [pid 5806] rt_sigprocmask(SIG_SETMASK, [], [pid 5809] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5806] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5809] rt_sigprocmask(SIG_SETMASK, [], [pid 5807] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5807] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5806] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5809] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5806] <... futex resumed>) = 0 [pid 5809] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5806] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5807] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5809] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5809] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5806] <... futex resumed>) = 0 [pid 5809] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5806] exit_group(0 [pid 5807] <... futex resumed>) = ? [pid 5807] +++ exited with 0 +++ [pid 5809] <... futex resumed>) = ? [pid 5806] <... exit_group resumed>) = ? [pid 5809] +++ exited with 0 +++ [pid 5806] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5806, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./183", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./183", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./183/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./183/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./183/binderfs") = 0 [ 135.542799][ T5807] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./183/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./183/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./183/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./183/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./183/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./183/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./183") = 0 mkdir("./184", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5810 attached , child_tidptr=0x5555565f3690) = 5810 [pid 5810] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5810] chdir("./184") = 0 [pid 5810] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5810] setpgid(0, 0) = 0 [pid 5810] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5810] write(3, "1000", 4) = 4 [pid 5810] close(3) = 0 [pid 5810] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5810] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5810] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5810] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5810] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5810] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5810] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5810] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5811 attached [pid 5811] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5810] <... clone3 resumed> => {parent_tid=[5811]}, 88) = 5811 [pid 5811] <... rseq resumed>) = 0 [pid 5810] rt_sigprocmask(SIG_SETMASK, [], [pid 5811] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5810] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5810] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5811] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5810] <... futex resumed>) = 0 [pid 5811] memfd_create("syzkaller", 0 [pid 5810] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5811] <... memfd_create resumed>) = 3 [pid 5811] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5811] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5811] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5811] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5811] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5811] close(3) = 0 [pid 5811] mkdir("./file0", 0777) = 0 [ 135.804904][ T5811] loop0: detected capacity change from 0 to 8192 [ 135.830153][ T5811] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 135.843146][ T5811] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5811] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5811] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5811] chdir("./file0") = 0 [pid 5811] ioctl(4, LOOP_CLR_FD) = 0 [pid 5811] close(4) = 0 [pid 5811] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5811] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5810] <... futex resumed>) = 0 [pid 5810] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5811] <... futex resumed>) = 0 [pid 5810] <... futex resumed>) = 1 [pid 5811] mkdir(".", 0777 [pid 5810] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5811] <... mkdir resumed>) = -1 EEXIST (File exists) [ 135.852531][ T5811] REISERFS (device loop0): using ordered data mode [ 135.859087][ T5811] reiserfs: using flush barriers [ 135.866235][ T5811] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 135.883060][ T5811] REISERFS (device loop0): checking transaction log (loop0) [ 135.891774][ T5811] REISERFS (device loop0): Using r5 hash to sort names [pid 5811] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5811] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5811] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5810] <... futex resumed>) = 0 [pid 5811] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5810] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5811] mkdir(".", 0777 [pid 5810] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5811] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5810] <... futex resumed>) = 0 [pid 5811] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5810] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5810] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5810] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5810] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5813 attached [pid 5813] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5810] <... clone3 resumed> => {parent_tid=[5813]}, 88) = 5813 [pid 5813] <... rseq resumed>) = 0 [pid 5810] rt_sigprocmask(SIG_SETMASK, [], [pid 5813] set_robust_list(0x7fd868e9f9a0, 24 [pid 5810] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5813] <... set_robust_list resumed>) = 0 [pid 5810] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] rt_sigprocmask(SIG_SETMASK, [], [pid 5810] <... futex resumed>) = 0 [pid 5813] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 135.927434][ T5811] reiserfs: enabling write barrier flush mode [ 135.935541][ T5811] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5810] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5813] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5811] <... mount resumed>) = 0 [pid 5813] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5811] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5813] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5811] <... openat resumed>) = 5 [pid 5813] <... futex resumed>) = 1 [pid 5810] <... futex resumed>) = 0 [pid 5811] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5813] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5811] <... futex resumed>) = 0 [pid 5811] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5810] exit_group(0 [pid 5813] <... futex resumed>) = ? [pid 5811] <... futex resumed>) = ? [pid 5810] <... exit_group resumed>) = ? [pid 5813] +++ exited with 0 +++ [pid 5811] +++ exited with 0 +++ [pid 5810] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5810, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./184", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./184", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./184/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./184/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./184/binderfs") = 0 umount2("./184/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./184/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 135.969701][ T5811] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./184/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./184/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./184/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./184/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./184") = 0 mkdir("./185", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5814 attached [pid 5814] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5814] chdir("./185") = 0 [pid 5814] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5814] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5814 [pid 5814] <... setpgid resumed>) = 0 [pid 5814] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5814] write(3, "1000", 4) = 4 [pid 5814] close(3) = 0 [pid 5814] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5814] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5814] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5814] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5814] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5814] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5814] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5814] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5815 attached => {parent_tid=[5815]}, 88) = 5815 [pid 5814] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5814] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5814] <... futex resumed>) = 0 [pid 5815] set_robust_list(0x7fd868ec09a0, 24 [pid 5814] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5815] <... set_robust_list resumed>) = 0 [pid 5815] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5815] memfd_create("syzkaller", 0) = 3 [pid 5815] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5815] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5815] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5815] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5815] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5815] close(3) = 0 [pid 5815] mkdir("./file0", 0777) = 0 [ 136.222406][ T5815] loop0: detected capacity change from 0 to 8192 [ 136.236695][ T5815] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 136.249863][ T5815] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 136.259138][ T5815] REISERFS (device loop0): using ordered data mode [ 136.265692][ T5815] reiserfs: using flush barriers [pid 5815] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5815] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5815] chdir("./file0") = 0 [pid 5815] ioctl(4, LOOP_CLR_FD) = 0 [pid 5815] close(4) = 0 [pid 5815] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5814] <... futex resumed>) = 0 [pid 5815] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5814] <... futex resumed>) = 0 [pid 5815] mkdir(".", 0777 [pid 5814] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5815] <... mkdir resumed>) = -1 EEXIST (File exists) [ 136.272048][ T5815] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 136.288418][ T5815] REISERFS (device loop0): checking transaction log (loop0) [ 136.296803][ T5815] REISERFS (device loop0): Using r5 hash to sort names [pid 5815] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5815] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5815] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5814] <... futex resumed>) = 0 [pid 5815] <... futex resumed>) = 1 [pid 5814] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] mkdir(".", 0777 [pid 5814] <... futex resumed>) = 0 [pid 5815] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5814] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5815] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5814] <... futex resumed>) = 0 [pid 5814] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5814] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5815] <... mount resumed>) = 0 [pid 5815] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5814] <... mprotect resumed>) = 0 [pid 5815] <... openat resumed>) = 5 [pid 5815] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5814] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5815] <... futex resumed>) = 0 [pid 5814] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5815] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5817 attached [pid 5817] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5817] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5817] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5817] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] <... clone3 resumed> => {parent_tid=[5817]}, 88) = 5817 [pid 5814] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5814] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5817] <... futex resumed>) = 0 [pid 5814] <... futex resumed>) = 1 [pid 5817] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5814] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5817] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5817] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5814] <... futex resumed>) = 0 [ 136.324409][ T5815] reiserfs: enabling write barrier flush mode [ 136.333284][ T5815] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 136.358380][ T5815] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5817] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5814] exit_group(0) = ? [pid 5817] <... futex resumed>) = ? [pid 5815] <... futex resumed>) = ? [pid 5817] +++ exited with 0 +++ [pid 5815] +++ exited with 0 +++ [pid 5814] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5814, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./185", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./185", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./185/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./185/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./185/binderfs") = 0 umount2("./185/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./185/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./185/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./185/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./185/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./185/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./185") = 0 mkdir("./186", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5818 attached [pid 5818] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5818] chdir("./186") = 0 [pid 5818] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5818] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5818 [pid 5818] <... setpgid resumed>) = 0 [pid 5818] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5818] write(3, "1000", 4) = 4 [pid 5818] close(3) = 0 [pid 5818] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5818] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5818] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5818] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5818] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5818] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5818] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5818] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5819 attached [pid 5819] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5818] <... clone3 resumed> => {parent_tid=[5819]}, 88) = 5819 [pid 5819] <... rseq resumed>) = 0 [pid 5818] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5818] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5818] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5819] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5819] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5819] memfd_create("syzkaller", 0) = 3 [pid 5819] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5819] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5819] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5819] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5819] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5819] close(3) = 0 [pid 5819] mkdir("./file0", 0777) = 0 [ 136.655665][ T5819] loop0: detected capacity change from 0 to 8192 [ 136.665531][ T5819] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 136.678636][ T5819] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 136.687965][ T5819] REISERFS (device loop0): using ordered data mode [ 136.694498][ T5819] reiserfs: using flush barriers [pid 5819] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5819] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5819] chdir("./file0") = 0 [pid 5819] ioctl(4, LOOP_CLR_FD) = 0 [pid 5819] close(4) = 0 [pid 5819] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5818] <... futex resumed>) = 0 [pid 5819] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5818] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5818] <... futex resumed>) = 0 [pid 5819] mkdir(".", 0777 [pid 5818] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5819] <... mkdir resumed>) = -1 EEXIST (File exists) [ 136.700855][ T5819] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 136.717446][ T5819] REISERFS (device loop0): checking transaction log (loop0) [ 136.725751][ T5819] REISERFS (device loop0): Using r5 hash to sort names [ 136.750255][ T5819] reiserfs: enabling write barrier flush mode [pid 5819] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5819] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5819] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5818] <... futex resumed>) = 0 [pid 5819] mkdir(".", 0777 [pid 5818] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5819] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5818] <... futex resumed>) = 0 [pid 5819] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5818] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5818] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5818] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5818] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5819] <... mount resumed>) = 0 [pid 5818] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5818] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5821 attached => {parent_tid=[5821]}, 88) = 5821 [pid 5821] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5818] rt_sigprocmask(SIG_SETMASK, [], [pid 5821] set_robust_list(0x7fd868e9f9a0, 24 [pid 5819] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5818] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5821] <... set_robust_list resumed>) = 0 [pid 5818] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5821] rt_sigprocmask(SIG_SETMASK, [], [pid 5818] <... futex resumed>) = 0 [pid 5821] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5818] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5821] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5821] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5818] <... futex resumed>) = 0 [pid 5821] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5819] <... openat resumed>) = 5 [pid 5819] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5818] exit_group(0 [pid 5819] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5821] <... futex resumed>) = ? [pid 5819] <... futex resumed>) = ? [pid 5818] <... exit_group resumed>) = ? [pid 5821] +++ exited with 0 +++ [pid 5819] +++ exited with 0 +++ [pid 5818] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5818, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./186", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./186", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 136.759197][ T5819] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 136.790262][ T5819] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./186/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./186/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./186/binderfs") = 0 umount2("./186/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./186/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./186/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./186/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./186/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./186/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./186") = 0 mkdir("./187", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5822 attached , child_tidptr=0x5555565f3690) = 5822 [pid 5822] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5822] chdir("./187") = 0 [pid 5822] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5822] setpgid(0, 0) = 0 [pid 5822] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5822] write(3, "1000", 4) = 4 [pid 5822] close(3) = 0 [pid 5822] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5822] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5822] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5822] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5822] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5822] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5822] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5822] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5823 attached [pid 5823] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5822] <... clone3 resumed> => {parent_tid=[5823]}, 88) = 5823 [pid 5823] <... rseq resumed>) = 0 [pid 5822] rt_sigprocmask(SIG_SETMASK, [], [pid 5823] set_robust_list(0x7fd868ec09a0, 24 [pid 5822] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5823] <... set_robust_list resumed>) = 0 [pid 5823] rt_sigprocmask(SIG_SETMASK, [], [pid 5822] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5822] <... futex resumed>) = 0 [pid 5823] memfd_create("syzkaller", 0 [pid 5822] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5823] <... memfd_create resumed>) = 3 [pid 5823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5823] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5823] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5823] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5823] close(3) = 0 [pid 5823] mkdir("./file0", 0777) = 0 [ 137.049742][ T5823] loop0: detected capacity change from 0 to 8192 [ 137.065177][ T5823] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 137.078291][ T5823] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 137.087689][ T5823] REISERFS (device loop0): using ordered data mode [ 137.094268][ T5823] reiserfs: using flush barriers [pid 5823] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5823] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5823] chdir("./file0") = 0 [pid 5823] ioctl(4, LOOP_CLR_FD) = 0 [pid 5823] close(4) = 0 [pid 5823] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5823] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5822] <... futex resumed>) = 0 [pid 5822] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] <... futex resumed>) = 0 [pid 5822] <... futex resumed>) = 1 [pid 5823] mkdir(".", 0777 [pid 5822] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5823] <... mkdir resumed>) = -1 EEXIST (File exists) [ 137.100563][ T5823] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 137.117259][ T5823] REISERFS (device loop0): checking transaction log (loop0) [ 137.125700][ T5823] REISERFS (device loop0): Using r5 hash to sort names [pid 5823] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5823] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5823] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5822] <... futex resumed>) = 0 [pid 5823] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5822] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] mkdir(".", 0777 [pid 5822] <... futex resumed>) = 0 [pid 5823] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5822] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5822] <... futex resumed>) = 0 [pid 5822] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5822] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 137.167419][ T5823] reiserfs: enabling write barrier flush mode [ 137.175544][ T5823] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5822] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5822] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5825 attached [pid 5825] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5822] <... clone3 resumed> => {parent_tid=[5825]}, 88) = 5825 [pid 5825] <... rseq resumed>) = 0 [pid 5822] rt_sigprocmask(SIG_SETMASK, [], [pid 5825] set_robust_list(0x7fd868e9f9a0, 24 [pid 5822] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5825] <... set_robust_list resumed>) = 0 [pid 5823] <... mount resumed>) = 0 [pid 5822] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5825] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5822] <... futex resumed>) = 0 [pid 5825] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5822] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5825] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5823] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5825] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5822] <... futex resumed>) = 0 [pid 5825] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5823] <... openat resumed>) = 5 [pid 5823] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5822] exit_group(0 [pid 5825] <... futex resumed>) = ? [pid 5823] <... futex resumed>) = ? [pid 5822] <... exit_group resumed>) = ? [pid 5825] +++ exited with 0 +++ [pid 5823] +++ exited with 0 +++ [pid 5822] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5822, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./187", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./187", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./187/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 137.208997][ T5823] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./187/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./187/binderfs") = 0 umount2("./187/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./187/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./187/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./187/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./187/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./187/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./187") = 0 mkdir("./188", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5826 attached [pid 5826] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5826] chdir("./188") = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5826 [pid 5826] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5826] setpgid(0, 0) = 0 [pid 5826] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "1000", 4) = 4 [pid 5826] close(3) = 0 [pid 5826] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5826] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5826] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5826] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5826] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5826] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5826] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5826] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5827 attached [pid 5827] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5826] <... clone3 resumed> => {parent_tid=[5827]}, 88) = 5827 [pid 5827] <... rseq resumed>) = 0 [pid 5826] rt_sigprocmask(SIG_SETMASK, [], [pid 5827] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5826] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5827] rt_sigprocmask(SIG_SETMASK, [], [pid 5826] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5827] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5826] <... futex resumed>) = 0 [pid 5827] memfd_create("syzkaller", 0 [pid 5826] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5827] <... memfd_create resumed>) = 3 [pid 5827] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5827] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5827] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5827] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5827] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5827] close(3) = 0 [pid 5827] mkdir("./file0", 0777) = 0 [ 137.549921][ T5827] loop0: detected capacity change from 0 to 8192 [ 137.576268][ T5827] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 137.589433][ T5827] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5827] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5827] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5827] chdir("./file0") = 0 [pid 5827] ioctl(4, LOOP_CLR_FD) = 0 [ 137.598799][ T5827] REISERFS (device loop0): using ordered data mode [ 137.605522][ T5827] reiserfs: using flush barriers [ 137.612322][ T5827] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 137.629186][ T5827] REISERFS (device loop0): checking transaction log (loop0) [ 137.638293][ T5827] REISERFS (device loop0): Using r5 hash to sort names [pid 5827] close(4) = 0 [pid 5827] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5827] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5826] <... futex resumed>) = 0 [pid 5826] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5827] <... futex resumed>) = 0 [pid 5827] mkdir(".", 0777 [pid 5826] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5827] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5827] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5827] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5827] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5826] <... futex resumed>) = 0 [pid 5826] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5826] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5827] <... futex resumed>) = 1 [pid 5826] <... futex resumed>) = 0 [pid 5826] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5827] mkdir(".", 0777 [pid 5826] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5827] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5826] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5827] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5826] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5826] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5829]}, 88) = 5829 [pid 5826] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5826] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 5829 attached [pid 5829] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5826] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5829] <... rseq resumed>) = 0 [pid 5829] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5829] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 137.703261][ T5827] reiserfs: enabling write barrier flush mode [ 137.727562][ T5827] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5829] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5829] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5826] <... futex resumed>) = 0 [pid 5829] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5827] <... mount resumed>) = 0 [pid 5827] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5827] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5826] exit_group(0 [pid 5827] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5829] <... futex resumed>) = ? [pid 5826] <... exit_group resumed>) = ? [pid 5829] +++ exited with 0 +++ [pid 5827] +++ exited with 0 +++ [pid 5826] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5826, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./188", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./188", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./188/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./188/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 137.775686][ T5827] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./188/binderfs") = 0 umount2("./188/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./188/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./188/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./188/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./188/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./188/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./188") = 0 mkdir("./189", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5830 attached , child_tidptr=0x5555565f3690) = 5830 [pid 5830] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5830] chdir("./189") = 0 [pid 5830] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5830] setpgid(0, 0) = 0 [pid 5830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5830] write(3, "1000", 4) = 4 [pid 5830] close(3) = 0 [pid 5830] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5830] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5830] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5830] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5830] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5830] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5830] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5830] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5831 attached [pid 5831] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5831] set_robust_list(0x7fd868ec09a0, 24 [pid 5830] <... clone3 resumed> => {parent_tid=[5831]}, 88) = 5831 [pid 5831] <... set_robust_list resumed>) = 0 [pid 5830] rt_sigprocmask(SIG_SETMASK, [], [pid 5831] rt_sigprocmask(SIG_SETMASK, [], [pid 5830] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5831] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5831] memfd_create("syzkaller", 0 [pid 5830] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5830] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5831] <... memfd_create resumed>) = 3 [pid 5831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5831] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5831] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5831] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5831] close(3) = 0 [pid 5831] mkdir("./file0", 0777) = 0 [ 138.060139][ T5831] loop0: detected capacity change from 0 to 8192 [ 138.085561][ T5831] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 138.098647][ T5831] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5831] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5831] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5831] chdir("./file0") = 0 [pid 5831] ioctl(4, LOOP_CLR_FD) = 0 [pid 5831] close(4) = 0 [pid 5831] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5830] <... futex resumed>) = 0 [pid 5830] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5831] mkdir(".", 0777 [pid 5830] <... futex resumed>) = 0 [ 138.107978][ T5831] REISERFS (device loop0): using ordered data mode [ 138.114519][ T5831] reiserfs: using flush barriers [ 138.120624][ T5831] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 138.137296][ T5831] REISERFS (device loop0): checking transaction log (loop0) [ 138.145451][ T5831] REISERFS (device loop0): Using r5 hash to sort names [pid 5830] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5831] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5831] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5831] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5831] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... futex resumed>) = 0 [pid 5831] <... futex resumed>) = 1 [pid 5830] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5831] mkdir(".", 0777 [pid 5830] <... futex resumed>) = 0 [pid 5831] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5830] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5831] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 138.168988][ T5831] reiserfs: enabling write barrier flush mode [ 138.177975][ T5831] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5830] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5830] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5830] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5831] <... mount resumed>) = 0 [pid 5830] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5830] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5833 attached [pid 5831] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5830] <... clone3 resumed> => {parent_tid=[5833]}, 88) = 5833 [pid 5833] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5830] rt_sigprocmask(SIG_SETMASK, [], [pid 5833] set_robust_list(0x7fd868e9f9a0, 24 [pid 5830] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5833] <... set_robust_list resumed>) = 0 [pid 5830] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] rt_sigprocmask(SIG_SETMASK, [], [pid 5830] <... futex resumed>) = 0 [pid 5833] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5831] <... openat resumed>) = 5 [pid 5830] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5833] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5831] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5833] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5833] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5831] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5833] <... futex resumed>) = 1 [pid 5830] <... futex resumed>) = 0 [pid 5833] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5830] exit_group(0) = ? [pid 5833] <... futex resumed>) = ? [pid 5831] <... futex resumed>) = ? [pid 5831] +++ exited with 0 +++ [pid 5833] +++ exited with 0 +++ [pid 5830] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5830, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./189", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./189", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 138.216522][ T5831] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./189/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./189/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./189/binderfs") = 0 umount2("./189/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./189/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./189/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./189/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./189/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./189/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./189") = 0 mkdir("./190", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5834 attached , child_tidptr=0x5555565f3690) = 5834 [pid 5834] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5834] chdir("./190") = 0 [pid 5834] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5834] setpgid(0, 0) = 0 [pid 5834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5834] write(3, "1000", 4) = 4 [pid 5834] close(3) = 0 [pid 5834] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5834] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5834] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5834] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5834] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5834] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5834] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5834] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5835 attached [pid 5835] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5834] <... clone3 resumed> => {parent_tid=[5835]}, 88) = 5835 [pid 5835] set_robust_list(0x7fd868ec09a0, 24 [pid 5834] rt_sigprocmask(SIG_SETMASK, [], [pid 5835] <... set_robust_list resumed>) = 0 [pid 5834] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5835] rt_sigprocmask(SIG_SETMASK, [], [pid 5834] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5834] <... futex resumed>) = 0 [pid 5835] memfd_create("syzkaller", 0 [pid 5834] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5835] <... memfd_create resumed>) = 3 [pid 5835] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5835] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5835] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5835] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5835] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5835] close(3) = 0 [pid 5835] mkdir("./file0", 0777) = 0 [ 138.524208][ T5835] loop0: detected capacity change from 0 to 8192 [ 138.539835][ T5835] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 138.553070][ T5835] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 138.562352][ T5835] REISERFS (device loop0): using ordered data mode [ 138.568856][ T5835] reiserfs: using flush barriers [pid 5835] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5835] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5835] chdir("./file0") = 0 [pid 5835] ioctl(4, LOOP_CLR_FD) = 0 [pid 5835] close(4) = 0 [pid 5835] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5835] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] <... futex resumed>) = 0 [pid 5834] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... futex resumed>) = 0 [pid 5835] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5835] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5834] <... futex resumed>) = 1 [ 138.575148][ T5835] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 138.591700][ T5835] REISERFS (device loop0): checking transaction log (loop0) [ 138.600032][ T5835] REISERFS (device loop0): Using r5 hash to sort names [ 138.614507][ T5835] reiserfs: enabling write barrier flush mode [pid 5834] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5835] <... mount resumed>) = 0 [pid 5835] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5835] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] <... futex resumed>) = 0 [pid 5835] <... futex resumed>) = 1 [pid 5834] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] mkdir(".", 0777 [pid 5834] <... futex resumed>) = 0 [pid 5834] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5834] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5834] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5834] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5835] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5835] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5834] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5837 attached [pid 5837] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5837] set_robust_list(0x7fd868e9f9a0, 24 [pid 5834] <... clone3 resumed> => {parent_tid=[5837]}, 88) = 5837 [pid 5837] <... set_robust_list resumed>) = 0 [pid 5834] rt_sigprocmask(SIG_SETMASK, [], [pid 5837] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5834] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5837] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] <... futex resumed>) = 0 [pid 5837] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5834] <... futex resumed>) = 1 [pid 5834] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5837] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5835] <... mount resumed>) = 0 [pid 5837] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5837] <... futex resumed>) = 1 [pid 5835] <... openat resumed>) = 5 [pid 5834] <... futex resumed>) = 0 [pid 5837] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5835] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5835] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] exit_group(0 [pid 5837] <... futex resumed>) = ? [pid 5837] +++ exited with 0 +++ [pid 5835] <... futex resumed>) = ? [pid 5834] <... exit_group resumed>) = ? [pid 5835] +++ exited with 0 +++ [pid 5834] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5834, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./190", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./190", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./190/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 138.623761][ T5835] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 138.660248][ T5835] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./190/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./190/binderfs") = 0 umount2("./190/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./190/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./190/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./190/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./190/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./190/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./190") = 0 mkdir("./191", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5838 attached [pid 5838] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5838] chdir("./191") = 0 [pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5838] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5838 [pid 5838] <... setpgid resumed>) = 0 [pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5838] write(3, "1000", 4) = 4 [pid 5838] close(3) = 0 [pid 5838] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5838] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5838] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5838] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5838] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5838] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5838] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5838] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5839 attached => {parent_tid=[5839]}, 88) = 5839 [pid 5839] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5839] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5839] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5838] rt_sigprocmask(SIG_SETMASK, [], [pid 5839] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5838] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5838] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... futex resumed>) = 0 [pid 5839] memfd_create("syzkaller", 0 [pid 5838] <... futex resumed>) = 1 [pid 5839] <... memfd_create resumed>) = 3 [pid 5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5838] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5839] <... mmap resumed>) = 0x7fd860aa0000 [pid 5839] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5839] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5839] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5839] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5839] close(3) = 0 [pid 5839] mkdir("./file0", 0777) = 0 [ 138.917397][ T5839] loop0: detected capacity change from 0 to 8192 [ 138.927088][ T5839] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 138.940066][ T5839] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 138.949368][ T5839] REISERFS (device loop0): using ordered data mode [ 138.956033][ T5839] reiserfs: using flush barriers [pid 5839] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5839] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5839] chdir("./file0") = 0 [pid 5839] ioctl(4, LOOP_CLR_FD) = 0 [pid 5839] close(4) = 0 [pid 5839] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] <... futex resumed>) = 0 [pid 5839] <... futex resumed>) = 1 [pid 5838] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] mkdir(".", 0777 [pid 5838] <... futex resumed>) = 0 [pid 5839] <... mkdir resumed>) = -1 EEXIST (File exists) [ 138.962674][ T5839] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 138.979075][ T5839] REISERFS (device loop0): checking transaction log (loop0) [ 138.987525][ T5839] REISERFS (device loop0): Using r5 hash to sort names [pid 5839] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5838] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5839] <... mount resumed>) = 0 [pid 5839] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5839] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] <... futex resumed>) = 0 [pid 5839] <... futex resumed>) = 1 [pid 5838] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] mkdir(".", 0777 [pid 5838] <... futex resumed>) = 0 [pid 5839] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5838] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5838] <... futex resumed>) = 0 [pid 5838] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5838] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5838] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5839] <... mount resumed>) = 0 [pid 5838] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5839] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5838] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5839] <... openat resumed>) = 5 [pid 5839] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5841 attached [pid 5838] <... clone3 resumed> => {parent_tid=[5841]}, 88) = 5841 [pid 5841] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5839] <... futex resumed>) = 0 [pid 5838] rt_sigprocmask(SIG_SETMASK, [], [pid 5841] <... rseq resumed>) = 0 [pid 5839] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5838] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5841] set_robust_list(0x7fd868e9f9a0, 24 [pid 5838] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5838] <... futex resumed>) = 0 [pid 5841] rt_sigprocmask(SIG_SETMASK, [], [pid 5838] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5841] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5841] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5841] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5838] <... futex resumed>) = 0 [pid 5841] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5838] exit_group(0 [pid 5839] <... futex resumed>) = ? [pid 5841] <... futex resumed>) = ? [pid 5839] +++ exited with 0 +++ [pid 5838] <... exit_group resumed>) = ? [pid 5841] +++ exited with 0 +++ [pid 5838] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5838, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./191", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./191", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 139.013286][ T5839] reiserfs: enabling write barrier flush mode [ 139.023018][ T5839] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 139.044620][ T5839] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./191/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./191/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./191/binderfs") = 0 umount2("./191/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./191/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./191/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./191/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./191/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./191/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./191") = 0 mkdir("./192", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5842 attached , child_tidptr=0x5555565f3690) = 5842 [pid 5842] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5842] chdir("./192") = 0 [pid 5842] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5842] setpgid(0, 0) = 0 [pid 5842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5842] write(3, "1000", 4) = 4 [pid 5842] close(3) = 0 [pid 5842] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5842] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5842] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5842] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5842] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5842] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5842] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5842] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5843 attached => {parent_tid=[5843]}, 88) = 5843 [pid 5843] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5843] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5843] rt_sigprocmask(SIG_SETMASK, [], [pid 5842] rt_sigprocmask(SIG_SETMASK, [], [pid 5843] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5842] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5843] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5842] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5842] <... futex resumed>) = 0 [pid 5843] memfd_create("syzkaller", 0 [pid 5842] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5843] <... memfd_create resumed>) = 3 [pid 5843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5843] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5843] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5843] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5843] close(3) = 0 [pid 5843] mkdir("./file0", 0777) = 0 [ 139.392110][ T5843] loop0: detected capacity change from 0 to 8192 [ 139.407356][ T5843] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 139.420407][ T5843] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 139.429726][ T5843] REISERFS (device loop0): using ordered data mode [ 139.436302][ T5843] reiserfs: using flush barriers [pid 5843] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5843] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5843] chdir("./file0") = 0 [pid 5843] ioctl(4, LOOP_CLR_FD) = 0 [pid 5843] close(4) = 0 [pid 5843] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5842] <... futex resumed>) = 0 [ 139.442617][ T5843] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 139.459006][ T5843] REISERFS (device loop0): checking transaction log (loop0) [ 139.467409][ T5843] REISERFS (device loop0): Using r5 hash to sort names [pid 5843] <... futex resumed>) = 1 [pid 5842] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] mkdir(".", 0777 [pid 5842] <... futex resumed>) = 0 [pid 5843] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5842] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5843] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5843] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5843] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5842] <... futex resumed>) = 0 [pid 5843] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5842] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] mkdir(".", 0777 [pid 5842] <... futex resumed>) = 0 [pid 5843] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5842] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5842] <... futex resumed>) = 0 [pid 5842] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5842] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 139.495050][ T5843] reiserfs: enabling write barrier flush mode [ 139.503821][ T5843] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5842] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5842] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5843] <... mount resumed>) = 0 [pid 5843] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5843] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5845 attached ) = 0 [pid 5845] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5843] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5842] <... clone3 resumed> => {parent_tid=[5845]}, 88) = 5845 [pid 5845] <... rseq resumed>) = 0 [pid 5842] rt_sigprocmask(SIG_SETMASK, [], [pid 5845] set_robust_list(0x7fd868e9f9a0, 24 [pid 5842] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5842] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5842] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5845] <... set_robust_list resumed>) = 0 [pid 5845] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5845] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5845] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5842] <... futex resumed>) = 0 [pid 5845] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5842] exit_group(0 [pid 5845] <... futex resumed>) = ? [pid 5843] <... futex resumed>) = ? [pid 5842] <... exit_group resumed>) = ? [pid 5845] +++ exited with 0 +++ [pid 5843] +++ exited with 0 +++ [pid 5842] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5842, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./192", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./192", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./192/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./192/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./192/binderfs") = 0 [ 139.545933][ T5843] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./192/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./192/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./192/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./192/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./192/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./192/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./192") = 0 mkdir("./193", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5846 attached [pid 5846] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5846] chdir("./193") = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5846 [pid 5846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5846] setpgid(0, 0) = 0 [pid 5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5846] write(3, "1000", 4) = 4 [pid 5846] close(3) = 0 [pid 5846] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5846] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5846] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5846] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5846] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5846] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5846] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5847 attached [pid 5847] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5846] <... clone3 resumed> => {parent_tid=[5847]}, 88) = 5847 [pid 5847] <... rseq resumed>) = 0 [pid 5846] rt_sigprocmask(SIG_SETMASK, [], [pid 5847] set_robust_list(0x7fd868ec09a0, 24 [pid 5846] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5847] <... set_robust_list resumed>) = 0 [pid 5846] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5847] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5846] <... futex resumed>) = 0 [pid 5847] memfd_create("syzkaller", 0 [pid 5846] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5847] <... memfd_create resumed>) = 3 [pid 5847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5847] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5847] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5847] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5847] close(3) = 0 [pid 5847] mkdir("./file0", 0777) = 0 [ 139.803732][ T5847] loop0: detected capacity change from 0 to 8192 [ 139.819759][ T5847] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 139.832874][ T5847] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 139.842178][ T5847] REISERFS (device loop0): using ordered data mode [ 139.848710][ T5847] reiserfs: using flush barriers [pid 5847] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5847] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5847] chdir("./file0") = 0 [pid 5847] ioctl(4, LOOP_CLR_FD) = 0 [pid 5847] close(4) = 0 [pid 5847] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5846] <... futex resumed>) = 0 [pid 5847] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5846] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5847] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5846] <... futex resumed>) = 0 [pid 5847] mkdir(".", 0777 [pid 5846] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5847] <... mkdir resumed>) = -1 EEXIST (File exists) [ 139.854914][ T5847] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 139.871497][ T5847] REISERFS (device loop0): checking transaction log (loop0) [ 139.879782][ T5847] REISERFS (device loop0): Using r5 hash to sort names [pid 5847] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5847] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5847] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5847] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5846] <... futex resumed>) = 0 [pid 5846] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5847] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5847] mkdir(".", 0777 [pid 5846] <... futex resumed>) = 0 [pid 5847] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5847] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5846] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5847] <... mount resumed>) = 0 [pid 5846] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5847] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5846] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5847] <... openat resumed>) = 5 [pid 5847] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5846] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5847] <... futex resumed>) = 0 [pid 5846] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5847] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5849 attached [pid 5849] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5846] <... clone3 resumed> => {parent_tid=[5849]}, 88) = 5849 [pid 5849] <... rseq resumed>) = 0 [pid 5849] set_robust_list(0x7fd868e9f9a0, 24 [pid 5846] rt_sigprocmask(SIG_SETMASK, [], [pid 5849] <... set_robust_list resumed>) = 0 [pid 5846] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5849] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5846] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5849] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5846] <... futex resumed>) = 0 [pid 5846] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5849] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5849] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5849] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5846] <... futex resumed>) = 0 [pid 5846] exit_group(0 [pid 5849] <... futex resumed>) = ? [pid 5847] <... futex resumed>) = ? [pid 5846] <... exit_group resumed>) = ? [pid 5849] +++ exited with 0 +++ [pid 5847] +++ exited with 0 +++ [pid 5846] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5846, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./193", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./193", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./193/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./193/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./193/binderfs") = 0 [ 139.912462][ T5847] reiserfs: enabling write barrier flush mode [ 139.921584][ T5847] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 139.942404][ T5847] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./193/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./193/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./193/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./193/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./193/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./193/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./193") = 0 mkdir("./194", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5850 attached [pid 5850] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5850] chdir("./194") = 0 [pid 5850] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5850] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5850 [pid 5850] <... setpgid resumed>) = 0 [pid 5850] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5850] write(3, "1000", 4) = 4 [pid 5850] close(3) = 0 [pid 5850] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5850] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5850] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5850] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5850] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5850] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5850] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5850] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5851 attached [pid 5851] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5850] <... clone3 resumed> => {parent_tid=[5851]}, 88) = 5851 [pid 5851] <... rseq resumed>) = 0 [pid 5850] rt_sigprocmask(SIG_SETMASK, [], [pid 5851] set_robust_list(0x7fd868ec09a0, 24 [pid 5850] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5851] <... set_robust_list resumed>) = 0 [pid 5850] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] rt_sigprocmask(SIG_SETMASK, [], [pid 5850] <... futex resumed>) = 0 [pid 5851] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5850] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5851] memfd_create("syzkaller", 0) = 3 [pid 5851] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5851] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5851] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5851] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5851] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5851] close(3) = 0 [pid 5851] mkdir("./file0", 0777) = 0 [ 140.185457][ T5851] loop0: detected capacity change from 0 to 8192 [ 140.202620][ T5851] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 140.215638][ T5851] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 140.224887][ T5851] REISERFS (device loop0): using ordered data mode [pid 5851] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5851] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5851] chdir("./file0") = 0 [pid 5851] ioctl(4, LOOP_CLR_FD) = 0 [ 140.231462][ T5851] reiserfs: using flush barriers [ 140.237581][ T5851] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 140.254001][ T5851] REISERFS (device loop0): checking transaction log (loop0) [ 140.262323][ T5851] REISERFS (device loop0): Using r5 hash to sort names [pid 5851] close(4) = 0 [pid 5851] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5850] <... futex resumed>) = 0 [pid 5850] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] <... futex resumed>) = 0 [pid 5850] <... futex resumed>) = 1 [pid 5851] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5850] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5851] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5851] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5851] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5850] <... futex resumed>) = 0 [pid 5850] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] mkdir(".", 0777 [pid 5850] <... futex resumed>) = 0 [pid 5850] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5850] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5850] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5851] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5851] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5850] <... mprotect resumed>) = 0 [pid 5850] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5850] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5853 attached [pid 5853] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5853] set_robust_list(0x7fd868e9f9a0, 24 [pid 5850] <... clone3 resumed> => {parent_tid=[5853]}, 88) = 5853 [pid 5853] <... set_robust_list resumed>) = 0 [pid 5850] rt_sigprocmask(SIG_SETMASK, [], [pid 5853] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5850] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5850] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5850] <... futex resumed>) = 0 [pid 5853] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5850] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5853] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [ 140.285545][ T5851] reiserfs: enabling write barrier flush mode [ 140.294402][ T5851] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5853] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] <... mount resumed>) = 0 [pid 5850] <... futex resumed>) = 0 [pid 5853] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5851] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5851] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5851] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5850] exit_group(0 [pid 5853] <... futex resumed>) = ? [pid 5851] <... futex resumed>) = ? [pid 5850] <... exit_group resumed>) = ? [pid 5853] +++ exited with 0 +++ [pid 5851] +++ exited with 0 +++ [pid 5850] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5850, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./194", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./194", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./194/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./194/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./194/binderfs") = 0 [ 140.339325][ T5851] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./194/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./194/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./194/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./194/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./194/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./194/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./194") = 0 mkdir("./195", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5854 attached , child_tidptr=0x5555565f3690) = 5854 [pid 5854] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5854] chdir("./195") = 0 [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5854] setpgid(0, 0) = 0 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5854] write(3, "1000", 4) = 4 [pid 5854] close(3) = 0 [pid 5854] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5854] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5854] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5854] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5855 attached [pid 5855] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5854] <... clone3 resumed> => {parent_tid=[5855]}, 88) = 5855 [pid 5855] set_robust_list(0x7fd868ec09a0, 24 [pid 5854] rt_sigprocmask(SIG_SETMASK, [], [pid 5855] <... set_robust_list resumed>) = 0 [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5855] rt_sigprocmask(SIG_SETMASK, [], [pid 5854] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5855] memfd_create("syzkaller", 0 [pid 5854] <... futex resumed>) = 0 [pid 5854] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5855] <... memfd_create resumed>) = 3 [pid 5855] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5855] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5855] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5855] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5855] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5855] close(3) = 0 [pid 5855] mkdir("./file0", 0777) = 0 [ 140.615548][ T5855] loop0: detected capacity change from 0 to 8192 [ 140.641069][ T5855] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 140.654087][ T5855] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5855] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5855] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5855] chdir("./file0") = 0 [pid 5855] ioctl(4, LOOP_CLR_FD) = 0 [pid 5855] close(4) = 0 [pid 5855] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5854] <... futex resumed>) = 0 [pid 5855] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5854] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5854] <... futex resumed>) = 0 [pid 5855] mkdir(".", 0777 [pid 5854] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5855] <... mkdir resumed>) = -1 EEXIST (File exists) [ 140.663467][ T5855] REISERFS (device loop0): using ordered data mode [ 140.670080][ T5855] reiserfs: using flush barriers [ 140.676439][ T5855] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 140.693290][ T5855] REISERFS (device loop0): checking transaction log (loop0) [ 140.701532][ T5855] REISERFS (device loop0): Using r5 hash to sort names [pid 5855] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5855] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5855] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] <... futex resumed>) = 0 [pid 5855] <... futex resumed>) = 1 [pid 5854] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] mkdir(".", 0777 [pid 5854] <... futex resumed>) = 0 [pid 5855] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5854] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5854] <... futex resumed>) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5854] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5855] <... mount resumed>) = 0 [pid 5854] <... mprotect resumed>) = 0 [pid 5855] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5855] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5855] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5854] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5857 attached [pid 5857] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5854] <... clone3 resumed> => {parent_tid=[5857]}, 88) = 5857 [pid 5857] <... rseq resumed>) = 0 [pid 5857] set_robust_list(0x7fd868e9f9a0, 24 [pid 5854] rt_sigprocmask(SIG_SETMASK, [], [pid 5857] <... set_robust_list resumed>) = 0 [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5854] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5854] <... futex resumed>) = 0 [pid 5854] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5857] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5857] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] <... futex resumed>) = 0 [pid 5854] exit_group(0) = ? [pid 5855] <... futex resumed>) = ? [pid 5857] <... futex resumed>) = ? [pid 5855] +++ exited with 0 +++ [pid 5857] +++ exited with 0 +++ [pid 5854] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5854, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./195", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./195", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 140.735088][ T5855] reiserfs: enabling write barrier flush mode [ 140.743673][ T5855] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 140.774310][ T5855] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./195/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./195/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./195/binderfs") = 0 umount2("./195/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./195/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./195/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./195/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./195/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./195/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./195") = 0 mkdir("./196", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5858 attached , child_tidptr=0x5555565f3690) = 5858 [pid 5858] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5858] chdir("./196") = 0 [pid 5858] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5858] setpgid(0, 0) = 0 [pid 5858] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5858] write(3, "1000", 4) = 4 [pid 5858] close(3) = 0 [pid 5858] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5858] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5858] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5858] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5858] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5858] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5858] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5858] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5859 attached [pid 5859] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5859] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5859] rt_sigprocmask(SIG_SETMASK, [], [pid 5858] <... clone3 resumed> => {parent_tid=[5859]}, 88) = 5859 [pid 5859] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5858] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... futex resumed>) = 0 [pid 5858] <... futex resumed>) = 1 [pid 5859] memfd_create("syzkaller", 0 [pid 5858] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5859] <... memfd_create resumed>) = 3 [pid 5859] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5859] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5859] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5859] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5859] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5859] close(3) = 0 [pid 5859] mkdir("./file0", 0777) = 0 [ 141.098331][ T5859] loop0: detected capacity change from 0 to 8192 [ 141.123401][ T5859] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 141.136414][ T5859] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5859] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5859] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5859] chdir("./file0") = 0 [pid 5859] ioctl(4, LOOP_CLR_FD) = 0 [pid 5859] close(4) = 0 [pid 5859] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5858] <... futex resumed>) = 0 [pid 5859] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... futex resumed>) = 0 [pid 5858] <... futex resumed>) = 1 [pid 5859] mkdir(".", 0777 [pid 5858] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5859] <... mkdir resumed>) = -1 EEXIST (File exists) [ 141.145746][ T5859] REISERFS (device loop0): using ordered data mode [ 141.152282][ T5859] reiserfs: using flush barriers [ 141.158564][ T5859] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 141.175214][ T5859] REISERFS (device loop0): checking transaction log (loop0) [ 141.183389][ T5859] REISERFS (device loop0): Using r5 hash to sort names [pid 5859] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5859] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5859] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5858] <... futex resumed>) = 0 [pid 5859] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... futex resumed>) = 0 [pid 5858] <... futex resumed>) = 1 [pid 5859] mkdir(".", 0777 [pid 5858] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5859] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5858] <... futex resumed>) = 0 [pid 5858] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5858] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5858] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5859] <... mount resumed>) = 0 [pid 5859] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5858] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5859] <... openat resumed>) = 5 [pid 5858] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5859] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5859] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] <... clone3 resumed> => {parent_tid=[5861]}, 88) = 5861 [pid 5858] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 ./strace-static-x86_64: Process 5861 attached [pid 5861] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5858] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... rseq resumed>) = 0 [pid 5858] <... futex resumed>) = 0 [pid 5861] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5861] rt_sigprocmask(SIG_SETMASK, [], [pid 5858] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5861] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5861] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] <... futex resumed>) = 0 [pid 5858] exit_group(0 [pid 5861] <... futex resumed>) = ? [pid 5859] <... futex resumed>) = ? [pid 5858] <... exit_group resumed>) = ? [pid 5859] +++ exited with 0 +++ [pid 5861] +++ exited with 0 +++ [pid 5858] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5858, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./196", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./196", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 141.204911][ T5859] reiserfs: enabling write barrier flush mode [ 141.213991][ T5859] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 141.235812][ T5859] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./196/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./196/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./196/binderfs") = 0 umount2("./196/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./196/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./196/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./196/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./196/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./196/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./196") = 0 mkdir("./197", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5862 attached , child_tidptr=0x5555565f3690) = 5862 [pid 5862] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5862] chdir("./197") = 0 [pid 5862] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5862] setpgid(0, 0) = 0 [pid 5862] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5862] write(3, "1000", 4) = 4 [pid 5862] close(3) = 0 [pid 5862] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5862] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5862] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5862] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5862] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5863 attached [pid 5863] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5862] <... clone3 resumed> => {parent_tid=[5863]}, 88) = 5863 [pid 5863] <... rseq resumed>) = 0 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5863] set_robust_list(0x7fd868ec09a0, 24 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5863] <... set_robust_list resumed>) = 0 [pid 5862] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] rt_sigprocmask(SIG_SETMASK, [], [pid 5862] <... futex resumed>) = 0 [pid 5863] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5863] memfd_create("syzkaller", 0) = 3 [pid 5863] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5863] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5863] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5863] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5863] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5863] close(3) = 0 [pid 5863] mkdir("./file0", 0777) = 0 [ 141.546985][ T5863] loop0: detected capacity change from 0 to 8192 [ 141.562945][ T5863] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 141.576065][ T5863] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 141.585553][ T5863] REISERFS (device loop0): using ordered data mode [ 141.592098][ T5863] reiserfs: using flush barriers [pid 5863] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5863] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5863] chdir("./file0") = 0 [pid 5863] ioctl(4, LOOP_CLR_FD) = 0 [pid 5863] close(4) = 0 [pid 5863] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5862] <... futex resumed>) = 0 [pid 5862] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] mkdir(".", 0777 [pid 5862] <... futex resumed>) = 0 [pid 5862] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5863] <... mkdir resumed>) = -1 EEXIST (File exists) [ 141.598320][ T5863] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 141.615142][ T5863] REISERFS (device loop0): checking transaction log (loop0) [ 141.623408][ T5863] REISERFS (device loop0): Using r5 hash to sort names [pid 5863] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5863] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5863] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5862] <... futex resumed>) = 0 [pid 5863] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5862] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5863] mkdir(".", 0777 [pid 5862] <... futex resumed>) = 0 [pid 5863] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5862] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5863] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5862] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5862] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5862] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5863] <... mount resumed>) = 0 [pid 5862] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5865 attached [pid 5865] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5865] set_robust_list(0x7fd868e9f9a0, 24 [pid 5863] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5862] <... clone3 resumed> => {parent_tid=[5865]}, 88) = 5865 [pid 5865] <... set_robust_list resumed>) = 0 [pid 5863] <... openat resumed>) = 5 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5865] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5863] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5865] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5863] <... futex resumed>) = 0 [pid 5862] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5863] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5862] <... futex resumed>) = 0 [pid 5865] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5862] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5865] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5865] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5862] <... futex resumed>) = 0 [pid 5865] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5862] exit_group(0 [pid 5865] <... futex resumed>) = ? [pid 5863] <... futex resumed>) = ? [pid 5865] +++ exited with 0 +++ [pid 5863] +++ exited with 0 +++ [pid 5862] <... exit_group resumed>) = ? [pid 5862] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5862, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./197", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./197", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./197/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 141.649104][ T5863] reiserfs: enabling write barrier flush mode [ 141.657710][ T5863] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 141.679779][ T5863] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./197/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./197/binderfs") = 0 umount2("./197/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./197/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./197/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./197/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./197/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./197/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./197") = 0 mkdir("./198", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5866 ./strace-static-x86_64: Process 5866 attached [pid 5866] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5866] chdir("./198") = 0 [pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5866] setpgid(0, 0) = 0 [pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5866] write(3, "1000", 4) = 4 [pid 5866] close(3) = 0 [pid 5866] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5866] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5866] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5866] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5866] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5867 attached [pid 5867] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5867] set_robust_list(0x7fd868ec09a0, 24 [pid 5866] <... clone3 resumed> => {parent_tid=[5867]}, 88) = 5867 [pid 5867] <... set_robust_list resumed>) = 0 [pid 5867] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5867] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5866] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5867] <... futex resumed>) = 0 [pid 5866] <... futex resumed>) = 1 [pid 5866] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5867] memfd_create("syzkaller", 0) = 3 [pid 5867] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5867] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5867] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5867] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5867] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5867] close(3) = 0 [pid 5867] mkdir("./file0", 0777) = 0 [ 141.936741][ T5867] loop0: detected capacity change from 0 to 8192 [ 141.952413][ T5867] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 141.965424][ T5867] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 141.974812][ T5867] REISERFS (device loop0): using ordered data mode [ 141.981814][ T5867] reiserfs: using flush barriers [pid 5867] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5867] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5867] chdir("./file0") = 0 [pid 5867] ioctl(4, LOOP_CLR_FD) = 0 [pid 5867] close(4) = 0 [pid 5867] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5866] <... futex resumed>) = 0 [pid 5867] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5867] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5866] <... futex resumed>) = 0 [pid 5867] mkdir(".", 0777 [pid 5866] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5867] <... mkdir resumed>) = -1 EEXIST (File exists) [ 141.988115][ T5867] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 142.004761][ T5867] REISERFS (device loop0): checking transaction log (loop0) [ 142.012927][ T5867] REISERFS (device loop0): Using r5 hash to sort names [pid 5867] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5867] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5867] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] <... futex resumed>) = 0 [pid 5867] <... futex resumed>) = 1 [pid 5866] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5867] mkdir(".", 0777 [pid 5866] <... futex resumed>) = 0 [pid 5867] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5866] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5867] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5866] <... futex resumed>) = 0 [pid 5866] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5866] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5866] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5866] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5869 attached [pid 5869] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5866] <... clone3 resumed> => {parent_tid=[5869]}, 88) = 5869 [pid 5869] <... rseq resumed>) = 0 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], [pid 5869] set_robust_list(0x7fd868e9f9a0, 24 [pid 5867] <... mount resumed>) = 0 [pid 5866] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5866] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] rt_sigprocmask(SIG_SETMASK, [], [pid 5867] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5866] <... futex resumed>) = 0 [pid 5869] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5866] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5869] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5867] <... openat resumed>) = 5 [pid 5867] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5869] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5867] <... futex resumed>) = 0 [pid 5869] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5867] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5869] <... futex resumed>) = 1 [pid 5866] <... futex resumed>) = 0 [pid 5869] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5866] exit_group(0 [pid 5869] <... futex resumed>) = ? [pid 5867] <... futex resumed>) = ? [pid 5866] <... exit_group resumed>) = ? [pid 5869] +++ exited with 0 +++ [pid 5867] +++ exited with 0 +++ [pid 5866] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5866, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./198", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./198", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./198/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./198/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./198/binderfs") = 0 [ 142.068170][ T5867] reiserfs: enabling write barrier flush mode [ 142.075919][ T5867] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 142.097000][ T5867] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./198/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./198/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./198/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./198/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./198/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./198/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./198") = 0 mkdir("./199", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5870 attached , child_tidptr=0x5555565f3690) = 5870 [pid 5870] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5870] chdir("./199") = 0 [pid 5870] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5870] setpgid(0, 0) = 0 [pid 5870] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5870] write(3, "1000", 4) = 4 [pid 5870] close(3) = 0 [pid 5870] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5870] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5870] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5870] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5870] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5870] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5870] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5871 attached [pid 5871] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5870] <... clone3 resumed> => {parent_tid=[5871]}, 88) = 5871 [pid 5871] set_robust_list(0x7fd868ec09a0, 24 [pid 5870] rt_sigprocmask(SIG_SETMASK, [], [pid 5871] <... set_robust_list resumed>) = 0 [pid 5870] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5871] rt_sigprocmask(SIG_SETMASK, [], [pid 5870] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] <... futex resumed>) = 0 [pid 5870] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5871] memfd_create("syzkaller", 0) = 3 [pid 5871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5871] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5871] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5871] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5871] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5871] close(3) = 0 [pid 5871] mkdir("./file0", 0777) = 0 [ 142.326381][ T5871] loop0: detected capacity change from 0 to 8192 [ 142.342815][ T5871] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 142.355972][ T5871] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 142.365531][ T5871] REISERFS (device loop0): using ordered data mode [pid 5871] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5871] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5871] chdir("./file0") = 0 [pid 5871] ioctl(4, LOOP_CLR_FD) = 0 [pid 5871] close(4) = 0 [pid 5871] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5871] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] <... futex resumed>) = 0 [pid 5870] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... futex resumed>) = 0 [pid 5870] <... futex resumed>) = 1 [pid 5871] mkdir(".", 0777 [pid 5870] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5871] <... mkdir resumed>) = -1 EEXIST (File exists) [ 142.372182][ T5871] reiserfs: using flush barriers [ 142.378594][ T5871] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 142.395397][ T5871] REISERFS (device loop0): checking transaction log (loop0) [ 142.403642][ T5871] REISERFS (device loop0): Using r5 hash to sort names [pid 5871] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5871] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5871] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5870] <... futex resumed>) = 0 [pid 5871] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5870] <... futex resumed>) = 0 [pid 5871] mkdir(".", 0777 [pid 5870] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5871] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5870] <... futex resumed>) = 0 [pid 5871] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5870] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5870] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5870] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5870] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5873 attached [pid 5873] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5873] set_robust_list(0x7fd868e9f9a0, 24 [pid 5871] <... mount resumed>) = 0 [pid 5870] <... clone3 resumed> => {parent_tid=[5873]}, 88) = 5873 [pid 5873] <... set_robust_list resumed>) = 0 [pid 5870] rt_sigprocmask(SIG_SETMASK, [], [pid 5873] rt_sigprocmask(SIG_SETMASK, [], [pid 5871] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5870] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5873] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5870] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5873] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5871] <... openat resumed>) = 5 [pid 5870] <... futex resumed>) = 0 [pid 5871] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5871] <... futex resumed>) = 0 [pid 5873] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5871] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5873] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5870] <... futex resumed>) = 0 [pid 5873] <... futex resumed>) = 1 [pid 5873] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5870] exit_group(0 [pid 5873] <... futex resumed>) = ? [pid 5871] <... futex resumed>) = ? [pid 5870] <... exit_group resumed>) = ? [pid 5873] +++ exited with 0 +++ [pid 5871] +++ exited with 0 +++ [pid 5870] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5870, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./199", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./199", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 142.436143][ T5871] reiserfs: enabling write barrier flush mode [ 142.445788][ T5871] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 142.468579][ T5871] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./199/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./199/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./199/binderfs") = 0 umount2("./199/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./199/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./199/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./199/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./199/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./199/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./199") = 0 mkdir("./200", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5874 attached , child_tidptr=0x5555565f3690) = 5874 [pid 5874] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5874] chdir("./200") = 0 [pid 5874] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5874] setpgid(0, 0) = 0 [pid 5874] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5874] write(3, "1000", 4) = 4 [pid 5874] close(3) = 0 [pid 5874] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5874] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5874] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5874] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5874] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5874] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5874] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5874] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5875 attached [pid 5875] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5874] <... clone3 resumed> => {parent_tid=[5875]}, 88) = 5875 [pid 5875] <... rseq resumed>) = 0 [pid 5874] rt_sigprocmask(SIG_SETMASK, [], [pid 5875] set_robust_list(0x7fd868ec09a0, 24 [pid 5874] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5875] <... set_robust_list resumed>) = 0 [pid 5874] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5875] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5874] <... futex resumed>) = 0 [pid 5875] memfd_create("syzkaller", 0 [pid 5874] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5875] <... memfd_create resumed>) = 3 [pid 5875] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5875] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5875] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5875] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5875] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5875] close(3) = 0 [pid 5875] mkdir("./file0", 0777) = 0 [ 142.766575][ T5875] loop0: detected capacity change from 0 to 8192 [ 142.782165][ T5875] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 142.795230][ T5875] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 142.804486][ T5875] REISERFS (device loop0): using ordered data mode [ 142.811012][ T5875] reiserfs: using flush barriers [pid 5875] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5875] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5875] chdir("./file0") = 0 [pid 5875] ioctl(4, LOOP_CLR_FD) = 0 [pid 5875] close(4) = 0 [ 142.817594][ T5875] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 142.834030][ T5875] REISERFS (device loop0): checking transaction log (loop0) [ 142.842409][ T5875] REISERFS (device loop0): Using r5 hash to sort names [pid 5875] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5874] <... futex resumed>) = 0 [pid 5874] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5875] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5874] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5875] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5875] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5875] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5874] <... futex resumed>) = 0 [pid 5875] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5874] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5875] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5875] mkdir(".", 0777 [pid 5874] <... futex resumed>) = 0 [pid 5875] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5875] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5874] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5874] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5874] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5874] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5874] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5877 attached [pid 5877] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5874] <... clone3 resumed> => {parent_tid=[5877]}, 88) = 5877 [pid 5877] <... rseq resumed>) = 0 [pid 5874] rt_sigprocmask(SIG_SETMASK, [], [pid 5877] set_robust_list(0x7fd868e9f9a0, 24 [pid 5874] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5877] <... set_robust_list resumed>) = 0 [pid 5874] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5877] rt_sigprocmask(SIG_SETMASK, [], [pid 5874] <... futex resumed>) = 0 [pid 5877] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5874] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5877] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 5877] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5874] <... futex resumed>) = 0 [ 142.865570][ T5875] reiserfs: enabling write barrier flush mode [ 142.874267][ T5875] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5877] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5875] <... mount resumed>) = 0 [pid 5875] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5875] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5875] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5874] exit_group(0 [pid 5877] <... futex resumed>) = ? [pid 5877] +++ exited with 0 +++ [pid 5874] <... exit_group resumed>) = ? [pid 5875] <... futex resumed>) = ? [pid 5875] +++ exited with 0 +++ [pid 5874] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5874, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./200", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./200", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./200/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./200/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./200/binderfs") = 0 [ 142.909314][ T5875] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./200/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./200/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./200/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./200/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./200/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./200/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./200") = 0 mkdir("./201", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5878 attached , child_tidptr=0x5555565f3690) = 5878 [pid 5878] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5878] chdir("./201") = 0 [pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5878] setpgid(0, 0) = 0 [pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5878] write(3, "1000", 4) = 4 [pid 5878] close(3) = 0 [pid 5878] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5878] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5878] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5878] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5878] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5878] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5878] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5878] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5879 attached [pid 5879] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5878] <... clone3 resumed> => {parent_tid=[5879]}, 88) = 5879 [pid 5879] <... rseq resumed>) = 0 [pid 5878] rt_sigprocmask(SIG_SETMASK, [], [pid 5879] set_robust_list(0x7fd868ec09a0, 24 [pid 5878] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5879] <... set_robust_list resumed>) = 0 [pid 5878] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5878] <... futex resumed>) = 0 [pid 5879] memfd_create("syzkaller", 0 [pid 5878] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5879] <... memfd_create resumed>) = 3 [pid 5879] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5879] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5879] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5879] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5879] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5879] close(3) = 0 [pid 5879] mkdir("./file0", 0777) = 0 [ 143.158879][ T5879] loop0: detected capacity change from 0 to 8192 [ 143.170072][ T5879] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 143.183204][ T5879] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 143.192506][ T5879] REISERFS (device loop0): using ordered data mode [ 143.199019][ T5879] reiserfs: using flush barriers [pid 5879] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5879] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5879] chdir("./file0") = 0 [pid 5879] ioctl(4, LOOP_CLR_FD) = 0 [pid 5879] close(4) = 0 [pid 5879] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5878] <... futex resumed>) = 0 [pid 5879] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5878] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] <... futex resumed>) = 0 [pid 5879] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5878] <... futex resumed>) = 1 [ 143.205429][ T5879] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 143.221853][ T5879] REISERFS (device loop0): checking transaction log (loop0) [ 143.229986][ T5879] REISERFS (device loop0): Using r5 hash to sort names [pid 5879] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5878] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5879] <... mount resumed>) = 0 [pid 5879] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5879] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5879] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5878] <... futex resumed>) = 0 [pid 5878] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] <... futex resumed>) = 0 [pid 5878] <... futex resumed>) = 1 [pid 5879] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5878] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5879] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5878] <... futex resumed>) = 0 [pid 5878] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5878] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5879] <... mount resumed>) = 0 [pid 5878] <... mprotect resumed>) = 0 [pid 5879] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5879] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5878] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5879] <... futex resumed>) = 0 [pid 5879] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5878] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5878] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5881 attached => {parent_tid=[5881]}, 88) = 5881 [pid 5878] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5881] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5878] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5881] set_robust_list(0x7fd868e9f9a0, 24 [pid 5878] <... futex resumed>) = 0 [pid 5881] <... set_robust_list resumed>) = 0 [pid 5878] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5881] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5881] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5881] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5878] <... futex resumed>) = 0 [pid 5881] <... futex resumed>) = 1 [pid 5878] exit_group(0 [pid 5881] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5879] <... futex resumed>) = ? [pid 5878] <... exit_group resumed>) = ? [pid 5881] +++ exited with 0 +++ [pid 5879] +++ exited with 0 +++ [pid 5878] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5878, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./201", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./201", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./201/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./201/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./201/binderfs") = 0 [ 143.280336][ T5879] reiserfs: enabling write barrier flush mode [ 143.288349][ T5879] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 143.309103][ T5879] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./201/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./201/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./201/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./201/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./201/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./201/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./201") = 0 mkdir("./202", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5882 ./strace-static-x86_64: Process 5882 attached [pid 5882] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5882] chdir("./202") = 0 [pid 5882] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5882] setpgid(0, 0) = 0 [pid 5882] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5882] write(3, "1000", 4) = 4 [pid 5882] close(3) = 0 [pid 5882] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5882] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5882] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5882] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5882] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5882] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5882] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5882] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5883 attached [pid 5883] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5883] set_robust_list(0x7fd868ec09a0, 24 [pid 5882] <... clone3 resumed> => {parent_tid=[5883]}, 88) = 5883 [pid 5883] <... set_robust_list resumed>) = 0 [pid 5882] rt_sigprocmask(SIG_SETMASK, [], [pid 5883] rt_sigprocmask(SIG_SETMASK, [], [pid 5882] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5883] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5882] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5883] memfd_create("syzkaller", 0 [pid 5882] <... futex resumed>) = 0 [pid 5882] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5883] <... memfd_create resumed>) = 3 [pid 5883] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5883] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5883] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5883] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5883] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5883] close(3) = 0 [pid 5883] mkdir("./file0", 0777) = 0 [ 143.590490][ T5883] loop0: detected capacity change from 0 to 8192 [ 143.615721][ T5883] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 143.628742][ T5883] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5883] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5883] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5883] chdir("./file0") = 0 [pid 5883] ioctl(4, LOOP_CLR_FD) = 0 [pid 5883] close(4) = 0 [pid 5883] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5882] <... futex resumed>) = 0 [pid 5882] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5883] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5882] <... futex resumed>) = 0 [ 143.638030][ T5883] REISERFS (device loop0): using ordered data mode [ 143.644558][ T5883] reiserfs: using flush barriers [ 143.650536][ T5883] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 143.667125][ T5883] REISERFS (device loop0): checking transaction log (loop0) [ 143.675275][ T5883] REISERFS (device loop0): Using r5 hash to sort names [pid 5883] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5882] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5883] <... mount resumed>) = 0 [pid 5883] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5883] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5882] <... futex resumed>) = 0 [pid 5883] mkdir(".", 0777 [pid 5882] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5883] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5882] <... futex resumed>) = 0 [pid 5883] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5882] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5882] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 143.697798][ T5883] reiserfs: enabling write barrier flush mode [ 143.706654][ T5883] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5882] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5883] <... mount resumed>) = 0 [pid 5883] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5882] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5883] <... openat resumed>) = 5 [pid 5882] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5882] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5883] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5883] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5885 attached [pid 5882] <... clone3 resumed> => {parent_tid=[5885]}, 88) = 5885 [pid 5885] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5882] rt_sigprocmask(SIG_SETMASK, [], [pid 5885] <... rseq resumed>) = 0 [pid 5882] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5885] set_robust_list(0x7fd868e9f9a0, 24 [pid 5882] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5885] <... set_robust_list resumed>) = 0 [pid 5882] <... futex resumed>) = 0 [pid 5885] rt_sigprocmask(SIG_SETMASK, [], [pid 5882] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5885] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5885] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5885] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5882] <... futex resumed>) = 0 [pid 5885] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5882] exit_group(0 [pid 5883] <... futex resumed>) = ? [pid 5883] +++ exited with 0 +++ [pid 5885] <... futex resumed>) = ? [pid 5882] <... exit_group resumed>) = ? [pid 5885] +++ exited with 0 +++ [pid 5882] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5882, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./202", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./202", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 143.738690][ T5883] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./202/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./202/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./202/binderfs") = 0 umount2("./202/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./202/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./202/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./202/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./202/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./202/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./202") = 0 mkdir("./203", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5886 attached , child_tidptr=0x5555565f3690) = 5886 [pid 5886] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5886] chdir("./203") = 0 [pid 5886] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5886] setpgid(0, 0) = 0 [pid 5886] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5886] write(3, "1000", 4) = 4 [pid 5886] close(3) = 0 [pid 5886] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5886] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5886] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5886] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5886] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5886] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5886] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5886] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5887 attached [pid 5887] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5886] <... clone3 resumed> => {parent_tid=[5887]}, 88) = 5887 [pid 5887] set_robust_list(0x7fd868ec09a0, 24 [pid 5886] rt_sigprocmask(SIG_SETMASK, [], [pid 5887] <... set_robust_list resumed>) = 0 [pid 5886] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5887] rt_sigprocmask(SIG_SETMASK, [], [pid 5886] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5886] <... futex resumed>) = 0 [pid 5887] memfd_create("syzkaller", 0 [pid 5886] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5887] <... memfd_create resumed>) = 3 [pid 5887] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5887] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5887] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5887] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5887] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5887] close(3) = 0 [pid 5887] mkdir("./file0", 0777) = 0 [ 144.018738][ T5887] loop0: detected capacity change from 0 to 8192 [ 144.034000][ T5887] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 144.047205][ T5887] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 144.056526][ T5887] REISERFS (device loop0): using ordered data mode [ 144.063065][ T5887] reiserfs: using flush barriers [pid 5887] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5887] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5887] chdir("./file0") = 0 [pid 5887] ioctl(4, LOOP_CLR_FD) = 0 [pid 5887] close(4) = 0 [pid 5887] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5886] <... futex resumed>) = 0 [pid 5887] <... futex resumed>) = 1 [pid 5886] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] mkdir(".", 0777 [pid 5886] <... futex resumed>) = 0 [pid 5887] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5886] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 144.069313][ T5887] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 144.086089][ T5887] REISERFS (device loop0): checking transaction log (loop0) [ 144.094527][ T5887] REISERFS (device loop0): Using r5 hash to sort names [ 144.109552][ T5887] reiserfs: enabling write barrier flush mode [pid 5887] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5887] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5887] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5886] <... futex resumed>) = 0 [pid 5887] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5886] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5886] <... futex resumed>) = 0 [pid 5887] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5886] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5887] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5886] <... futex resumed>) = 0 [pid 5886] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 144.118193][ T5887] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5886] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5887] <... mount resumed>) = 0 [pid 5886] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5886] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5887] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5889 attached ) = 5 [pid 5889] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5887] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5889] <... rseq resumed>) = 0 [pid 5889] set_robust_list(0x7fd868e9f9a0, 24 [pid 5887] <... futex resumed>) = 0 [pid 5887] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5889] <... set_robust_list resumed>) = 0 [pid 5889] rt_sigprocmask(SIG_SETMASK, [], [pid 5886] <... clone3 resumed> => {parent_tid=[5889]}, 88) = 5889 [pid 5889] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5886] rt_sigprocmask(SIG_SETMASK, [], [pid 5889] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5886] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5886] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5889] <... futex resumed>) = 0 [pid 5886] <... futex resumed>) = 1 [pid 5889] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5886] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5889] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5889] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5886] <... futex resumed>) = 0 [pid 5889] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5886] exit_group(0 [pid 5887] <... futex resumed>) = ? [pid 5887] +++ exited with 0 +++ [pid 5889] <... futex resumed>) = ? [pid 5886] <... exit_group resumed>) = ? [pid 5889] +++ exited with 0 +++ [pid 5886] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5886, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./203", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./203", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 144.160283][ T5887] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./203/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./203/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./203/binderfs") = 0 umount2("./203/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./203/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./203/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./203/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./203/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./203/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./203") = 0 mkdir("./204", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5890 attached , child_tidptr=0x5555565f3690) = 5890 [pid 5890] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5890] chdir("./204") = 0 [pid 5890] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5890] setpgid(0, 0) = 0 [pid 5890] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5890] write(3, "1000", 4) = 4 [pid 5890] close(3) = 0 [pid 5890] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5890] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5890] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5890] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5890] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5890] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5890] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5890] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5891 attached [pid 5891] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5891] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5891] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5891] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5890] <... clone3 resumed> => {parent_tid=[5891]}, 88) = 5891 [pid 5890] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5890] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5891] <... futex resumed>) = 0 [pid 5890] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5891] memfd_create("syzkaller", 0) = 3 [pid 5891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5891] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5891] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5891] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5891] close(3) = 0 [pid 5891] mkdir("./file0", 0777) = 0 [ 144.448306][ T5891] loop0: detected capacity change from 0 to 8192 [ 144.472623][ T5891] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 144.485598][ T5891] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5891] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5891] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5891] chdir("./file0") = 0 [pid 5891] ioctl(4, LOOP_CLR_FD) = 0 [pid 5891] close(4) = 0 [ 144.494869][ T5891] REISERFS (device loop0): using ordered data mode [ 144.501405][ T5891] reiserfs: using flush barriers [ 144.507442][ T5891] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 144.524072][ T5891] REISERFS (device loop0): checking transaction log (loop0) [ 144.532336][ T5891] REISERFS (device loop0): Using r5 hash to sort names [pid 5891] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5890] <... futex resumed>) = 0 [pid 5891] mkdir(".", 0777 [pid 5890] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5890] <... futex resumed>) = 0 [pid 5891] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5890] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5891] <... mount resumed>) = 0 [pid 5891] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5891] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5890] <... futex resumed>) = 0 [pid 5891] <... futex resumed>) = 1 [pid 5890] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] mkdir(".", 0777 [pid 5890] <... futex resumed>) = 0 [pid 5891] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5890] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5890] <... futex resumed>) = 0 [pid 5890] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5890] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5890] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5890] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5893 attached [pid 5893] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5890] <... clone3 resumed> => {parent_tid=[5893]}, 88) = 5893 [pid 5893] <... rseq resumed>) = 0 [pid 5890] rt_sigprocmask(SIG_SETMASK, [], [pid 5893] set_robust_list(0x7fd868e9f9a0, 24 [pid 5890] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5893] <... set_robust_list resumed>) = 0 [pid 5890] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5893] rt_sigprocmask(SIG_SETMASK, [], [pid 5890] <... futex resumed>) = 0 [pid 5893] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5890] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5893] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5891] <... mount resumed>) = 0 [pid 5891] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5893] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5891] <... openat resumed>) = 5 [pid 5893] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5891] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5893] <... futex resumed>) = 1 [pid 5890] <... futex resumed>) = 0 [pid 5893] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5890] exit_group(0 [pid 5893] <... futex resumed>) = ? [pid 5893] +++ exited with 0 +++ [pid 5891] <... futex resumed>) = ? [pid 5890] <... exit_group resumed>) = ? [pid 5891] +++ exited with 0 +++ [pid 5890] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5890, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- umount2("./204", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./204", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 144.553721][ T5891] reiserfs: enabling write barrier flush mode [ 144.564377][ T5891] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 144.591606][ T5891] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./204/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./204/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./204/binderfs") = 0 umount2("./204/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./204/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./204/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./204/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./204/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./204/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./204") = 0 mkdir("./205", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5894 attached , child_tidptr=0x5555565f3690) = 5894 [pid 5894] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5894] chdir("./205") = 0 [pid 5894] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5894] setpgid(0, 0) = 0 [pid 5894] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5894] write(3, "1000", 4) = 4 [pid 5894] close(3) = 0 [pid 5894] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5894] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5894] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5894] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5894] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5894] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5894] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5895 attached => {parent_tid=[5895]}, 88) = 5895 [pid 5895] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5894] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5894] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5894] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5895] <... rseq resumed>) = 0 [pid 5895] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5895] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5895] memfd_create("syzkaller", 0) = 3 [pid 5895] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5895] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5895] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5895] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5895] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5895] close(3) = 0 [pid 5895] mkdir("./file0", 0777) = 0 [ 144.880552][ T5895] loop0: detected capacity change from 0 to 8192 [ 144.895581][ T5895] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 144.908611][ T5895] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 144.917909][ T5895] REISERFS (device loop0): using ordered data mode [ 144.924438][ T5895] reiserfs: using flush barriers [pid 5895] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5895] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5895] chdir("./file0") = 0 [pid 5895] ioctl(4, LOOP_CLR_FD) = 0 [pid 5895] close(4) = 0 [pid 5895] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5895] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5894] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5895] mkdir(".", 0777 [pid 5894] <... futex resumed>) = 0 [pid 5895] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5894] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 144.930519][ T5895] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 144.947134][ T5895] REISERFS (device loop0): checking transaction log (loop0) [ 144.955413][ T5895] REISERFS (device loop0): Using r5 hash to sort names [pid 5895] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5895] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5895] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5895] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5894] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5895] <... futex resumed>) = 0 [pid 5894] <... futex resumed>) = 1 [pid 5895] mkdir(".", 0777 [pid 5894] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5895] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5894] <... futex resumed>) = 0 [pid 5895] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5894] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 145.001929][ T5895] reiserfs: enabling write barrier flush mode [ 145.010171][ T5895] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5894] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5895] <... mount resumed>) = 0 [pid 5895] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5894] <... mprotect resumed>) = 0 [pid 5895] <... openat resumed>) = 5 [pid 5894] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5895] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5895] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5894] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5894] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5897 attached => {parent_tid=[5897]}, 88) = 5897 [pid 5897] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5894] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5894] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5894] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5897] <... rseq resumed>) = 0 [pid 5897] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5897] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5897] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5897] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5894] <... futex resumed>) = 0 [pid 5894] exit_group(0 [pid 5895] <... futex resumed>) = ? [pid 5894] <... exit_group resumed>) = ? [pid 5897] +++ exited with 0 +++ [pid 5895] +++ exited with 0 +++ [pid 5894] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5894, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./205", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./205", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./205/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./205/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./205/binderfs") = 0 [ 145.051321][ T5895] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./205/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./205/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./205/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./205/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./205/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./205/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./205") = 0 mkdir("./206", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5898 attached , child_tidptr=0x5555565f3690) = 5898 [pid 5898] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5898] chdir("./206") = 0 [pid 5898] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5898] setpgid(0, 0) = 0 [pid 5898] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5898] write(3, "1000", 4) = 4 [pid 5898] close(3) = 0 [pid 5898] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5898] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5898] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5898] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5898] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5898] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5898] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5898] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5899 attached [pid 5899] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5899] set_robust_list(0x7fd868ec09a0, 24 [pid 5898] <... clone3 resumed> => {parent_tid=[5899]}, 88) = 5899 [pid 5899] <... set_robust_list resumed>) = 0 [pid 5898] rt_sigprocmask(SIG_SETMASK, [], [pid 5899] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5898] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5899] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5898] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5899] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5898] <... futex resumed>) = 0 [pid 5899] memfd_create("syzkaller", 0 [pid 5898] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5899] <... memfd_create resumed>) = 3 [pid 5899] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5899] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5899] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5899] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5899] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5899] close(3) = 0 [pid 5899] mkdir("./file0", 0777) = 0 [ 145.304464][ T5899] loop0: detected capacity change from 0 to 8192 [ 145.321350][ T5899] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 145.334411][ T5899] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 145.343705][ T5899] REISERFS (device loop0): using ordered data mode [pid 5899] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5899] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5899] chdir("./file0") = 0 [pid 5899] ioctl(4, LOOP_CLR_FD) = 0 [pid 5899] close(4) = 0 [pid 5899] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5898] <... futex resumed>) = 0 [pid 5899] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5898] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5899] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5898] <... futex resumed>) = 0 [pid 5899] mkdir(".", 0777 [ 145.350217][ T5899] reiserfs: using flush barriers [ 145.356624][ T5899] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 145.373001][ T5899] REISERFS (device loop0): checking transaction log (loop0) [ 145.381181][ T5899] REISERFS (device loop0): Using r5 hash to sort names [pid 5898] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5899] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5899] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5899] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5899] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5898] <... futex resumed>) = 0 [pid 5899] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5898] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5899] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5898] <... futex resumed>) = 0 [pid 5899] mkdir(".", 0777 [pid 5898] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5899] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5898] <... futex resumed>) = 0 [pid 5899] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5898] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5898] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 145.405240][ T5899] reiserfs: enabling write barrier flush mode [ 145.414001][ T5899] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5898] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5899] <... mount resumed>) = 0 [pid 5898] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5899] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5898] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5899] <... openat resumed>) = 5 [pid 5899] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5899] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 5901 attached [pid 5898] <... clone3 resumed> => {parent_tid=[5901]}, 88) = 5901 [pid 5901] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5901] set_robust_list(0x7fd868e9f9a0, 24 [pid 5898] rt_sigprocmask(SIG_SETMASK, [], [pid 5901] <... set_robust_list resumed>) = 0 [pid 5898] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5901] rt_sigprocmask(SIG_SETMASK, [], [pid 5898] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5901] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5898] <... futex resumed>) = 0 [pid 5901] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5898] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5901] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5901] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5901] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5898] <... futex resumed>) = 0 [pid 5898] exit_group(0 [pid 5901] <... futex resumed>) = ? [pid 5899] <... futex resumed>) = ? [pid 5898] <... exit_group resumed>) = ? [pid 5901] +++ exited with 0 +++ [pid 5899] +++ exited with 0 +++ [pid 5898] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5898, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./206", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./206", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 145.455402][ T5899] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./206/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./206/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./206/binderfs") = 0 umount2("./206/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./206/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./206/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./206/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./206/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./206/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./206") = 0 mkdir("./207", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5902 attached [pid 5902] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5902 [pid 5902] <... set_robust_list resumed>) = 0 [pid 5902] chdir("./207") = 0 [pid 5902] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5902] setpgid(0, 0) = 0 [pid 5902] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5902] write(3, "1000", 4) = 4 [pid 5902] close(3) = 0 [pid 5902] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5902] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5902] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5902] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5902] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5902] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5902] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5902] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5903 attached [pid 5903] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5903] set_robust_list(0x7fd868ec09a0, 24 [pid 5902] <... clone3 resumed> => {parent_tid=[5903]}, 88) = 5903 [pid 5903] <... set_robust_list resumed>) = 0 [pid 5902] rt_sigprocmask(SIG_SETMASK, [], [pid 5903] rt_sigprocmask(SIG_SETMASK, [], [pid 5902] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5903] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5902] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5903] memfd_create("syzkaller", 0 [pid 5902] <... futex resumed>) = 0 [pid 5902] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5903] <... memfd_create resumed>) = 3 [pid 5903] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5903] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5903] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5903] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5903] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5903] close(3) = 0 [pid 5903] mkdir("./file0", 0777) = 0 [ 145.787294][ T5903] loop0: detected capacity change from 0 to 8192 [ 145.802614][ T5903] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 145.815597][ T5903] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 145.824883][ T5903] REISERFS (device loop0): using ordered data mode [ 145.831429][ T5903] reiserfs: using flush barriers [pid 5903] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5903] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5903] chdir("./file0") = 0 [pid 5903] ioctl(4, LOOP_CLR_FD) = 0 [pid 5903] close(4) = 0 [pid 5903] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5902] <... futex resumed>) = 0 [pid 5902] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5903] mkdir(".", 0777) = -1 EEXIST (File exists) [ 145.837731][ T5903] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 145.854389][ T5903] REISERFS (device loop0): checking transaction log (loop0) [ 145.862524][ T5903] REISERFS (device loop0): Using r5 hash to sort names [pid 5902] <... futex resumed>) = 0 [pid 5903] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5902] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5903] <... mount resumed>) = 0 [pid 5903] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5903] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5902] <... futex resumed>) = 0 [pid 5903] <... futex resumed>) = 1 [pid 5902] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5903] mkdir(".", 0777 [pid 5902] <... futex resumed>) = 0 [pid 5903] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5902] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5903] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5902] <... futex resumed>) = 0 [pid 5902] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5902] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5902] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5902] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5905 attached [pid 5905] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5902] <... clone3 resumed> => {parent_tid=[5905]}, 88) = 5905 [pid 5905] <... rseq resumed>) = 0 [pid 5905] set_robust_list(0x7fd868e9f9a0, 24 [pid 5902] rt_sigprocmask(SIG_SETMASK, [], [pid 5905] <... set_robust_list resumed>) = 0 [pid 5905] rt_sigprocmask(SIG_SETMASK, [], [pid 5902] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5905] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5902] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5905] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5902] <... futex resumed>) = 0 [pid 5905] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5902] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5905] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5903] <... mount resumed>) = 0 [pid 5902] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5905] <... futex resumed>) = 0 [pid 5905] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5903] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5903] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5903] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5902] exit_group(0 [pid 5903] <... futex resumed>) = ? [pid 5902] <... exit_group resumed>) = ? [pid 5903] +++ exited with 0 +++ [pid 5905] <... futex resumed>) = ? [pid 5905] +++ exited with 0 +++ [pid 5902] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5902, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./207", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./207", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 145.886568][ T5903] reiserfs: enabling write barrier flush mode [ 145.896278][ T5903] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 145.920783][ T5903] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./207/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./207/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./207/binderfs") = 0 umount2("./207/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./207/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./207/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./207/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./207/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./207/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./207") = 0 mkdir("./208", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5906 attached [pid 5906] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5906] chdir("./208") = 0 [pid 5906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5906] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5906 [pid 5906] <... setpgid resumed>) = 0 [pid 5906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5906] write(3, "1000", 4) = 4 [pid 5906] close(3) = 0 [pid 5906] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5906] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5906] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5906] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5906] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5906] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5907 attached [pid 5907] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5907] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5907] rt_sigprocmask(SIG_SETMASK, [], [pid 5906] <... clone3 resumed> => {parent_tid=[5907]}, 88) = 5907 [pid 5907] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5906] rt_sigprocmask(SIG_SETMASK, [], [pid 5907] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5906] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] <... futex resumed>) = 0 [pid 5906] <... futex resumed>) = 1 [pid 5907] memfd_create("syzkaller", 0 [pid 5906] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5907] <... memfd_create resumed>) = 3 [pid 5907] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5907] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5907] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5907] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5907] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5907] close(3) = 0 [pid 5907] mkdir("./file0", 0777) = 0 [ 146.220303][ T5907] loop0: detected capacity change from 0 to 8192 [ 146.240678][ T5907] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 146.253731][ T5907] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 146.263103][ T5907] REISERFS (device loop0): using ordered data mode [pid 5907] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5907] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5907] chdir("./file0") = 0 [pid 5907] ioctl(4, LOOP_CLR_FD) = 0 [pid 5907] close(4) = 0 [pid 5907] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5906] <... futex resumed>) = 0 [pid 5907] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5906] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] mkdir(".", 0777 [pid 5906] <... futex resumed>) = 0 [pid 5906] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5907] <... mkdir resumed>) = -1 EEXIST (File exists) [ 146.269630][ T5907] reiserfs: using flush barriers [ 146.275840][ T5907] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 146.292231][ T5907] REISERFS (device loop0): checking transaction log (loop0) [ 146.300386][ T5907] REISERFS (device loop0): Using r5 hash to sort names [pid 5907] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5907] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5907] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5906] <... futex resumed>) = 0 [pid 5907] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] <... futex resumed>) = 0 [pid 5906] <... futex resumed>) = 1 [pid 5907] mkdir(".", 0777 [pid 5906] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5907] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5906] <... futex resumed>) = 0 [pid 5907] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5906] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5906] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5906] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5907] <... mount resumed>) = 0 [pid 5906] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5906] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5909 attached [pid 5909] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5907] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5906] <... clone3 resumed> => {parent_tid=[5909]}, 88) = 5909 [pid 5909] <... rseq resumed>) = 0 [pid 5907] <... openat resumed>) = 5 [pid 5906] rt_sigprocmask(SIG_SETMASK, [], [pid 5909] set_robust_list(0x7fd868e9f9a0, 24 [pid 5906] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5909] <... set_robust_list resumed>) = 0 [pid 5907] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5906] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5909] rt_sigprocmask(SIG_SETMASK, [], [pid 5907] <... futex resumed>) = 0 [pid 5906] <... futex resumed>) = 0 [pid 5909] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5907] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 146.334493][ T5907] reiserfs: enabling write barrier flush mode [ 146.342571][ T5907] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 146.374116][ T5907] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5909] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5909] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5906] <... futex resumed>) = 0 [pid 5909] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5906] exit_group(0 [pid 5909] <... futex resumed>) = ? [pid 5907] <... futex resumed>) = ? [pid 5909] +++ exited with 0 +++ [pid 5907] +++ exited with 0 +++ [pid 5906] <... exit_group resumed>) = ? [pid 5906] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5906, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./208", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./208", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./208/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./208/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./208/binderfs") = 0 umount2("./208/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./208/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./208/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./208/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./208/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./208/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./208") = 0 mkdir("./209", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5910 attached [pid 5910] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5910] chdir("./209" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5910 [pid 5910] <... chdir resumed>) = 0 [pid 5910] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5910] setpgid(0, 0) = 0 [pid 5910] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5910] write(3, "1000", 4) = 4 [pid 5910] close(3) = 0 [pid 5910] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5910] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5910] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5910] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5910] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5910] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5910] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5910] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5911 attached [pid 5911] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5911] set_robust_list(0x7fd868ec09a0, 24 [pid 5910] <... clone3 resumed> => {parent_tid=[5911]}, 88) = 5911 [pid 5911] <... set_robust_list resumed>) = 0 [pid 5910] rt_sigprocmask(SIG_SETMASK, [], [pid 5911] rt_sigprocmask(SIG_SETMASK, [], [pid 5910] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5911] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5910] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] memfd_create("syzkaller", 0) = 3 [pid 5910] <... futex resumed>) = 0 [pid 5910] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5911] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5911] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5911] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5911] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5911] close(3) = 0 [pid 5911] mkdir("./file0", 0777) = 0 [ 146.676198][ T5911] loop0: detected capacity change from 0 to 8192 [ 146.693072][ T5911] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 146.706134][ T5911] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 146.715528][ T5911] REISERFS (device loop0): using ordered data mode [pid 5911] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5911] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5911] chdir("./file0") = 0 [pid 5911] ioctl(4, LOOP_CLR_FD) = 0 [pid 5911] close(4) = 0 [pid 5911] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] <... futex resumed>) = 0 [pid 5911] <... futex resumed>) = 1 [pid 5910] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] mkdir(".", 0777 [pid 5910] <... futex resumed>) = 0 [pid 5911] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5910] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 146.722254][ T5911] reiserfs: using flush barriers [ 146.728740][ T5911] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 146.745143][ T5911] REISERFS (device loop0): checking transaction log (loop0) [ 146.753506][ T5911] REISERFS (device loop0): Using r5 hash to sort names [ 146.764330][ T5911] reiserfs: enabling write barrier flush mode [pid 5911] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5911] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5911] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] <... futex resumed>) = 0 [pid 5911] <... futex resumed>) = 1 [pid 5911] mkdir(".", 0777 [pid 5910] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5910] <... futex resumed>) = 0 [pid 5911] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5910] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5910] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5910] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5910] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5910] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5913 attached => {parent_tid=[5913]}, 88) = 5913 [pid 5913] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5910] rt_sigprocmask(SIG_SETMASK, [], [pid 5913] <... rseq resumed>) = 0 [pid 5910] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5913] set_robust_list(0x7fd868e9f9a0, 24 [pid 5910] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5913] <... set_robust_list resumed>) = 0 [pid 5910] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5913] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5913] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5911] <... mount resumed>) = 0 [pid 5913] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5911] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5913] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5911] <... openat resumed>) = 5 [pid 5913] <... futex resumed>) = 1 [pid 5911] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5910] <... futex resumed>) = 0 [pid 5913] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5911] <... futex resumed>) = 0 [pid 5910] exit_group(0 [pid 5911] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5913] <... futex resumed>) = ? [pid 5911] <... futex resumed>) = ? [pid 5910] <... exit_group resumed>) = ? [pid 5913] +++ exited with 0 +++ [pid 5911] +++ exited with 0 +++ [pid 5910] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5910, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./209", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./209", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./209/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 146.772469][ T5911] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 146.808364][ T5911] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./209/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./209/binderfs") = 0 umount2("./209/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./209/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./209/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./209/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./209/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./209/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./209") = 0 mkdir("./210", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5914 attached , child_tidptr=0x5555565f3690) = 5914 [pid 5914] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5914] chdir("./210") = 0 [pid 5914] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5914] setpgid(0, 0) = 0 [pid 5914] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5914] write(3, "1000", 4) = 4 [pid 5914] close(3) = 0 [pid 5914] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5914] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5914] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5914] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5914] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5914] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5914] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5914] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5915 attached [pid 5915] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5914] <... clone3 resumed> => {parent_tid=[5915]}, 88) = 5915 [pid 5915] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5914] rt_sigprocmask(SIG_SETMASK, [], [pid 5915] rt_sigprocmask(SIG_SETMASK, [], [pid 5914] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5915] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5914] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5915] memfd_create("syzkaller", 0 [pid 5914] <... futex resumed>) = 0 [pid 5914] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5915] <... memfd_create resumed>) = 3 [pid 5915] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5915] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5915] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5915] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5915] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5915] close(3) = 0 [pid 5915] mkdir("./file0", 0777) = 0 [ 147.124642][ T5915] loop0: detected capacity change from 0 to 8192 [ 147.140037][ T5915] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 147.153037][ T5915] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 147.162320][ T5915] REISERFS (device loop0): using ordered data mode [ 147.168837][ T5915] reiserfs: using flush barriers [pid 5915] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5915] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5915] chdir("./file0") = 0 [pid 5915] ioctl(4, LOOP_CLR_FD) = 0 [pid 5915] close(4) = 0 [pid 5915] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5915] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5914] <... futex resumed>) = 0 [pid 5914] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5915] <... futex resumed>) = 0 [pid 5914] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5915] mkdir(".", 0777) = -1 EEXIST (File exists) [ 147.175493][ T5915] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 147.191942][ T5915] REISERFS (device loop0): checking transaction log (loop0) [ 147.200110][ T5915] REISERFS (device loop0): Using r5 hash to sort names [pid 5915] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5915] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5915] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5914] <... futex resumed>) = 0 [pid 5915] mkdir(".", 0777 [pid 5914] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5915] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5914] <... futex resumed>) = 0 [pid 5915] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5914] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5914] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5914] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5915] <... mount resumed>) = 0 [pid 5915] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5914] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5915] <... openat resumed>) = 5 [pid 5914] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5915] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5914] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5915] <... futex resumed>) = 0 ./strace-static-x86_64: Process 5917 attached [pid 5915] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5917] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5914] <... clone3 resumed> => {parent_tid=[5917]}, 88) = 5917 [pid 5917] set_robust_list(0x7fd868e9f9a0, 24 [pid 5914] rt_sigprocmask(SIG_SETMASK, [], [pid 5917] <... set_robust_list resumed>) = 0 [pid 5917] rt_sigprocmask(SIG_SETMASK, [], [pid 5914] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5917] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5914] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5917] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5914] <... futex resumed>) = 0 [pid 5917] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5914] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5917] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5914] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5917] <... futex resumed>) = 0 [pid 5914] exit_group(0 [pid 5917] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5915] <... futex resumed>) = ? [pid 5914] <... exit_group resumed>) = ? [pid 5917] +++ exited with 0 +++ [pid 5915] +++ exited with 0 +++ [pid 5914] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5914, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./210", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./210", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 147.246831][ T5915] reiserfs: enabling write barrier flush mode [ 147.254990][ T5915] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 147.286694][ T5915] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./210/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./210/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./210/binderfs") = 0 umount2("./210/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./210/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./210/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./210/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./210/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./210/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./210") = 0 mkdir("./211", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5918 attached , child_tidptr=0x5555565f3690) = 5918 [pid 5918] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5918] chdir("./211") = 0 [pid 5918] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5918] setpgid(0, 0) = 0 [pid 5918] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5918] write(3, "1000", 4) = 4 [pid 5918] close(3) = 0 [pid 5918] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5918] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5918] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5918] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5918] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5918] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5918] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5918] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5919 attached [pid 5919] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5918] <... clone3 resumed> => {parent_tid=[5919]}, 88) = 5919 [pid 5919] <... rseq resumed>) = 0 [pid 5918] rt_sigprocmask(SIG_SETMASK, [], [pid 5919] set_robust_list(0x7fd868ec09a0, 24 [pid 5918] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5919] <... set_robust_list resumed>) = 0 [pid 5918] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5919] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5918] <... futex resumed>) = 0 [pid 5919] memfd_create("syzkaller", 0 [pid 5918] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5919] <... memfd_create resumed>) = 3 [pid 5919] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5919] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5919] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5919] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5919] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5919] close(3) = 0 [pid 5919] mkdir("./file0", 0777) = 0 [ 147.536554][ T5919] loop0: detected capacity change from 0 to 8192 [ 147.553920][ T5919] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 147.566939][ T5919] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 147.576205][ T5919] REISERFS (device loop0): using ordered data mode [pid 5919] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5919] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5919] chdir("./file0") = 0 [pid 5919] ioctl(4, LOOP_CLR_FD) = 0 [pid 5919] close(4) = 0 [pid 5919] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5918] <... futex resumed>) = 0 [pid 5919] <... futex resumed>) = 1 [pid 5918] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5919] mkdir(".", 0777 [pid 5918] <... futex resumed>) = 0 [pid 5919] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5918] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 147.582742][ T5919] reiserfs: using flush barriers [ 147.588771][ T5919] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 147.605493][ T5919] REISERFS (device loop0): checking transaction log (loop0) [ 147.613832][ T5919] REISERFS (device loop0): Using r5 hash to sort names [pid 5919] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5919] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5919] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5919] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5918] <... futex resumed>) = 0 [pid 5918] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5919] <... futex resumed>) = 0 [pid 5918] <... futex resumed>) = 1 [pid 5919] mkdir(".", 0777 [pid 5918] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5919] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5918] <... futex resumed>) = 0 [pid 5919] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5918] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5918] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5918] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5918] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5921 attached [pid 5921] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5918] <... clone3 resumed> => {parent_tid=[5921]}, 88) = 5921 [pid 5921] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5918] rt_sigprocmask(SIG_SETMASK, [], [pid 5921] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 147.646923][ T5919] reiserfs: enabling write barrier flush mode [ 147.654886][ T5919] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5918] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5921] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5918] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5921] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5918] <... futex resumed>) = 0 [pid 5919] <... mount resumed>) = 0 [pid 5918] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5919] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5919] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5921] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5919] <... futex resumed>) = 0 [pid 5921] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5919] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5921] <... futex resumed>) = 1 [pid 5918] <... futex resumed>) = 0 [pid 5921] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5918] exit_group(0 [pid 5919] <... futex resumed>) = ? [pid 5921] <... futex resumed>) = ? [pid 5918] <... exit_group resumed>) = ? [pid 5919] +++ exited with 0 +++ [pid 5921] +++ exited with 0 +++ [pid 5918] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5918, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./211", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./211", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./211/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./211/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./211/binderfs") = 0 [ 147.688216][ T5919] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./211/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./211/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./211/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./211/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./211/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./211/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./211") = 0 mkdir("./212", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5922 attached , child_tidptr=0x5555565f3690) = 5922 [pid 5922] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5922] chdir("./212") = 0 [pid 5922] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5922] setpgid(0, 0) = 0 [pid 5922] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5922] write(3, "1000", 4) = 4 [pid 5922] close(3) = 0 [pid 5922] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5922] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5922] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5922] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5922] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5922] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5922] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5922] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5923 attached [pid 5923] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5923] set_robust_list(0x7fd868ec09a0, 24 [pid 5922] <... clone3 resumed> => {parent_tid=[5923]}, 88) = 5923 [pid 5923] <... set_robust_list resumed>) = 0 [pid 5922] rt_sigprocmask(SIG_SETMASK, [], [pid 5923] rt_sigprocmask(SIG_SETMASK, [], [pid 5922] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5923] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5922] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5923] memfd_create("syzkaller", 0 [pid 5922] <... futex resumed>) = 0 [pid 5922] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5923] <... memfd_create resumed>) = 3 [pid 5923] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5923] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5923] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5923] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5923] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5923] close(3) = 0 [pid 5923] mkdir("./file0", 0777) = 0 [ 147.923171][ T5923] loop0: detected capacity change from 0 to 8192 [ 147.949017][ T5923] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 147.962076][ T5923] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5923] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5923] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5923] chdir("./file0") = 0 [pid 5923] ioctl(4, LOOP_CLR_FD) = 0 [pid 5923] close(4) = 0 [pid 5923] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5922] <... futex resumed>) = 0 [pid 5923] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5922] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5923] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5922] <... futex resumed>) = 0 [pid 5922] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5923] mkdir(".", 0777) = -1 EEXIST (File exists) [ 147.971422][ T5923] REISERFS (device loop0): using ordered data mode [ 147.977942][ T5923] reiserfs: using flush barriers [ 147.984951][ T5923] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 148.002073][ T5923] REISERFS (device loop0): checking transaction log (loop0) [ 148.010223][ T5923] REISERFS (device loop0): Using r5 hash to sort names [pid 5923] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5923] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5923] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5923] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5922] <... futex resumed>) = 0 [pid 5923] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5922] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5923] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5922] <... futex resumed>) = 0 [pid 5923] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5922] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5922] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5922] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5923] <... mount resumed>) = 0 [pid 5923] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5922] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5923] <... openat resumed>) = 5 [pid 5922] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5923] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5925 attached ) = 0 [pid 5925] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5923] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5925] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5925] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5922] <... clone3 resumed> => {parent_tid=[5925]}, 88) = 5925 [pid 5925] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5922] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5922] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5925] <... futex resumed>) = 0 [pid 5922] <... futex resumed>) = 1 [pid 5925] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5922] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5925] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5925] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5925] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5922] <... futex resumed>) = 0 [pid 5922] exit_group(0 [pid 5925] <... futex resumed>) = ? [pid 5923] <... futex resumed>) = ? [pid 5925] +++ exited with 0 +++ [pid 5923] +++ exited with 0 +++ [pid 5922] <... exit_group resumed>) = ? [pid 5922] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5922, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./212", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./212", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./212/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./212/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./212/binderfs") = 0 [ 148.054782][ T5923] reiserfs: enabling write barrier flush mode [ 148.062666][ T5923] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 148.083012][ T5923] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./212/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./212/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./212/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./212/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./212/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./212/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./212") = 0 mkdir("./213", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5926 attached , child_tidptr=0x5555565f3690) = 5926 [pid 5926] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5926] chdir("./213") = 0 [pid 5926] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5926] setpgid(0, 0) = 0 [pid 5926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5926] write(3, "1000", 4) = 4 [pid 5926] close(3) = 0 [pid 5926] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5926] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5926] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5926] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5926] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5926] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5926] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5926] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5927 attached [pid 5927] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5927] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5927] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5927] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5926] <... clone3 resumed> => {parent_tid=[5927]}, 88) = 5927 [pid 5926] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5926] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5927] <... futex resumed>) = 0 [pid 5927] memfd_create("syzkaller", 0 [pid 5926] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5927] <... memfd_create resumed>) = 3 [pid 5927] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5927] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5927] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5927] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5927] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5927] close(3) = 0 [pid 5927] mkdir("./file0", 0777) = 0 [ 148.419631][ T5927] loop0: detected capacity change from 0 to 8192 [ 148.439906][ T5927] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 148.452967][ T5927] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 148.462225][ T5927] REISERFS (device loop0): using ordered data mode [pid 5927] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5927] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5927] chdir("./file0") = 0 [pid 5927] ioctl(4, LOOP_CLR_FD) = 0 [pid 5927] close(4) = 0 [pid 5927] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5927] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5926] <... futex resumed>) = 0 [pid 5926] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5927] <... futex resumed>) = 0 [pid 5926] <... futex resumed>) = 1 [pid 5927] mkdir(".", 0777) = -1 EEXIST (File exists) [ 148.468713][ T5927] reiserfs: using flush barriers [ 148.474973][ T5927] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 148.491483][ T5927] REISERFS (device loop0): checking transaction log (loop0) [ 148.499623][ T5927] REISERFS (device loop0): Using r5 hash to sort names [pid 5926] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5927] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5927] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5927] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5926] <... futex resumed>) = 0 [pid 5927] mkdir(".", 0777 [pid 5926] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5927] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5926] <... futex resumed>) = 0 [pid 5927] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5926] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 148.527994][ T5927] reiserfs: enabling write barrier flush mode [ 148.537604][ T5927] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5926] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5926] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5927] <... mount resumed>) = 0 [pid 5926] <... mprotect resumed>) = 0 [pid 5926] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5927] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5926] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5926] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5927] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5929 attached ) = 0 [pid 5926] <... clone3 resumed> => {parent_tid=[5929]}, 88) = 5929 [pid 5929] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5927] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5929] <... rseq resumed>) = 0 [pid 5926] rt_sigprocmask(SIG_SETMASK, [], [pid 5929] set_robust_list(0x7fd868e9f9a0, 24 [pid 5926] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5929] <... set_robust_list resumed>) = 0 [pid 5926] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5929] rt_sigprocmask(SIG_SETMASK, [], [pid 5926] <... futex resumed>) = 0 [pid 5929] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5926] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5929] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5929] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5926] <... futex resumed>) = 0 [pid 5929] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5926] exit_group(0 [pid 5927] <... futex resumed>) = ? [pid 5929] <... futex resumed>) = ? [pid 5927] +++ exited with 0 +++ [pid 5926] <... exit_group resumed>) = ? [pid 5929] +++ exited with 0 +++ [pid 5926] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5926, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./213", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./213", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 148.581076][ T5927] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./213/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./213/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./213/binderfs") = 0 umount2("./213/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./213/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./213/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./213/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./213/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./213/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./213") = 0 mkdir("./214", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5930 ./strace-static-x86_64: Process 5930 attached [pid 5930] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5930] chdir("./214") = 0 [pid 5930] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5930] setpgid(0, 0) = 0 [pid 5930] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5930] write(3, "1000", 4) = 4 [pid 5930] close(3) = 0 [pid 5930] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5930] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5930] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5930] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5930] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5930] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5930] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5930] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5931 attached [pid 5931] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5931] set_robust_list(0x7fd868ec09a0, 24 [pid 5930] <... clone3 resumed> => {parent_tid=[5931]}, 88) = 5931 [pid 5931] <... set_robust_list resumed>) = 0 [pid 5930] rt_sigprocmask(SIG_SETMASK, [], [pid 5931] rt_sigprocmask(SIG_SETMASK, [], [pid 5930] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5931] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5930] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5931] memfd_create("syzkaller", 0 [pid 5930] <... futex resumed>) = 0 [pid 5930] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5931] <... memfd_create resumed>) = 3 [pid 5931] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5931] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5931] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5931] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5931] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5931] close(3) = 0 [pid 5931] mkdir("./file0", 0777) = 0 [ 148.874269][ T5931] loop0: detected capacity change from 0 to 8192 [ 148.889911][ T5931] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 148.902939][ T5931] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 148.912271][ T5931] REISERFS (device loop0): using ordered data mode [ 148.918782][ T5931] reiserfs: using flush barriers [pid 5931] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5931] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5931] chdir("./file0") = 0 [pid 5931] ioctl(4, LOOP_CLR_FD) = 0 [pid 5931] close(4) = 0 [pid 5931] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5931] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5930] <... futex resumed>) = 0 [pid 5930] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5931] <... futex resumed>) = 0 [pid 5930] <... futex resumed>) = 1 [pid 5931] mkdir(".", 0777 [pid 5930] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5931] <... mkdir resumed>) = -1 EEXIST (File exists) [ 148.925057][ T5931] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 148.941755][ T5931] REISERFS (device loop0): checking transaction log (loop0) [ 148.950023][ T5931] REISERFS (device loop0): Using r5 hash to sort names [pid 5931] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5931] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5931] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5930] <... futex resumed>) = 0 [pid 5931] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5930] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5931] <... futex resumed>) = 0 [pid 5931] mkdir(".", 0777 [pid 5930] <... futex resumed>) = 1 [pid 5931] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5930] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5931] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5930] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 149.005524][ T5931] reiserfs: enabling write barrier flush mode [ 149.013766][ T5931] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5930] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5931] <... mount resumed>) = 0 [pid 5930] <... mprotect resumed>) = 0 [pid 5931] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5930] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5931] <... openat resumed>) = 5 [pid 5930] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5931] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5933 attached ) = 0 [pid 5933] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5931] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5930] <... clone3 resumed> => {parent_tid=[5933]}, 88) = 5933 [pid 5933] <... rseq resumed>) = 0 [pid 5930] rt_sigprocmask(SIG_SETMASK, [], [pid 5933] set_robust_list(0x7fd868e9f9a0, 24 [pid 5930] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5933] <... set_robust_list resumed>) = 0 [pid 5930] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5933] rt_sigprocmask(SIG_SETMASK, [], [pid 5930] <... futex resumed>) = 0 [pid 5933] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5930] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5933] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5933] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5930] <... futex resumed>) = 0 [pid 5933] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5930] exit_group(0 [pid 5933] <... futex resumed>) = ? [pid 5930] <... exit_group resumed>) = ? [pid 5933] +++ exited with 0 +++ [pid 5931] <... futex resumed>) = ? [pid 5931] +++ exited with 0 +++ [pid 5930] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5930, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./214", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 149.055916][ T5931] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./214", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./214/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./214/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./214/binderfs") = 0 umount2("./214/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./214/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./214/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./214/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./214/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./214/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./214") = 0 mkdir("./215", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5934 attached , child_tidptr=0x5555565f3690) = 5934 [pid 5934] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5934] chdir("./215") = 0 [pid 5934] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5934] setpgid(0, 0) = 0 [pid 5934] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5934] write(3, "1000", 4) = 4 [pid 5934] close(3) = 0 [pid 5934] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5934] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5934] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5934] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5934] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5934] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5934] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5934] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5935 attached [pid 5935] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5934] <... clone3 resumed> => {parent_tid=[5935]}, 88) = 5935 [pid 5935] <... rseq resumed>) = 0 [pid 5934] rt_sigprocmask(SIG_SETMASK, [], [pid 5935] set_robust_list(0x7fd868ec09a0, 24 [pid 5934] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5935] <... set_robust_list resumed>) = 0 [pid 5934] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5935] rt_sigprocmask(SIG_SETMASK, [], [pid 5934] <... futex resumed>) = 0 [pid 5935] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5935] memfd_create("syzkaller", 0 [pid 5934] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5935] <... memfd_create resumed>) = 3 [pid 5935] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5935] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5935] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5935] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5935] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5935] close(3) = 0 [pid 5935] mkdir("./file0", 0777) = 0 [ 149.386203][ T5935] loop0: detected capacity change from 0 to 8192 [ 149.411966][ T5935] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 149.425000][ T5935] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5935] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5935] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5935] chdir("./file0") = 0 [pid 5935] ioctl(4, LOOP_CLR_FD) = 0 [pid 5935] close(4) = 0 [pid 5935] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] <... futex resumed>) = 0 [pid 5935] <... futex resumed>) = 1 [pid 5934] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5935] mkdir(".", 0777 [pid 5934] <... futex resumed>) = 0 [pid 5935] <... mkdir resumed>) = -1 EEXIST (File exists) [ 149.434416][ T5935] REISERFS (device loop0): using ordered data mode [ 149.440940][ T5935] reiserfs: using flush barriers [ 149.447415][ T5935] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 149.464057][ T5935] REISERFS (device loop0): checking transaction log (loop0) [ 149.472411][ T5935] REISERFS (device loop0): Using r5 hash to sort names [pid 5935] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5934] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5935] <... mount resumed>) = 0 [pid 5935] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5935] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] <... futex resumed>) = 0 [pid 5934] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5934] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5934] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5934] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5934] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5934] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5937 attached [pid 5935] <... futex resumed>) = 1 [pid 5937] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5935] mkdir(".", 0777 [pid 5934] <... clone3 resumed> => {parent_tid=[5937]}, 88) = 5937 [pid 5937] <... rseq resumed>) = 0 [pid 5935] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5934] rt_sigprocmask(SIG_SETMASK, [], [pid 5937] set_robust_list(0x7fd868e9f9a0, 24 [pid 5935] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5934] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5937] <... set_robust_list resumed>) = 0 [pid 5934] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5934] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5937] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5937] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [ 149.501415][ T5935] reiserfs: enabling write barrier flush mode [ 149.509972][ T5935] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5937] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5934] <... futex resumed>) = 0 [pid 5937] <... futex resumed>) = 1 [pid 5937] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5935] <... mount resumed>) = 0 [pid 5935] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5935] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5935] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5934] exit_group(0 [pid 5937] <... futex resumed>) = ? [pid 5937] +++ exited with 0 +++ [pid 5935] <... futex resumed>) = ? [pid 5934] <... exit_group resumed>) = ? [pid 5935] +++ exited with 0 +++ [pid 5934] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5934, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./215", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./215", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./215/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./215/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./215/binderfs") = 0 [ 149.554462][ T5935] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./215/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./215/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./215/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./215/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./215/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./215/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./215") = 0 mkdir("./216", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5938 attached , child_tidptr=0x5555565f3690) = 5938 [pid 5938] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5938] chdir("./216") = 0 [pid 5938] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5938] setpgid(0, 0) = 0 [pid 5938] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5938] write(3, "1000", 4) = 4 [pid 5938] close(3) = 0 [pid 5938] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5938] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5938] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5938] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5938] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5938] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5938] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5938] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5939 attached [pid 5939] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5939] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5939] rt_sigprocmask(SIG_SETMASK, [], [pid 5938] <... clone3 resumed> => {parent_tid=[5939]}, 88) = 5939 [pid 5939] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5938] rt_sigprocmask(SIG_SETMASK, [], [pid 5939] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5938] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5938] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] <... futex resumed>) = 0 [pid 5938] <... futex resumed>) = 1 [pid 5939] memfd_create("syzkaller", 0 [pid 5938] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5939] <... memfd_create resumed>) = 3 [pid 5939] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5939] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5939] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5939] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5939] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5939] close(3) = 0 [pid 5939] mkdir("./file0", 0777) = 0 [ 149.852257][ T5939] loop0: detected capacity change from 0 to 8192 [ 149.877973][ T5939] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 149.890961][ T5939] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5939] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5939] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5939] chdir("./file0") = 0 [pid 5939] ioctl(4, LOOP_CLR_FD) = 0 [pid 5939] close(4) = 0 [pid 5939] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5938] <... futex resumed>) = 0 [pid 5939] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5938] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5938] <... futex resumed>) = 0 [pid 5939] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5938] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 149.900227][ T5939] REISERFS (device loop0): using ordered data mode [ 149.906803][ T5939] reiserfs: using flush barriers [ 149.913097][ T5939] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 149.929466][ T5939] REISERFS (device loop0): checking transaction log (loop0) [ 149.937862][ T5939] REISERFS (device loop0): Using r5 hash to sort names [pid 5939] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5939] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5939] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5938] <... futex resumed>) = 0 [pid 5939] <... futex resumed>) = 1 [pid 5938] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] mkdir(".", 0777 [pid 5938] <... futex resumed>) = 0 [pid 5939] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5938] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5939] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5938] <... futex resumed>) = 0 [pid 5938] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5938] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5939] <... mount resumed>) = 0 [pid 5939] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5938] <... mprotect resumed>) = 0 [pid 5938] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5939] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5938] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5939] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5938] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5941 attached [pid 5941] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5938] <... clone3 resumed> => {parent_tid=[5941]}, 88) = 5941 [pid 5941] <... rseq resumed>) = 0 [pid 5938] rt_sigprocmask(SIG_SETMASK, [], [pid 5941] set_robust_list(0x7fd868e9f9a0, 24 [pid 5938] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5941] <... set_robust_list resumed>) = 0 [pid 5938] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5941] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5938] <... futex resumed>) = 0 [pid 5941] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5938] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5941] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5941] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5938] <... futex resumed>) = 0 [pid 5941] <... futex resumed>) = 1 [pid 5938] exit_group(0 [pid 5941] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5939] <... futex resumed>) = ? [pid 5938] <... exit_group resumed>) = ? [pid 5941] +++ exited with 0 +++ [pid 5939] +++ exited with 0 +++ [pid 5938] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5938, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./216", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./216", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 149.972239][ T5939] reiserfs: enabling write barrier flush mode [ 149.980168][ T5939] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 150.011150][ T5939] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./216/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./216/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./216/binderfs") = 0 umount2("./216/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./216/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./216/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./216/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./216/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./216/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./216") = 0 mkdir("./217", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5942 attached , child_tidptr=0x5555565f3690) = 5942 [pid 5942] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5942] chdir("./217") = 0 [pid 5942] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5942] setpgid(0, 0) = 0 [pid 5942] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5942] write(3, "1000", 4) = 4 [pid 5942] close(3) = 0 [pid 5942] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5942] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5942] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5942] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5942] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5942] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5942] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5942] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5943 attached [pid 5943] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5942] <... clone3 resumed> => {parent_tid=[5943]}, 88) = 5943 [pid 5943] <... rseq resumed>) = 0 [pid 5942] rt_sigprocmask(SIG_SETMASK, [], [pid 5943] set_robust_list(0x7fd868ec09a0, 24 [pid 5942] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5943] <... set_robust_list resumed>) = 0 [pid 5942] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5943] rt_sigprocmask(SIG_SETMASK, [], [pid 5942] <... futex resumed>) = 0 [pid 5943] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5943] memfd_create("syzkaller", 0 [pid 5942] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5943] <... memfd_create resumed>) = 3 [pid 5943] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5943] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5943] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5943] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5943] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5943] close(3) = 0 [pid 5943] mkdir("./file0", 0777) = 0 [ 150.291496][ T5943] loop0: detected capacity change from 0 to 8192 [ 150.305757][ T5943] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 150.318729][ T5943] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 150.327972][ T5943] REISERFS (device loop0): using ordered data mode [ 150.334498][ T5943] reiserfs: using flush barriers [pid 5943] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5943] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5943] chdir("./file0") = 0 [pid 5943] ioctl(4, LOOP_CLR_FD) = 0 [pid 5943] close(4) = 0 [pid 5943] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5942] <... futex resumed>) = 0 [pid 5943] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5942] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5943] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5942] <... futex resumed>) = 0 [pid 5943] mkdir(".", 0777 [ 150.340660][ T5943] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 150.357406][ T5943] REISERFS (device loop0): checking transaction log (loop0) [ 150.365654][ T5943] REISERFS (device loop0): Using r5 hash to sort names [pid 5942] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5943] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5943] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5943] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5943] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5942] <... futex resumed>) = 0 [pid 5943] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5942] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5943] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5942] <... futex resumed>) = 0 [pid 5943] mkdir(".", 0777 [pid 5942] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5943] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5942] <... futex resumed>) = 0 [pid 5942] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5943] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5942] <... mmap resumed>) = 0x7fd868e7f000 [pid 5942] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5942] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5942] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5945 attached [pid 5943] <... mount resumed>) = 0 [pid 5945] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5945] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5945] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5945] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5943] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5942] <... clone3 resumed> => {parent_tid=[5945]}, 88) = 5945 [pid 5943] <... openat resumed>) = 5 [pid 5942] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5943] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5942] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5945] <... futex resumed>) = 0 [pid 5943] <... futex resumed>) = 0 [pid 5942] <... futex resumed>) = 1 [pid 5945] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5943] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5942] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5945] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5945] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5942] <... futex resumed>) = 0 [pid 5945] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5942] exit_group(0 [pid 5945] <... futex resumed>) = ? [pid 5945] +++ exited with 0 +++ [pid 5943] <... futex resumed>) = ? [pid 5942] <... exit_group resumed>) = ? [pid 5943] +++ exited with 0 +++ [pid 5942] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5942, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- umount2("./217", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./217", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 150.400290][ T5943] reiserfs: enabling write barrier flush mode [ 150.409020][ T5943] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 150.439956][ T5943] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./217/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./217/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./217/binderfs") = 0 umount2("./217/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./217/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./217/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./217/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./217/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./217/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./217") = 0 mkdir("./218", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5946 attached , child_tidptr=0x5555565f3690) = 5946 [pid 5946] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5946] chdir("./218") = 0 [pid 5946] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5946] setpgid(0, 0) = 0 [pid 5946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5946] write(3, "1000", 4) = 4 [pid 5946] close(3) = 0 [pid 5946] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5946] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5946] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5946] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5946] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5946] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5946] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5946] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5947 attached [pid 5947] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5946] <... clone3 resumed> => {parent_tid=[5947]}, 88) = 5947 [pid 5947] <... rseq resumed>) = 0 [pid 5946] rt_sigprocmask(SIG_SETMASK, [], [pid 5947] set_robust_list(0x7fd868ec09a0, 24 [pid 5946] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5947] <... set_robust_list resumed>) = 0 [pid 5946] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5947] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5946] <... futex resumed>) = 0 [pid 5947] memfd_create("syzkaller", 0 [pid 5946] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5947] <... memfd_create resumed>) = 3 [pid 5947] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5947] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5947] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5947] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5947] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5947] close(3) = 0 [pid 5947] mkdir("./file0", 0777) = 0 [ 150.727716][ T5947] loop0: detected capacity change from 0 to 8192 [ 150.754713][ T5947] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 150.767756][ T5947] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5947] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5947] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5947] chdir("./file0") = 0 [pid 5947] ioctl(4, LOOP_CLR_FD) = 0 [pid 5947] close(4) = 0 [pid 5947] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5946] <... futex resumed>) = 0 [pid 5947] <... futex resumed>) = 1 [pid 5946] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5947] mkdir(".", 0777 [pid 5946] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5947] <... mkdir resumed>) = -1 EEXIST (File exists) [ 150.777084][ T5947] REISERFS (device loop0): using ordered data mode [ 150.783672][ T5947] reiserfs: using flush barriers [ 150.789956][ T5947] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 150.806804][ T5947] REISERFS (device loop0): checking transaction log (loop0) [ 150.815345][ T5947] REISERFS (device loop0): Using r5 hash to sort names [pid 5947] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5947] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5947] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5946] <... futex resumed>) = 0 [pid 5947] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5946] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5947] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5946] <... futex resumed>) = 0 [pid 5947] mkdir(".", 0777 [pid 5946] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5946] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5947] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5946] <... mmap resumed>) = 0x7fd868e7f000 [pid 5947] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5946] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5946] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5947] <... mount resumed>) = 0 [pid 5946] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5946] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5947] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5949 attached [pid 5949] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5947] <... openat resumed>) = 5 [pid 5946] <... clone3 resumed> => {parent_tid=[5949]}, 88) = 5949 [pid 5949] set_robust_list(0x7fd868e9f9a0, 24 [pid 5946] rt_sigprocmask(SIG_SETMASK, [], [pid 5949] <... set_robust_list resumed>) = 0 [pid 5947] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5949] rt_sigprocmask(SIG_SETMASK, [], [pid 5946] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5949] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5946] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5949] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5946] <... futex resumed>) = 0 [pid 5947] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5946] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5949] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5949] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5946] <... futex resumed>) = 0 [pid 5949] <... futex resumed>) = 1 [pid 5946] exit_group(0 [pid 5947] <... futex resumed>) = ? [pid 5949] +++ exited with 0 +++ [pid 5947] +++ exited with 0 +++ [pid 5946] <... exit_group resumed>) = ? [pid 5946] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5946, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./218", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./218", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./218/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./218/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./218/binderfs") = 0 [ 150.850702][ T5947] reiserfs: enabling write barrier flush mode [ 150.859436][ T5947] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 150.880577][ T5947] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./218/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./218/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./218/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./218/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./218/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./218/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./218") = 0 mkdir("./219", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5950 attached , child_tidptr=0x5555565f3690) = 5950 [pid 5950] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5950] chdir("./219") = 0 [pid 5950] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5950] setpgid(0, 0) = 0 [pid 5950] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5950] write(3, "1000", 4) = 4 [pid 5950] close(3) = 0 [pid 5950] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5950] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5950] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5950] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5950] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5950] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5950] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5950] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5951 attached [pid 5951] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5950] <... clone3 resumed> => {parent_tid=[5951]}, 88) = 5951 [pid 5951] <... rseq resumed>) = 0 [pid 5951] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5951] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5951] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5950] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5950] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5951] <... futex resumed>) = 0 [pid 5950] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5951] memfd_create("syzkaller", 0) = 3 [pid 5951] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5951] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5951] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5951] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5951] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5951] close(3) = 0 [pid 5951] mkdir("./file0", 0777) = 0 [ 151.124573][ T5951] loop0: detected capacity change from 0 to 8192 [ 151.140122][ T5951] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 151.153142][ T5951] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 151.162536][ T5951] REISERFS (device loop0): using ordered data mode [ 151.169046][ T5951] reiserfs: using flush barriers [pid 5951] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5951] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5951] chdir("./file0") = 0 [pid 5951] ioctl(4, LOOP_CLR_FD) = 0 [pid 5951] close(4) = 0 [pid 5951] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5950] <... futex resumed>) = 0 [pid 5951] mkdir(".", 0777 [pid 5950] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5951] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5951] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5950] <... futex resumed>) = 0 [ 151.175500][ T5951] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 151.191925][ T5951] REISERFS (device loop0): checking transaction log (loop0) [ 151.199993][ T5951] REISERFS (device loop0): Using r5 hash to sort names [ 151.215437][ T5951] reiserfs: enabling write barrier flush mode [pid 5950] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5951] <... mount resumed>) = 0 [pid 5951] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5951] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5950] <... futex resumed>) = 0 [pid 5950] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5950] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5950] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5950] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5950] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5950] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[5953]}, 88) = 5953 [pid 5950] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5950] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5950] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5953 attached [pid 5951] <... futex resumed>) = 1 [pid 5953] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5953] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5953] rt_sigprocmask(SIG_SETMASK, [], [pid 5951] mkdir(".", 0777 [pid 5953] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5953] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5951] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5953] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 5951] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5953] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5950] <... futex resumed>) = 0 [pid 5953] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5951] <... mount resumed>) = 0 [pid 5951] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5951] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5951] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5950] exit_group(0) = ? [pid 5953] <... futex resumed>) = ? [pid 5951] <... futex resumed>) = ? [pid 5953] +++ exited with 0 +++ [pid 5951] +++ exited with 0 +++ [pid 5950] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5950, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./219", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./219", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./219/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./219/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./219/binderfs") = 0 [ 151.226856][ T5951] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 151.262287][ T5951] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./219/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./219/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./219/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./219/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./219/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./219/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./219") = 0 mkdir("./220", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5954 attached [pid 5954] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5954] chdir("./220") = 0 [pid 5954] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5954] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5954 [pid 5954] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5954] write(3, "1000", 4) = 4 [pid 5954] close(3) = 0 [pid 5954] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5954] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5954] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5954] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5954] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5954] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5954] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5954] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5955 attached => {parent_tid=[5955]}, 88) = 5955 [pid 5955] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5955] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5955] rt_sigprocmask(SIG_SETMASK, [], [pid 5954] rt_sigprocmask(SIG_SETMASK, [], [pid 5955] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5955] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5954] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5954] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5955] <... futex resumed>) = 0 [pid 5954] <... futex resumed>) = 1 [pid 5954] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5955] memfd_create("syzkaller", 0) = 3 [pid 5955] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5955] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5955] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5955] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5955] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5955] close(3) = 0 [pid 5955] mkdir("./file0", 0777) = 0 [ 151.497749][ T5955] loop0: detected capacity change from 0 to 8192 [ 151.507645][ T5955] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 151.520698][ T5955] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 151.530097][ T5955] REISERFS (device loop0): using ordered data mode [ 151.536669][ T5955] reiserfs: using flush barriers [pid 5955] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5955] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5955] chdir("./file0") = 0 [pid 5955] ioctl(4, LOOP_CLR_FD) = 0 [pid 5955] close(4) = 0 [pid 5955] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5954] <... futex resumed>) = 0 [pid 5955] <... futex resumed>) = 1 [pid 5955] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5954] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5955] <... futex resumed>) = 0 [pid 5954] <... futex resumed>) = 1 [pid 5955] mkdir(".", 0777 [pid 5954] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5955] <... mkdir resumed>) = -1 EEXIST (File exists) [ 151.543297][ T5955] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 151.559697][ T5955] REISERFS (device loop0): checking transaction log (loop0) [ 151.568196][ T5955] REISERFS (device loop0): Using r5 hash to sort names [pid 5955] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5955] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5955] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5954] <... futex resumed>) = 0 [pid 5955] mkdir(".", 0777 [pid 5954] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5955] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5955] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5954] <... futex resumed>) = 0 [pid 5954] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5954] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5954] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5955] <... mount resumed>) = 0 [pid 5954] <... mprotect resumed>) = 0 [pid 5954] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5954] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5955] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5957 attached ) = 5 [pid 5954] <... clone3 resumed> => {parent_tid=[5957]}, 88) = 5957 [pid 5957] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5955] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5954] rt_sigprocmask(SIG_SETMASK, [], [pid 5957] <... rseq resumed>) = 0 [pid 5955] <... futex resumed>) = 0 [pid 5954] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5957] set_robust_list(0x7fd868e9f9a0, 24 [pid 5955] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5954] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5957] <... set_robust_list resumed>) = 0 [pid 5957] rt_sigprocmask(SIG_SETMASK, [], [pid 5954] <... futex resumed>) = 0 [pid 5957] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5954] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5957] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5957] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5954] <... futex resumed>) = 0 [pid 5954] exit_group(0 [pid 5955] <... futex resumed>) = ? [pid 5955] +++ exited with 0 +++ [pid 5954] <... exit_group resumed>) = ? [pid 5957] +++ exited with 0 +++ [pid 5954] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5954, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./220", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./220", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./220/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./220/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./220/binderfs") = 0 [ 151.600236][ T5955] reiserfs: enabling write barrier flush mode [ 151.608421][ T5955] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 151.639293][ T5955] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./220/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./220/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./220/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./220/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./220/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./220/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./220") = 0 mkdir("./221", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 5958 ./strace-static-x86_64: Process 5958 attached [pid 5958] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5958] chdir("./221") = 0 [pid 5958] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5958] setpgid(0, 0) = 0 [pid 5958] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5958] write(3, "1000", 4) = 4 [pid 5958] close(3) = 0 [pid 5958] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5958] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5958] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5958] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5958] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5958] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5958] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5958] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5959 attached [pid 5959] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5959] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5959] rt_sigprocmask(SIG_SETMASK, [], [pid 5958] <... clone3 resumed> => {parent_tid=[5959]}, 88) = 5959 [pid 5959] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5958] rt_sigprocmask(SIG_SETMASK, [], [pid 5959] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5958] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5958] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] <... futex resumed>) = 0 [pid 5958] <... futex resumed>) = 1 [pid 5958] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5959] memfd_create("syzkaller", 0) = 3 [pid 5959] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5959] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5959] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5959] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5959] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5959] close(3) = 0 [pid 5959] mkdir("./file0", 0777) = 0 [ 151.904194][ T5959] loop0: detected capacity change from 0 to 8192 [ 151.929591][ T5959] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 151.942761][ T5959] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5959] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5959] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5959] chdir("./file0") = 0 [pid 5959] ioctl(4, LOOP_CLR_FD) = 0 [pid 5959] close(4) = 0 [pid 5959] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5958] <... futex resumed>) = 0 [pid 5959] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5958] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5958] <... futex resumed>) = 0 [pid 5959] mkdir(".", 0777 [pid 5958] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5959] <... mkdir resumed>) = -1 EEXIST (File exists) [ 151.952036][ T5959] REISERFS (device loop0): using ordered data mode [ 151.958544][ T5959] reiserfs: using flush barriers [ 151.964966][ T5959] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 151.981522][ T5959] REISERFS (device loop0): checking transaction log (loop0) [ 151.990742][ T5959] REISERFS (device loop0): Using r5 hash to sort names [pid 5959] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5959] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5959] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5958] <... futex resumed>) = 0 [pid 5958] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5959] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5959] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5958] <... futex resumed>) = 0 [pid 5958] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5958] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5958] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5958] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 152.034008][ T5959] reiserfs: enabling write barrier flush mode [ 152.042286][ T5959] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5958] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5961 attached [pid 5961] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5958] <... clone3 resumed> => {parent_tid=[5961]}, 88) = 5961 [pid 5959] <... mount resumed>) = 0 [pid 5961] <... rseq resumed>) = 0 [pid 5958] rt_sigprocmask(SIG_SETMASK, [], [pid 5961] set_robust_list(0x7fd868e9f9a0, 24 [pid 5959] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5958] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5961] <... set_robust_list resumed>) = 0 [pid 5959] <... openat resumed>) = 5 [pid 5958] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5961] rt_sigprocmask(SIG_SETMASK, [], [pid 5958] <... futex resumed>) = 0 [pid 5961] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5958] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5961] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5959] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5961] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5959] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5961] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5958] <... futex resumed>) = 0 [pid 5961] <... futex resumed>) = 1 [pid 5958] exit_group(0 [pid 5961] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5959] <... futex resumed>) = ? [pid 5959] +++ exited with 0 +++ [pid 5958] <... exit_group resumed>) = ? [pid 5961] <... futex resumed>) = ? [pid 5961] +++ exited with 0 +++ [pid 5958] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5958, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./221", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./221", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./221/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./221/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./221/binderfs") = 0 [ 152.075058][ T5959] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./221/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./221/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./221/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./221/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./221/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./221/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./221") = 0 mkdir("./222", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5962 attached , child_tidptr=0x5555565f3690) = 5962 [pid 5962] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5962] chdir("./222") = 0 [pid 5962] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5962] setpgid(0, 0) = 0 [pid 5962] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5962] write(3, "1000", 4) = 4 [pid 5962] close(3) = 0 [pid 5962] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5962] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5962] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5962] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5962] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5962] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5962] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5962] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5963 attached [pid 5963] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5962] <... clone3 resumed> => {parent_tid=[5963]}, 88) = 5963 [pid 5963] <... rseq resumed>) = 0 [pid 5962] rt_sigprocmask(SIG_SETMASK, [], [pid 5963] set_robust_list(0x7fd868ec09a0, 24 [pid 5962] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5963] <... set_robust_list resumed>) = 0 [pid 5962] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5963] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5962] <... futex resumed>) = 0 [pid 5962] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5963] memfd_create("syzkaller", 0) = 3 [pid 5963] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5963] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5963] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5963] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5963] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5963] close(3) = 0 [pid 5963] mkdir("./file0", 0777) = 0 [ 152.328094][ T5963] loop0: detected capacity change from 0 to 8192 [ 152.351681][ T5963] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 152.364708][ T5963] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5963] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5963] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5963] chdir("./file0") = 0 [pid 5963] ioctl(4, LOOP_CLR_FD) = 0 [pid 5963] close(4) = 0 [pid 5963] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5963] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5962] <... futex resumed>) = 0 [pid 5962] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5963] <... futex resumed>) = 0 [pid 5962] <... futex resumed>) = 1 [ 152.374014][ T5963] REISERFS (device loop0): using ordered data mode [ 152.380526][ T5963] reiserfs: using flush barriers [ 152.386880][ T5963] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 152.403320][ T5963] REISERFS (device loop0): checking transaction log (loop0) [ 152.411899][ T5963] REISERFS (device loop0): Using r5 hash to sort names [pid 5963] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5962] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5963] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5963] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5963] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5962] <... futex resumed>) = 0 [pid 5963] mkdir(".", 0777 [pid 5962] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5963] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5963] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5962] <... futex resumed>) = 0 [pid 5962] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5962] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 152.448015][ T5963] reiserfs: enabling write barrier flush mode [ 152.456910][ T5963] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5962] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5963] <... mount resumed>) = 0 [pid 5962] <... mprotect resumed>) = 0 [pid 5963] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5963] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5962] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5963] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5962] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5962] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5965 attached => {parent_tid=[5965]}, 88) = 5965 [pid 5962] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5962] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5965] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5962] <... futex resumed>) = 0 [pid 5965] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5962] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5965] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5965] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5965] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5962] <... futex resumed>) = 0 [pid 5965] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5962] exit_group(0 [pid 5965] <... futex resumed>) = ? [pid 5963] <... futex resumed>) = ? [pid 5962] <... exit_group resumed>) = ? [pid 5965] +++ exited with 0 +++ [pid 5963] +++ exited with 0 +++ [pid 5962] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5962, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 152.504082][ T5963] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./222", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./222", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./222/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./222/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./222/binderfs") = 0 umount2("./222/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./222/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./222/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./222/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./222/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./222/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./222") = 0 mkdir("./223", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5966 attached , child_tidptr=0x5555565f3690) = 5966 [pid 5966] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5966] chdir("./223") = 0 [pid 5966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5966] setpgid(0, 0) = 0 [pid 5966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5966] write(3, "1000", 4) = 4 [pid 5966] close(3) = 0 [pid 5966] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5966] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5966] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5966] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5966] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5966] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5966] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5966] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5967 attached [pid 5967] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5966] <... clone3 resumed> => {parent_tid=[5967]}, 88) = 5967 [pid 5967] set_robust_list(0x7fd868ec09a0, 24 [pid 5966] rt_sigprocmask(SIG_SETMASK, [], [pid 5967] <... set_robust_list resumed>) = 0 [pid 5966] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5967] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5966] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5967] memfd_create("syzkaller", 0 [pid 5966] <... futex resumed>) = 0 [pid 5966] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5967] <... memfd_create resumed>) = 3 [pid 5967] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5967] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5967] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5967] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5967] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5967] close(3) = 0 [pid 5967] mkdir("./file0", 0777) = 0 [ 152.856596][ T5967] loop0: detected capacity change from 0 to 8192 [ 152.877187][ T5967] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 152.890165][ T5967] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 152.899494][ T5967] REISERFS (device loop0): using ordered data mode [pid 5967] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5967] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5967] chdir("./file0") = 0 [pid 5967] ioctl(4, LOOP_CLR_FD) = 0 [pid 5967] close(4) = 0 [pid 5967] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5966] <... futex resumed>) = 0 [pid 5966] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5967] mkdir(".", 0777 [pid 5966] <... futex resumed>) = 0 [ 152.906033][ T5967] reiserfs: using flush barriers [ 152.912393][ T5967] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 152.928830][ T5967] REISERFS (device loop0): checking transaction log (loop0) [ 152.937243][ T5967] REISERFS (device loop0): Using r5 hash to sort names [pid 5967] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5966] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5967] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5967] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5967] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5966] <... futex resumed>) = 0 [pid 5967] mkdir(".", 0777 [pid 5966] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5967] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5966] <... futex resumed>) = 0 [ 152.959616][ T5967] reiserfs: enabling write barrier flush mode [ 152.969083][ T5967] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5967] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5966] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5966] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5966] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5966] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5967] <... mount resumed>) = 0 [pid 5966] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5966] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5967] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5969 attached ) = 5 [pid 5969] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5967] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5966] <... clone3 resumed> => {parent_tid=[5969]}, 88) = 5969 [pid 5969] set_robust_list(0x7fd868e9f9a0, 24 [pid 5967] <... futex resumed>) = 0 [pid 5969] <... set_robust_list resumed>) = 0 [pid 5966] rt_sigprocmask(SIG_SETMASK, [], [pid 5967] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5969] rt_sigprocmask(SIG_SETMASK, [], [pid 5966] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5969] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5966] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5969] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5966] <... futex resumed>) = 0 [pid 5966] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5969] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5969] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5966] <... futex resumed>) = 0 [pid 5969] <... futex resumed>) = 1 [pid 5966] exit_group(0 [pid 5969] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 5967] <... futex resumed>) = ? [pid 5966] <... exit_group resumed>) = ? [pid 5969] +++ exited with 0 +++ [pid 5967] +++ exited with 0 +++ [pid 5966] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5966, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./223", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./223", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./223/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./223/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./223/binderfs") = 0 [ 153.032277][ T5967] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./223/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./223/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./223/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./223/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./223/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./223/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./223") = 0 mkdir("./224", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5970 attached , child_tidptr=0x5555565f3690) = 5970 [pid 5970] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5970] chdir("./224") = 0 [pid 5970] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5970] setpgid(0, 0) = 0 [pid 5970] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5970] write(3, "1000", 4) = 4 [pid 5970] close(3) = 0 [pid 5970] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5970] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5970] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5970] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5970] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5970] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5970] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5970] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5971 attached [pid 5971] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5970] <... clone3 resumed> => {parent_tid=[5971]}, 88) = 5971 [pid 5971] set_robust_list(0x7fd868ec09a0, 24 [pid 5970] rt_sigprocmask(SIG_SETMASK, [], [pid 5971] <... set_robust_list resumed>) = 0 [pid 5970] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5971] rt_sigprocmask(SIG_SETMASK, [], [pid 5970] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5971] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5970] <... futex resumed>) = 0 [pid 5970] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5971] memfd_create("syzkaller", 0) = 3 [pid 5971] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5971] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5971] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5971] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5971] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5971] close(3) = 0 [pid 5971] mkdir("./file0", 0777) = 0 [ 153.279273][ T5971] loop0: detected capacity change from 0 to 8192 [ 153.289080][ T5971] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 153.302060][ T5971] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 153.311314][ T5971] REISERFS (device loop0): using ordered data mode [ 153.317819][ T5971] reiserfs: using flush barriers [pid 5971] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5971] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5971] chdir("./file0") = 0 [pid 5971] ioctl(4, LOOP_CLR_FD) = 0 [ 153.324060][ T5971] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 153.340445][ T5971] REISERFS (device loop0): checking transaction log (loop0) [ 153.349133][ T5971] REISERFS (device loop0): Using r5 hash to sort names [pid 5971] close(4) = 0 [pid 5971] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5970] <... futex resumed>) = 0 [pid 5971] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5970] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5971] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5970] <... futex resumed>) = 0 [pid 5971] mkdir(".", 0777 [pid 5970] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5971] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5971] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5971] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5971] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5970] <... futex resumed>) = 0 [pid 5971] <... futex resumed>) = 1 [pid 5970] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5971] mkdir(".", 0777 [pid 5970] <... futex resumed>) = 0 [pid 5971] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5970] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5971] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5970] <... futex resumed>) = 0 [pid 5970] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5970] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5970] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5971] <... mount resumed>) = 0 [pid 5970] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5971] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5970] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5971] <... openat resumed>) = 5 ./strace-static-x86_64: Process 5973 attached [pid 5973] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5971] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5973] set_robust_list(0x7fd868e9f9a0, 24 [pid 5971] <... futex resumed>) = 0 [pid 5970] <... clone3 resumed> => {parent_tid=[5973]}, 88) = 5973 [pid 5973] <... set_robust_list resumed>) = 0 [pid 5971] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5970] rt_sigprocmask(SIG_SETMASK, [], [pid 5973] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5970] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5973] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5970] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5973] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5970] <... futex resumed>) = 0 [pid 5973] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5970] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5973] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5973] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5973] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5970] <... futex resumed>) = 0 [pid 5970] exit_group(0 [pid 5973] <... futex resumed>) = ? [pid 5971] <... futex resumed>) = ? [pid 5970] <... exit_group resumed>) = ? [pid 5973] +++ exited with 0 +++ [pid 5971] +++ exited with 0 +++ [pid 5970] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5970, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./224", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./224", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 153.383980][ T5971] reiserfs: enabling write barrier flush mode [ 153.393474][ T5971] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 153.414407][ T5971] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./224/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./224/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./224/binderfs") = 0 umount2("./224/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./224/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./224/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./224/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./224/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./224/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./224") = 0 mkdir("./225", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5974 attached [pid 5974] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5974 [pid 5974] <... set_robust_list resumed>) = 0 [pid 5974] chdir("./225") = 0 [pid 5974] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5974] setpgid(0, 0) = 0 [pid 5974] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5974] write(3, "1000", 4) = 4 [pid 5974] close(3) = 0 [pid 5974] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5974] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5974] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5974] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5974] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5974] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5974] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5974] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5975 attached => {parent_tid=[5975]}, 88) = 5975 [pid 5974] rt_sigprocmask(SIG_SETMASK, [], [pid 5975] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5974] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5974] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5974] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5975] <... rseq resumed>) = 0 [pid 5975] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5975] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5975] memfd_create("syzkaller", 0) = 3 [pid 5975] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5975] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5975] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5975] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5975] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5975] close(3) = 0 [pid 5975] mkdir("./file0", 0777) = 0 [ 153.718600][ T5975] loop0: detected capacity change from 0 to 8192 [ 153.744865][ T5975] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 153.757883][ T5975] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 5975] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5975] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5975] chdir("./file0") = 0 [pid 5975] ioctl(4, LOOP_CLR_FD) = 0 [pid 5975] close(4) = 0 [pid 5975] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5974] <... futex resumed>) = 0 [pid 5975] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5974] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 153.767207][ T5975] REISERFS (device loop0): using ordered data mode [ 153.773782][ T5975] reiserfs: using flush barriers [ 153.779883][ T5975] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 153.796522][ T5975] REISERFS (device loop0): checking transaction log (loop0) [ 153.804938][ T5975] REISERFS (device loop0): Using r5 hash to sort names [pid 5975] mkdir(".", 0777 [pid 5974] <... futex resumed>) = 0 [pid 5974] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5975] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5975] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5975] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5975] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5974] <... futex resumed>) = 0 [pid 5975] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5974] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5974] <... futex resumed>) = 0 [pid 5975] mkdir(".", 0777 [pid 5974] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5975] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5974] <... futex resumed>) = 0 [pid 5975] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5974] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5974] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5974] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 153.838435][ T5975] reiserfs: enabling write barrier flush mode [ 153.847297][ T5975] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5974] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5977 attached [pid 5977] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5975] <... mount resumed>) = 0 [pid 5974] <... clone3 resumed> => {parent_tid=[5977]}, 88) = 5977 [pid 5977] <... rseq resumed>) = 0 [pid 5975] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5974] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5977] set_robust_list(0x7fd868e9f9a0, 24 [pid 5975] <... openat resumed>) = 5 [pid 5974] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5977] <... set_robust_list resumed>) = 0 [pid 5975] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5974] <... futex resumed>) = 0 [pid 5977] rt_sigprocmask(SIG_SETMASK, [], [pid 5975] <... futex resumed>) = 0 [pid 5974] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5977] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5975] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5977] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5977] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5974] <... futex resumed>) = 0 [pid 5977] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5974] exit_group(0 [pid 5977] <... futex resumed>) = ? [pid 5975] <... futex resumed>) = ? [pid 5977] +++ exited with 0 +++ [pid 5974] <... exit_group resumed>) = ? [pid 5975] +++ exited with 0 +++ [pid 5974] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5974, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./225", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./225", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./225/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./225/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./225/binderfs") = 0 [ 153.879249][ T5975] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./225/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./225/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./225/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./225/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./225/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./225/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./225") = 0 mkdir("./226", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5978 attached [pid 5978] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5978] chdir("./226") = 0 [pid 5978] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5978] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5978 [pid 5978] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5978] write(3, "1000", 4) = 4 [pid 5978] close(3) = 0 [pid 5978] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5978] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5978] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5978] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5978] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5978] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5978] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5978] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5979 attached [pid 5979] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5978] <... clone3 resumed> => {parent_tid=[5979]}, 88) = 5979 [pid 5979] set_robust_list(0x7fd868ec09a0, 24 [pid 5978] rt_sigprocmask(SIG_SETMASK, [], [pid 5979] <... set_robust_list resumed>) = 0 [pid 5979] rt_sigprocmask(SIG_SETMASK, [], [pid 5978] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5979] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5978] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] memfd_create("syzkaller", 0 [pid 5978] <... futex resumed>) = 0 [pid 5978] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5979] <... memfd_create resumed>) = 3 [pid 5979] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5979] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5979] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5979] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5979] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5979] close(3) = 0 [pid 5979] mkdir("./file0", 0777) = 0 [ 154.118545][ T5979] loop0: detected capacity change from 0 to 8192 [ 154.133957][ T5979] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 154.146957][ T5979] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 154.156716][ T5979] REISERFS (device loop0): using ordered data mode [ 154.163394][ T5979] reiserfs: using flush barriers [pid 5979] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5979] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5979] chdir("./file0") = 0 [pid 5979] ioctl(4, LOOP_CLR_FD) = 0 [pid 5979] close(4) = 0 [pid 5979] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5978] <... futex resumed>) = 0 [pid 5979] <... futex resumed>) = 1 [pid 5978] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] mkdir(".", 0777 [pid 5978] <... futex resumed>) = 0 [pid 5978] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5979] <... mkdir resumed>) = -1 EEXIST (File exists) [ 154.169931][ T5979] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 154.186536][ T5979] REISERFS (device loop0): checking transaction log (loop0) [ 154.194847][ T5979] REISERFS (device loop0): Using r5 hash to sort names [pid 5979] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5979] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5979] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5978] <... futex resumed>) = 0 [pid 5979] <... futex resumed>) = 1 [pid 5978] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] mkdir(".", 0777 [pid 5978] <... futex resumed>) = 0 [pid 5979] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5978] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5978] <... futex resumed>) = 0 [pid 5978] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5978] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5978] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5978] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5981 attached [pid 5981] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5981] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5978] <... clone3 resumed> => {parent_tid=[5981]}, 88) = 5981 [pid 5981] rt_sigprocmask(SIG_SETMASK, [], [pid 5978] rt_sigprocmask(SIG_SETMASK, [], [pid 5981] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5978] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5981] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5978] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5981] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5978] <... futex resumed>) = 0 [pid 5979] <... mount resumed>) = 0 [pid 5978] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5979] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5981] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5979] <... openat resumed>) = 5 [pid 5981] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5979] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5979] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5978] <... futex resumed>) = 0 [pid 5981] <... futex resumed>) = 1 [pid 5981] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5978] exit_group(0 [pid 5981] <... futex resumed>) = ? [pid 5979] <... futex resumed>) = ? [pid 5978] <... exit_group resumed>) = ? [pid 5981] +++ exited with 0 +++ [pid 5979] +++ exited with 0 +++ [pid 5978] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5978, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./226", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./226", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./226/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./226/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./226/binderfs") = 0 [ 154.244748][ T5979] reiserfs: enabling write barrier flush mode [ 154.253464][ T5979] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 154.281760][ T5979] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./226/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./226/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./226/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./226/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./226/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./226/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./226") = 0 mkdir("./227", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5982 attached , child_tidptr=0x5555565f3690) = 5982 [pid 5982] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5982] chdir("./227") = 0 [pid 5982] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5982] setpgid(0, 0) = 0 [pid 5982] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5982] write(3, "1000", 4) = 4 [pid 5982] close(3) = 0 [pid 5982] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5982] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5982] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5982] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5982] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5982] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5982] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5982] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5983 attached => {parent_tid=[5983]}, 88) = 5983 [pid 5982] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5983] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5982] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] set_robust_list(0x7fd868ec09a0, 24 [pid 5982] <... futex resumed>) = 0 [pid 5983] <... set_robust_list resumed>) = 0 [pid 5982] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5983] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5983] memfd_create("syzkaller", 0) = 3 [pid 5983] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5983] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5983] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5983] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5983] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5983] close(3) = 0 [pid 5983] mkdir("./file0", 0777) = 0 [ 154.543416][ T5983] loop0: detected capacity change from 0 to 8192 [ 154.564002][ T5983] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 154.577157][ T5983] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 154.586468][ T5983] REISERFS (device loop0): using ordered data mode [pid 5983] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5983] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5983] chdir("./file0") = 0 [pid 5983] ioctl(4, LOOP_CLR_FD) = 0 [pid 5983] close(4) = 0 [pid 5983] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5983] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5982] <... futex resumed>) = 0 [pid 5982] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] <... futex resumed>) = 0 [pid 5983] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5983] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5982] <... futex resumed>) = 1 [ 154.592993][ T5983] reiserfs: using flush barriers [ 154.599222][ T5983] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 154.616103][ T5983] REISERFS (device loop0): checking transaction log (loop0) [ 154.624486][ T5983] REISERFS (device loop0): Using r5 hash to sort names [pid 5982] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5983] <... mount resumed>) = 0 [pid 5983] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5983] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5983] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5982] <... futex resumed>) = 0 [pid 5982] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] <... futex resumed>) = 0 [pid 5982] <... futex resumed>) = 1 [pid 5983] mkdir(".", 0777 [pid 5982] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5983] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5982] <... futex resumed>) = 0 [pid 5983] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5982] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5982] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5982] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5983] <... mount resumed>) = 0 [pid 5982] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5983] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5982] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5983] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5982] <... clone3 resumed> => {parent_tid=[5985]}, 88) = 5985 ./strace-static-x86_64: Process 5985 attached [pid 5982] rt_sigprocmask(SIG_SETMASK, [], [pid 5985] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 5982] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5985] <... rseq resumed>) = 0 [pid 5982] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5985] set_robust_list(0x7fd868e9f9a0, 24 [pid 5982] <... futex resumed>) = 0 [pid 5985] <... set_robust_list resumed>) = 0 [pid 5982] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5985] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5985] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5983] <... futex resumed>) = 0 [pid 5985] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5983] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5985] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5982] <... futex resumed>) = 0 [pid 5985] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5982] exit_group(0 [pid 5985] <... futex resumed>) = ? [pid 5983] <... futex resumed>) = ? [pid 5982] <... exit_group resumed>) = ? [pid 5985] +++ exited with 0 +++ [pid 5983] +++ exited with 0 +++ [pid 5982] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5982, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./227", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./227", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 154.673002][ T5983] reiserfs: enabling write barrier flush mode [ 154.680794][ T5983] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 154.711451][ T5983] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./227/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./227/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./227/binderfs") = 0 umount2("./227/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./227/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./227/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./227/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./227/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./227/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./227") = 0 mkdir("./228", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5986 attached [pid 5986] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5986] chdir("./228") = 0 [pid 5986] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5986] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 5986 [pid 5986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5986] write(3, "1000", 4) = 4 [pid 5986] close(3) = 0 [pid 5986] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5986] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5986] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5986] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5986] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5986] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5986] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5986] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5987 attached [pid 5987] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 5987] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5987] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5986] <... clone3 resumed> => {parent_tid=[5987]}, 88) = 5987 [pid 5987] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5986] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] <... futex resumed>) = 0 [pid 5986] <... futex resumed>) = 1 [pid 5986] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5987] memfd_create("syzkaller", 0) = 3 [pid 5987] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5987] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5987] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5987] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5987] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5987] close(3) = 0 [pid 5987] mkdir("./file0", 0777) = 0 [ 154.952578][ T5987] loop0: detected capacity change from 0 to 8192 [ 154.962744][ T5987] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 154.976004][ T5987] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 154.985296][ T5987] REISERFS (device loop0): using ordered data mode [ 154.991845][ T5987] reiserfs: using flush barriers [pid 5987] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5987] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5987] chdir("./file0") = 0 [pid 5987] ioctl(4, LOOP_CLR_FD) = 0 [pid 5987] close(4) = 0 [pid 5987] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5986] <... futex resumed>) = 0 [pid 5987] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5986] <... futex resumed>) = 0 [pid 5987] mkdir(".", 0777 [pid 5986] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5987] <... mkdir resumed>) = -1 EEXIST (File exists) [ 154.997914][ T5987] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 155.014436][ T5987] REISERFS (device loop0): checking transaction log (loop0) [ 155.022677][ T5987] REISERFS (device loop0): Using r5 hash to sort names [pid 5987] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5987] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5987] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5986] <... futex resumed>) = 0 [pid 5987] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5986] <... futex resumed>) = 0 [pid 5987] mkdir(".", 0777 [pid 5986] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5987] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5986] <... futex resumed>) = 0 [pid 5987] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5986] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5986] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5987] <... mount resumed>) = 0 [pid 5986] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5987] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 5986] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5986] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5987] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5989 attached ) = 0 [pid 5989] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5989] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 5987] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] <... clone3 resumed> => {parent_tid=[5989]}, 88) = 5989 [pid 5989] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 155.068796][ T5987] reiserfs: enabling write barrier flush mode [ 155.077197][ T5987] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 155.107615][ T5987] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 5989] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5986] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5989] <... futex resumed>) = 0 [pid 5986] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5989] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 5989] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5989] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5986] <... futex resumed>) = 0 [pid 5986] exit_group(0 [pid 5989] <... futex resumed>) = ? [pid 5989] +++ exited with 0 +++ [pid 5987] <... futex resumed>) = ? [pid 5986] <... exit_group resumed>) = ? [pid 5987] +++ exited with 0 +++ [pid 5986] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5986, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./228", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./228", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./228/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./228/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./228/binderfs") = 0 umount2("./228/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./228/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./228/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./228/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./228/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./228/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./228") = 0 mkdir("./229", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5990 attached , child_tidptr=0x5555565f3690) = 5990 [pid 5990] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5990] chdir("./229") = 0 [pid 5990] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5990] setpgid(0, 0) = 0 [pid 5990] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5990] write(3, "1000", 4) = 4 [pid 5990] close(3) = 0 [pid 5990] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5990] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5990] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5990] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5990] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5990] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5990] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5990] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5991 attached [pid 5991] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5990] <... clone3 resumed> => {parent_tid=[5991]}, 88) = 5991 [pid 5991] <... rseq resumed>) = 0 [pid 5990] rt_sigprocmask(SIG_SETMASK, [], [pid 5991] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 5990] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5991] rt_sigprocmask(SIG_SETMASK, [], [pid 5990] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5991] memfd_create("syzkaller", 0) = 3 [pid 5991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5990] <... futex resumed>) = 0 [pid 5990] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5991] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5991] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5991] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5991] close(3) = 0 [pid 5991] mkdir("./file0", 0777) = 0 [ 155.461267][ T5991] loop0: detected capacity change from 0 to 8192 [ 155.476820][ T5991] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 155.489841][ T5991] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 155.499116][ T5991] REISERFS (device loop0): using ordered data mode [ 155.505650][ T5991] reiserfs: using flush barriers [pid 5991] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5991] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5991] chdir("./file0") = 0 [pid 5991] ioctl(4, LOOP_CLR_FD) = 0 [pid 5991] close(4) = 0 [pid 5991] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5990] <... futex resumed>) = 0 [pid 5991] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5990] <... futex resumed>) = 0 [pid 5991] mkdir(".", 0777 [pid 5990] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5991] <... mkdir resumed>) = -1 EEXIST (File exists) [ 155.512328][ T5991] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 155.528971][ T5991] REISERFS (device loop0): checking transaction log (loop0) [ 155.537229][ T5991] REISERFS (device loop0): Using r5 hash to sort names [pid 5991] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5991] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5991] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5990] <... futex resumed>) = 0 [pid 5991] mkdir(".", 0777 [pid 5990] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5991] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5990] <... futex resumed>) = 0 [pid 5991] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5990] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 155.572198][ T5991] reiserfs: enabling write barrier flush mode [ 155.580242][ T5991] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5990] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5991] <... mount resumed>) = 0 [pid 5990] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5991] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5990] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5991] <... openat resumed>) = 5 [pid 5991] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5990] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5991] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5993 attached [pid 5993] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5993] set_robust_list(0x7fd868e9f9a0, 24 [pid 5990] <... clone3 resumed> => {parent_tid=[5993]}, 88) = 5993 [pid 5993] <... set_robust_list resumed>) = 0 [pid 5990] rt_sigprocmask(SIG_SETMASK, [], [pid 5993] rt_sigprocmask(SIG_SETMASK, [], [pid 5990] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5993] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5990] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5993] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5990] <... futex resumed>) = 0 [pid 5990] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5993] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5993] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5993] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5990] <... futex resumed>) = 0 [pid 5990] exit_group(0 [pid 5993] <... futex resumed>) = ? [pid 5991] <... futex resumed>) = ? [pid 5993] +++ exited with 0 +++ [pid 5991] +++ exited with 0 +++ [pid 5990] <... exit_group resumed>) = ? [pid 5990] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5990, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 155.618113][ T5991] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./229", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./229", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./229/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./229/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./229/binderfs") = 0 umount2("./229/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./229/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./229/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./229/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./229/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./229/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./229") = 0 mkdir("./230", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5994 attached , child_tidptr=0x5555565f3690) = 5994 [pid 5994] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5994] chdir("./230") = 0 [pid 5994] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5994] setpgid(0, 0) = 0 [pid 5994] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5994] write(3, "1000", 4) = 4 [pid 5994] close(3) = 0 [pid 5994] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5994] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5994] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5994] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5994] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5994] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5994] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5994] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5995 attached [pid 5995] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5994] <... clone3 resumed> => {parent_tid=[5995]}, 88) = 5995 [pid 5995] <... rseq resumed>) = 0 [pid 5994] rt_sigprocmask(SIG_SETMASK, [], [pid 5995] set_robust_list(0x7fd868ec09a0, 24 [pid 5994] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5995] <... set_robust_list resumed>) = 0 [pid 5995] rt_sigprocmask(SIG_SETMASK, [], [pid 5994] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5995] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5994] <... futex resumed>) = 0 [pid 5995] memfd_create("syzkaller", 0 [pid 5994] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5995] <... memfd_create resumed>) = 3 [pid 5995] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5995] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5995] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5995] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5995] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5995] close(3) = 0 [pid 5995] mkdir("./file0", 0777) = 0 [ 155.942575][ T5995] loop0: detected capacity change from 0 to 8192 [ 155.952780][ T5995] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 155.965816][ T5995] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 155.975495][ T5995] REISERFS (device loop0): using ordered data mode [ 155.982143][ T5995] reiserfs: using flush barriers [pid 5995] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5995] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5995] chdir("./file0") = 0 [pid 5995] ioctl(4, LOOP_CLR_FD) = 0 [pid 5995] close(4) = 0 [pid 5995] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5994] <... futex resumed>) = 0 [pid 5995] mkdir(".", 0777 [pid 5994] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5995] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5994] <... futex resumed>) = 0 [pid 5995] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 155.988487][ T5995] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 156.004871][ T5995] REISERFS (device loop0): checking transaction log (loop0) [ 156.013054][ T5995] REISERFS (device loop0): Using r5 hash to sort names [pid 5994] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5995] <... mount resumed>) = 0 [pid 5995] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5995] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5994] <... futex resumed>) = 0 [pid 5995] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5994] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5995] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5994] <... futex resumed>) = 0 [pid 5995] mkdir(".", 0777 [pid 5994] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5995] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5994] <... futex resumed>) = 0 [pid 5995] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 156.037540][ T5995] reiserfs: enabling write barrier flush mode [ 156.046580][ T5995] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5994] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5994] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5994] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5995] <... mount resumed>) = 0 [pid 5994] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5994] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 5997 attached [pid 5997] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 5997] set_robust_list(0x7fd868e9f9a0, 24 [pid 5995] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 5994] <... clone3 resumed> => {parent_tid=[5997]}, 88) = 5997 [pid 5997] <... set_robust_list resumed>) = 0 [pid 5997] rt_sigprocmask(SIG_SETMASK, [], [pid 5995] <... openat resumed>) = 5 [pid 5994] rt_sigprocmask(SIG_SETMASK, [], [pid 5997] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5997] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5995] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5994] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5995] <... futex resumed>) = 0 [pid 5994] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5997] <... futex resumed>) = 0 [pid 5995] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5994] <... futex resumed>) = 1 [pid 5997] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5994] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5997] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 5997] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5994] <... futex resumed>) = 0 [pid 5997] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5994] exit_group(0 [pid 5997] <... futex resumed>) = ? [pid 5995] <... futex resumed>) = ? [pid 5994] <... exit_group resumed>) = ? [pid 5995] +++ exited with 0 +++ [pid 5997] +++ exited with 0 +++ [pid 5994] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5994, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./230", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./230", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 156.087352][ T5995] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./230/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./230/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./230/binderfs") = 0 umount2("./230/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./230/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./230/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./230/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./230/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./230/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./230") = 0 mkdir("./231", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5998 attached , child_tidptr=0x5555565f3690) = 5998 [pid 5998] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5998] chdir("./231") = 0 [pid 5998] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5998] setpgid(0, 0) = 0 [pid 5998] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5998] write(3, "1000", 4) = 4 [pid 5998] close(3) = 0 [pid 5998] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5998] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5998] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 5998] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5998] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 5998] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5998] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5998] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 5999 attached [pid 5999] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 5998] <... clone3 resumed> => {parent_tid=[5999]}, 88) = 5999 [pid 5999] <... rseq resumed>) = 0 [pid 5998] rt_sigprocmask(SIG_SETMASK, [], [pid 5999] set_robust_list(0x7fd868ec09a0, 24 [pid 5998] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5999] <... set_robust_list resumed>) = 0 [pid 5998] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5999] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5998] <... futex resumed>) = 0 [pid 5999] memfd_create("syzkaller", 0 [pid 5998] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5999] <... memfd_create resumed>) = 3 [pid 5999] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 5999] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 5999] munmap(0x7fd860aa0000, 138412032) = 0 [pid 5999] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5999] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5999] close(3) = 0 [pid 5999] mkdir("./file0", 0777) = 0 [ 156.415831][ T5999] loop0: detected capacity change from 0 to 8192 [ 156.435730][ T5999] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 156.448790][ T5999] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 156.458042][ T5999] REISERFS (device loop0): using ordered data mode [pid 5999] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 5999] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5999] chdir("./file0") = 0 [pid 5999] ioctl(4, LOOP_CLR_FD) = 0 [pid 5999] close(4) = 0 [pid 5999] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5998] <... futex resumed>) = 0 [pid 5998] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5999] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 5998] <... futex resumed>) = 0 [pid 5998] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 156.464573][ T5999] reiserfs: using flush barriers [ 156.470686][ T5999] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 156.487374][ T5999] REISERFS (device loop0): checking transaction log (loop0) [ 156.495537][ T5999] REISERFS (device loop0): Using r5 hash to sort names [pid 5999] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 5999] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 5999] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5998] <... futex resumed>) = 0 [pid 5999] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5998] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5999] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5998] <... futex resumed>) = 0 [pid 5999] mkdir(".", 0777 [pid 5998] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5998] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 5998] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 5999] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5999] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 5998] <... mprotect resumed>) = 0 [ 156.519350][ T5999] reiserfs: enabling write barrier flush mode [ 156.529835][ T5999] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 5998] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5999] <... mount resumed>) = 0 [pid 5998] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5998] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 5999] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6001 attached [pid 6001] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6001] set_robust_list(0x7fd868e9f9a0, 24 [pid 5999] <... openat resumed>) = 5 [pid 5998] <... clone3 resumed> => {parent_tid=[6001]}, 88) = 6001 [pid 6001] <... set_robust_list resumed>) = 0 [pid 6001] rt_sigprocmask(SIG_SETMASK, [], [pid 5999] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5998] rt_sigprocmask(SIG_SETMASK, [], [pid 6001] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5999] <... futex resumed>) = 0 [pid 5998] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6001] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5999] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5998] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6001] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5998] <... futex resumed>) = 0 [pid 6001] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 5998] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6001] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6001] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5998] <... futex resumed>) = 0 [pid 6001] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5998] exit_group(0 [pid 6001] <... futex resumed>) = ? [pid 5999] <... futex resumed>) = ? [pid 6001] +++ exited with 0 +++ [pid 5999] +++ exited with 0 +++ [pid 5998] <... exit_group resumed>) = ? [pid 5998] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5998, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./231", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./231", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 156.571689][ T5999] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./231/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./231/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./231/binderfs") = 0 umount2("./231/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./231/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./231/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./231/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./231/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./231/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./231") = 0 mkdir("./232", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6002 attached [pid 6002] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6002 [pid 6002] <... set_robust_list resumed>) = 0 [pid 6002] chdir("./232") = 0 [pid 6002] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6002] setpgid(0, 0) = 0 [pid 6002] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6002] write(3, "1000", 4) = 4 [pid 6002] close(3) = 0 [pid 6002] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6002] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6002] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6002] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6002] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6002] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6002] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6002] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6003 attached => {parent_tid=[6003]}, 88) = 6003 [pid 6003] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6002] rt_sigprocmask(SIG_SETMASK, [], [pid 6003] <... rseq resumed>) = 0 [pid 6003] set_robust_list(0x7fd868ec09a0, 24 [pid 6002] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6003] <... set_robust_list resumed>) = 0 [pid 6002] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6003] rt_sigprocmask(SIG_SETMASK, [], [pid 6002] <... futex resumed>) = 0 [pid 6003] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6002] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6003] memfd_create("syzkaller", 0) = 3 [pid 6003] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6003] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6003] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6003] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6003] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6003] close(3) = 0 [pid 6003] mkdir("./file0", 0777) = 0 [ 156.863846][ T6003] loop0: detected capacity change from 0 to 8192 [ 156.879849][ T6003] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 156.893002][ T6003] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 156.902361][ T6003] REISERFS (device loop0): using ordered data mode [ 156.908873][ T6003] reiserfs: using flush barriers [pid 6003] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6003] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6003] chdir("./file0") = 0 [pid 6003] ioctl(4, LOOP_CLR_FD) = 0 [pid 6003] close(4) = 0 [pid 6003] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 156.915329][ T6003] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 156.931762][ T6003] REISERFS (device loop0): checking transaction log (loop0) [ 156.939902][ T6003] REISERFS (device loop0): Using r5 hash to sort names [pid 6003] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6002] <... futex resumed>) = 0 [pid 6002] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6003] <... futex resumed>) = 0 [pid 6002] <... futex resumed>) = 1 [pid 6003] mkdir(".", 0777 [pid 6002] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6003] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6003] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6003] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6003] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6002] <... futex resumed>) = 0 [pid 6003] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6002] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6003] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6002] <... futex resumed>) = 0 [pid 6003] mkdir(".", 0777 [pid 6002] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6003] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6002] <... futex resumed>) = 0 [pid 6002] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6003] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6002] <... mmap resumed>) = 0x7fd868e7f000 [pid 6002] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6002] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6003] <... mount resumed>) = 0 [pid 6002] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6005 attached [pid 6003] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6002] <... clone3 resumed> => {parent_tid=[6005]}, 88) = 6005 [pid 6005] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6002] rt_sigprocmask(SIG_SETMASK, [], [pid 6005] <... rseq resumed>) = 0 [pid 6002] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6005] set_robust_list(0x7fd868e9f9a0, 24 [pid 6003] <... openat resumed>) = 5 [pid 6002] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6005] <... set_robust_list resumed>) = 0 [pid 6003] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6005] rt_sigprocmask(SIG_SETMASK, [], [pid 6002] <... futex resumed>) = 0 [pid 6005] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6003] <... futex resumed>) = 0 [pid 6002] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6005] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6003] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6005] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6005] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6002] <... futex resumed>) = 0 [pid 6005] <... futex resumed>) = 1 [pid 6002] exit_group(0 [pid 6003] <... futex resumed>) = ? [pid 6002] <... exit_group resumed>) = ? [pid 6005] +++ exited with 0 +++ [pid 6003] +++ exited with 0 +++ [pid 6002] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6002, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./232", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./232", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 156.983186][ T6003] reiserfs: enabling write barrier flush mode [ 156.990956][ T6003] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 157.013123][ T6003] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./232/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./232/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./232/binderfs") = 0 umount2("./232/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./232/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./232/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./232/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./232/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./232/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./232") = 0 mkdir("./233", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6006 attached [pid 6006] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6006] chdir("./233") = 0 [pid 6006] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6006 [pid 6006] setpgid(0, 0) = 0 [pid 6006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6006] write(3, "1000", 4) = 4 [pid 6006] close(3) = 0 [pid 6006] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6006] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6006] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6006] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6006] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6006] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6006] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6007 attached [pid 6007] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6006] <... clone3 resumed> => {parent_tid=[6007]}, 88) = 6007 [pid 6007] <... rseq resumed>) = 0 [pid 6006] rt_sigprocmask(SIG_SETMASK, [], [pid 6007] set_robust_list(0x7fd868ec09a0, 24 [pid 6006] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6007] <... set_robust_list resumed>) = 0 [pid 6006] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6006] <... futex resumed>) = 0 [pid 6007] memfd_create("syzkaller", 0 [pid 6006] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6007] <... memfd_create resumed>) = 3 [pid 6007] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6007] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6007] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6007] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6007] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6007] close(3) = 0 [pid 6007] mkdir("./file0", 0777) = 0 [ 157.301672][ T6007] loop0: detected capacity change from 0 to 8192 [ 157.327624][ T6007] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 157.340671][ T6007] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6007] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6007] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6007] chdir("./file0") = 0 [pid 6007] ioctl(4, LOOP_CLR_FD) = 0 [pid 6007] close(4) = 0 [pid 6007] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6007] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6006] <... futex resumed>) = 0 [pid 6007] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6006] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] mkdir(".", 0777 [pid 6006] <... futex resumed>) = 0 [pid 6007] <... mkdir resumed>) = -1 EEXIST (File exists) [ 157.349937][ T6007] REISERFS (device loop0): using ordered data mode [ 157.356496][ T6007] reiserfs: using flush barriers [ 157.362924][ T6007] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 157.379304][ T6007] REISERFS (device loop0): checking transaction log (loop0) [ 157.387742][ T6007] REISERFS (device loop0): Using r5 hash to sort names [pid 6006] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6007] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6007] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6007] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6007] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6006] <... futex resumed>) = 0 [pid 6006] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] <... futex resumed>) = 0 [pid 6006] <... futex resumed>) = 1 [pid 6007] mkdir(".", 0777 [pid 6006] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6006] <... futex resumed>) = 0 [pid 6007] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6006] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6006] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6006] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6009 attached => {parent_tid=[6009]}, 88) = 6009 [pid 6009] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6006] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6006] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6006] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6009] <... rseq resumed>) = 0 [pid 6009] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6009] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6009] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6007] <... mount resumed>) = 0 [pid 6007] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6009] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6009] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6007] <... openat resumed>) = 5 [pid 6009] <... futex resumed>) = 1 [pid 6007] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6006] <... futex resumed>) = 0 [pid 6009] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6007] <... futex resumed>) = 0 [pid 6006] exit_group(0 [pid 6007] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6009] <... futex resumed>) = ? [pid 6007] <... futex resumed>) = ? [pid 6006] <... exit_group resumed>) = ? [pid 6009] +++ exited with 0 +++ [pid 6007] +++ exited with 0 +++ [pid 6006] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6006, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./233", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./233", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./233/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./233/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 157.433274][ T6007] reiserfs: enabling write barrier flush mode [ 157.441330][ T6007] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 157.466184][ T6007] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./233/binderfs") = 0 umount2("./233/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./233/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./233/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./233/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./233/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./233/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./233") = 0 mkdir("./234", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6010 attached , child_tidptr=0x5555565f3690) = 6010 [pid 6010] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6010] chdir("./234") = 0 [pid 6010] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6010] setpgid(0, 0) = 0 [pid 6010] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6010] write(3, "1000", 4) = 4 [pid 6010] close(3) = 0 [pid 6010] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6010] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6010] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6010] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6010] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6010] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6010] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6010] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6011 attached => {parent_tid=[6011]}, 88) = 6011 [pid 6011] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6011] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6011] rt_sigprocmask(SIG_SETMASK, [], [pid 6010] rt_sigprocmask(SIG_SETMASK, [], [pid 6011] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6011] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6010] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6011] <... futex resumed>) = 0 [pid 6010] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6011] memfd_create("syzkaller", 0) = 3 [pid 6011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6011] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6011] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6011] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6011] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6011] close(3) = 0 [pid 6011] mkdir("./file0", 0777) = 0 [ 157.797410][ T6011] loop0: detected capacity change from 0 to 8192 [ 157.813344][ T6011] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 157.826515][ T6011] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 157.835775][ T6011] REISERFS (device loop0): using ordered data mode [ 157.842300][ T6011] reiserfs: using flush barriers [pid 6011] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6011] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6011] chdir("./file0") = 0 [pid 6011] ioctl(4, LOOP_CLR_FD) = 0 [pid 6011] close(4) = 0 [pid 6011] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6011] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] <... futex resumed>) = 0 [pid 6010] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] <... futex resumed>) = 0 [pid 6010] <... futex resumed>) = 1 [pid 6011] mkdir(".", 0777 [pid 6010] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6011] <... mkdir resumed>) = -1 EEXIST (File exists) [ 157.848501][ T6011] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 157.865137][ T6011] REISERFS (device loop0): checking transaction log (loop0) [ 157.873443][ T6011] REISERFS (device loop0): Using r5 hash to sort names [pid 6011] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6011] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6011] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6010] <... futex resumed>) = 0 [pid 6011] <... futex resumed>) = 1 [pid 6010] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] mkdir(".", 0777 [pid 6010] <... futex resumed>) = 0 [pid 6011] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6010] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6011] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6010] <... futex resumed>) = 0 [pid 6010] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6010] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6010] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6010] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6013 attached [ 157.908493][ T6011] reiserfs: enabling write barrier flush mode [ 157.918656][ T6011] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6013] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6010] <... clone3 resumed> => {parent_tid=[6013]}, 88) = 6013 [pid 6013] <... rseq resumed>) = 0 [pid 6011] <... mount resumed>) = 0 [pid 6011] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6011] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6011] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6010] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6010] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6013] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6013] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6013] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6013] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6013] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6010] <... futex resumed>) = 0 [pid 6010] exit_group(0 [pid 6013] <... futex resumed>) = ? [pid 6011] <... futex resumed>) = ? [pid 6010] <... exit_group resumed>) = ? [pid 6013] +++ exited with 0 +++ [pid 6011] +++ exited with 0 +++ [pid 6010] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6010, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./234", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./234", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./234/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./234/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./234/binderfs") = 0 [ 157.958308][ T6011] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./234/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./234/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./234/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./234/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./234/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./234/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./234") = 0 mkdir("./235", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6014 attached [pid 6014] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6014] chdir("./235") = 0 [pid 6014] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6014] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6014 [pid 6014] <... setpgid resumed>) = 0 [pid 6014] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6014] write(3, "1000", 4) = 4 [pid 6014] close(3) = 0 [pid 6014] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6014] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6014] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6014] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6014] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6014] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6014] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6014] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6015 attached [pid 6015] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6014] <... clone3 resumed> => {parent_tid=[6015]}, 88) = 6015 [pid 6015] <... rseq resumed>) = 0 [pid 6014] rt_sigprocmask(SIG_SETMASK, [], [pid 6015] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6014] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6015] rt_sigprocmask(SIG_SETMASK, [], [pid 6014] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6014] <... futex resumed>) = 0 [pid 6015] memfd_create("syzkaller", 0 [pid 6014] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6015] <... memfd_create resumed>) = 3 [pid 6015] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6015] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6015] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6015] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6015] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6015] close(3) = 0 [pid 6015] mkdir("./file0", 0777) = 0 [ 158.227692][ T6015] loop0: detected capacity change from 0 to 8192 [ 158.243856][ T6015] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 158.256877][ T6015] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 158.266178][ T6015] REISERFS (device loop0): using ordered data mode [ 158.272723][ T6015] reiserfs: using flush barriers [pid 6015] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6015] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6015] chdir("./file0") = 0 [pid 6015] ioctl(4, LOOP_CLR_FD) = 0 [pid 6015] close(4) = 0 [pid 6015] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6014] <... futex resumed>) = 0 [pid 6014] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] mkdir(".", 0777 [pid 6014] <... futex resumed>) = 0 [pid 6015] <... mkdir resumed>) = -1 EEXIST (File exists) [ 158.279414][ T6015] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 158.296057][ T6015] REISERFS (device loop0): checking transaction log (loop0) [ 158.304227][ T6015] REISERFS (device loop0): Using r5 hash to sort names [pid 6014] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6015] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6015] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6015] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6015] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6014] <... futex resumed>) = 0 [pid 6014] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6015] <... futex resumed>) = 0 [pid 6014] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6015] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6014] <... futex resumed>) = 0 [pid 6015] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6014] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6014] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 158.328622][ T6015] reiserfs: enabling write barrier flush mode [ 158.337770][ T6015] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6014] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6015] <... mount resumed>) = 0 [pid 6014] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6015] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6014] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6015] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 6017 attached [pid 6015] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6017] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6017] set_robust_list(0x7fd868e9f9a0, 24 [pid 6014] <... clone3 resumed> => {parent_tid=[6017]}, 88) = 6017 [pid 6017] <... set_robust_list resumed>) = 0 [pid 6014] rt_sigprocmask(SIG_SETMASK, [], [pid 6017] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6014] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6017] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6014] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6017] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6014] <... futex resumed>) = 0 [pid 6017] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6014] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6017] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6017] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6014] <... futex resumed>) = 0 [pid 6017] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6014] exit_group(0 [pid 6017] <... futex resumed>) = ? [pid 6014] <... exit_group resumed>) = ? [pid 6015] <... futex resumed>) = ? [pid 6017] +++ exited with 0 +++ [pid 6015] +++ exited with 0 +++ [pid 6014] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6014, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./235", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./235", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./235/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 158.381483][ T6015] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./235/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./235/binderfs") = 0 umount2("./235/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./235/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./235/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./235/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./235/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./235/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./235") = 0 mkdir("./236", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6018 attached , child_tidptr=0x5555565f3690) = 6018 [pid 6018] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6018] chdir("./236") = 0 [pid 6018] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6018] setpgid(0, 0) = 0 [pid 6018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6018] write(3, "1000", 4) = 4 [pid 6018] close(3) = 0 [pid 6018] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6018] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6018] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6018] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6018] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6018] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6018] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6018] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6019 attached => {parent_tid=[6019]}, 88) = 6019 [pid 6019] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6018] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6019] <... rseq resumed>) = 0 [pid 6018] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6019] set_robust_list(0x7fd868ec09a0, 24 [pid 6018] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6019] <... set_robust_list resumed>) = 0 [pid 6019] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6019] memfd_create("syzkaller", 0) = 3 [pid 6019] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6019] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6019] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6019] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6019] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6019] close(3) = 0 [pid 6019] mkdir("./file0", 0777) = 0 [ 158.646729][ T6019] loop0: detected capacity change from 0 to 8192 [ 158.656758][ T6019] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 158.669819][ T6019] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 158.679168][ T6019] REISERFS (device loop0): using ordered data mode [ 158.685731][ T6019] reiserfs: using flush barriers [pid 6019] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6019] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6019] chdir("./file0") = 0 [pid 6019] ioctl(4, LOOP_CLR_FD) = 0 [pid 6019] close(4) = 0 [pid 6019] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6018] <... futex resumed>) = 0 [pid 6019] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6018] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6019] mkdir(".", 0777 [ 158.691898][ T6019] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 158.708297][ T6019] REISERFS (device loop0): checking transaction log (loop0) [ 158.716781][ T6019] REISERFS (device loop0): Using r5 hash to sort names [pid 6018] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6019] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6019] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6019] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6019] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6018] <... futex resumed>) = 0 [pid 6018] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6019] <... futex resumed>) = 1 [pid 6018] <... futex resumed>) = 0 [pid 6019] mkdir(".", 0777 [pid 6018] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6019] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6018] <... futex resumed>) = 0 [pid 6018] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6019] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6018] <... mmap resumed>) = 0x7fd868e7f000 [pid 6018] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 158.756638][ T6019] reiserfs: enabling write barrier flush mode [ 158.765568][ T6019] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6018] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6018] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6021 attached [pid 6019] <... mount resumed>) = 0 [pid 6018] <... clone3 resumed> => {parent_tid=[6021]}, 88) = 6021 [pid 6021] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6019] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6019] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6019] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6018] rt_sigprocmask(SIG_SETMASK, [], [pid 6021] <... rseq resumed>) = 0 [pid 6021] set_robust_list(0x7fd868e9f9a0, 24 [pid 6018] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6021] <... set_robust_list resumed>) = 0 [pid 6018] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6021] rt_sigprocmask(SIG_SETMASK, [], [pid 6018] <... futex resumed>) = 0 [pid 6021] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6018] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6021] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6021] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6018] <... futex resumed>) = 0 [pid 6021] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6018] exit_group(0 [pid 6021] <... futex resumed>) = ? [pid 6019] <... futex resumed>) = ? [pid 6018] <... exit_group resumed>) = ? [pid 6021] +++ exited with 0 +++ [pid 6019] +++ exited with 0 +++ [pid 6018] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6018, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./236", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./236", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./236/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./236/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./236/binderfs") = 0 [ 158.803625][ T6019] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./236/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./236/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./236/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./236/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./236/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./236/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./236") = 0 mkdir("./237", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6022 attached , child_tidptr=0x5555565f3690) = 6022 [pid 6022] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6022] chdir("./237") = 0 [pid 6022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6022] setpgid(0, 0) = 0 [pid 6022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6022] write(3, "1000", 4) = 4 [pid 6022] close(3) = 0 [pid 6022] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6022] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6022] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6022] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6022] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6022] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6022] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6022] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6023 attached [pid 6023] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6023] set_robust_list(0x7fd868ec09a0, 24 [pid 6022] <... clone3 resumed> => {parent_tid=[6023]}, 88) = 6023 [pid 6023] <... set_robust_list resumed>) = 0 [pid 6022] rt_sigprocmask(SIG_SETMASK, [], [pid 6023] rt_sigprocmask(SIG_SETMASK, [], [pid 6022] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6023] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6022] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6023] memfd_create("syzkaller", 0 [pid 6022] <... futex resumed>) = 0 [pid 6023] <... memfd_create resumed>) = 3 [pid 6023] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6022] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6023] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6023] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6023] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6023] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6023] close(3) = 0 [pid 6023] mkdir("./file0", 0777) = 0 [ 159.082856][ T6023] loop0: detected capacity change from 0 to 8192 [ 159.099420][ T6023] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 159.112436][ T6023] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 159.121769][ T6023] REISERFS (device loop0): using ordered data mode [ 159.128294][ T6023] reiserfs: using flush barriers [pid 6023] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6023] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6023] chdir("./file0") = 0 [pid 6023] ioctl(4, LOOP_CLR_FD) = 0 [pid 6023] close(4) = 0 [pid 6023] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6023] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6022] <... futex resumed>) = 0 [pid 6022] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6023] <... futex resumed>) = 0 [pid 6022] <... futex resumed>) = 1 [pid 6023] mkdir(".", 0777 [pid 6022] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6023] <... mkdir resumed>) = -1 EEXIST (File exists) [ 159.135165][ T6023] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 159.151591][ T6023] REISERFS (device loop0): checking transaction log (loop0) [ 159.159861][ T6023] REISERFS (device loop0): Using r5 hash to sort names [pid 6023] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6023] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6023] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6022] <... futex resumed>) = 0 [pid 6023] <... futex resumed>) = 1 [pid 6022] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6023] mkdir(".", 0777 [pid 6022] <... futex resumed>) = 0 [pid 6023] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6022] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6023] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6022] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6022] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6022] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6022] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6023] <... mount resumed>) = 0 [pid 6023] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6025 attached [pid 6022] <... clone3 resumed> => {parent_tid=[6025]}, 88) = 6025 [pid 6025] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6023] <... openat resumed>) = 5 [pid 6022] rt_sigprocmask(SIG_SETMASK, [], [pid 6025] <... rseq resumed>) = 0 [pid 6023] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6022] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6025] set_robust_list(0x7fd868e9f9a0, 24 [pid 6023] <... futex resumed>) = 0 [pid 6022] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6025] <... set_robust_list resumed>) = 0 [pid 6023] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6022] <... futex resumed>) = 0 [pid 6025] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6022] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6025] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6025] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6022] <... futex resumed>) = 0 [pid 6025] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6022] exit_group(0 [pid 6025] <... futex resumed>) = ? [pid 6023] <... futex resumed>) = ? [pid 6022] <... exit_group resumed>) = ? [pid 6025] +++ exited with 0 +++ [pid 6023] +++ exited with 0 +++ [pid 6022] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6022, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./237", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./237", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./237/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./237/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./237/binderfs") = 0 [ 159.203193][ T6023] reiserfs: enabling write barrier flush mode [ 159.210990][ T6023] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 159.231651][ T6023] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./237/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./237/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./237/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./237/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./237/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./237/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./237") = 0 mkdir("./238", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6026 attached [pid 6026] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6026] chdir("./238") = 0 [pid 6026] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6026] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6026 [pid 6026] <... setpgid resumed>) = 0 [pid 6026] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6026] write(3, "1000", 4) = 4 [pid 6026] close(3) = 0 [pid 6026] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6026] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6026] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6026] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6026] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6026] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6026] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6026] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6027 attached [pid 6027] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6026] <... clone3 resumed> => {parent_tid=[6027]}, 88) = 6027 [pid 6027] <... rseq resumed>) = 0 [pid 6026] rt_sigprocmask(SIG_SETMASK, [], [pid 6027] set_robust_list(0x7fd868ec09a0, 24 [pid 6026] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6027] <... set_robust_list resumed>) = 0 [pid 6026] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6027] rt_sigprocmask(SIG_SETMASK, [], [pid 6026] <... futex resumed>) = 0 [pid 6027] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6026] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6027] memfd_create("syzkaller", 0) = 3 [pid 6027] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6027] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6027] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6027] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6027] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6027] close(3) = 0 [pid 6027] mkdir("./file0", 0777) = 0 [ 159.431384][ T6027] loop0: detected capacity change from 0 to 8192 [ 159.459092][ T6027] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 159.472219][ T6027] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6027] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6027] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6027] chdir("./file0") = 0 [pid 6027] ioctl(4, LOOP_CLR_FD) = 0 [pid 6027] close(4) = 0 [pid 6027] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6027] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6026] <... futex resumed>) = 0 [pid 6026] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6027] <... futex resumed>) = 0 [pid 6026] <... futex resumed>) = 1 [pid 6027] mkdir(".", 0777 [pid 6026] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6027] <... mkdir resumed>) = -1 EEXIST (File exists) [ 159.481534][ T6027] REISERFS (device loop0): using ordered data mode [ 159.488058][ T6027] reiserfs: using flush barriers [ 159.494309][ T6027] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 159.510723][ T6027] REISERFS (device loop0): checking transaction log (loop0) [ 159.519225][ T6027] REISERFS (device loop0): Using r5 hash to sort names [pid 6027] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6027] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6027] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6026] <... futex resumed>) = 0 [pid 6027] mkdir(".", 0777 [pid 6026] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6027] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6026] <... futex resumed>) = 0 [pid 6027] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6026] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6026] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6026] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 159.554229][ T6027] reiserfs: enabling write barrier flush mode [ 159.562841][ T6027] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6026] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6026] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6029 attached => {parent_tid=[6029]}, 88) = 6029 [pid 6029] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6027] <... mount resumed>) = 0 [pid 6029] <... rseq resumed>) = 0 [pid 6026] rt_sigprocmask(SIG_SETMASK, [], [pid 6029] set_robust_list(0x7fd868e9f9a0, 24 [pid 6027] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6026] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6029] <... set_robust_list resumed>) = 0 [pid 6026] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6029] rt_sigprocmask(SIG_SETMASK, [], [pid 6026] <... futex resumed>) = 0 [pid 6029] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6027] <... openat resumed>) = 5 [pid 6026] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6029] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6027] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6027] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6029] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6029] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6026] <... futex resumed>) = 0 [pid 6029] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6026] exit_group(0 [pid 6029] <... futex resumed>) = ? [pid 6027] <... futex resumed>) = ? [pid 6029] +++ exited with 0 +++ [pid 6027] +++ exited with 0 +++ [pid 6026] <... exit_group resumed>) = ? [pid 6026] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6026, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./238", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./238", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./238/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./238/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./238/binderfs") = 0 [ 159.595704][ T6027] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./238/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./238/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./238/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./238/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./238/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./238/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./238") = 0 mkdir("./239", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6030 attached [pid 6030] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6030] chdir("./239" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6030 [pid 6030] <... chdir resumed>) = 0 [pid 6030] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6030] setpgid(0, 0) = 0 [pid 6030] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6030] write(3, "1000", 4) = 4 [pid 6030] close(3) = 0 [pid 6030] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6030] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6030] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6030] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6030] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6030] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6030] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6030] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6031 attached [pid 6031] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6030] <... clone3 resumed> => {parent_tid=[6031]}, 88) = 6031 [pid 6031] <... rseq resumed>) = 0 [pid 6030] rt_sigprocmask(SIG_SETMASK, [], [pid 6031] set_robust_list(0x7fd868ec09a0, 24 [pid 6030] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6031] <... set_robust_list resumed>) = 0 [pid 6030] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6030] <... futex resumed>) = 0 [pid 6031] memfd_create("syzkaller", 0 [pid 6030] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6031] <... memfd_create resumed>) = 3 [pid 6031] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6031] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6031] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6031] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6031] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6031] close(3) = 0 [pid 6031] mkdir("./file0", 0777) = 0 [ 159.871112][ T6031] loop0: detected capacity change from 0 to 8192 [ 159.886569][ T6031] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 159.899689][ T6031] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 159.908964][ T6031] REISERFS (device loop0): using ordered data mode [ 159.915508][ T6031] reiserfs: using flush barriers [pid 6031] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6031] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6031] chdir("./file0") = 0 [pid 6031] ioctl(4, LOOP_CLR_FD) = 0 [pid 6031] close(4) = 0 [pid 6031] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6030] <... futex resumed>) = 0 [pid 6031] <... futex resumed>) = 1 [pid 6030] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] mkdir(".", 0777 [pid 6030] <... futex resumed>) = 0 [ 159.921735][ T6031] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 159.938059][ T6031] REISERFS (device loop0): checking transaction log (loop0) [ 159.946436][ T6031] REISERFS (device loop0): Using r5 hash to sort names [pid 6030] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6031] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6031] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6031] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6031] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6030] <... futex resumed>) = 0 [pid 6031] <... futex resumed>) = 1 [pid 6030] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] mkdir(".", 0777 [pid 6030] <... futex resumed>) = 0 [pid 6031] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6030] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6030] <... futex resumed>) = 0 [pid 6030] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6030] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6030] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6030] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6033 attached [pid 6033] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6033] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6030] <... clone3 resumed> => {parent_tid=[6033]}, 88) = 6033 [pid 6033] rt_sigprocmask(SIG_SETMASK, [], [pid 6030] rt_sigprocmask(SIG_SETMASK, [], [pid 6033] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6030] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6033] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6031] <... mount resumed>) = 0 [pid 6030] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6031] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6033] <... futex resumed>) = 0 [pid 6030] <... futex resumed>) = 1 [pid 6031] <... openat resumed>) = 5 [pid 6031] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6033] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6030] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6031] <... futex resumed>) = 0 [pid 6031] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6033] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6033] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6033] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6030] <... futex resumed>) = 0 [pid 6030] exit_group(0 [pid 6031] <... futex resumed>) = ? [pid 6033] <... futex resumed>) = ? [pid 6031] +++ exited with 0 +++ [pid 6030] <... exit_group resumed>) = ? [pid 6033] +++ exited with 0 +++ [pid 6030] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6030, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./239", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./239", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./239/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 159.971898][ T6031] reiserfs: enabling write barrier flush mode [ 159.980474][ T6031] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 160.003178][ T6031] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./239/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./239/binderfs") = 0 umount2("./239/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./239/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./239/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./239/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./239/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./239/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./239") = 0 mkdir("./240", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6034 attached , child_tidptr=0x5555565f3690) = 6034 [pid 6034] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6034] chdir("./240") = 0 [pid 6034] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6034] setpgid(0, 0) = 0 [pid 6034] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6034] write(3, "1000", 4) = 4 [pid 6034] close(3) = 0 [pid 6034] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6034] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6034] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6034] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6034] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6034] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6034] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6034] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6035 attached [pid 6035] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6034] <... clone3 resumed> => {parent_tid=[6035]}, 88) = 6035 [pid 6035] <... rseq resumed>) = 0 [pid 6034] rt_sigprocmask(SIG_SETMASK, [], [pid 6035] set_robust_list(0x7fd868ec09a0, 24 [pid 6034] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6035] <... set_robust_list resumed>) = 0 [pid 6035] rt_sigprocmask(SIG_SETMASK, [], [pid 6034] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6035] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6034] <... futex resumed>) = 0 [pid 6035] memfd_create("syzkaller", 0 [pid 6034] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6035] <... memfd_create resumed>) = 3 [pid 6035] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6035] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6035] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6035] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6035] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6035] close(3) = 0 [pid 6035] mkdir("./file0", 0777) = 0 [ 160.291179][ T6035] loop0: detected capacity change from 0 to 8192 [ 160.301636][ T6035] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 160.314603][ T6035] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 160.323833][ T6035] REISERFS (device loop0): using ordered data mode [ 160.330330][ T6035] reiserfs: using flush barriers [pid 6035] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6035] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6035] chdir("./file0") = 0 [pid 6035] ioctl(4, LOOP_CLR_FD) = 0 [ 160.336788][ T6035] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 160.353158][ T6035] REISERFS (device loop0): checking transaction log (loop0) [ 160.361368][ T6035] REISERFS (device loop0): Using r5 hash to sort names [pid 6035] close(4) = 0 [pid 6035] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6034] <... futex resumed>) = 0 [pid 6035] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6034] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6035] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6034] <... futex resumed>) = 0 [pid 6035] mkdir(".", 0777 [pid 6034] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6035] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6035] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6035] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6035] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6034] <... futex resumed>) = 0 [pid 6035] <... futex resumed>) = 1 [pid 6034] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6035] mkdir(".", 0777 [pid 6034] <... futex resumed>) = 0 [pid 6035] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6035] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6034] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6034] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6034] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6034] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6035] <... mount resumed>) = 0 [pid 6034] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6035] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6035] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6034] <... clone3 resumed> => {parent_tid=[6037]}, 88) = 6037 [pid 6035] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6034] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6034] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6034] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 6037 attached [pid 6037] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6037] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6037] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6037] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6037] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6034] <... futex resumed>) = 0 [pid 6037] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6034] exit_group(0 [pid 6037] <... futex resumed>) = ? [pid 6035] <... futex resumed>) = ? [pid 6034] <... exit_group resumed>) = ? [pid 6037] +++ exited with 0 +++ [pid 6035] +++ exited with 0 +++ [pid 6034] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6034, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./240", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./240", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./240/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 160.394914][ T6035] reiserfs: enabling write barrier flush mode [ 160.403384][ T6035] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 160.423884][ T6035] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./240/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./240/binderfs") = 0 umount2("./240/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./240/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./240/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./240/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./240/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./240/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./240") = 0 mkdir("./241", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6038 attached , child_tidptr=0x5555565f3690) = 6038 [pid 6038] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6038] chdir("./241") = 0 [pid 6038] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6038] setpgid(0, 0) = 0 [pid 6038] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6038] write(3, "1000", 4) = 4 [pid 6038] close(3) = 0 [pid 6038] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6038] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6038] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6038] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6038] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6038] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6038] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6038] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6039 attached [pid 6039] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6038] <... clone3 resumed> => {parent_tid=[6039]}, 88) = 6039 [pid 6039] set_robust_list(0x7fd868ec09a0, 24 [pid 6038] rt_sigprocmask(SIG_SETMASK, [], [pid 6039] <... set_robust_list resumed>) = 0 [pid 6038] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6039] rt_sigprocmask(SIG_SETMASK, [], [pid 6038] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6039] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6038] <... futex resumed>) = 0 [pid 6039] memfd_create("syzkaller", 0 [pid 6038] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6039] <... memfd_create resumed>) = 3 [pid 6039] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6039] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6039] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6039] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6039] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6039] close(3) = 0 [pid 6039] mkdir("./file0", 0777) = 0 [ 160.699297][ T6039] loop0: detected capacity change from 0 to 8192 [ 160.715832][ T6039] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 160.729049][ T6039] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 160.738335][ T6039] REISERFS (device loop0): using ordered data mode [pid 6039] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6039] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6039] chdir("./file0") = 0 [pid 6039] ioctl(4, LOOP_CLR_FD) = 0 [pid 6039] close(4) = 0 [pid 6039] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6039] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6038] <... futex resumed>) = 0 [pid 6038] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6039] <... futex resumed>) = 0 [pid 6038] <... futex resumed>) = 1 [pid 6039] mkdir(".", 0777 [pid 6038] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6039] <... mkdir resumed>) = -1 EEXIST (File exists) [ 160.744888][ T6039] reiserfs: using flush barriers [ 160.751380][ T6039] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 160.767763][ T6039] REISERFS (device loop0): checking transaction log (loop0) [ 160.776086][ T6039] REISERFS (device loop0): Using r5 hash to sort names [pid 6039] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6039] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6039] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6038] <... futex resumed>) = 0 [pid 6038] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6039] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6038] <... futex resumed>) = 0 [pid 6039] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6038] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6038] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6038] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6038] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6038] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6041 attached [ 160.811346][ T6039] reiserfs: enabling write barrier flush mode [ 160.821083][ T6039] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6041] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6038] <... clone3 resumed> => {parent_tid=[6041]}, 88) = 6041 [pid 6041] <... rseq resumed>) = 0 [pid 6038] rt_sigprocmask(SIG_SETMASK, [], [pid 6041] set_robust_list(0x7fd868e9f9a0, 24 [pid 6038] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6041] <... set_robust_list resumed>) = 0 [pid 6038] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6041] rt_sigprocmask(SIG_SETMASK, [], [pid 6038] <... futex resumed>) = 0 [pid 6041] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6038] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6041] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6039] <... mount resumed>) = 0 [pid 6041] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6039] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6041] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6039] <... openat resumed>) = 5 [pid 6038] <... futex resumed>) = 0 [pid 6041] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6039] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6039] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6038] exit_group(0 [pid 6041] <... futex resumed>) = ? [pid 6041] +++ exited with 0 +++ [pid 6039] <... futex resumed>) = ? [pid 6038] <... exit_group resumed>) = ? [pid 6039] +++ exited with 0 +++ [pid 6038] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6038, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./241", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./241", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./241/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./241/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./241/binderfs") = 0 [ 160.864715][ T6039] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./241/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./241/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./241/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./241/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./241/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./241/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./241") = 0 mkdir("./242", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6042 attached , child_tidptr=0x5555565f3690) = 6042 [pid 6042] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6042] chdir("./242") = 0 [pid 6042] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6042] setpgid(0, 0) = 0 [pid 6042] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6042] write(3, "1000", 4) = 4 [pid 6042] close(3) = 0 [pid 6042] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6042] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6042] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6042] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6042] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6042] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6042] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6042] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6043 attached [pid 6043] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6042] <... clone3 resumed> => {parent_tid=[6043]}, 88) = 6043 [pid 6043] <... rseq resumed>) = 0 [pid 6043] set_robust_list(0x7fd868ec09a0, 24 [pid 6042] rt_sigprocmask(SIG_SETMASK, [], [pid 6043] <... set_robust_list resumed>) = 0 [pid 6042] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6043] rt_sigprocmask(SIG_SETMASK, [], [pid 6042] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6043] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6042] <... futex resumed>) = 0 [pid 6043] memfd_create("syzkaller", 0 [pid 6042] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6043] <... memfd_create resumed>) = 3 [pid 6043] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6043] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6043] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6043] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6043] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6043] close(3) = 0 [pid 6043] mkdir("./file0", 0777) = 0 [ 161.150621][ T6043] loop0: detected capacity change from 0 to 8192 [ 161.166065][ T6043] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 161.179151][ T6043] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 161.188480][ T6043] REISERFS (device loop0): using ordered data mode [ 161.195047][ T6043] reiserfs: using flush barriers [pid 6043] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6043] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6043] chdir("./file0") = 0 [pid 6043] ioctl(4, LOOP_CLR_FD) = 0 [pid 6043] close(4) = 0 [pid 6043] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6042] <... futex resumed>) = 0 [pid 6043] <... futex resumed>) = 1 [pid 6042] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 161.201959][ T6043] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 161.218356][ T6043] REISERFS (device loop0): checking transaction log (loop0) [ 161.226732][ T6043] REISERFS (device loop0): Using r5 hash to sort names [pid 6043] mkdir(".", 0777 [pid 6042] <... futex resumed>) = 0 [pid 6043] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6043] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6042] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6043] <... mount resumed>) = 0 [pid 6043] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6043] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6042] <... futex resumed>) = 0 [pid 6043] mkdir(".", 0777 [pid 6042] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6043] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6042] <... futex resumed>) = 0 [pid 6043] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6042] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6042] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6042] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6042] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6042] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6045 attached => {parent_tid=[6045]}, 88) = 6045 [pid 6045] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6042] rt_sigprocmask(SIG_SETMASK, [], [pid 6045] <... rseq resumed>) = 0 [pid 6042] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6045] set_robust_list(0x7fd868e9f9a0, 24 [pid 6042] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6045] <... set_robust_list resumed>) = 0 [pid 6042] <... futex resumed>) = 0 [pid 6045] rt_sigprocmask(SIG_SETMASK, [], [pid 6042] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6045] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6045] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [ 161.249759][ T6043] reiserfs: enabling write barrier flush mode [ 161.258535][ T6043] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6045] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6043] <... mount resumed>) = 0 [pid 6042] <... futex resumed>) = 0 [pid 6045] <... futex resumed>) = 1 [pid 6043] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6045] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6043] <... openat resumed>) = 5 [pid 6043] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6042] exit_group(0 [pid 6045] <... futex resumed>) = ? [pid 6042] <... exit_group resumed>) = ? [pid 6045] +++ exited with 0 +++ [pid 6043] +++ exited with 0 +++ [pid 6042] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6042, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./242", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./242", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./242/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 161.301528][ T6043] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./242/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./242/binderfs") = 0 umount2("./242/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./242/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./242/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./242/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./242/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./242/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./242") = 0 mkdir("./243", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6046 attached , child_tidptr=0x5555565f3690) = 6046 [pid 6046] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6046] chdir("./243") = 0 [pid 6046] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6046] setpgid(0, 0) = 0 [pid 6046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6046] write(3, "1000", 4) = 4 [pid 6046] close(3) = 0 [pid 6046] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6046] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6046] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6046] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6046] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6046] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6046] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6046] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6047 attached => {parent_tid=[6047]}, 88) = 6047 [pid 6046] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6047] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6046] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6047] set_robust_list(0x7fd868ec09a0, 24 [pid 6046] <... futex resumed>) = 0 [pid 6047] <... set_robust_list resumed>) = 0 [pid 6046] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6047] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6047] memfd_create("syzkaller", 0) = 3 [pid 6047] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6047] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6047] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6047] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6047] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6047] close(3) = 0 [pid 6047] mkdir("./file0", 0777) = 0 [ 161.628972][ T6047] loop0: detected capacity change from 0 to 8192 [ 161.654705][ T6047] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 161.667777][ T6047] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6047] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6047] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6047] chdir("./file0") = 0 [pid 6047] ioctl(4, LOOP_CLR_FD) = 0 [pid 6047] close(4) = 0 [pid 6047] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6046] <... futex resumed>) = 0 [pid 6047] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6046] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6047] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6047] mkdir(".", 0777 [pid 6046] <... futex resumed>) = 0 [pid 6047] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6046] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 161.677194][ T6047] REISERFS (device loop0): using ordered data mode [ 161.683791][ T6047] reiserfs: using flush barriers [ 161.689803][ T6047] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 161.706517][ T6047] REISERFS (device loop0): checking transaction log (loop0) [ 161.714982][ T6047] REISERFS (device loop0): Using r5 hash to sort names [pid 6047] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6047] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6047] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6046] <... futex resumed>) = 0 [pid 6047] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6046] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6047] mkdir(".", 0777 [pid 6046] <... futex resumed>) = 0 [pid 6047] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6046] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6047] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6046] <... futex resumed>) = 0 [pid 6046] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6046] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6047] <... mount resumed>) = 0 [pid 6047] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6046] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6047] <... openat resumed>) = 5 [pid 6046] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6046] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6049 attached => {parent_tid=[6049]}, 88) = 6049 [pid 6049] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6047] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6046] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6046] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6046] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6049] <... rseq resumed>) = 0 [pid 6049] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6049] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6047] <... futex resumed>) = 0 [pid 6049] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6047] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6049] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6049] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6046] <... futex resumed>) = 0 [pid 6049] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6046] exit_group(0 [pid 6049] <... futex resumed>) = ? [pid 6047] <... futex resumed>) = ? [pid 6049] +++ exited with 0 +++ [pid 6047] +++ exited with 0 +++ [pid 6046] <... exit_group resumed>) = ? [ 161.743229][ T6047] reiserfs: enabling write barrier flush mode [ 161.752234][ T6047] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 161.783407][ T6047] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6046] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6046, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./243", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./243", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./243/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./243/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./243/binderfs") = 0 umount2("./243/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./243/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./243/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./243/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./243/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./243/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./243") = 0 mkdir("./244", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6050 attached [pid 6050] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6050] chdir("./244") = 0 [pid 6050] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6050] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6050 [pid 6050] <... setpgid resumed>) = 0 [pid 6050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6050] write(3, "1000", 4) = 4 [pid 6050] close(3) = 0 [pid 6050] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6050] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6050] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6050] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6050] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6050] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6050] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6050] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6051 attached => {parent_tid=[6051]}, 88) = 6051 [pid 6051] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6051] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6051] rt_sigprocmask(SIG_SETMASK, [], [pid 6050] rt_sigprocmask(SIG_SETMASK, [], [pid 6051] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6050] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6051] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6050] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6050] <... futex resumed>) = 0 [pid 6050] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6051] memfd_create("syzkaller", 0) = 3 [pid 6051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6051] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6051] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6051] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6051] close(3) = 0 [pid 6051] mkdir("./file0", 0777) = 0 [ 162.032369][ T6051] loop0: detected capacity change from 0 to 8192 [ 162.048148][ T6051] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 162.061277][ T6051] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 162.070484][ T6051] REISERFS (device loop0): using ordered data mode [ 162.077133][ T6051] reiserfs: using flush barriers [pid 6051] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6051] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6051] chdir("./file0") = 0 [pid 6051] ioctl(4, LOOP_CLR_FD) = 0 [pid 6051] close(4) = 0 [pid 6051] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6051] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6050] <... futex resumed>) = 0 [pid 6051] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6050] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6051] mkdir(".", 0777 [pid 6050] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6051] <... mkdir resumed>) = -1 EEXIST (File exists) [ 162.083182][ T6051] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 162.099731][ T6051] REISERFS (device loop0): checking transaction log (loop0) [ 162.108038][ T6051] REISERFS (device loop0): Using r5 hash to sort names [pid 6051] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6051] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6051] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6050] <... futex resumed>) = 0 [pid 6051] <... futex resumed>) = 1 [pid 6050] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6051] mkdir(".", 0777 [pid 6050] <... futex resumed>) = 0 [pid 6051] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6050] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6051] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6050] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6050] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6050] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6050] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6053 attached [pid 6053] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6050] <... clone3 resumed> => {parent_tid=[6053]}, 88) = 6053 [pid 6053] <... rseq resumed>) = 0 [pid 6050] rt_sigprocmask(SIG_SETMASK, [], [pid 6053] set_robust_list(0x7fd868e9f9a0, 24 [pid 6050] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6053] <... set_robust_list resumed>) = 0 [pid 6050] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6053] rt_sigprocmask(SIG_SETMASK, [], [pid 6050] <... futex resumed>) = 0 [pid 6053] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6050] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6053] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6053] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6050] <... futex resumed>) = 0 [ 162.155951][ T6051] reiserfs: enabling write barrier flush mode [ 162.166013][ T6051] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6053] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6051] <... mount resumed>) = 0 [pid 6051] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6051] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6051] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6050] exit_group(0 [pid 6053] <... futex resumed>) = ? [pid 6050] <... exit_group resumed>) = ? [pid 6053] +++ exited with 0 +++ [pid 6051] <... futex resumed>) = ? [pid 6051] +++ exited with 0 +++ [pid 6050] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6050, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./244", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./244", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./244/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 162.196173][ T6051] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./244/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./244/binderfs") = 0 umount2("./244/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./244/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./244/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./244/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./244/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./244/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./244") = 0 mkdir("./245", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6054 ./strace-static-x86_64: Process 6054 attached [pid 6054] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6054] chdir("./245") = 0 [pid 6054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6054] setpgid(0, 0) = 0 [pid 6054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6054] write(3, "1000", 4) = 4 [pid 6054] close(3) = 0 [pid 6054] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6054] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6054] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6054] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6054] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6054] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6054] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6055 attached [pid 6055] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6054] <... clone3 resumed> => {parent_tid=[6055]}, 88) = 6055 [pid 6055] set_robust_list(0x7fd868ec09a0, 24 [pid 6054] rt_sigprocmask(SIG_SETMASK, [], [pid 6055] <... set_robust_list resumed>) = 0 [pid 6054] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6055] rt_sigprocmask(SIG_SETMASK, [], [pid 6054] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6055] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6054] <... futex resumed>) = 0 [pid 6055] memfd_create("syzkaller", 0 [pid 6054] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6055] <... memfd_create resumed>) = 3 [pid 6055] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6055] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6055] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6055] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6055] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6055] close(3) = 0 [pid 6055] mkdir("./file0", 0777) = 0 [ 162.491768][ T6055] loop0: detected capacity change from 0 to 8192 [ 162.507147][ T6055] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 162.520145][ T6055] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 162.529396][ T6055] REISERFS (device loop0): using ordered data mode [ 162.535924][ T6055] reiserfs: using flush barriers [pid 6055] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6055] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6055] chdir("./file0") = 0 [pid 6055] ioctl(4, LOOP_CLR_FD) = 0 [pid 6055] close(4) = 0 [pid 6055] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6054] <... futex resumed>) = 0 [pid 6055] <... futex resumed>) = 1 [pid 6055] mkdir(".", 0777 [pid 6054] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6055] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6054] <... futex resumed>) = 0 [pid 6055] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 162.542481][ T6055] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 162.558979][ T6055] REISERFS (device loop0): checking transaction log (loop0) [ 162.567564][ T6055] REISERFS (device loop0): Using r5 hash to sort names [pid 6054] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6055] <... mount resumed>) = 0 [pid 6055] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6055] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6054] <... futex resumed>) = 0 [pid 6054] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6055] mkdir(".", 0777 [pid 6054] <... futex resumed>) = 0 [pid 6054] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6054] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6055] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6055] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6054] <... mprotect resumed>) = 0 [pid 6054] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6054] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6057 attached [ 162.600300][ T6055] reiserfs: enabling write barrier flush mode [ 162.608461][ T6055] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6057] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6054] <... clone3 resumed> => {parent_tid=[6057]}, 88) = 6057 [pid 6057] set_robust_list(0x7fd868e9f9a0, 24 [pid 6054] rt_sigprocmask(SIG_SETMASK, [], [pid 6057] <... set_robust_list resumed>) = 0 [pid 6055] <... mount resumed>) = 0 [pid 6054] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6057] rt_sigprocmask(SIG_SETMASK, [], [pid 6055] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6054] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6055] <... openat resumed>) = 5 [pid 6055] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6057] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6054] <... futex resumed>) = 0 [pid 6055] <... futex resumed>) = 0 [pid 6054] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6057] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6055] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6057] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6054] <... futex resumed>) = 0 [pid 6057] <... futex resumed>) = 1 [pid 6054] exit_group(0 [pid 6057] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6054] <... exit_group resumed>) = ? [pid 6057] +++ exited with 0 +++ [pid 6055] <... futex resumed>) = ? [pid 6055] +++ exited with 0 +++ [pid 6054] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6054, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./245", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./245", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./245/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./245/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./245/binderfs") = 0 [ 162.654697][ T6055] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./245/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./245/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./245/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./245/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./245") = 0 mkdir("./246", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6058 attached [pid 6058] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6058 [pid 6058] <... set_robust_list resumed>) = 0 [pid 6058] chdir("./246") = 0 [pid 6058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6058] setpgid(0, 0) = 0 [pid 6058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6058] write(3, "1000", 4) = 4 [pid 6058] close(3) = 0 [pid 6058] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6058] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6058] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6058] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6058] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6058] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6058] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6059 attached [pid 6059] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6058] <... clone3 resumed> => {parent_tid=[6059]}, 88) = 6059 [pid 6059] <... rseq resumed>) = 0 [pid 6058] rt_sigprocmask(SIG_SETMASK, [], [pid 6059] set_robust_list(0x7fd868ec09a0, 24 [pid 6058] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6059] <... set_robust_list resumed>) = 0 [pid 6058] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] rt_sigprocmask(SIG_SETMASK, [], [pid 6058] <... futex resumed>) = 0 [pid 6059] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6058] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6059] memfd_create("syzkaller", 0) = 3 [pid 6059] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6059] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6059] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6059] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6059] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6059] close(3) = 0 [pid 6059] mkdir("./file0", 0777) = 0 [ 162.916103][ T6059] loop0: detected capacity change from 0 to 8192 [ 162.942121][ T6059] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 162.955110][ T6059] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6059] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6059] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6059] chdir("./file0") = 0 [pid 6059] ioctl(4, LOOP_CLR_FD) = 0 [pid 6059] close(4) = 0 [pid 6059] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6058] <... futex resumed>) = 0 [pid 6059] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6058] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6058] <... futex resumed>) = 0 [pid 6059] mkdir(".", 0777 [pid 6058] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6059] <... mkdir resumed>) = -1 EEXIST (File exists) [ 162.964354][ T6059] REISERFS (device loop0): using ordered data mode [ 162.970857][ T6059] reiserfs: using flush barriers [ 162.977358][ T6059] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 162.993770][ T6059] REISERFS (device loop0): checking transaction log (loop0) [ 163.002176][ T6059] REISERFS (device loop0): Using r5 hash to sort names [pid 6059] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6059] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6059] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6059] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6058] <... futex resumed>) = 0 [pid 6058] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6059] <... futex resumed>) = 0 [pid 6059] mkdir(".", 0777 [pid 6058] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6059] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6058] <... futex resumed>) = 0 [pid 6059] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6058] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6058] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6058] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6059] <... mount resumed>) = 0 [pid 6058] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6058] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6061 attached [pid 6059] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6061] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6058] <... clone3 resumed> => {parent_tid=[6061]}, 88) = 6061 [pid 6061] <... rseq resumed>) = 0 [pid 6059] <... openat resumed>) = 5 [pid 6058] rt_sigprocmask(SIG_SETMASK, [], [pid 6061] set_robust_list(0x7fd868e9f9a0, 24 [pid 6058] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6061] <... set_robust_list resumed>) = 0 [pid 6058] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6061] rt_sigprocmask(SIG_SETMASK, [], [pid 6058] <... futex resumed>) = 0 [pid 6061] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6059] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6061] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6059] <... futex resumed>) = 0 [pid 6058] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6059] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6061] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6061] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6058] <... futex resumed>) = 0 [pid 6058] exit_group(0 [pid 6061] <... futex resumed>) = ? [pid 6059] <... futex resumed>) = ? [pid 6058] <... exit_group resumed>) = ? [pid 6059] +++ exited with 0 +++ [pid 6061] +++ exited with 0 +++ [pid 6058] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6058, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./246", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./246", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./246/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./246/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./246/binderfs") = 0 [ 163.035379][ T6059] reiserfs: enabling write barrier flush mode [ 163.043758][ T6059] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 163.066375][ T6059] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./246/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./246/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./246/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./246/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./246") = 0 mkdir("./247", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6062 attached , child_tidptr=0x5555565f3690) = 6062 [pid 6062] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6062] chdir("./247") = 0 [pid 6062] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6062] setpgid(0, 0) = 0 [pid 6062] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6062] write(3, "1000", 4) = 4 [pid 6062] close(3) = 0 [pid 6062] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6062] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6062] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6062] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6062] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6062] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6062] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6062] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6063 attached [pid 6063] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6062] <... clone3 resumed> => {parent_tid=[6063]}, 88) = 6063 [pid 6063] set_robust_list(0x7fd868ec09a0, 24 [pid 6062] rt_sigprocmask(SIG_SETMASK, [], [pid 6063] <... set_robust_list resumed>) = 0 [pid 6062] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6063] rt_sigprocmask(SIG_SETMASK, [], [pid 6062] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6063] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6062] <... futex resumed>) = 0 [pid 6062] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6063] memfd_create("syzkaller", 0) = 3 [pid 6063] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6063] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6063] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6063] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6063] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6063] close(3) = 0 [pid 6063] mkdir("./file0", 0777) = 0 [ 163.315386][ T6063] loop0: detected capacity change from 0 to 8192 [ 163.325186][ T6063] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 163.338231][ T6063] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 163.347608][ T6063] REISERFS (device loop0): using ordered data mode [ 163.354141][ T6063] reiserfs: using flush barriers [pid 6063] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6063] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6063] chdir("./file0") = 0 [pid 6063] ioctl(4, LOOP_CLR_FD) = 0 [pid 6063] close(4) = 0 [pid 6063] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6062] <... futex resumed>) = 0 [pid 6062] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6063] mkdir(".", 0777 [pid 6062] <... futex resumed>) = 0 [pid 6062] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6063] <... mkdir resumed>) = -1 EEXIST (File exists) [ 163.360382][ T6063] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 163.377117][ T6063] REISERFS (device loop0): checking transaction log (loop0) [ 163.385498][ T6063] REISERFS (device loop0): Using r5 hash to sort names [pid 6063] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6063] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6063] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] <... futex resumed>) = 0 [pid 6063] <... futex resumed>) = 1 [pid 6062] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6063] mkdir(".", 0777 [pid 6062] <... futex resumed>) = 0 [pid 6063] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6062] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6063] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6062] <... futex resumed>) = 0 [pid 6062] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6062] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6062] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6063] <... mount resumed>) = 0 [pid 6062] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6063] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6065 attached [pid 6065] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6063] <... openat resumed>) = 5 [pid 6065] <... rseq resumed>) = 0 [pid 6065] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6065] rt_sigprocmask(SIG_SETMASK, [], [pid 6063] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6065] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6063] <... futex resumed>) = 0 [pid 6065] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6063] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6062] <... clone3 resumed> => {parent_tid=[6065]}, 88) = 6065 [pid 6062] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6062] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6065] <... futex resumed>) = 0 [pid 6062] <... futex resumed>) = 1 [pid 6065] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6062] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6065] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6065] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6062] <... futex resumed>) = 0 [pid 6065] <... futex resumed>) = 1 [pid 6062] exit_group(0 [pid 6065] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6063] <... futex resumed>) = ? [pid 6062] <... exit_group resumed>) = ? [pid 6065] +++ exited with 0 +++ [pid 6063] +++ exited with 0 +++ [pid 6062] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6062, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./247", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./247", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 163.431788][ T6063] reiserfs: enabling write barrier flush mode [ 163.439785][ T6063] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 163.468168][ T6063] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./247/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./247/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./247/binderfs") = 0 umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./247/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./247/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./247/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./247/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./247") = 0 mkdir("./248", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6066 attached , child_tidptr=0x5555565f3690) = 6066 [pid 6066] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6066] chdir("./248") = 0 [pid 6066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6066] setpgid(0, 0) = 0 [pid 6066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6066] write(3, "1000", 4) = 4 [pid 6066] close(3) = 0 [pid 6066] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6066] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6066] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6066] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6066] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6066] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6066] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6067 attached [pid 6067] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6066] <... clone3 resumed> => {parent_tid=[6067]}, 88) = 6067 [pid 6067] <... rseq resumed>) = 0 [pid 6067] set_robust_list(0x7fd868ec09a0, 24 [pid 6066] rt_sigprocmask(SIG_SETMASK, [], [pid 6067] <... set_robust_list resumed>) = 0 [pid 6066] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6067] rt_sigprocmask(SIG_SETMASK, [], [pid 6066] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6067] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6066] <... futex resumed>) = 0 [pid 6066] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6067] memfd_create("syzkaller", 0) = 3 [pid 6067] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6067] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6067] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6067] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6067] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6067] close(3) = 0 [pid 6067] mkdir("./file0", 0777) = 0 [ 163.760757][ T6067] loop0: detected capacity change from 0 to 8192 [ 163.785517][ T6067] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 163.798564][ T6067] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6067] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6067] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6067] chdir("./file0") = 0 [pid 6067] ioctl(4, LOOP_CLR_FD) = 0 [pid 6067] close(4) = 0 [pid 6067] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6066] <... futex resumed>) = 0 [pid 6067] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6066] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6067] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6066] <... futex resumed>) = 0 [pid 6067] mkdir(".", 0777 [pid 6066] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6067] <... mkdir resumed>) = -1 EEXIST (File exists) [ 163.807838][ T6067] REISERFS (device loop0): using ordered data mode [ 163.814383][ T6067] reiserfs: using flush barriers [ 163.820526][ T6067] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 163.837205][ T6067] REISERFS (device loop0): checking transaction log (loop0) [ 163.845650][ T6067] REISERFS (device loop0): Using r5 hash to sort names [pid 6067] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6067] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6067] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6067] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6066] <... futex resumed>) = 0 [pid 6066] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6067] <... futex resumed>) = 0 [pid 6066] <... futex resumed>) = 1 [pid 6067] mkdir(".", 0777 [pid 6066] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6067] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6067] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6066] <... futex resumed>) = 0 [pid 6066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6066] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6066] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6067] <... mount resumed>) = 0 [pid 6066] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6069 attached [pid 6067] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6066] <... clone3 resumed> => {parent_tid=[6069]}, 88) = 6069 [pid 6069] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6066] rt_sigprocmask(SIG_SETMASK, [], [pid 6069] <... rseq resumed>) = 0 [pid 6067] <... openat resumed>) = 5 [pid 6066] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6069] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6066] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6069] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6067] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6066] <... futex resumed>) = 0 [pid 6067] <... futex resumed>) = 0 [pid 6066] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6067] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6069] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6069] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6066] <... futex resumed>) = 0 [pid 6069] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6066] exit_group(0 [pid 6067] <... futex resumed>) = ? [pid 6066] <... exit_group resumed>) = ? [pid 6067] +++ exited with 0 +++ [pid 6069] <... futex resumed>) = ? [pid 6069] +++ exited with 0 +++ [pid 6066] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6066, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./248", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./248", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 163.876822][ T6067] reiserfs: enabling write barrier flush mode [ 163.884703][ T6067] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 163.907249][ T6067] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./248/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./248/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./248/binderfs") = 0 umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./248/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./248/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./248/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./248/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./248") = 0 mkdir("./249", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6070 attached , child_tidptr=0x5555565f3690) = 6070 [pid 6070] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6070] chdir("./249") = 0 [pid 6070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6070] setpgid(0, 0) = 0 [pid 6070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6070] write(3, "1000", 4) = 4 [pid 6070] close(3) = 0 [pid 6070] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6070] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6070] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6070] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6070] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6070] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6070] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6071 attached [pid 6071] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6070] <... clone3 resumed> => {parent_tid=[6071]}, 88) = 6071 [pid 6071] <... rseq resumed>) = 0 [pid 6070] rt_sigprocmask(SIG_SETMASK, [], [pid 6071] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6071] rt_sigprocmask(SIG_SETMASK, [], [pid 6070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6071] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6071] memfd_create("syzkaller", 0 [pid 6070] <... futex resumed>) = 0 [pid 6070] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6071] <... memfd_create resumed>) = 3 [pid 6071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6071] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6071] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6071] close(3) = 0 [pid 6071] mkdir("./file0", 0777) = 0 [ 164.251853][ T6071] loop0: detected capacity change from 0 to 8192 [ 164.266737][ T6071] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 164.279735][ T6071] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 164.288996][ T6071] REISERFS (device loop0): using ordered data mode [ 164.295559][ T6071] reiserfs: using flush barriers [pid 6071] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6071] chdir("./file0") = 0 [pid 6071] ioctl(4, LOOP_CLR_FD) = 0 [pid 6071] close(4) = 0 [pid 6071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6070] <... futex resumed>) = 0 [pid 6071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6071] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6070] <... futex resumed>) = 0 [pid 6071] mkdir(".", 0777 [pid 6070] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6071] <... mkdir resumed>) = -1 EEXIST (File exists) [ 164.301976][ T6071] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 164.318362][ T6071] REISERFS (device loop0): checking transaction log (loop0) [ 164.326778][ T6071] REISERFS (device loop0): Using r5 hash to sort names [pid 6071] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6071] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6070] <... futex resumed>) = 0 [pid 6071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6070] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6071] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6070] <... futex resumed>) = 0 [pid 6071] mkdir(".", 0777 [pid 6070] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6071] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6070] <... futex resumed>) = 0 [pid 6071] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6070] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6071] <... mount resumed>) = 0 [pid 6070] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6071] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6070] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6073 attached => {parent_tid=[6073]}, 88) = 6073 [pid 6073] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6071] <... openat resumed>) = 5 [pid 6070] rt_sigprocmask(SIG_SETMASK, [], [pid 6073] <... rseq resumed>) = 0 [pid 6073] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6071] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6073] rt_sigprocmask(SIG_SETMASK, [], [pid 6071] <... futex resumed>) = 0 [pid 6070] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6073] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6073] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6071] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6070] <... futex resumed>) = 0 [pid 6070] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6073] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6073] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6073] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6070] <... futex resumed>) = 0 [pid 6070] exit_group(0 [pid 6073] <... futex resumed>) = ? [pid 6071] <... futex resumed>) = ? [pid 6073] +++ exited with 0 +++ [pid 6071] +++ exited with 0 +++ [pid 6070] <... exit_group resumed>) = ? [pid 6070] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6070, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./249", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./249", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./249/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./249/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 164.384427][ T6071] reiserfs: enabling write barrier flush mode [ 164.392496][ T6071] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 164.424189][ T6071] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./249/binderfs") = 0 umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./249/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./249/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./249/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./249/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./249") = 0 mkdir("./250", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6074 attached , child_tidptr=0x5555565f3690) = 6074 [pid 6074] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6074] chdir("./250") = 0 [pid 6074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6074] setpgid(0, 0) = 0 [pid 6074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6074] write(3, "1000", 4) = 4 [pid 6074] close(3) = 0 [pid 6074] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6074] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6074] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6074] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6074] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6074] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6074] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6074] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6075 attached [pid 6075] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6074] <... clone3 resumed> => {parent_tid=[6075]}, 88) = 6075 [pid 6075] set_robust_list(0x7fd868ec09a0, 24 [pid 6074] rt_sigprocmask(SIG_SETMASK, [], [pid 6075] <... set_robust_list resumed>) = 0 [pid 6074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6075] rt_sigprocmask(SIG_SETMASK, [], [pid 6074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6075] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6074] <... futex resumed>) = 0 [pid 6075] memfd_create("syzkaller", 0 [pid 6074] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6075] <... memfd_create resumed>) = 3 [pid 6075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6075] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6075] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6075] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6075] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6075] close(3) = 0 [pid 6075] mkdir("./file0", 0777) = 0 [ 164.713359][ T6075] loop0: detected capacity change from 0 to 8192 [ 164.728672][ T6075] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 164.741759][ T6075] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 164.750956][ T6075] REISERFS (device loop0): using ordered data mode [ 164.757545][ T6075] reiserfs: using flush barriers [pid 6075] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6075] chdir("./file0") = 0 [pid 6075] ioctl(4, LOOP_CLR_FD) = 0 [pid 6075] close(4) = 0 [pid 6075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6075] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6074] <... futex resumed>) = 0 [pid 6074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6075] <... futex resumed>) = 0 [pid 6074] <... futex resumed>) = 1 [pid 6075] mkdir(".", 0777 [pid 6074] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6075] <... mkdir resumed>) = -1 EEXIST (File exists) [ 164.763873][ T6075] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 164.780318][ T6075] REISERFS (device loop0): checking transaction log (loop0) [ 164.788948][ T6075] REISERFS (device loop0): Using r5 hash to sort names [pid 6075] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6075] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6074] <... futex resumed>) = 0 [pid 6075] <... futex resumed>) = 1 [pid 6075] mkdir(".", 0777 [pid 6074] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6075] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6074] <... futex resumed>) = 0 [pid 6074] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6074] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6074] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6075] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6074] <... mprotect resumed>) = 0 [pid 6074] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 164.831953][ T6075] reiserfs: enabling write barrier flush mode [ 164.840115][ T6075] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6074] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6077 attached [pid 6077] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6074] <... clone3 resumed> => {parent_tid=[6077]}, 88) = 6077 [pid 6077] <... rseq resumed>) = 0 [pid 6075] <... mount resumed>) = 0 [pid 6074] rt_sigprocmask(SIG_SETMASK, [], [pid 6077] set_robust_list(0x7fd868e9f9a0, 24 [pid 6074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6077] <... set_robust_list resumed>) = 0 [pid 6074] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6077] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6074] <... futex resumed>) = 0 [pid 6077] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6075] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6074] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6077] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6075] <... openat resumed>) = 5 [pid 6075] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6075] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6077] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6074] <... futex resumed>) = 0 [pid 6077] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6074] exit_group(0 [pid 6077] <... futex resumed>) = ? [pid 6075] <... futex resumed>) = ? [pid 6074] <... exit_group resumed>) = ? [pid 6077] +++ exited with 0 +++ [pid 6075] +++ exited with 0 +++ [pid 6074] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6074, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- umount2("./250", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./250", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./250/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./250/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./250/binderfs") = 0 [ 164.882782][ T6075] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./250/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./250/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./250/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./250/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./250") = 0 mkdir("./251", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6078 attached [pid 6078] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6078] chdir("./251" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6078 [pid 6078] <... chdir resumed>) = 0 [pid 6078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6078] setpgid(0, 0) = 0 [pid 6078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6078] write(3, "1000", 4) = 4 [pid 6078] close(3) = 0 [pid 6078] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6078] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6078] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6078] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6078] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6078] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6079 attached [pid 6079] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6079] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6079] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6079] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] <... clone3 resumed> => {parent_tid=[6079]}, 88) = 6079 [pid 6078] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] <... futex resumed>) = 0 [pid 6078] <... futex resumed>) = 1 [pid 6079] memfd_create("syzkaller", 0 [pid 6078] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6079] <... memfd_create resumed>) = 3 [pid 6079] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6079] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6079] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6079] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6079] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6079] close(3) = 0 [pid 6079] mkdir("./file0", 0777) = 0 [ 165.125665][ T6079] loop0: detected capacity change from 0 to 8192 [ 165.140838][ T6079] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 165.153859][ T6079] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 165.163240][ T6079] REISERFS (device loop0): using ordered data mode [ 165.169752][ T6079] reiserfs: using flush barriers [pid 6079] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6079] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6079] chdir("./file0") = 0 [pid 6079] ioctl(4, LOOP_CLR_FD) = 0 [pid 6079] close(4) = 0 [pid 6079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6078] <... futex resumed>) = 0 [pid 6079] <... futex resumed>) = 1 [pid 6078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] mkdir(".", 0777 [pid 6078] <... futex resumed>) = 0 [pid 6079] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6078] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 165.176482][ T6079] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 165.192902][ T6079] REISERFS (device loop0): checking transaction log (loop0) [ 165.201004][ T6079] REISERFS (device loop0): Using r5 hash to sort names [pid 6079] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6079] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6078] <... futex resumed>) = 0 [pid 6079] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6079] mkdir(".", 0777 [pid 6078] <... futex resumed>) = 0 [pid 6079] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6078] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6079] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6078] <... futex resumed>) = 0 [pid 6078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 165.222799][ T6079] reiserfs: enabling write barrier flush mode [ 165.231544][ T6079] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6078] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6079] <... mount resumed>) = 0 [pid 6079] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6078] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6079] <... openat resumed>) = 5 [pid 6079] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6079] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6078] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6081 attached [pid 6081] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6078] <... clone3 resumed> => {parent_tid=[6081]}, 88) = 6081 [pid 6081] <... rseq resumed>) = 0 [pid 6078] rt_sigprocmask(SIG_SETMASK, [], [pid 6081] set_robust_list(0x7fd868e9f9a0, 24 [pid 6078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6081] <... set_robust_list resumed>) = 0 [pid 6078] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6081] rt_sigprocmask(SIG_SETMASK, [], [pid 6078] <... futex resumed>) = 0 [pid 6081] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6078] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6081] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6081] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6078] <... futex resumed>) = 0 [pid 6081] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6078] exit_group(0) = ? [pid 6081] <... futex resumed>) = ? [pid 6079] <... futex resumed>) = ? [pid 6081] +++ exited with 0 +++ [pid 6079] +++ exited with 0 +++ [pid 6078] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6078, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 [ 165.273357][ T6079] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./251", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./251", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./251/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./251/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./251/binderfs") = 0 umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./251/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./251/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./251/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./251/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./251") = 0 mkdir("./252", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6082 attached [pid 6082] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6082] chdir("./252") = 0 [pid 6082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6082] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6082 [pid 6082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6082] write(3, "1000", 4) = 4 [pid 6082] close(3) = 0 [pid 6082] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6082] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6082] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6082] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6082] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6082] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6082] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6082] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6083 attached => {parent_tid=[6083]}, 88) = 6083 [pid 6082] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6083] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] set_robust_list(0x7fd868ec09a0, 24 [pid 6082] <... futex resumed>) = 0 [pid 6083] <... set_robust_list resumed>) = 0 [pid 6082] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6083] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6083] memfd_create("syzkaller", 0) = 3 [pid 6083] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6083] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6083] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6083] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6083] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6083] close(3) = 0 [pid 6083] mkdir("./file0", 0777) = 0 [ 165.621711][ T6083] loop0: detected capacity change from 0 to 8192 [ 165.631787][ T6083] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 165.644887][ T6083] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 165.654193][ T6083] REISERFS (device loop0): using ordered data mode [ 165.660709][ T6083] reiserfs: using flush barriers [pid 6083] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6083] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6083] chdir("./file0") = 0 [pid 6083] ioctl(4, LOOP_CLR_FD) = 0 [pid 6083] close(4) = 0 [pid 6083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6082] <... futex resumed>) = 0 [pid 6083] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6083] mkdir(".", 0777 [pid 6082] <... futex resumed>) = 0 [pid 6083] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6082] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 165.667376][ T6083] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 165.683964][ T6083] REISERFS (device loop0): checking transaction log (loop0) [ 165.692214][ T6083] REISERFS (device loop0): Using r5 hash to sort names [ 165.715699][ T6083] reiserfs: enabling write barrier flush mode [pid 6083] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6083] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6082] <... futex resumed>) = 0 [pid 6082] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6083] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6082] <... futex resumed>) = 0 [pid 6083] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6082] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6082] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6082] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6083] <... mount resumed>) = 0 [pid 6082] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6083] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6082] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6082] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6083] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6083] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6082] <... clone3 resumed> => {parent_tid=[6085]}, 88) = 6085 ./strace-static-x86_64: Process 6085 attached [pid 6082] rt_sigprocmask(SIG_SETMASK, [], [pid 6085] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6085] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6085] rt_sigprocmask(SIG_SETMASK, [], [pid 6082] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6085] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6082] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6085] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6082] <... futex resumed>) = 0 [pid 6082] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6085] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6085] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6082] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6085] <... futex resumed>) = 0 [pid 6082] exit_group(0 [pid 6085] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6083] <... futex resumed>) = ? [pid 6082] <... exit_group resumed>) = ? [pid 6085] +++ exited with 0 +++ [pid 6083] +++ exited with 0 +++ [pid 6082] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6082, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- [ 165.724316][ T6083] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 165.756007][ T6083] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./252", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./252", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./252/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./252/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./252/binderfs") = 0 umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./252/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./252/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./252/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./252/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./252") = 0 mkdir("./253", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6086 attached , child_tidptr=0x5555565f3690) = 6086 [pid 6086] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6086] chdir("./253") = 0 [pid 6086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6086] setpgid(0, 0) = 0 [pid 6086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6086] write(3, "1000", 4) = 4 [pid 6086] close(3) = 0 [pid 6086] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6086] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6086] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6086] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6086] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6086] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6086] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6087 attached => {parent_tid=[6087]}, 88) = 6087 [pid 6087] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6086] rt_sigprocmask(SIG_SETMASK, [], [pid 6087] <... rseq resumed>) = 0 [pid 6086] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6087] set_robust_list(0x7fd868ec09a0, 24 [pid 6086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... set_robust_list resumed>) = 0 [pid 6086] <... futex resumed>) = 0 [pid 6087] rt_sigprocmask(SIG_SETMASK, [], [pid 6086] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6087] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6087] memfd_create("syzkaller", 0) = 3 [pid 6087] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6087] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6087] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6087] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6087] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6087] close(3) = 0 [pid 6087] mkdir("./file0", 0777) = 0 [ 166.036738][ T6087] loop0: detected capacity change from 0 to 8192 [ 166.052506][ T6087] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 166.065625][ T6087] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 166.074920][ T6087] REISERFS (device loop0): using ordered data mode [ 166.081466][ T6087] reiserfs: using flush barriers [pid 6087] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6087] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6087] chdir("./file0") = 0 [pid 6087] ioctl(4, LOOP_CLR_FD) = 0 [pid 6087] close(4) = 0 [pid 6087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6086] <... futex resumed>) = 0 [pid 6087] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6086] <... futex resumed>) = 0 [pid 6087] mkdir(".", 0777 [pid 6086] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6087] <... mkdir resumed>) = -1 EEXIST (File exists) [ 166.087627][ T6087] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 166.104192][ T6087] REISERFS (device loop0): checking transaction log (loop0) [ 166.112413][ T6087] REISERFS (device loop0): Using r5 hash to sort names [pid 6087] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6087] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6086] <... futex resumed>) = 0 [pid 6087] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6086] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... futex resumed>) = 0 [pid 6086] <... futex resumed>) = 1 [pid 6087] mkdir(".", 0777 [pid 6086] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6087] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6086] <... futex resumed>) = 0 [pid 6087] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6086] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 166.137291][ T6087] reiserfs: enabling write barrier flush mode [ 166.145619][ T6087] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6086] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6087] <... mount resumed>) = 0 [pid 6086] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6087] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6086] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6087] <... openat resumed>) = 5 [pid 6087] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6086] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6089 attached [pid 6087] <... futex resumed>) = 0 [pid 6087] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6089] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6089] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6086] <... clone3 resumed> => {parent_tid=[6089]}, 88) = 6089 [pid 6089] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6086] rt_sigprocmask(SIG_SETMASK, [], [pid 6089] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6086] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6086] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6089] <... futex resumed>) = 0 [pid 6089] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6086] <... futex resumed>) = 1 [pid 6089] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6086] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6089] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6086] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6089] <... futex resumed>) = 0 [pid 6089] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6086] exit_group(0 [pid 6089] <... futex resumed>) = ? [pid 6087] <... futex resumed>) = ? [pid 6086] <... exit_group resumed>) = ? [pid 6089] +++ exited with 0 +++ [pid 6087] +++ exited with 0 +++ [pid 6086] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6086, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./253", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./253", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./253/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./253/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./253/binderfs") = 0 [ 166.186338][ T6087] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./253/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./253/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./253/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./253/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./253") = 0 mkdir("./254", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6090 ./strace-static-x86_64: Process 6090 attached [pid 6090] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6090] chdir("./254") = 0 [pid 6090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6090] setpgid(0, 0) = 0 [pid 6090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6090] write(3, "1000", 4) = 4 [pid 6090] close(3) = 0 [pid 6090] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6090] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6090] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6090] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6090] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6090] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6090] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6091 attached [pid 6091] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6090] <... clone3 resumed> => {parent_tid=[6091]}, 88) = 6091 [pid 6091] <... rseq resumed>) = 0 [pid 6091] set_robust_list(0x7fd868ec09a0, 24 [pid 6090] rt_sigprocmask(SIG_SETMASK, [], [pid 6091] <... set_robust_list resumed>) = 0 [pid 6090] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6091] rt_sigprocmask(SIG_SETMASK, [], [pid 6090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6091] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6090] <... futex resumed>) = 0 [pid 6091] memfd_create("syzkaller", 0 [pid 6090] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6091] <... memfd_create resumed>) = 3 [pid 6091] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6091] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6091] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6091] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6091] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6091] close(3) = 0 [pid 6091] mkdir("./file0", 0777) = 0 [ 166.460073][ T6091] loop0: detected capacity change from 0 to 8192 [ 166.475817][ T6091] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 166.488931][ T6091] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 166.498308][ T6091] REISERFS (device loop0): using ordered data mode [ 166.504871][ T6091] reiserfs: using flush barriers [pid 6091] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6091] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6091] chdir("./file0") = 0 [pid 6091] ioctl(4, LOOP_CLR_FD) = 0 [pid 6091] close(4) = 0 [pid 6091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6091] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6090] <... futex resumed>) = 0 [pid 6090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6091] <... futex resumed>) = 0 [pid 6090] <... futex resumed>) = 1 [pid 6091] mkdir(".", 0777 [pid 6090] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6091] <... mkdir resumed>) = -1 EEXIST (File exists) [ 166.511335][ T6091] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 166.528164][ T6091] REISERFS (device loop0): checking transaction log (loop0) [ 166.536543][ T6091] REISERFS (device loop0): Using r5 hash to sort names [pid 6091] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6091] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6090] <... futex resumed>) = 0 [pid 6091] <... futex resumed>) = 1 [pid 6090] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6091] mkdir(".", 0777 [pid 6090] <... futex resumed>) = 0 [pid 6091] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6090] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6091] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6090] <... futex resumed>) = 0 [pid 6090] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6091] <... mount resumed>) = 0 [pid 6090] <... mmap resumed>) = 0x7fd868e7f000 [pid 6090] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6091] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6090] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6091] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6090] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6090] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6093 attached [pid 6093] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6090] <... clone3 resumed> => {parent_tid=[6093]}, 88) = 6093 [pid 6093] set_robust_list(0x7fd868e9f9a0, 24 [pid 6091] <... futex resumed>) = 0 [pid 6090] rt_sigprocmask(SIG_SETMASK, [], [pid 6091] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6093] <... set_robust_list resumed>) = 0 [pid 6090] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6093] rt_sigprocmask(SIG_SETMASK, [], [pid 6090] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6093] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6090] <... futex resumed>) = 0 [pid 6093] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6090] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6093] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6093] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6090] <... futex resumed>) = 0 [pid 6093] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6090] exit_group(0 [pid 6093] <... futex resumed>) = ? [pid 6091] <... futex resumed>) = ? [pid 6090] <... exit_group resumed>) = ? [pid 6093] +++ exited with 0 +++ [pid 6091] +++ exited with 0 +++ [pid 6090] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6090, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./254", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./254", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./254/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./254/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./254/binderfs") = 0 [ 166.575263][ T6091] reiserfs: enabling write barrier flush mode [ 166.583961][ T6091] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 166.604580][ T6091] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./254/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./254/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./254/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./254/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./254") = 0 mkdir("./255", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6094 attached , child_tidptr=0x5555565f3690) = 6094 [pid 6094] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6094] chdir("./255") = 0 [pid 6094] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6094] setpgid(0, 0) = 0 [pid 6094] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6094] write(3, "1000", 4) = 4 [pid 6094] close(3) = 0 [pid 6094] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6094] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6094] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6094] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6094] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6094] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6094] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6094] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6095 attached [pid 6095] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6094] <... clone3 resumed> => {parent_tid=[6095]}, 88) = 6095 [pid 6095] set_robust_list(0x7fd868ec09a0, 24 [pid 6094] rt_sigprocmask(SIG_SETMASK, [], [pid 6095] <... set_robust_list resumed>) = 0 [pid 6094] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6095] rt_sigprocmask(SIG_SETMASK, [], [pid 6094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6095] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6094] <... futex resumed>) = 0 [pid 6095] memfd_create("syzkaller", 0 [pid 6094] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6095] <... memfd_create resumed>) = 3 [pid 6095] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6095] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6095] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6095] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6095] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6095] close(3) = 0 [pid 6095] mkdir("./file0", 0777) = 0 [ 166.902198][ T6095] loop0: detected capacity change from 0 to 8192 [ 166.916173][ T6095] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 166.929406][ T6095] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 166.938737][ T6095] REISERFS (device loop0): using ordered data mode [ 166.945293][ T6095] reiserfs: using flush barriers [pid 6095] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6095] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6095] chdir("./file0") = 0 [pid 6095] ioctl(4, LOOP_CLR_FD) = 0 [pid 6095] close(4) = 0 [pid 6095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6095] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6094] <... futex resumed>) = 0 [pid 6094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6095] <... futex resumed>) = 0 [pid 6095] mkdir(".", 0777 [pid 6094] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6095] <... mkdir resumed>) = -1 EEXIST (File exists) [ 166.951664][ T6095] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 166.968424][ T6095] REISERFS (device loop0): checking transaction log (loop0) [ 166.976834][ T6095] REISERFS (device loop0): Using r5 hash to sort names [pid 6095] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6095] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6094] <... futex resumed>) = 0 [pid 6094] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6094] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6094] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6095] mkdir(".", 0777 [pid 6094] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6094] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6095] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6095] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6094] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6094] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6097 attached [pid 6097] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6094] <... clone3 resumed> => {parent_tid=[6097]}, 88) = 6097 [pid 6097] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6094] rt_sigprocmask(SIG_SETMASK, [], [pid 6097] rt_sigprocmask(SIG_SETMASK, [], [pid 6094] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6097] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6094] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6097] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6094] <... futex resumed>) = 0 [pid 6097] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 6094] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6097] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6094] <... futex resumed>) = 0 [ 167.020312][ T6095] reiserfs: enabling write barrier flush mode [ 167.028135][ T6095] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6097] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6095] <... mount resumed>) = 0 [pid 6095] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6095] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6095] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6094] exit_group(0 [pid 6097] <... futex resumed>) = ? [pid 6095] <... futex resumed>) = ? [pid 6094] <... exit_group resumed>) = ? [pid 6095] +++ exited with 0 +++ [pid 6097] +++ exited with 0 +++ [pid 6094] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6094, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./255", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./255", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./255/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./255/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./255/binderfs") = 0 [ 167.073561][ T6095] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./255/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./255/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./255/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./255/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./255") = 0 mkdir("./256", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6098 attached , child_tidptr=0x5555565f3690) = 6098 [pid 6098] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6098] chdir("./256") = 0 [pid 6098] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6098] setpgid(0, 0) = 0 [pid 6098] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6098] write(3, "1000", 4) = 4 [pid 6098] close(3) = 0 [pid 6098] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6098] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6098] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6098] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6098] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6098] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6098] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6098] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6099 attached => {parent_tid=[6099]}, 88) = 6099 [pid 6099] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6098] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6098] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6099] <... rseq resumed>) = 0 [pid 6099] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6099] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6099] memfd_create("syzkaller", 0) = 3 [pid 6099] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6099] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6099] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6099] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6099] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6099] close(3) = 0 [pid 6099] mkdir("./file0", 0777) = 0 [ 167.365109][ T6099] loop0: detected capacity change from 0 to 8192 [ 167.375330][ T6099] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 167.388552][ T6099] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 167.397769][ T6099] REISERFS (device loop0): using ordered data mode [ 167.404345][ T6099] reiserfs: using flush barriers [pid 6099] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6099] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6099] chdir("./file0") = 0 [pid 6099] ioctl(4, LOOP_CLR_FD) = 0 [pid 6099] close(4) = 0 [pid 6099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6098] <... futex resumed>) = 0 [pid 6098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6099] mkdir(".", 0777 [pid 6098] <... futex resumed>) = 0 [pid 6099] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6098] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 167.410474][ T6099] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 167.427649][ T6099] REISERFS (device loop0): checking transaction log (loop0) [ 167.436109][ T6099] REISERFS (device loop0): Using r5 hash to sort names [pid 6099] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6099] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6098] <... futex resumed>) = 0 [pid 6098] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6099] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6098] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6099] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6099] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6098] <... futex resumed>) = 0 [pid 6098] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6098] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6098] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6098] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6101 attached [pid 6099] <... mount resumed>) = 0 [pid 6101] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6098] <... clone3 resumed> => {parent_tid=[6101]}, 88) = 6101 [pid 6099] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6098] rt_sigprocmask(SIG_SETMASK, [], [pid 6099] <... openat resumed>) = 5 [pid 6098] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6098] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6099] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6098] <... futex resumed>) = 0 [pid 6099] <... futex resumed>) = 0 [pid 6098] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6099] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6101] <... rseq resumed>) = 0 [pid 6101] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6101] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6101] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6101] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6098] <... futex resumed>) = 0 [pid 6101] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6098] exit_group(0 [pid 6101] <... futex resumed>) = ? [pid 6099] <... futex resumed>) = ? [pid 6098] <... exit_group resumed>) = ? [pid 6099] +++ exited with 0 +++ [pid 6101] +++ exited with 0 +++ [pid 6098] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6098, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./256", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./256", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 167.484568][ T6099] reiserfs: enabling write barrier flush mode [ 167.492780][ T6099] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 167.515644][ T6099] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./256/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./256/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./256/binderfs") = 0 umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./256/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./256/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./256/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./256/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./256") = 0 mkdir("./257", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6102 attached , child_tidptr=0x5555565f3690) = 6102 [pid 6102] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6102] chdir("./257") = 0 [pid 6102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6102] setpgid(0, 0) = 0 [pid 6102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6102] write(3, "1000", 4) = 4 [pid 6102] close(3) = 0 [pid 6102] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6102] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6102] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6102] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6102] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6102] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6102] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6103 attached => {parent_tid=[6103]}, 88) = 6103 [pid 6103] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6102] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6102] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6103] <... rseq resumed>) = 0 [pid 6103] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6103] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6103] memfd_create("syzkaller", 0) = 3 [pid 6103] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6103] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6103] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6103] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6103] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6103] close(3) = 0 [pid 6103] mkdir("./file0", 0777) = 0 [ 167.789303][ T6103] loop0: detected capacity change from 0 to 8192 [ 167.805599][ T6103] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 167.818587][ T6103] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 167.827902][ T6103] REISERFS (device loop0): using ordered data mode [ 167.834462][ T6103] reiserfs: using flush barriers [pid 6103] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6103] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6103] chdir("./file0") = 0 [pid 6103] ioctl(4, LOOP_CLR_FD) = 0 [pid 6103] close(4) = 0 [pid 6103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6102] <... futex resumed>) = 0 [pid 6102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] <... futex resumed>) = 0 [pid 6102] <... futex resumed>) = 1 [pid 6103] mkdir(".", 0777 [pid 6102] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6103] <... mkdir resumed>) = -1 EEXIST (File exists) [ 167.840394][ T6103] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 167.856969][ T6103] REISERFS (device loop0): checking transaction log (loop0) [ 167.865649][ T6103] REISERFS (device loop0): Using r5 hash to sort names [pid 6103] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6103] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6102] <... futex resumed>) = 0 [pid 6103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6102] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6102] <... futex resumed>) = 0 [pid 6102] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6103] mkdir(".", 0777 [pid 6102] <... futex resumed>) = 0 [pid 6103] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6102] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6103] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6102] <... mmap resumed>) = 0x7fd868e7f000 [pid 6102] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6102] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6103] <... mount resumed>) = 0 [pid 6102] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6103] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6102] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6103] <... openat resumed>) = 5 ./strace-static-x86_64: Process 6105 attached [pid 6105] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6105] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6105] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6103] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6102] <... clone3 resumed> => {parent_tid=[6105]}, 88) = 6105 [pid 6105] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6103] <... futex resumed>) = 0 [pid 6102] rt_sigprocmask(SIG_SETMASK, [], [pid 6103] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6102] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6102] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6105] <... futex resumed>) = 0 [pid 6102] <... futex resumed>) = 1 [pid 6105] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6102] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6105] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6105] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6102] <... futex resumed>) = 0 [pid 6105] <... futex resumed>) = 1 [pid 6105] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6102] exit_group(0 [pid 6105] <... futex resumed>) = ? [pid 6103] <... futex resumed>) = ? [pid 6102] <... exit_group resumed>) = ? [pid 6105] +++ exited with 0 +++ [pid 6103] +++ exited with 0 +++ [pid 6102] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6102, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./257", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./257", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./257/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./257/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./257/binderfs") = 0 [ 167.910067][ T6103] reiserfs: enabling write barrier flush mode [ 167.918050][ T6103] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 167.939273][ T6103] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./257/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./257/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./257/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./257/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./257") = 0 mkdir("./258", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6106 attached , child_tidptr=0x5555565f3690) = 6106 [pid 6106] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6106] chdir("./258") = 0 [pid 6106] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6106] setpgid(0, 0) = 0 [pid 6106] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6106] write(3, "1000", 4) = 4 [pid 6106] close(3) = 0 [pid 6106] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6106] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6106] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6106] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6106] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6106] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6107 attached [pid 6107] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6106] <... clone3 resumed> => {parent_tid=[6107]}, 88) = 6107 [pid 6107] <... rseq resumed>) = 0 [pid 6106] rt_sigprocmask(SIG_SETMASK, [], [pid 6107] set_robust_list(0x7fd868ec09a0, 24 [pid 6106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6107] <... set_robust_list resumed>) = 0 [pid 6106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6107] rt_sigprocmask(SIG_SETMASK, [], [pid 6106] <... futex resumed>) = 0 [pid 6107] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6106] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6107] memfd_create("syzkaller", 0) = 3 [pid 6107] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6107] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6107] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6107] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6107] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6107] close(3) = 0 [pid 6107] mkdir("./file0", 0777) = 0 [ 168.207438][ T6107] loop0: detected capacity change from 0 to 8192 [ 168.234612][ T6107] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 168.247629][ T6107] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6107] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6107] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6107] chdir("./file0") = 0 [pid 6107] ioctl(4, LOOP_CLR_FD) = 0 [pid 6107] close(4) = 0 [pid 6107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6106] <... futex resumed>) = 0 [pid 6107] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6107] mkdir(".", 0777 [pid 6106] <... futex resumed>) = 0 [pid 6107] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6106] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 168.257005][ T6107] REISERFS (device loop0): using ordered data mode [ 168.263542][ T6107] reiserfs: using flush barriers [ 168.269627][ T6107] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 168.286175][ T6107] REISERFS (device loop0): checking transaction log (loop0) [ 168.294360][ T6107] REISERFS (device loop0): Using r5 hash to sort names [pid 6107] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6107] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] <... futex resumed>) = 0 [pid 6107] <... futex resumed>) = 1 [pid 6106] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6107] mkdir(".", 0777 [pid 6106] <... futex resumed>) = 0 [pid 6107] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6106] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6107] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6106] <... futex resumed>) = 0 [pid 6106] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6106] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6107] <... mount resumed>) = 0 [pid 6106] <... mprotect resumed>) = 0 [pid 6106] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6107] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6106] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6106] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6109 attached [pid 6109] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6107] <... openat resumed>) = 5 [pid 6109] <... rseq resumed>) = 0 [pid 6107] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] <... clone3 resumed> => {parent_tid=[6109]}, 88) = 6109 [pid 6109] set_robust_list(0x7fd868e9f9a0, 24 [pid 6107] <... futex resumed>) = 0 [pid 6106] rt_sigprocmask(SIG_SETMASK, [], [pid 6109] <... set_robust_list resumed>) = 0 [pid 6107] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6106] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6109] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6106] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6109] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6106] <... futex resumed>) = 0 [ 168.330704][ T6107] reiserfs: enabling write barrier flush mode [ 168.339598][ T6107] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 168.369228][ T6107] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6109] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6106] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6109] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6106] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6106] exit_group(0 [pid 6107] <... futex resumed>) = ? [pid 6107] +++ exited with 0 +++ [pid 6106] <... exit_group resumed>) = ? [pid 6109] <... futex resumed>) = ? [pid 6109] +++ exited with 0 +++ [pid 6106] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6106, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./258", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./258", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./258/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./258/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./258/binderfs") = 0 umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./258/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./258/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./258/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./258/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./258") = 0 mkdir("./259", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6110 ./strace-static-x86_64: Process 6110 attached [pid 6110] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6110] chdir("./259") = 0 [pid 6110] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6110] setpgid(0, 0) = 0 [pid 6110] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6110] write(3, "1000", 4) = 4 [pid 6110] close(3) = 0 [pid 6110] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6110] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6110] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6110] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6110] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6110] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6110] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6110] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6111 attached [pid 6111] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6110] <... clone3 resumed> => {parent_tid=[6111]}, 88) = 6111 [pid 6111] <... rseq resumed>) = 0 [pid 6110] rt_sigprocmask(SIG_SETMASK, [], [pid 6111] set_robust_list(0x7fd868ec09a0, 24 [pid 6110] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6111] <... set_robust_list resumed>) = 0 [pid 6110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] rt_sigprocmask(SIG_SETMASK, [], [pid 6110] <... futex resumed>) = 0 [pid 6111] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6110] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6111] memfd_create("syzkaller", 0) = 3 [pid 6111] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6111] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6111] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6111] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6111] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6111] close(3) = 0 [pid 6111] mkdir("./file0", 0777) = 0 [ 168.691502][ T6111] loop0: detected capacity change from 0 to 8192 [ 168.707134][ T6111] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 168.720171][ T6111] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 168.729955][ T6111] REISERFS (device loop0): using ordered data mode [ 168.736521][ T6111] reiserfs: using flush barriers [pid 6111] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6111] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6111] chdir("./file0") = 0 [pid 6111] ioctl(4, LOOP_CLR_FD) = 0 [pid 6111] close(4) = 0 [pid 6111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6110] <... futex resumed>) = 0 [pid 6111] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] <... futex resumed>) = 0 [pid 6110] <... futex resumed>) = 1 [pid 6111] mkdir(".", 0777 [pid 6110] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6111] <... mkdir resumed>) = -1 EEXIST (File exists) [ 168.742473][ T6111] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 168.759088][ T6111] REISERFS (device loop0): checking transaction log (loop0) [ 168.767296][ T6111] REISERFS (device loop0): Using r5 hash to sort names [pid 6111] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6111] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6111] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6110] <... futex resumed>) = 0 [pid 6110] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6111] <... futex resumed>) = 0 [pid 6110] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] mkdir(".", 0777 [pid 6110] <... futex resumed>) = 0 [pid 6111] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6110] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6111] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6110] <... mmap resumed>) = 0x7fd868e7f000 [pid 6110] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6110] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6110] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6113 attached [pid 6113] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6113] set_robust_list(0x7fd868e9f9a0, 24 [pid 6111] <... mount resumed>) = 0 [pid 6110] <... clone3 resumed> => {parent_tid=[6113]}, 88) = 6113 [pid 6113] <... set_robust_list resumed>) = 0 [pid 6110] rt_sigprocmask(SIG_SETMASK, [], [pid 6113] rt_sigprocmask(SIG_SETMASK, [], [pid 6110] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6113] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6110] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6113] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6110] <... futex resumed>) = 0 [pid 6110] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6113] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6111] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6113] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6111] <... openat resumed>) = 5 [pid 6113] <... futex resumed>) = 1 [pid 6110] <... futex resumed>) = 0 [pid 6113] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6111] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6111] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6110] exit_group(0) = ? [pid 6113] <... futex resumed>) = ? [pid 6111] <... futex resumed>) = ? [pid 6113] +++ exited with 0 +++ [ 168.800559][ T6111] reiserfs: enabling write barrier flush mode [ 168.808987][ T6111] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 168.835335][ T6111] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6111] +++ exited with 0 +++ [pid 6110] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6110, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./259", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./259", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./259/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./259/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./259/binderfs") = 0 umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./259/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./259/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./259/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./259/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./259") = 0 mkdir("./260", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6114 attached , child_tidptr=0x5555565f3690) = 6114 [pid 6114] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6114] chdir("./260") = 0 [pid 6114] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6114] setpgid(0, 0) = 0 [pid 6114] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6114] write(3, "1000", 4) = 4 [pid 6114] close(3) = 0 [pid 6114] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6114] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6114] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6114] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6114] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6114] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6114] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6115 attached [pid 6115] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6115] set_robust_list(0x7fd868ec09a0, 24 [pid 6114] <... clone3 resumed> => {parent_tid=[6115]}, 88) = 6115 [pid 6115] <... set_robust_list resumed>) = 0 [pid 6115] rt_sigprocmask(SIG_SETMASK, [], [pid 6114] rt_sigprocmask(SIG_SETMASK, [], [pid 6115] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6114] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6115] memfd_create("syzkaller", 0 [pid 6114] <... futex resumed>) = 0 [pid 6114] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6115] <... memfd_create resumed>) = 3 [pid 6115] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6115] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6115] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6115] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6115] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6115] close(3) = 0 [pid 6115] mkdir("./file0", 0777) = 0 [ 169.168508][ T6115] loop0: detected capacity change from 0 to 8192 [ 169.183298][ T6115] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 169.196329][ T6115] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 169.205632][ T6115] REISERFS (device loop0): using ordered data mode [ 169.212186][ T6115] reiserfs: using flush barriers [pid 6115] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6115] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6115] chdir("./file0") = 0 [pid 6115] ioctl(4, LOOP_CLR_FD) = 0 [pid 6115] close(4) = 0 [pid 6115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6114] <... futex resumed>) = 0 [pid 6114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6115] <... futex resumed>) = 0 [pid 6114] <... futex resumed>) = 1 [pid 6115] mkdir(".", 0777 [pid 6114] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6115] <... mkdir resumed>) = -1 EEXIST (File exists) [ 169.218124][ T6115] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 169.234685][ T6115] REISERFS (device loop0): checking transaction log (loop0) [ 169.243175][ T6115] REISERFS (device loop0): Using r5 hash to sort names [pid 6115] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6115] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6114] <... futex resumed>) = 0 [pid 6114] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6114] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6114] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6114] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6114] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6115] <... futex resumed>) = 1 [pid 6114] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6115] mkdir(".", 0777 [pid 6114] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6115] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6115] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6114] <... clone3 resumed> => {parent_tid=[6117]}, 88) = 6117 [pid 6114] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 ./strace-static-x86_64: Process 6117 attached [pid 6114] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6117] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6117] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6114] <... futex resumed>) = 0 [pid 6117] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6114] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6117] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6117] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6117] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6114] <... futex resumed>) = 0 [pid 6115] <... mount resumed>) = 0 [pid 6115] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6115] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6114] exit_group(0 [pid 6115] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6117] <... futex resumed>) = ? [pid 6114] <... exit_group resumed>) = ? [pid 6117] +++ exited with 0 +++ [pid 6115] +++ exited with 0 +++ [pid 6114] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6114, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./260", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./260", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./260/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./260/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./260/binderfs") = 0 [ 169.286106][ T6115] reiserfs: enabling write barrier flush mode [ 169.294385][ T6115] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 169.316294][ T6115] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./260/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./260/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./260/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./260/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./260") = 0 mkdir("./261", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6118 attached , child_tidptr=0x5555565f3690) = 6118 [pid 6118] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6118] chdir("./261") = 0 [pid 6118] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6118] setpgid(0, 0) = 0 [pid 6118] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6118] write(3, "1000", 4) = 4 [pid 6118] close(3) = 0 [pid 6118] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6118] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6118] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6118] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6118] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6118] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6118] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6118] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6119 attached [pid 6119] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6118] <... clone3 resumed> => {parent_tid=[6119]}, 88) = 6119 [pid 6119] <... rseq resumed>) = 0 [pid 6118] rt_sigprocmask(SIG_SETMASK, [], [pid 6119] set_robust_list(0x7fd868ec09a0, 24 [pid 6118] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6119] <... set_robust_list resumed>) = 0 [pid 6118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6119] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6118] <... futex resumed>) = 0 [pid 6119] memfd_create("syzkaller", 0 [pid 6118] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6119] <... memfd_create resumed>) = 3 [pid 6119] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6119] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6119] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6119] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6119] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6119] close(3) = 0 [pid 6119] mkdir("./file0", 0777) = 0 [ 169.559740][ T6119] loop0: detected capacity change from 0 to 8192 [ 169.569583][ T6119] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 169.582602][ T6119] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 169.592060][ T6119] REISERFS (device loop0): using ordered data mode [ 169.598584][ T6119] reiserfs: using flush barriers [pid 6119] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6119] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6119] chdir("./file0") = 0 [pid 6119] ioctl(4, LOOP_CLR_FD) = 0 [pid 6119] close(4) = 0 [pid 6119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6118] <... futex resumed>) = 0 [pid 6119] <... futex resumed>) = 1 [pid 6118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6119] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6118] <... futex resumed>) = 0 [pid 6119] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 169.604906][ T6119] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 169.621541][ T6119] REISERFS (device loop0): checking transaction log (loop0) [ 169.629784][ T6119] REISERFS (device loop0): Using r5 hash to sort names [ 169.650894][ T6119] reiserfs: enabling write barrier flush mode [pid 6118] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6119] <... mount resumed>) = 0 [pid 6119] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6118] <... futex resumed>) = 0 [pid 6119] <... futex resumed>) = 1 [pid 6118] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6119] mkdir(".", 0777 [pid 6118] <... futex resumed>) = 0 [pid 6119] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6118] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6119] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 169.659214][ T6119] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6118] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6118] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6119] <... mount resumed>) = 0 [pid 6118] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6118] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6121 attached [pid 6121] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6118] <... clone3 resumed> => {parent_tid=[6121]}, 88) = 6121 [pid 6121] <... rseq resumed>) = 0 [pid 6119] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6121] set_robust_list(0x7fd868e9f9a0, 24 [pid 6118] rt_sigprocmask(SIG_SETMASK, [], [pid 6121] <... set_robust_list resumed>) = 0 [pid 6119] <... openat resumed>) = 5 [pid 6118] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6121] rt_sigprocmask(SIG_SETMASK, [], [pid 6119] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6118] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6121] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6119] <... futex resumed>) = 0 [pid 6118] <... futex resumed>) = 0 [pid 6121] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6119] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6118] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6121] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6121] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6118] <... futex resumed>) = 0 [pid 6121] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6118] exit_group(0 [pid 6119] <... futex resumed>) = ? [pid 6121] <... futex resumed>) = ? [pid 6118] <... exit_group resumed>) = ? [pid 6121] +++ exited with 0 +++ [pid 6119] +++ exited with 0 +++ [pid 6118] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6118, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./261", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./261", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./261/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./261/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./261/binderfs") = 0 [ 169.700620][ T6119] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./261/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./261/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./261/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./261/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./261") = 0 mkdir("./262", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6122 attached , child_tidptr=0x5555565f3690) = 6122 [pid 6122] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6122] chdir("./262") = 0 [pid 6122] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6122] setpgid(0, 0) = 0 [pid 6122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6122] write(3, "1000", 4) = 4 [pid 6122] close(3) = 0 [pid 6122] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6122] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6122] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6122] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6122] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6122] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6122] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6123 attached [pid 6123] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6122] <... clone3 resumed> => {parent_tid=[6123]}, 88) = 6123 [pid 6123] <... rseq resumed>) = 0 [pid 6122] rt_sigprocmask(SIG_SETMASK, [], [pid 6123] set_robust_list(0x7fd868ec09a0, 24 [pid 6122] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6123] <... set_robust_list resumed>) = 0 [pid 6122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] rt_sigprocmask(SIG_SETMASK, [], [pid 6122] <... futex resumed>) = 0 [pid 6123] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6122] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6123] memfd_create("syzkaller", 0) = 3 [pid 6123] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6123] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6123] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6123] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6123] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6123] close(3) = 0 [pid 6123] mkdir("./file0", 0777) = 0 [ 169.986454][ T6123] loop0: detected capacity change from 0 to 8192 [ 169.996400][ T6123] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 170.009495][ T6123] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 170.018881][ T6123] REISERFS (device loop0): using ordered data mode [ 170.025420][ T6123] reiserfs: using flush barriers [pid 6123] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6123] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6123] chdir("./file0") = 0 [pid 6123] ioctl(4, LOOP_CLR_FD) = 0 [pid 6123] close(4) = 0 [pid 6123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6122] <... futex resumed>) = 0 [pid 6122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6123] mkdir(".", 0777 [pid 6122] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6123] <... mkdir resumed>) = -1 EEXIST (File exists) [ 170.031771][ T6123] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 170.048111][ T6123] REISERFS (device loop0): checking transaction log (loop0) [ 170.056384][ T6123] REISERFS (device loop0): Using r5 hash to sort names [pid 6123] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6123] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6123] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6122] <... futex resumed>) = 0 [pid 6122] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] <... futex resumed>) = 0 [pid 6122] <... futex resumed>) = 1 [pid 6123] mkdir(".", 0777 [pid 6122] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6122] <... futex resumed>) = 0 [pid 6123] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6122] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6122] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6122] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6122] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6123] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6125 attached [pid 6125] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6122] <... clone3 resumed> => {parent_tid=[6125]}, 88) = 6125 [pid 6125] set_robust_list(0x7fd868e9f9a0, 24 [pid 6122] rt_sigprocmask(SIG_SETMASK, [], [pid 6125] <... set_robust_list resumed>) = 0 [pid 6122] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6125] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6123] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6122] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6125] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6122] <... futex resumed>) = 0 [pid 6123] <... openat resumed>) = 5 [pid 6123] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6125] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6123] <... futex resumed>) = 0 [pid 6122] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6125] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6123] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6122] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6125] <... futex resumed>) = 0 [pid 6125] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6122] exit_group(0 [pid 6123] <... futex resumed>) = ? [pid 6125] <... futex resumed>) = ? [pid 6123] +++ exited with 0 +++ [pid 6122] <... exit_group resumed>) = ? [pid 6125] +++ exited with 0 +++ [pid 6122] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6122, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./262", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./262", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 170.091318][ T6123] reiserfs: enabling write barrier flush mode [ 170.099379][ T6123] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 170.120749][ T6123] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./262/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./262/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./262/binderfs") = 0 umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./262/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./262/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./262/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./262/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./262") = 0 mkdir("./263", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6126 attached [pid 6126] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6126] chdir("./263") = 0 [pid 6126] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6126] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6126 [pid 6126] <... setpgid resumed>) = 0 [pid 6126] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6126] write(3, "1000", 4) = 4 [pid 6126] close(3) = 0 [pid 6126] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6126] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6126] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6126] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6126] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6126] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6126] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6127 attached => {parent_tid=[6127]}, 88) = 6127 [pid 6127] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6126] rt_sigprocmask(SIG_SETMASK, [], [pid 6127] <... rseq resumed>) = 0 [pid 6126] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6127] set_robust_list(0x7fd868ec09a0, 24 [pid 6126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] <... set_robust_list resumed>) = 0 [pid 6126] <... futex resumed>) = 0 [pid 6127] rt_sigprocmask(SIG_SETMASK, [], [pid 6126] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6127] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6127] memfd_create("syzkaller", 0) = 3 [pid 6127] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6127] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6127] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6127] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6127] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6127] close(3) = 0 [pid 6127] mkdir("./file0", 0777) = 0 [ 170.392108][ T6127] loop0: detected capacity change from 0 to 8192 [ 170.407416][ T6127] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 170.420419][ T6127] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 170.430192][ T6127] REISERFS (device loop0): using ordered data mode [ 170.436728][ T6127] reiserfs: using flush barriers [pid 6127] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6127] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6127] chdir("./file0") = 0 [pid 6127] ioctl(4, LOOP_CLR_FD) = 0 [pid 6127] close(4) = 0 [pid 6127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6127] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6126] <... futex resumed>) = 0 [pid 6127] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6126] <... futex resumed>) = 0 [pid 6126] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 170.443036][ T6127] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 170.459485][ T6127] REISERFS (device loop0): checking transaction log (loop0) [ 170.467730][ T6127] REISERFS (device loop0): Using r5 hash to sort names [pid 6127] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6127] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6126] <... futex resumed>) = 0 [pid 6127] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6126] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6126] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6127] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6126] <... futex resumed>) = 0 [pid 6127] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6127] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6126] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6126] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6126] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6126] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6129 attached [pid 6129] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6126] <... clone3 resumed> => {parent_tid=[6129]}, 88) = 6129 [pid 6129] <... rseq resumed>) = 0 [pid 6127] <... mount resumed>) = 0 [pid 6126] rt_sigprocmask(SIG_SETMASK, [], [pid 6129] set_robust_list(0x7fd868e9f9a0, 24 [pid 6126] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6127] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6129] <... set_robust_list resumed>) = 0 [pid 6127] <... openat resumed>) = 5 [pid 6126] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6129] rt_sigprocmask(SIG_SETMASK, [], [pid 6127] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6127] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6126] <... futex resumed>) = 0 [pid 6129] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6126] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6129] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6129] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6126] <... futex resumed>) = 0 [pid 6129] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6126] exit_group(0 [pid 6129] <... futex resumed>) = ? [pid 6127] <... futex resumed>) = ? [pid 6126] <... exit_group resumed>) = ? [pid 6129] +++ exited with 0 +++ [pid 6127] +++ exited with 0 +++ [pid 6126] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6126, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./263", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./263", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 170.492465][ T6127] reiserfs: enabling write barrier flush mode [ 170.500517][ T6127] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 170.522826][ T6127] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./263/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./263/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./263/binderfs") = 0 umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./263/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./263/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./263/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./263/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./263") = 0 mkdir("./264", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6130 attached [pid 6130] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6130] chdir("./264") = 0 [pid 6130] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6130] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6130 [pid 6130] <... setpgid resumed>) = 0 [pid 6130] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6130] write(3, "1000", 4) = 4 [pid 6130] close(3) = 0 [pid 6130] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6130] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6130] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6130] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6130] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6130] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6130] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6130] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6131 attached => {parent_tid=[6131]}, 88) = 6131 [pid 6130] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6131] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] <... rseq resumed>) = 0 [pid 6130] <... futex resumed>) = 0 [pid 6130] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6131] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6131] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6131] memfd_create("syzkaller", 0) = 3 [pid 6131] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6131] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6131] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6131] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6131] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6131] close(3) = 0 [pid 6131] mkdir("./file0", 0777) = 0 [ 170.814588][ T6131] loop0: detected capacity change from 0 to 8192 [ 170.830533][ T6131] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 170.843560][ T6131] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 170.852845][ T6131] REISERFS (device loop0): using ordered data mode [ 170.859355][ T6131] reiserfs: using flush barriers [pid 6131] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6131] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6131] chdir("./file0") = 0 [pid 6131] ioctl(4, LOOP_CLR_FD) = 0 [pid 6131] close(4) = 0 [pid 6131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6130] <... futex resumed>) = 0 [pid 6131] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6130] <... futex resumed>) = 0 [pid 6131] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6130] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 170.865585][ T6131] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 170.881915][ T6131] REISERFS (device loop0): checking transaction log (loop0) [ 170.890240][ T6131] REISERFS (device loop0): Using r5 hash to sort names [pid 6131] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6131] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6130] <... futex resumed>) = 0 [pid 6131] <... futex resumed>) = 1 [pid 6130] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] mkdir(".", 0777 [pid 6130] <... futex resumed>) = 0 [pid 6131] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6130] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6131] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6130] <... futex resumed>) = 0 [pid 6130] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6130] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6130] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6131] <... mount resumed>) = 0 [pid 6130] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6130] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6133 attached [pid 6133] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6133] set_robust_list(0x7fd868e9f9a0, 24 [pid 6130] <... clone3 resumed> => {parent_tid=[6133]}, 88) = 6133 [pid 6133] <... set_robust_list resumed>) = 0 [pid 6130] rt_sigprocmask(SIG_SETMASK, [], [pid 6133] rt_sigprocmask(SIG_SETMASK, [], [pid 6130] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6133] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6130] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6133] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6130] <... futex resumed>) = 0 [pid 6131] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6130] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6133] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6133] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6131] <... openat resumed>) = 5 [pid 6130] <... futex resumed>) = 0 [pid 6133] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6131] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6130] exit_group(0 [pid 6133] <... futex resumed>) = ? [pid 6131] <... futex resumed>) = ? [pid 6130] <... exit_group resumed>) = ? [pid 6133] +++ exited with 0 +++ [pid 6131] +++ exited with 0 +++ [pid 6130] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6130, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./264", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./264", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./264/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./264/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 170.921932][ T6131] reiserfs: enabling write barrier flush mode [ 170.929841][ T6131] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 170.949978][ T6131] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./264/binderfs") = 0 umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./264/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./264/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./264/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./264/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./264") = 0 mkdir("./265", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6134 ./strace-static-x86_64: Process 6134 attached [pid 6134] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6134] chdir("./265") = 0 [pid 6134] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6134] setpgid(0, 0) = 0 [pid 6134] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6134] write(3, "1000", 4) = 4 [pid 6134] close(3) = 0 [pid 6134] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6134] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6134] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6134] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6134] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6134] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6135 attached [pid 6135] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6135] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6135] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6134] <... clone3 resumed> => {parent_tid=[6135]}, 88) = 6135 [pid 6135] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] <... futex resumed>) = 0 [pid 6134] <... futex resumed>) = 1 [pid 6135] memfd_create("syzkaller", 0 [pid 6134] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6135] <... memfd_create resumed>) = 3 [pid 6135] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6135] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6135] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6135] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6135] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6135] close(3) = 0 [pid 6135] mkdir("./file0", 0777) = 0 [ 171.218345][ T6135] loop0: detected capacity change from 0 to 8192 [ 171.243729][ T6135] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 171.256718][ T6135] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6135] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6135] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6135] chdir("./file0") = 0 [pid 6135] ioctl(4, LOOP_CLR_FD) = 0 [pid 6135] close(4) = 0 [pid 6135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6134] <... futex resumed>) = 0 [pid 6134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] mkdir(".", 0777 [pid 6134] <... futex resumed>) = 0 [pid 6135] <... mkdir resumed>) = -1 EEXIST (File exists) [ 171.265978][ T6135] REISERFS (device loop0): using ordered data mode [ 171.272513][ T6135] reiserfs: using flush barriers [ 171.278824][ T6135] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 171.295442][ T6135] REISERFS (device loop0): checking transaction log (loop0) [ 171.303574][ T6135] REISERFS (device loop0): Using r5 hash to sort names [pid 6134] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6135] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6135] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6134] <... futex resumed>) = 0 [pid 6135] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] <... futex resumed>) = 0 [pid 6134] <... futex resumed>) = 1 [pid 6134] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6135] mkdir(".", 0777 [pid 6134] <... futex resumed>) = 0 [pid 6135] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6134] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6135] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6134] <... mmap resumed>) = 0x7fd868e7f000 [pid 6134] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 171.337800][ T6135] reiserfs: enabling write barrier flush mode [ 171.346935][ T6135] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6134] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6135] <... mount resumed>) = 0 [pid 6134] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6135] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6134] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6135] <... openat resumed>) = 5 ./strace-static-x86_64: Process 6137 attached [pid 6137] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6135] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6134] <... clone3 resumed> => {parent_tid=[6137]}, 88) = 6137 [pid 6137] <... rseq resumed>) = 0 [pid 6135] <... futex resumed>) = 0 [pid 6137] set_robust_list(0x7fd868e9f9a0, 24 [pid 6135] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] rt_sigprocmask(SIG_SETMASK, [], [pid 6137] <... set_robust_list resumed>) = 0 [pid 6134] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6137] rt_sigprocmask(SIG_SETMASK, [], [pid 6134] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6137] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6134] <... futex resumed>) = 0 [pid 6137] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6134] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6137] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6137] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6134] <... futex resumed>) = 0 [pid 6137] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6134] exit_group(0 [pid 6137] <... futex resumed>) = ? [pid 6135] <... futex resumed>) = ? [pid 6134] <... exit_group resumed>) = ? [pid 6137] +++ exited with 0 +++ [pid 6135] +++ exited with 0 +++ [pid 6134] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6134, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./265", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./265", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./265/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 171.386437][ T6135] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./265/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./265/binderfs") = 0 umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./265/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./265/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./265/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./265/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./265") = 0 mkdir("./266", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6138 attached , child_tidptr=0x5555565f3690) = 6138 [pid 6138] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6138] chdir("./266") = 0 [pid 6138] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6138] setpgid(0, 0) = 0 [pid 6138] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6138] write(3, "1000", 4) = 4 [pid 6138] close(3) = 0 [pid 6138] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6138] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6138] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6138] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6138] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6138] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6138] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6139 attached [pid 6139] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6139] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6138] <... clone3 resumed> => {parent_tid=[6139]}, 88) = 6139 [pid 6139] rt_sigprocmask(SIG_SETMASK, [], [pid 6138] rt_sigprocmask(SIG_SETMASK, [], [pid 6139] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6138] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6139] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6138] <... futex resumed>) = 0 [pid 6139] memfd_create("syzkaller", 0 [pid 6138] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6139] <... memfd_create resumed>) = 3 [pid 6139] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6139] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6139] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6139] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6139] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6139] close(3) = 0 [pid 6139] mkdir("./file0", 0777) = 0 [ 171.689451][ T6139] loop0: detected capacity change from 0 to 8192 [ 171.705396][ T6139] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 171.718573][ T6139] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 171.727890][ T6139] REISERFS (device loop0): using ordered data mode [ 171.734426][ T6139] reiserfs: using flush barriers [pid 6139] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6139] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6139] chdir("./file0") = 0 [pid 6139] ioctl(4, LOOP_CLR_FD) = 0 [pid 6139] close(4) = 0 [ 171.740507][ T6139] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 171.757184][ T6139] REISERFS (device loop0): checking transaction log (loop0) [ 171.765398][ T6139] REISERFS (device loop0): Using r5 hash to sort names [pid 6139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6138] <... futex resumed>) = 0 [pid 6138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6139] <... futex resumed>) = 0 [pid 6139] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6139] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6138] <... futex resumed>) = 1 [pid 6138] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6139] <... mount resumed>) = 0 [pid 6139] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6138] <... futex resumed>) = 0 [pid 6138] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6139] <... futex resumed>) = 0 [pid 6138] <... futex resumed>) = 1 [pid 6139] mkdir(".", 0777 [pid 6138] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6139] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6138] <... futex resumed>) = 0 [pid 6139] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6138] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 171.792392][ T6139] reiserfs: enabling write barrier flush mode [ 171.802391][ T6139] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6138] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6138] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6139] <... mount resumed>) = 0 [pid 6138] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6138] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6141 attached [pid 6141] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6141] set_robust_list(0x7fd868e9f9a0, 24 [pid 6138] <... clone3 resumed> => {parent_tid=[6141]}, 88) = 6141 [pid 6141] <... set_robust_list resumed>) = 0 [pid 6138] rt_sigprocmask(SIG_SETMASK, [], [pid 6141] rt_sigprocmask(SIG_SETMASK, [], [pid 6138] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6141] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6138] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6141] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6138] <... futex resumed>) = 0 [pid 6138] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6141] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6139] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6141] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6139] <... openat resumed>) = 5 [pid 6141] <... futex resumed>) = 1 [pid 6138] <... futex resumed>) = 0 [pid 6141] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6139] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6139] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6138] exit_group(0 [pid 6141] <... futex resumed>) = ? [pid 6139] <... futex resumed>) = ? [pid 6138] <... exit_group resumed>) = ? [pid 6141] +++ exited with 0 +++ [pid 6139] +++ exited with 0 +++ [pid 6138] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6138, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./266", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./266", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 171.834168][ T6139] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./266/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./266/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./266/binderfs") = 0 umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./266/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./266/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./266/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./266/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./266") = 0 mkdir("./267", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6142 attached , child_tidptr=0x5555565f3690) = 6142 [pid 6142] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6142] chdir("./267") = 0 [pid 6142] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6142] setpgid(0, 0) = 0 [pid 6142] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6142] write(3, "1000", 4) = 4 [pid 6142] close(3) = 0 [pid 6142] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6142] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6142] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6142] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6142] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6142] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6142] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6142] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6143 attached [pid 6143] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6142] <... clone3 resumed> => {parent_tid=[6143]}, 88) = 6143 [pid 6143] <... rseq resumed>) = 0 [pid 6142] rt_sigprocmask(SIG_SETMASK, [], [pid 6143] set_robust_list(0x7fd868ec09a0, 24 [pid 6142] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6143] <... set_robust_list resumed>) = 0 [pid 6142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6143] rt_sigprocmask(SIG_SETMASK, [], [pid 6142] <... futex resumed>) = 0 [pid 6143] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6142] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6143] memfd_create("syzkaller", 0) = 3 [pid 6143] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6143] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6143] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6143] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6143] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6143] close(3) = 0 [pid 6143] mkdir("./file0", 0777) = 0 [ 172.141932][ T6143] loop0: detected capacity change from 0 to 8192 [ 172.152973][ T6143] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 172.166032][ T6143] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 172.175345][ T6143] REISERFS (device loop0): using ordered data mode [ 172.181894][ T6143] reiserfs: using flush barriers [pid 6143] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6143] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6143] chdir("./file0") = 0 [pid 6143] ioctl(4, LOOP_CLR_FD) = 0 [pid 6143] close(4) = 0 [pid 6143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6142] <... futex resumed>) = 0 [pid 6142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6143] mkdir(".", 0777 [pid 6142] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6143] <... mkdir resumed>) = -1 EEXIST (File exists) [ 172.188362][ T6143] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 172.205101][ T6143] REISERFS (device loop0): checking transaction log (loop0) [ 172.213270][ T6143] REISERFS (device loop0): Using r5 hash to sort names [pid 6143] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6143] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6142] <... futex resumed>) = 0 [pid 6143] <... futex resumed>) = 1 [pid 6142] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6143] mkdir(".", 0777 [pid 6142] <... futex resumed>) = 0 [pid 6143] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6142] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6143] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6142] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6142] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6142] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6142] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6145 attached [pid 6145] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6145] set_robust_list(0x7fd868e9f9a0, 24 [pid 6143] <... mount resumed>) = 0 [pid 6142] <... clone3 resumed> => {parent_tid=[6145]}, 88) = 6145 [pid 6145] <... set_robust_list resumed>) = 0 [pid 6142] rt_sigprocmask(SIG_SETMASK, [], [pid 6145] rt_sigprocmask(SIG_SETMASK, [], [pid 6142] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6145] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6142] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6145] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6142] <... futex resumed>) = 0 [pid 6142] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6145] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6143] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6145] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6143] <... openat resumed>) = 5 [pid 6145] <... futex resumed>) = 1 [pid 6142] <... futex resumed>) = 0 [pid 6145] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6143] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6143] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6142] exit_group(0 [pid 6143] <... futex resumed>) = ? [pid 6142] <... exit_group resumed>) = ? [pid 6145] <... futex resumed>) = ? [pid 6143] +++ exited with 0 +++ [pid 6145] +++ exited with 0 +++ [pid 6142] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6142, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./267", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./267", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./267/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./267/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./267/binderfs") = 0 [ 172.249987][ T6143] reiserfs: enabling write barrier flush mode [ 172.257718][ T6143] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 172.277965][ T6143] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./267/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./267/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./267/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./267/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./267") = 0 mkdir("./268", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6146 attached [pid 6146] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6146] chdir("./268") = 0 [pid 6146] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6146 [pid 6146] setpgid(0, 0) = 0 [pid 6146] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6146] write(3, "1000", 4) = 4 [pid 6146] close(3) = 0 [pid 6146] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6146] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6146] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6146] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6146] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6146] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6146] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6146] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6147 attached => {parent_tid=[6147]}, 88) = 6147 [pid 6146] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6147] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6146] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6147] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6147] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6147] memfd_create("syzkaller", 0) = 3 [pid 6147] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6147] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6147] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6147] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6147] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6147] close(3) = 0 [pid 6147] mkdir("./file0", 0777) = 0 [ 172.549647][ T6147] loop0: detected capacity change from 0 to 8192 [ 172.576394][ T6147] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 172.589422][ T6147] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6147] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6147] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6147] chdir("./file0") = 0 [pid 6147] ioctl(4, LOOP_CLR_FD) = 0 [pid 6147] close(4) = 0 [pid 6147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6146] <... futex resumed>) = 0 [pid 6147] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] mkdir(".", 0777 [pid 6146] <... futex resumed>) = 0 [pid 6147] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6147] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 172.598723][ T6147] REISERFS (device loop0): using ordered data mode [ 172.605280][ T6147] reiserfs: using flush barriers [ 172.611390][ T6147] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 172.627951][ T6147] REISERFS (device loop0): checking transaction log (loop0) [ 172.636377][ T6147] REISERFS (device loop0): Using r5 hash to sort names [pid 6146] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6147] <... mount resumed>) = 0 [pid 6147] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6146] <... futex resumed>) = 0 [pid 6147] <... futex resumed>) = 1 [pid 6146] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] mkdir(".", 0777 [pid 6146] <... futex resumed>) = 0 [pid 6147] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6146] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6147] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6146] <... futex resumed>) = 0 [pid 6146] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6146] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6146] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6146] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6149 attached [pid 6149] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6146] <... clone3 resumed> => {parent_tid=[6149]}, 88) = 6149 [pid 6149] <... rseq resumed>) = 0 [pid 6146] rt_sigprocmask(SIG_SETMASK, [], [pid 6149] set_robust_list(0x7fd868e9f9a0, 24 [pid 6146] <... rt_sigprocmask resumed>NULL, 8) = 0 [ 172.680170][ T6147] reiserfs: enabling write barrier flush mode [ 172.689448][ T6147] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6146] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6149] <... set_robust_list resumed>) = 0 [pid 6147] <... mount resumed>) = 0 [pid 6146] <... futex resumed>) = 0 [pid 6149] rt_sigprocmask(SIG_SETMASK, [], [pid 6146] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6149] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6149] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6147] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6149] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6147] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6147] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6149] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6146] <... futex resumed>) = 0 [pid 6149] <... futex resumed>) = 1 [pid 6146] exit_group(0 [pid 6149] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6147] <... futex resumed>) = ? [pid 6149] +++ exited with 0 +++ [pid 6147] +++ exited with 0 +++ [pid 6146] <... exit_group resumed>) = ? [pid 6146] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6146, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./268", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./268", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./268/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 172.720954][ T6147] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./268/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./268/binderfs") = 0 umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./268/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./268/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./268/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./268/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./268") = 0 mkdir("./269", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6150 attached , child_tidptr=0x5555565f3690) = 6150 [pid 6150] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6150] chdir("./269") = 0 [pid 6150] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6150] setpgid(0, 0) = 0 [pid 6150] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6150] write(3, "1000", 4) = 4 [pid 6150] close(3) = 0 [pid 6150] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6150] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6150] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6150] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6150] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6150] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6150] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6151 attached => {parent_tid=[6151]}, 88) = 6151 [pid 6151] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6151] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6151] rt_sigprocmask(SIG_SETMASK, [], [pid 6150] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6150] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6151] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6151] memfd_create("syzkaller", 0) = 3 [pid 6151] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6151] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6151] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6151] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6151] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6151] close(3) = 0 [pid 6151] mkdir("./file0", 0777) = 0 [ 172.972598][ T6151] loop0: detected capacity change from 0 to 8192 [ 172.993079][ T6151] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 173.006298][ T6151] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 173.015610][ T6151] REISERFS (device loop0): using ordered data mode [pid 6151] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6151] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6151] chdir("./file0") = 0 [pid 6151] ioctl(4, LOOP_CLR_FD) = 0 [pid 6151] close(4) = 0 [pid 6151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 173.022173][ T6151] reiserfs: using flush barriers [ 173.028399][ T6151] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 173.045073][ T6151] REISERFS (device loop0): checking transaction log (loop0) [ 173.053774][ T6151] REISERFS (device loop0): Using r5 hash to sort names [pid 6151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6150] <... futex resumed>) = 0 [pid 6150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6151] <... futex resumed>) = 0 [pid 6150] <... futex resumed>) = 1 [pid 6151] mkdir(".", 0777 [pid 6150] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6151] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6151] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6151] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6150] <... futex resumed>) = 0 [pid 6151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6150] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6151] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6150] <... futex resumed>) = 0 [pid 6151] mkdir(".", 0777 [pid 6150] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6151] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6150] <... futex resumed>) = 0 [pid 6151] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6150] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6150] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6150] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6150] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6153 attached [pid 6153] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6150] <... clone3 resumed> => {parent_tid=[6153]}, 88) = 6153 [pid 6151] <... mount resumed>) = 0 [pid 6150] rt_sigprocmask(SIG_SETMASK, [], [pid 6153] <... rseq resumed>) = 0 [pid 6151] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6150] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6153] set_robust_list(0x7fd868e9f9a0, 24 [pid 6151] <... openat resumed>) = 5 [pid 6150] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6153] <... set_robust_list resumed>) = 0 [pid 6151] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6153] rt_sigprocmask(SIG_SETMASK, [], [pid 6150] <... futex resumed>) = 0 [pid 6153] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6151] <... futex resumed>) = 0 [pid 6153] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6151] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6150] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6153] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6153] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6150] <... futex resumed>) = 0 [pid 6153] <... futex resumed>) = 1 [pid 6150] exit_group(0 [pid 6153] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6151] <... futex resumed>) = ? [pid 6153] +++ exited with 0 +++ [pid 6150] <... exit_group resumed>) = ? [pid 6151] +++ exited with 0 +++ [pid 6150] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6150, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./269", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./269", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 173.108581][ T6151] reiserfs: enabling write barrier flush mode [ 173.116846][ T6151] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 173.138572][ T6151] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./269/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./269/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./269/binderfs") = 0 umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./269/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./269/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./269/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./269/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./269") = 0 mkdir("./270", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6154 attached , child_tidptr=0x5555565f3690) = 6154 [pid 6154] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6154] chdir("./270") = 0 [pid 6154] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6154] setpgid(0, 0) = 0 [pid 6154] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6154] write(3, "1000", 4) = 4 [pid 6154] close(3) = 0 [pid 6154] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6154] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6154] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6154] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6154] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6154] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6154] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6154] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6155 attached [pid 6155] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6154] <... clone3 resumed> => {parent_tid=[6155]}, 88) = 6155 [pid 6155] <... rseq resumed>) = 0 [pid 6154] rt_sigprocmask(SIG_SETMASK, [], [pid 6155] set_robust_list(0x7fd868ec09a0, 24 [pid 6154] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6155] <... set_robust_list resumed>) = 0 [pid 6154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6155] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6154] <... futex resumed>) = 0 [pid 6154] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6155] memfd_create("syzkaller", 0) = 3 [pid 6155] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6155] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6155] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6155] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6155] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6155] close(3) = 0 [pid 6155] mkdir("./file0", 0777) = 0 [ 173.433012][ T6155] loop0: detected capacity change from 0 to 8192 [ 173.447786][ T6155] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 173.460748][ T6155] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 173.470095][ T6155] REISERFS (device loop0): using ordered data mode [ 173.476657][ T6155] reiserfs: using flush barriers [pid 6155] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6155] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6155] chdir("./file0") = 0 [pid 6155] ioctl(4, LOOP_CLR_FD) = 0 [pid 6155] close(4) = 0 [pid 6155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6154] <... futex resumed>) = 0 [pid 6155] mkdir(".", 0777 [pid 6154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6155] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6155] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6154] <... futex resumed>) = 0 [ 173.482968][ T6155] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 173.499557][ T6155] REISERFS (device loop0): checking transaction log (loop0) [ 173.507905][ T6155] REISERFS (device loop0): Using r5 hash to sort names [pid 6154] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6155] <... mount resumed>) = 0 [pid 6155] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6154] <... futex resumed>) = 0 [pid 6155] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6154] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6155] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6154] <... futex resumed>) = 0 [pid 6155] mkdir(".", 0777 [pid 6154] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6155] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6154] <... futex resumed>) = 0 [pid 6155] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6154] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6154] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6154] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6154] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6157 attached [pid 6155] <... mount resumed>) = 0 [pid 6157] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6155] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6154] <... clone3 resumed> => {parent_tid=[6157]}, 88) = 6157 [pid 6157] <... rseq resumed>) = 0 [pid 6157] set_robust_list(0x7fd868e9f9a0, 24 [pid 6155] <... openat resumed>) = 5 [pid 6154] rt_sigprocmask(SIG_SETMASK, [], [pid 6157] <... set_robust_list resumed>) = 0 [pid 6157] rt_sigprocmask(SIG_SETMASK, [], [pid 6155] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6154] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6157] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6155] <... futex resumed>) = 0 [pid 6154] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6157] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6155] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6154] <... futex resumed>) = 0 [pid 6154] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6157] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6157] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6154] <... futex resumed>) = 0 [pid 6157] <... futex resumed>) = 1 [pid 6154] exit_group(0 [pid 6157] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6155] <... futex resumed>) = ? [pid 6154] <... exit_group resumed>) = ? [pid 6157] +++ exited with 0 +++ [pid 6155] +++ exited with 0 +++ [pid 6154] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6154, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./270", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./270", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./270/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./270/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./270/binderfs") = 0 [ 173.539865][ T6155] reiserfs: enabling write barrier flush mode [ 173.548125][ T6155] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 173.579502][ T6155] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./270/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./270/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./270/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./270/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./270") = 0 mkdir("./271", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6158 attached , child_tidptr=0x5555565f3690) = 6158 [pid 6158] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6158] chdir("./271") = 0 [pid 6158] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6158] setpgid(0, 0) = 0 [pid 6158] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6158] write(3, "1000", 4) = 4 [pid 6158] close(3) = 0 [pid 6158] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6158] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6158] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6158] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6158] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6158] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6159 attached [pid 6159] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6158] <... clone3 resumed> => {parent_tid=[6159]}, 88) = 6159 [pid 6159] <... rseq resumed>) = 0 [pid 6158] rt_sigprocmask(SIG_SETMASK, [], [pid 6159] set_robust_list(0x7fd868ec09a0, 24 [pid 6158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6159] <... set_robust_list resumed>) = 0 [pid 6158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6158] <... futex resumed>) = 0 [pid 6159] memfd_create("syzkaller", 0 [pid 6158] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6159] <... memfd_create resumed>) = 3 [pid 6159] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6159] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6159] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6159] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6159] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6159] close(3) = 0 [pid 6159] mkdir("./file0", 0777) = 0 [ 173.806726][ T6159] loop0: detected capacity change from 0 to 8192 [ 173.822799][ T6159] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 173.836035][ T6159] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 173.845336][ T6159] REISERFS (device loop0): using ordered data mode [ 173.851886][ T6159] reiserfs: using flush barriers [pid 6159] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6159] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6159] chdir("./file0") = 0 [pid 6159] ioctl(4, LOOP_CLR_FD) = 0 [pid 6159] close(4) = 0 [pid 6159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6159] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] <... futex resumed>) = 0 [pid 6158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] <... futex resumed>) = 0 [ 173.857881][ T6159] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 173.874624][ T6159] REISERFS (device loop0): checking transaction log (loop0) [ 173.883139][ T6159] REISERFS (device loop0): Using r5 hash to sort names [pid 6158] <... futex resumed>) = 1 [pid 6159] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6159] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6158] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6159] <... mount resumed>) = 0 [pid 6159] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6158] <... futex resumed>) = 0 [pid 6159] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6158] <... futex resumed>) = 0 [pid 6159] mkdir(".", 0777 [pid 6158] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6159] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6158] <... futex resumed>) = 0 [pid 6159] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6158] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6158] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 173.915975][ T6159] reiserfs: enabling write barrier flush mode [ 173.927177][ T6159] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6158] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6158] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6161 attached => {parent_tid=[6161]}, 88) = 6161 [pid 6161] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6158] rt_sigprocmask(SIG_SETMASK, [], [pid 6161] <... rseq resumed>) = 0 [pid 6159] <... mount resumed>) = 0 [pid 6158] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6161] set_robust_list(0x7fd868e9f9a0, 24 [pid 6159] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6161] <... set_robust_list resumed>) = 0 [pid 6159] <... openat resumed>) = 5 [pid 6158] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6161] rt_sigprocmask(SIG_SETMASK, [], [pid 6159] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6158] <... futex resumed>) = 0 [pid 6159] <... futex resumed>) = 0 [pid 6159] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6161] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6161] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6158] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6161] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6161] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6158] <... futex resumed>) = 0 [pid 6161] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6158] exit_group(0 [pid 6161] <... futex resumed>) = ? [pid 6159] <... futex resumed>) = ? [pid 6158] <... exit_group resumed>) = ? [pid 6161] +++ exited with 0 +++ [pid 6159] +++ exited with 0 +++ [pid 6158] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6158, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./271", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./271", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./271/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 173.969064][ T6159] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./271/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./271/binderfs") = 0 umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./271/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./271/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./271/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./271/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./271") = 0 mkdir("./272", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6162 attached [pid 6162] set_robust_list(0x5555565f36a0, 24 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6162 [pid 6162] <... set_robust_list resumed>) = 0 [pid 6162] chdir("./272") = 0 [pid 6162] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6162] setpgid(0, 0) = 0 [pid 6162] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6162] write(3, "1000", 4) = 4 [pid 6162] close(3) = 0 [pid 6162] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6162] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6162] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6162] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6162] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6162] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6162] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6163 attached [pid 6163] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6162] <... clone3 resumed> => {parent_tid=[6163]}, 88) = 6163 [pid 6163] <... rseq resumed>) = 0 [pid 6162] rt_sigprocmask(SIG_SETMASK, [], [pid 6163] set_robust_list(0x7fd868ec09a0, 24 [pid 6162] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6163] <... set_robust_list resumed>) = 0 [pid 6162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] rt_sigprocmask(SIG_SETMASK, [], [pid 6162] <... futex resumed>) = 0 [pid 6163] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6162] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6163] memfd_create("syzkaller", 0) = 3 [pid 6163] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6163] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6163] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6163] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6163] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6163] close(3) = 0 [pid 6163] mkdir("./file0", 0777) = 0 [ 174.206708][ T6163] loop0: detected capacity change from 0 to 8192 [ 174.226933][ T6163] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 174.239932][ T6163] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 174.249231][ T6163] REISERFS (device loop0): using ordered data mode [pid 6163] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6163] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6163] chdir("./file0") = 0 [pid 6163] ioctl(4, LOOP_CLR_FD) = 0 [pid 6163] close(4) = 0 [pid 6163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6162] <... futex resumed>) = 0 [pid 6163] mkdir(".", 0777 [pid 6162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6162] <... futex resumed>) = 0 [pid 6163] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 174.255775][ T6163] reiserfs: using flush barriers [ 174.262167][ T6163] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 174.278543][ T6163] REISERFS (device loop0): checking transaction log (loop0) [ 174.286783][ T6163] REISERFS (device loop0): Using r5 hash to sort names [pid 6162] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6163] <... mount resumed>) = 0 [pid 6163] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6162] <... futex resumed>) = 0 [pid 6163] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6162] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6163] mkdir(".", 0777 [pid 6162] <... futex resumed>) = 0 [pid 6163] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6162] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6162] <... futex resumed>) = 0 [pid 6162] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6162] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6162] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6162] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6165 attached => {parent_tid=[6165]}, 88) = 6165 [pid 6165] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6162] rt_sigprocmask(SIG_SETMASK, [], [pid 6165] set_robust_list(0x7fd868e9f9a0, 24 [pid 6162] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6165] <... set_robust_list resumed>) = 0 [pid 6162] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6165] rt_sigprocmask(SIG_SETMASK, [], [pid 6162] <... futex resumed>) = 0 [pid 6165] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6162] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [ 174.330723][ T6163] reiserfs: enabling write barrier flush mode [ 174.339273][ T6163] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6165] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6165] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6163] <... mount resumed>) = 0 [pid 6165] <... futex resumed>) = 1 [pid 6163] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6162] <... futex resumed>) = 0 [pid 6165] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6163] <... openat resumed>) = 5 [pid 6163] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6163] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6162] exit_group(0 [pid 6165] <... futex resumed>) = ? [pid 6165] +++ exited with 0 +++ [pid 6163] <... futex resumed>) = ? [pid 6162] <... exit_group resumed>) = ? [pid 6163] +++ exited with 0 +++ [pid 6162] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6162, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./272", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./272", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./272/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./272/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./272/binderfs") = 0 [ 174.373089][ T6163] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./272/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./272/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./272/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./272/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./272") = 0 mkdir("./273", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6166 ./strace-static-x86_64: Process 6166 attached [pid 6166] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6166] chdir("./273") = 0 [pid 6166] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6166] setpgid(0, 0) = 0 [pid 6166] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6166] write(3, "1000", 4) = 4 [pid 6166] close(3) = 0 [pid 6166] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6166] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6166] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6166] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6166] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6166] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6166] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6166] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6167 attached [pid 6167] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6166] <... clone3 resumed> => {parent_tid=[6167]}, 88) = 6167 [pid 6167] <... rseq resumed>) = 0 [pid 6166] rt_sigprocmask(SIG_SETMASK, [], [pid 6167] set_robust_list(0x7fd868ec09a0, 24 [pid 6166] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6167] <... set_robust_list resumed>) = 0 [pid 6166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6167] rt_sigprocmask(SIG_SETMASK, [], [pid 6166] <... futex resumed>) = 0 [pid 6167] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6166] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6167] memfd_create("syzkaller", 0) = 3 [pid 6167] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6167] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6167] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6167] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6167] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6167] close(3) = 0 [pid 6167] mkdir("./file0", 0777) = 0 [ 174.639348][ T6167] loop0: detected capacity change from 0 to 8192 [ 174.664223][ T6167] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 174.677228][ T6167] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6167] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6167] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6167] chdir("./file0") = 0 [pid 6167] ioctl(4, LOOP_CLR_FD) = 0 [pid 6167] close(4) = 0 [pid 6167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6166] <... futex resumed>) = 0 [pid 6167] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6167] mkdir(".", 0777 [pid 6166] <... futex resumed>) = 0 [pid 6167] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6166] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 174.686520][ T6167] REISERFS (device loop0): using ordered data mode [ 174.693058][ T6167] reiserfs: using flush barriers [ 174.699319][ T6167] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 174.716021][ T6167] REISERFS (device loop0): checking transaction log (loop0) [ 174.724114][ T6167] REISERFS (device loop0): Using r5 hash to sort names [pid 6167] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6167] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6166] <... futex resumed>) = 0 [pid 6167] <... futex resumed>) = 1 [pid 6166] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6167] mkdir(".", 0777 [pid 6166] <... futex resumed>) = 0 [pid 6167] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6167] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6166] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6166] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6166] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6167] <... mount resumed>) = 0 [pid 6166] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6167] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6166] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6166] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6169 attached [pid 6169] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6169] set_robust_list(0x7fd868e9f9a0, 24 [pid 6167] <... openat resumed>) = 5 [pid 6166] <... clone3 resumed> => {parent_tid=[6169]}, 88) = 6169 [pid 6169] <... set_robust_list resumed>) = 0 [pid 6167] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6166] rt_sigprocmask(SIG_SETMASK, [], [pid 6169] rt_sigprocmask(SIG_SETMASK, [], [pid 6167] <... futex resumed>) = 0 [pid 6166] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6169] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6167] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6166] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6169] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6166] <... futex resumed>) = 0 [pid 6166] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6169] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6169] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6166] <... futex resumed>) = 0 [pid 6169] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6166] exit_group(0 [pid 6169] <... futex resumed>) = ? [pid 6167] <... futex resumed>) = ? [pid 6169] +++ exited with 0 +++ [pid 6167] +++ exited with 0 +++ [pid 6166] <... exit_group resumed>) = ? [pid 6166] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6166, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- [ 174.748659][ T6167] reiserfs: enabling write barrier flush mode [ 174.756889][ T6167] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 174.780764][ T6167] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./273", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./273", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./273/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./273/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./273/binderfs") = 0 umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./273/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./273/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./273/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./273/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./273") = 0 mkdir("./274", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6170 attached [pid 6170] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6170] chdir("./274" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6170 [pid 6170] <... chdir resumed>) = 0 [pid 6170] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6170] setpgid(0, 0) = 0 [pid 6170] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6170] write(3, "1000", 4) = 4 [pid 6170] close(3) = 0 [pid 6170] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6170] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6170] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6170] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6170] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6170] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6170] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6170] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6171 attached [pid 6171] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6171] set_robust_list(0x7fd868ec09a0, 24 [pid 6170] <... clone3 resumed> => {parent_tid=[6171]}, 88) = 6171 [pid 6171] <... set_robust_list resumed>) = 0 [pid 6170] rt_sigprocmask(SIG_SETMASK, [], [pid 6171] rt_sigprocmask(SIG_SETMASK, [], [pid 6170] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6171] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6171] memfd_create("syzkaller", 0 [pid 6170] <... futex resumed>) = 0 [pid 6170] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6171] <... memfd_create resumed>) = 3 [pid 6171] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6171] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6171] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6171] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6171] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6171] close(3) = 0 [pid 6171] mkdir("./file0", 0777) = 0 [ 175.045141][ T6171] loop0: detected capacity change from 0 to 8192 [ 175.060216][ T6171] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 175.073245][ T6171] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 175.082494][ T6171] REISERFS (device loop0): using ordered data mode [ 175.088983][ T6171] reiserfs: using flush barriers [pid 6171] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6171] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6171] chdir("./file0") = 0 [pid 6171] ioctl(4, LOOP_CLR_FD) = 0 [pid 6171] close(4) = 0 [pid 6171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6170] <... futex resumed>) = 0 [pid 6171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6171] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6170] <... futex resumed>) = 0 [pid 6170] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6171] mkdir(".", 0777) = -1 EEXIST (File exists) [ 175.095338][ T6171] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 175.111703][ T6171] REISERFS (device loop0): checking transaction log (loop0) [ 175.119826][ T6171] REISERFS (device loop0): Using r5 hash to sort names [pid 6171] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6171] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6170] <... futex resumed>) = 0 [pid 6171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6170] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6171] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6170] <... futex resumed>) = 0 [pid 6171] mkdir(".", 0777 [pid 6170] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6171] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6170] <... futex resumed>) = 0 [pid 6171] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6170] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6170] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6170] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6171] <... mount resumed>) = 0 [pid 6170] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6170] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6173 attached [pid 6173] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6170] <... clone3 resumed> => {parent_tid=[6173]}, 88) = 6173 [pid 6173] <... rseq resumed>) = 0 [pid 6170] rt_sigprocmask(SIG_SETMASK, [], [pid 6173] set_robust_list(0x7fd868e9f9a0, 24 [pid 6170] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6171] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6173] <... set_robust_list resumed>) = 0 [pid 6170] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6173] rt_sigprocmask(SIG_SETMASK, [], [pid 6170] <... futex resumed>) = 0 [pid 6173] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6173] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6170] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6171] <... openat resumed>) = 5 [pid 6171] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6173] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6171] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6173] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6170] <... futex resumed>) = 0 [pid 6173] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6170] exit_group(0 [pid 6171] <... futex resumed>) = ? [pid 6170] <... exit_group resumed>) = ? [pid 6173] <... futex resumed>) = ? [pid 6171] +++ exited with 0 +++ [pid 6173] +++ exited with 0 +++ [pid 6170] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6170, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [ 175.162710][ T6171] reiserfs: enabling write barrier flush mode [ 175.170692][ T6171] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 175.198414][ T6171] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./274", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./274", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./274/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./274/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./274/binderfs") = 0 umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./274/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./274/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./274/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./274/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./274") = 0 mkdir("./275", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6174 attached , child_tidptr=0x5555565f3690) = 6174 [pid 6174] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6174] chdir("./275") = 0 [pid 6174] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6174] setpgid(0, 0) = 0 [pid 6174] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6174] write(3, "1000", 4) = 4 [pid 6174] close(3) = 0 [pid 6174] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6174] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6174] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6174] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6174] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6174] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6174] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6175 attached [pid 6175] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6174] <... clone3 resumed> => {parent_tid=[6175]}, 88) = 6175 [pid 6175] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6174] rt_sigprocmask(SIG_SETMASK, [], [pid 6175] rt_sigprocmask(SIG_SETMASK, [], [pid 6174] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6175] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6175] memfd_create("syzkaller", 0 [pid 6174] <... futex resumed>) = 0 [pid 6174] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6175] <... memfd_create resumed>) = 3 [pid 6175] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6175] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6175] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6175] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6175] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6175] close(3) = 0 [pid 6175] mkdir("./file0", 0777) = 0 [ 175.442797][ T6175] loop0: detected capacity change from 0 to 8192 [ 175.458385][ T6175] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 175.471420][ T6175] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 175.480721][ T6175] REISERFS (device loop0): using ordered data mode [ 175.487290][ T6175] reiserfs: using flush barriers [pid 6175] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6175] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6175] chdir("./file0") = 0 [pid 6175] ioctl(4, LOOP_CLR_FD) = 0 [pid 6175] close(4) = 0 [pid 6175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6174] <... futex resumed>) = 0 [pid 6175] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6175] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6174] <... futex resumed>) = 0 [pid 6174] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6175] mkdir(".", 0777) = -1 EEXIST (File exists) [ 175.493403][ T6175] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 175.509990][ T6175] REISERFS (device loop0): checking transaction log (loop0) [ 175.518336][ T6175] REISERFS (device loop0): Using r5 hash to sort names [pid 6175] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6175] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6175] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6174] <... futex resumed>) = 0 [pid 6174] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6175] <... futex resumed>) = 0 [pid 6174] <... futex resumed>) = 1 [pid 6175] mkdir(".", 0777 [pid 6174] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6175] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6174] <... futex resumed>) = 0 [pid 6175] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6174] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6174] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6174] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6174] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6177 attached => {parent_tid=[6177]}, 88) = 6177 [pid 6177] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6174] rt_sigprocmask(SIG_SETMASK, [], [pid 6177] <... rseq resumed>) = 0 [pid 6175] <... mount resumed>) = 0 [pid 6177] set_robust_list(0x7fd868e9f9a0, 24 [pid 6175] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6174] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6177] <... set_robust_list resumed>) = 0 [pid 6174] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] rt_sigprocmask(SIG_SETMASK, [], [pid 6174] <... futex resumed>) = 0 [pid 6177] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6174] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6177] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6175] <... openat resumed>) = 5 [pid 6177] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6175] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6177] <... futex resumed>) = 1 [pid 6174] <... futex resumed>) = 0 [pid 6175] <... futex resumed>) = 0 [pid 6175] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6177] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6174] exit_group(0 [pid 6177] <... futex resumed>) = ? [pid 6175] <... futex resumed>) = ? [pid 6174] <... exit_group resumed>) = ? [pid 6177] +++ exited with 0 +++ [pid 6175] +++ exited with 0 +++ [pid 6174] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6174, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./275", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./275", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 175.571455][ T6175] reiserfs: enabling write barrier flush mode [ 175.579398][ T6175] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 175.601946][ T6175] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./275/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./275/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./275/binderfs") = 0 umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./275/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./275/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./275/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./275/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./275") = 0 mkdir("./276", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6178 attached , child_tidptr=0x5555565f3690) = 6178 [pid 6178] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6178] chdir("./276") = 0 [pid 6178] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6178] setpgid(0, 0) = 0 [pid 6178] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6178] write(3, "1000", 4) = 4 [pid 6178] close(3) = 0 [pid 6178] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6178] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6178] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6178] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6178] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6178] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6178] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6178] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6179 attached => {parent_tid=[6179]}, 88) = 6179 [pid 6179] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6178] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6178] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6179] <... rseq resumed>) = 0 [pid 6179] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6179] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6179] memfd_create("syzkaller", 0) = 3 [pid 6179] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6179] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6179] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6179] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6179] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6179] close(3) = 0 [pid 6179] mkdir("./file0", 0777) = 0 [ 175.881130][ T6179] loop0: detected capacity change from 0 to 8192 [ 175.901907][ T6179] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 175.914922][ T6179] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 175.924351][ T6179] REISERFS (device loop0): using ordered data mode [pid 6179] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6179] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6179] chdir("./file0") = 0 [pid 6179] ioctl(4, LOOP_CLR_FD) = 0 [pid 6179] close(4) = 0 [pid 6179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6178] <... futex resumed>) = 0 [pid 6179] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6179] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6179] mkdir(".", 0777 [ 175.930855][ T6179] reiserfs: using flush barriers [ 175.937299][ T6179] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 175.953753][ T6179] REISERFS (device loop0): checking transaction log (loop0) [ 175.962405][ T6179] REISERFS (device loop0): Using r5 hash to sort names [pid 6178] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6179] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6179] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6179] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6178] <... futex resumed>) = 0 [pid 6178] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6179] mkdir(".", 0777 [pid 6178] <... futex resumed>) = 0 [pid 6179] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6179] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6178] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6178] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6178] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6178] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6179] <... mount resumed>) = 0 [pid 6179] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6178] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6178] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6181 attached [pid 6181] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6181] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6178] <... clone3 resumed> => {parent_tid=[6181]}, 88) = 6181 [pid 6181] rt_sigprocmask(SIG_SETMASK, [], [pid 6178] rt_sigprocmask(SIG_SETMASK, [], [pid 6181] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6178] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6181] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6179] <... openat resumed>) = 5 [pid 6178] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6181] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6179] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6181] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6179] <... futex resumed>) = 0 [pid 6178] <... futex resumed>) = 0 [pid 6179] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6178] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6181] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6181] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6178] <... futex resumed>) = 0 [pid 6181] <... futex resumed>) = 1 [pid 6178] exit_group(0 [pid 6179] <... futex resumed>) = ? [pid 6178] <... exit_group resumed>) = ? [pid 6181] +++ exited with 0 +++ [pid 6179] +++ exited with 0 +++ [pid 6178] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6178, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./276", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./276", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 175.985370][ T6179] reiserfs: enabling write barrier flush mode [ 175.994436][ T6179] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 176.025007][ T6179] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./276/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./276/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./276/binderfs") = 0 umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./276/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./276/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./276/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./276/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./276") = 0 mkdir("./277", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6182 attached , child_tidptr=0x5555565f3690) = 6182 [pid 6182] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6182] chdir("./277") = 0 [pid 6182] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6182] setpgid(0, 0) = 0 [pid 6182] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6182] write(3, "1000", 4) = 4 [pid 6182] close(3) = 0 [pid 6182] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6182] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6182] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6182] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6182] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6182] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6182] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6182] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6183 attached [pid 6183] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6183] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6183] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6182] <... clone3 resumed> => {parent_tid=[6183]}, 88) = 6183 [pid 6183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6182] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6183] <... futex resumed>) = 0 [pid 6182] <... futex resumed>) = 1 [pid 6183] memfd_create("syzkaller", 0 [pid 6182] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6183] <... memfd_create resumed>) = 3 [pid 6183] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6183] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6183] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6183] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6183] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6183] close(3) = 0 [pid 6183] mkdir("./file0", 0777) = 0 [ 176.310729][ T6183] loop0: detected capacity change from 0 to 8192 [ 176.326280][ T6183] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 176.339269][ T6183] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 176.348575][ T6183] REISERFS (device loop0): using ordered data mode [ 176.355118][ T6183] reiserfs: using flush barriers [pid 6183] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6183] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6183] chdir("./file0") = 0 [pid 6183] ioctl(4, LOOP_CLR_FD) = 0 [pid 6183] close(4) = 0 [pid 6183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6182] <... futex resumed>) = 0 [pid 6183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6183] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6182] <... futex resumed>) = 0 [pid 6183] mkdir(".", 0777 [pid 6182] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6183] <... mkdir resumed>) = -1 EEXIST (File exists) [ 176.361637][ T6183] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 176.378378][ T6183] REISERFS (device loop0): checking transaction log (loop0) [ 176.386683][ T6183] REISERFS (device loop0): Using r5 hash to sort names [pid 6183] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6183] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6182] <... futex resumed>) = 0 [pid 6183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6182] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6183] mkdir(".", 0777 [pid 6182] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6183] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6183] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6182] <... futex resumed>) = 0 [pid 6182] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6183] <... mount resumed>) = 0 [pid 6182] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6183] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6182] <... mprotect resumed>) = 0 [pid 6183] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6183] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6182] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6182] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6185 attached [pid 6185] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6185] set_robust_list(0x7fd868e9f9a0, 24 [pid 6182] <... clone3 resumed> => {parent_tid=[6185]}, 88) = 6185 [pid 6185] <... set_robust_list resumed>) = 0 [pid 6182] rt_sigprocmask(SIG_SETMASK, [], [pid 6185] rt_sigprocmask(SIG_SETMASK, [], [pid 6182] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6185] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6182] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6185] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6182] <... futex resumed>) = 0 [pid 6182] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6185] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6185] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6182] <... futex resumed>) = 0 [pid 6185] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6182] exit_group(0 [pid 6183] <... futex resumed>) = ? [pid 6183] +++ exited with 0 +++ [pid 6185] <... futex resumed>) = ? [pid 6185] +++ exited with 0 +++ [pid 6182] <... exit_group resumed>) = ? [pid 6182] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6182, si_uid=0, si_status=0, si_utime=0, si_stime=17 /* 0.17 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./277", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./277", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 176.416394][ T6183] reiserfs: enabling write barrier flush mode [ 176.424783][ T6183] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 176.454462][ T6183] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./277/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./277/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./277/binderfs") = 0 umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./277/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./277/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./277/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./277/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./277") = 0 mkdir("./278", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6186 attached [pid 6186] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6186] chdir("./278") = 0 [pid 6186] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6186] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6186 [pid 6186] <... setpgid resumed>) = 0 [pid 6186] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6186] write(3, "1000", 4) = 4 [pid 6186] close(3) = 0 [pid 6186] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6186] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6186] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6186] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6186] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6186] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6187 attached [pid 6187] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6186] <... clone3 resumed> => {parent_tid=[6187]}, 88) = 6187 [pid 6187] set_robust_list(0x7fd868ec09a0, 24 [pid 6186] rt_sigprocmask(SIG_SETMASK, [], [pid 6187] <... set_robust_list resumed>) = 0 [pid 6186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6187] rt_sigprocmask(SIG_SETMASK, [], [pid 6186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6186] <... futex resumed>) = 0 [pid 6187] memfd_create("syzkaller", 0 [pid 6186] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6187] <... memfd_create resumed>) = 3 [pid 6187] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6187] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6187] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6187] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6187] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6187] close(3) = 0 [pid 6187] mkdir("./file0", 0777) = 0 [ 176.738647][ T6187] loop0: detected capacity change from 0 to 8192 [ 176.764679][ T6187] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 176.777817][ T6187] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6187] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6187] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6187] chdir("./file0") = 0 [pid 6187] ioctl(4, LOOP_CLR_FD) = 0 [pid 6187] close(4) = 0 [pid 6187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6186] <... futex resumed>) = 0 [pid 6187] <... futex resumed>) = 1 [ 176.787093][ T6187] REISERFS (device loop0): using ordered data mode [ 176.793657][ T6187] reiserfs: using flush barriers [ 176.799978][ T6187] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 176.816637][ T6187] REISERFS (device loop0): checking transaction log (loop0) [ 176.824977][ T6187] REISERFS (device loop0): Using r5 hash to sort names [pid 6186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6187] mkdir(".", 0777 [pid 6186] <... futex resumed>) = 0 [pid 6187] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6187] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6186] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6187] <... mount resumed>) = 0 [pid 6187] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6186] <... futex resumed>) = 0 [pid 6186] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6186] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6186] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6187] <... futex resumed>) = 1 [pid 6186] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6187] mkdir(".", 0777 [pid 6186] <... mprotect resumed>) = 0 [pid 6187] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6186] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6187] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6186] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6186] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6189 attached [pid 6189] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6186] <... clone3 resumed> => {parent_tid=[6189]}, 88) = 6189 [pid 6189] <... rseq resumed>) = 0 [pid 6186] rt_sigprocmask(SIG_SETMASK, [], [pid 6189] set_robust_list(0x7fd868e9f9a0, 24 [pid 6186] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6189] <... set_robust_list resumed>) = 0 [pid 6186] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6189] rt_sigprocmask(SIG_SETMASK, [], [pid 6186] <... futex resumed>) = 0 [pid 6189] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6186] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6189] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6189] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6186] <... futex resumed>) = 0 [ 176.850423][ T6187] reiserfs: enabling write barrier flush mode [ 176.859984][ T6187] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6189] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6187] <... mount resumed>) = 0 [pid 6187] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6187] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6187] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6186] exit_group(0 [pid 6189] <... futex resumed>) = ? [pid 6189] +++ exited with 0 +++ [pid 6186] <... exit_group resumed>) = ? [pid 6187] <... futex resumed>) = ? [pid 6187] +++ exited with 0 +++ [pid 6186] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6186, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./278", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./278", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./278/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 176.904983][ T6187] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./278/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./278/binderfs") = 0 umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./278/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./278/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./278/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./278/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./278") = 0 mkdir("./279", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6190 attached [pid 6190] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6190] chdir("./279") = 0 [pid 6190] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6190] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6190 [pid 6190] <... setpgid resumed>) = 0 [pid 6190] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6190] write(3, "1000", 4) = 4 [pid 6190] close(3) = 0 [pid 6190] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6190] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6190] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6190] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6190] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6190] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6190] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6190] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6191 attached [pid 6191] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6190] <... clone3 resumed> => {parent_tid=[6191]}, 88) = 6191 [pid 6191] set_robust_list(0x7fd868ec09a0, 24 [pid 6190] rt_sigprocmask(SIG_SETMASK, [], [pid 6191] <... set_robust_list resumed>) = 0 [pid 6190] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6191] rt_sigprocmask(SIG_SETMASK, [], [pid 6190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6191] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6190] <... futex resumed>) = 0 [pid 6191] memfd_create("syzkaller", 0 [pid 6190] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6191] <... memfd_create resumed>) = 3 [pid 6191] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6191] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6191] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6191] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6191] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6191] close(3) = 0 [pid 6191] mkdir("./file0", 0777) = 0 [ 177.196789][ T6191] loop0: detected capacity change from 0 to 8192 [ 177.207109][ T6191] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 177.220106][ T6191] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 177.229468][ T6191] REISERFS (device loop0): using ordered data mode [ 177.236044][ T6191] reiserfs: using flush barriers [pid 6191] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6191] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6191] chdir("./file0") = 0 [pid 6191] ioctl(4, LOOP_CLR_FD) = 0 [pid 6191] close(4) = 0 [pid 6191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6190] <... futex resumed>) = 0 [pid 6190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6191] mkdir(".", 0777 [pid 6190] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6191] <... mkdir resumed>) = -1 EEXIST (File exists) [ 177.242475][ T6191] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 177.258964][ T6191] REISERFS (device loop0): checking transaction log (loop0) [ 177.267496][ T6191] REISERFS (device loop0): Using r5 hash to sort names [ 177.289767][ T6191] reiserfs: enabling write barrier flush mode [pid 6191] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6191] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6190] <... futex resumed>) = 0 [pid 6191] <... futex resumed>) = 1 [pid 6190] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6191] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6190] <... futex resumed>) = 0 [pid 6191] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6190] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6190] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6190] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6191] <... mount resumed>) = 0 [pid 6190] <... mprotect resumed>) = 0 [pid 6191] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6190] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6191] <... openat resumed>) = 5 [pid 6190] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6190] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6191] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 6193 attached ) = 0 [pid 6191] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6190] <... clone3 resumed> => {parent_tid=[6193]}, 88) = 6193 [pid 6190] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6190] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6193] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6190] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6193] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6193] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6193] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6193] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6190] <... futex resumed>) = 0 [pid 6193] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6190] exit_group(0 [pid 6191] <... futex resumed>) = ? [ 177.297962][ T6191] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 177.322131][ T6191] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6193] <... futex resumed>) = ? [pid 6190] <... exit_group resumed>) = ? [pid 6191] +++ exited with 0 +++ [pid 6193] +++ exited with 0 +++ [pid 6190] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6190, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./279", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./279", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./279/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./279/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./279/binderfs") = 0 umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./279/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./279/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./279/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./279/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./279") = 0 mkdir("./280", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6194 attached , child_tidptr=0x5555565f3690) = 6194 [pid 6194] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6194] chdir("./280") = 0 [pid 6194] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6194] setpgid(0, 0) = 0 [pid 6194] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6194] write(3, "1000", 4) = 4 [pid 6194] close(3) = 0 [pid 6194] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6194] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6194] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6194] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6194] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6194] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6194] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6194] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6195 attached [pid 6195] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6195] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6195] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6194] <... clone3 resumed> => {parent_tid=[6195]}, 88) = 6195 [pid 6194] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6195] <... futex resumed>) = 0 [pid 6195] memfd_create("syzkaller", 0 [pid 6194] <... futex resumed>) = 1 [pid 6194] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6195] <... memfd_create resumed>) = 3 [pid 6195] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6195] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6195] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6195] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6195] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6195] close(3) = 0 [pid 6195] mkdir("./file0", 0777) = 0 [ 177.587983][ T6195] loop0: detected capacity change from 0 to 8192 [ 177.615588][ T6195] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 177.628600][ T6195] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6195] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6195] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6195] chdir("./file0") = 0 [pid 6195] ioctl(4, LOOP_CLR_FD) = 0 [pid 6195] close(4) = 0 [pid 6195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6194] <... futex resumed>) = 0 [pid 6195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6195] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6194] <... futex resumed>) = 0 [pid 6195] mkdir(".", 0777 [pid 6194] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6195] <... mkdir resumed>) = -1 EEXIST (File exists) [ 177.637904][ T6195] REISERFS (device loop0): using ordered data mode [ 177.644425][ T6195] reiserfs: using flush barriers [ 177.650468][ T6195] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 177.667047][ T6195] REISERFS (device loop0): checking transaction log (loop0) [ 177.675421][ T6195] REISERFS (device loop0): Using r5 hash to sort names [pid 6195] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6195] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6194] <... futex resumed>) = 0 [pid 6194] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6195] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6194] <... futex resumed>) = 0 [pid 6195] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6194] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 177.708580][ T6195] reiserfs: enabling write barrier flush mode [ 177.717298][ T6195] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6194] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6194] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6195] <... mount resumed>) = 0 [pid 6194] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6194] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6197 attached [pid 6197] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6194] <... clone3 resumed> => {parent_tid=[6197]}, 88) = 6197 [pid 6197] <... rseq resumed>) = 0 [pid 6194] rt_sigprocmask(SIG_SETMASK, [], [pid 6197] set_robust_list(0x7fd868e9f9a0, 24 [pid 6194] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6197] <... set_robust_list resumed>) = 0 [pid 6197] rt_sigprocmask(SIG_SETMASK, [], [pid 6194] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6197] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6194] <... futex resumed>) = 0 [pid 6197] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6194] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6197] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6195] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6197] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6195] <... openat resumed>) = 5 [pid 6197] <... futex resumed>) = 1 [pid 6194] <... futex resumed>) = 0 [pid 6197] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6195] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6195] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6194] exit_group(0 [pid 6195] <... futex resumed>) = ? [pid 6194] <... exit_group resumed>) = ? [pid 6197] <... futex resumed>) = ? [pid 6195] +++ exited with 0 +++ [pid 6197] +++ exited with 0 +++ [pid 6194] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6194, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./280", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./280", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./280/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./280/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./280/binderfs") = 0 [ 177.751636][ T6195] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./280/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./280/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./280/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./280/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./280") = 0 mkdir("./281", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6198 attached , child_tidptr=0x5555565f3690) = 6198 [pid 6198] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6198] chdir("./281") = 0 [pid 6198] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6198] setpgid(0, 0) = 0 [pid 6198] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6198] write(3, "1000", 4) = 4 [pid 6198] close(3) = 0 [pid 6198] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6198] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6198] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6198] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6198] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6198] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6198] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6199 attached [pid 6199] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6199] set_robust_list(0x7fd868ec09a0, 24 [pid 6198] <... clone3 resumed> => {parent_tid=[6199]}, 88) = 6199 [pid 6199] <... set_robust_list resumed>) = 0 [pid 6198] rt_sigprocmask(SIG_SETMASK, [], [pid 6199] rt_sigprocmask(SIG_SETMASK, [], [pid 6198] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6199] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6199] memfd_create("syzkaller", 0 [pid 6198] <... futex resumed>) = 0 [pid 6198] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6199] <... memfd_create resumed>) = 3 [pid 6199] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6199] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6199] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6199] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6199] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6199] close(3) = 0 [pid 6199] mkdir("./file0", 0777) = 0 [ 178.005438][ T6199] loop0: detected capacity change from 0 to 8192 [ 178.031075][ T6199] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 178.044174][ T6199] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6199] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6199] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6199] chdir("./file0") = 0 [pid 6199] ioctl(4, LOOP_CLR_FD) = 0 [pid 6199] close(4) = 0 [pid 6199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6198] <... futex resumed>) = 0 [pid 6199] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6199] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6198] <... futex resumed>) = 0 [pid 6199] mkdir(".", 0777) = -1 EEXIST (File exists) [ 178.053438][ T6199] REISERFS (device loop0): using ordered data mode [ 178.059943][ T6199] reiserfs: using flush barriers [ 178.066370][ T6199] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 178.083137][ T6199] REISERFS (device loop0): checking transaction log (loop0) [ 178.091357][ T6199] REISERFS (device loop0): Using r5 hash to sort names [pid 6199] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6198] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6199] <... mount resumed>) = 0 [pid 6199] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6198] <... futex resumed>) = 0 [pid 6199] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6198] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6199] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6198] <... futex resumed>) = 0 [pid 6199] mkdir(".", 0777 [pid 6198] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6199] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6198] <... futex resumed>) = 0 [pid 6199] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6198] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6198] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6198] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6199] <... mount resumed>) = 0 [pid 6198] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6199] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6198] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6199] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 6201 attached [pid 6199] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6201] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6198] <... clone3 resumed> => {parent_tid=[6201]}, 88) = 6201 [pid 6201] <... rseq resumed>) = 0 [pid 6201] set_robust_list(0x7fd868e9f9a0, 24 [pid 6198] rt_sigprocmask(SIG_SETMASK, [], [pid 6201] <... set_robust_list resumed>) = 0 [pid 6198] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6201] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6198] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6201] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6198] <... futex resumed>) = 0 [pid 6198] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6201] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6201] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6201] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6198] <... futex resumed>) = 0 [pid 6198] exit_group(0 [pid 6201] <... futex resumed>) = ? [pid 6199] <... futex resumed>) = ? [pid 6201] +++ exited with 0 +++ [pid 6199] +++ exited with 0 +++ [pid 6198] <... exit_group resumed>) = ? [pid 6198] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6198, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./281", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./281", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./281/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./281/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./281/binderfs") = 0 [ 178.125432][ T6199] reiserfs: enabling write barrier flush mode [ 178.133475][ T6199] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 178.154500][ T6199] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./281/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./281/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./281/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./281/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./281") = 0 mkdir("./282", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6202 attached , child_tidptr=0x5555565f3690) = 6202 [pid 6202] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6202] chdir("./282") = 0 [pid 6202] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6202] setpgid(0, 0) = 0 [pid 6202] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6202] write(3, "1000", 4) = 4 [pid 6202] close(3) = 0 [pid 6202] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6202] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6202] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6202] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6202] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6203 attached [pid 6203] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6202] <... clone3 resumed> => {parent_tid=[6203]}, 88) = 6203 [pid 6203] <... rseq resumed>) = 0 [pid 6202] rt_sigprocmask(SIG_SETMASK, [], [pid 6203] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6202] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6203] rt_sigprocmask(SIG_SETMASK, [], [pid 6202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6203] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6202] <... futex resumed>) = 0 [pid 6202] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6203] memfd_create("syzkaller", 0) = 3 [pid 6203] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6203] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6203] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6203] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6203] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6203] close(3) = 0 [pid 6203] mkdir("./file0", 0777) = 0 [ 178.398344][ T6203] loop0: detected capacity change from 0 to 8192 [ 178.408232][ T6203] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 178.421273][ T6203] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 178.430454][ T6203] REISERFS (device loop0): using ordered data mode [ 178.437081][ T6203] reiserfs: using flush barriers [pid 6203] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6203] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6203] chdir("./file0") = 0 [pid 6203] ioctl(4, LOOP_CLR_FD) = 0 [pid 6203] close(4) = 0 [pid 6203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6202] <... futex resumed>) = 0 [pid 6202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 178.443187][ T6203] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 178.459823][ T6203] REISERFS (device loop0): checking transaction log (loop0) [ 178.468022][ T6203] REISERFS (device loop0): Using r5 hash to sort names [pid 6203] mkdir(".", 0777 [pid 6202] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6203] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6203] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6203] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6202] <... futex resumed>) = 0 [pid 6202] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6203] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6202] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6203] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6202] <... mmap resumed>) = 0x7fd868e7f000 [ 178.504349][ T6203] reiserfs: enabling write barrier flush mode [ 178.513410][ T6203] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6202] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6203] <... mount resumed>) = 0 [pid 6203] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6202] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6203] <... openat resumed>) = 5 [pid 6202] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6202] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6203] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] <... clone3 resumed> => {parent_tid=[6205]}, 88) = 6205 [pid 6203] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6202] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6202] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6202] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 6205 attached [pid 6205] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6205] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6205] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6205] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6205] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6205] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6202] <... futex resumed>) = 0 [pid 6202] exit_group(0 [pid 6205] <... futex resumed>) = ? [pid 6203] <... futex resumed>) = ? [pid 6202] <... exit_group resumed>) = ? [pid 6205] +++ exited with 0 +++ [pid 6203] +++ exited with 0 +++ [pid 6202] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6202, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./282", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./282", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./282/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./282/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./282/binderfs") = 0 [ 178.544642][ T6203] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./282/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./282/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./282/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./282/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./282") = 0 mkdir("./283", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6206 attached [pid 6206] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6206] chdir("./283") = 0 [pid 6206] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6206] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6206 [pid 6206] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6206] write(3, "1000", 4) = 4 [pid 6206] close(3) = 0 [pid 6206] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6206] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6206] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6206] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6206] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6206] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6207 attached => {parent_tid=[6207]}, 88) = 6207 [pid 6206] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6206] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6207] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6207] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6207] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6207] memfd_create("syzkaller", 0) = 3 [pid 6207] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6207] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6207] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6207] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6207] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6207] close(3) = 0 [pid 6207] mkdir("./file0", 0777) = 0 [ 178.815899][ T6207] loop0: detected capacity change from 0 to 8192 [ 178.842219][ T6207] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 178.855241][ T6207] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6207] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6207] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6207] chdir("./file0") = 0 [pid 6207] ioctl(4, LOOP_CLR_FD) = 0 [pid 6207] close(4) = 0 [pid 6207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6207] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6206] <... futex resumed>) = 0 [pid 6206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... futex resumed>) = 0 [pid 6206] <... futex resumed>) = 1 [pid 6207] mkdir(".", 0777) = -1 EEXIST (File exists) [ 178.864514][ T6207] REISERFS (device loop0): using ordered data mode [ 178.871041][ T6207] reiserfs: using flush barriers [ 178.877435][ T6207] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 178.893863][ T6207] REISERFS (device loop0): checking transaction log (loop0) [ 178.902353][ T6207] REISERFS (device loop0): Using r5 hash to sort names [pid 6206] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6207] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6207] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6206] <... futex resumed>) = 0 [pid 6207] <... futex resumed>) = 1 [pid 6206] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] mkdir(".", 0777 [pid 6206] <... futex resumed>) = 0 [pid 6207] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6206] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6206] <... futex resumed>) = 0 [pid 6206] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6206] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 178.936011][ T6207] reiserfs: enabling write barrier flush mode [ 178.945109][ T6207] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6206] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6206] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6209 attached [pid 6209] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6209] set_robust_list(0x7fd868e9f9a0, 24 [pid 6206] <... clone3 resumed> => {parent_tid=[6209]}, 88) = 6209 [pid 6209] <... set_robust_list resumed>) = 0 [pid 6206] rt_sigprocmask(SIG_SETMASK, [], [pid 6209] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6206] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6209] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6206] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6209] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6206] <... futex resumed>) = 0 [pid 6209] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6207] <... mount resumed>) = 0 [pid 6206] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6209] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6207] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6209] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6207] <... openat resumed>) = 5 [pid 6209] <... futex resumed>) = 1 [pid 6206] <... futex resumed>) = 0 [pid 6209] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6207] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6206] exit_group(0 [pid 6209] <... futex resumed>) = ? [pid 6207] <... futex resumed>) = ? [pid 6206] <... exit_group resumed>) = ? [pid 6209] +++ exited with 0 +++ [pid 6207] +++ exited with 0 +++ [pid 6206] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6206, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./283", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./283", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./283/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./283/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./283/binderfs") = 0 [ 178.986275][ T6207] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./283/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./283/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./283/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./283/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./283") = 0 mkdir("./284", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6210 attached , child_tidptr=0x5555565f3690) = 6210 [pid 6210] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6210] chdir("./284") = 0 [pid 6210] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6210] setpgid(0, 0) = 0 [pid 6210] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6210] write(3, "1000", 4) = 4 [pid 6210] close(3) = 0 [pid 6210] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6210] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6210] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6210] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6210] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6210] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6211 attached [pid 6211] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6210] <... clone3 resumed> => {parent_tid=[6211]}, 88) = 6211 [pid 6211] set_robust_list(0x7fd868ec09a0, 24 [pid 6210] rt_sigprocmask(SIG_SETMASK, [], [pid 6211] <... set_robust_list resumed>) = 0 [pid 6210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6211] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] <... futex resumed>) = 0 [pid 6211] memfd_create("syzkaller", 0 [pid 6210] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6211] <... memfd_create resumed>) = 3 [pid 6211] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6211] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6211] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6211] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6211] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6211] close(3) = 0 [pid 6211] mkdir("./file0", 0777) = 0 [ 179.281098][ T6211] loop0: detected capacity change from 0 to 8192 [ 179.306438][ T6211] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 179.319462][ T6211] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6211] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6211] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6211] chdir("./file0") = 0 [pid 6211] ioctl(4, LOOP_CLR_FD) = 0 [pid 6211] close(4) = 0 [pid 6211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6210] <... futex resumed>) = 0 [pid 6210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] mkdir(".", 0777 [pid 6210] <... futex resumed>) = 0 [ 179.328730][ T6211] REISERFS (device loop0): using ordered data mode [ 179.335276][ T6211] reiserfs: using flush barriers [ 179.341346][ T6211] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 179.357947][ T6211] REISERFS (device loop0): checking transaction log (loop0) [ 179.366503][ T6211] REISERFS (device loop0): Using r5 hash to sort names [pid 6211] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6210] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6211] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6211] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6211] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] <... futex resumed>) = 0 [pid 6210] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] <... futex resumed>) = 0 [pid 6210] <... futex resumed>) = 1 [pid 6211] mkdir(".", 0777 [pid 6210] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6211] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6210] <... futex resumed>) = 0 [pid 6211] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6210] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6210] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 179.399473][ T6211] reiserfs: enabling write barrier flush mode [ 179.408601][ T6211] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6210] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6211] <... mount resumed>) = 0 [pid 6210] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6211] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6210] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6211] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6211] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 6213 attached [pid 6213] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6210] <... clone3 resumed> => {parent_tid=[6213]}, 88) = 6213 [pid 6213] <... rseq resumed>) = 0 [pid 6213] set_robust_list(0x7fd868e9f9a0, 24 [pid 6210] rt_sigprocmask(SIG_SETMASK, [], [pid 6213] <... set_robust_list resumed>) = 0 [pid 6213] rt_sigprocmask(SIG_SETMASK, [], [pid 6210] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6213] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6210] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6213] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6210] <... futex resumed>) = 0 [pid 6210] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6213] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6213] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6213] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6210] <... futex resumed>) = 0 [pid 6210] exit_group(0 [pid 6211] <... futex resumed>) = ? [pid 6211] +++ exited with 0 +++ [pid 6213] <... futex resumed>) = ? [pid 6210] <... exit_group resumed>) = ? [pid 6213] +++ exited with 0 +++ [pid 6210] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6210, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./284", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./284", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./284/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./284/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./284/binderfs") = 0 [ 179.450199][ T6211] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./284/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./284/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./284/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./284/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./284") = 0 mkdir("./285", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6214 attached , child_tidptr=0x5555565f3690) = 6214 [pid 6214] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6214] chdir("./285") = 0 [pid 6214] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6214] setpgid(0, 0) = 0 [pid 6214] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6214] write(3, "1000", 4) = 4 [pid 6214] close(3) = 0 [pid 6214] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6214] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6214] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6214] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6214] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6214] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6214] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6214] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6215 attached [pid 6215] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6214] <... clone3 resumed> => {parent_tid=[6215]}, 88) = 6215 [pid 6215] set_robust_list(0x7fd868ec09a0, 24 [pid 6214] rt_sigprocmask(SIG_SETMASK, [], [pid 6215] <... set_robust_list resumed>) = 0 [pid 6214] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6215] rt_sigprocmask(SIG_SETMASK, [], [pid 6214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6215] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6214] <... futex resumed>) = 0 [pid 6214] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6215] memfd_create("syzkaller", 0) = 3 [pid 6215] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6215] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6215] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6215] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6215] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6215] close(3) = 0 [pid 6215] mkdir("./file0", 0777) = 0 [ 179.702352][ T6215] loop0: detected capacity change from 0 to 8192 [ 179.717081][ T6215] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 179.730169][ T6215] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 179.739462][ T6215] REISERFS (device loop0): using ordered data mode [ 179.746021][ T6215] reiserfs: using flush barriers [pid 6215] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6215] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6215] chdir("./file0") = 0 [pid 6215] ioctl(4, LOOP_CLR_FD) = 0 [pid 6215] close(4) = 0 [pid 6215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6215] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6214] <... futex resumed>) = 0 [pid 6214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6215] <... futex resumed>) = 0 [pid 6214] <... futex resumed>) = 1 [pid 6215] mkdir(".", 0777 [pid 6214] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6215] <... mkdir resumed>) = -1 EEXIST (File exists) [ 179.752304][ T6215] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 179.768664][ T6215] REISERFS (device loop0): checking transaction log (loop0) [ 179.776990][ T6215] REISERFS (device loop0): Using r5 hash to sort names [pid 6215] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6215] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6214] <... futex resumed>) = 0 [pid 6214] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6214] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6214] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6215] <... futex resumed>) = 1 [pid 6214] <... mmap resumed>) = 0x7fd868e7f000 [pid 6215] mkdir(".", 0777 [pid 6214] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6215] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6214] <... mprotect resumed>) = 0 [pid 6214] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6215] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6214] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6214] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6217 attached => {parent_tid=[6217]}, 88) = 6217 [pid 6217] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6215] <... mount resumed>) = 0 [pid 6217] <... rseq resumed>) = 0 [pid 6214] rt_sigprocmask(SIG_SETMASK, [], [pid 6217] set_robust_list(0x7fd868e9f9a0, 24 [pid 6214] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6217] <... set_robust_list resumed>) = 0 [pid 6214] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6217] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6214] <... futex resumed>) = 0 [pid 6217] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6214] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6215] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6217] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6215] <... openat resumed>) = 5 [pid 6215] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6217] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6215] <... futex resumed>) = 0 [pid 6217] <... futex resumed>) = 1 [pid 6214] <... futex resumed>) = 0 [pid 6215] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6217] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6214] exit_group(0) = ? [pid 6217] <... futex resumed>) = ? [pid 6215] <... futex resumed>) = ? [pid 6215] +++ exited with 0 +++ [pid 6217] +++ exited with 0 +++ [pid 6214] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6214, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- [ 179.820173][ T6215] reiserfs: enabling write barrier flush mode [ 179.828217][ T6215] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 179.849625][ T6215] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./285", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./285", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./285/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./285/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./285/binderfs") = 0 umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./285/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./285/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./285/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./285/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./285") = 0 mkdir("./286", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6218 attached [pid 6218] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6218] chdir("./286") = 0 [pid 6218] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6218 [pid 6218] setpgid(0, 0) = 0 [pid 6218] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6218] write(3, "1000", 4) = 4 [pid 6218] close(3) = 0 [pid 6218] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6218] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6218] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6218] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6218] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6218] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6218] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6218] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6219 attached [pid 6219] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6218] <... clone3 resumed> => {parent_tid=[6219]}, 88) = 6219 [pid 6219] <... rseq resumed>) = 0 [pid 6218] rt_sigprocmask(SIG_SETMASK, [], [pid 6219] set_robust_list(0x7fd868ec09a0, 24 [pid 6218] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6219] <... set_robust_list resumed>) = 0 [pid 6218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6219] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6218] <... futex resumed>) = 0 [pid 6219] memfd_create("syzkaller", 0 [pid 6218] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6219] <... memfd_create resumed>) = 3 [pid 6219] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6219] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6219] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6219] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6219] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6219] close(3) = 0 [pid 6219] mkdir("./file0", 0777) = 0 [ 180.170019][ T6219] loop0: detected capacity change from 0 to 8192 [ 180.184520][ T6219] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 180.197631][ T6219] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 180.206942][ T6219] REISERFS (device loop0): using ordered data mode [ 180.213473][ T6219] reiserfs: using flush barriers [pid 6219] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6219] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6219] chdir("./file0") = 0 [pid 6219] ioctl(4, LOOP_CLR_FD) = 0 [pid 6219] close(4) = 0 [pid 6219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6218] <... futex resumed>) = 0 [pid 6218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 180.219679][ T6219] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 180.236372][ T6219] REISERFS (device loop0): checking transaction log (loop0) [ 180.244502][ T6219] REISERFS (device loop0): Using r5 hash to sort names [pid 6219] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6219] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6218] <... futex resumed>) = 0 [pid 6218] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6219] <... mount resumed>) = 0 [pid 6219] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6218] <... futex resumed>) = 0 [pid 6218] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6218] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6218] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6218] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6218] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6218] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} => {parent_tid=[6221]}, 88) = 6221 ./strace-static-x86_64: Process 6221 attached [pid 6218] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6218] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6221] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6218] <... futex resumed>) = 0 [pid 6218] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6219] <... futex resumed>) = 1 [pid 6219] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6219] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6221] <... rseq resumed>) = 0 [pid 6221] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6221] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 180.268203][ T6219] reiserfs: enabling write barrier flush mode [ 180.278114][ T6219] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6221] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6221] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6218] <... futex resumed>) = 0 [pid 6221] <... futex resumed>) = 1 [pid 6221] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6219] <... mount resumed>) = 0 [pid 6219] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6219] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6219] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6218] exit_group(0 [pid 6221] <... futex resumed>) = ? [pid 6219] <... futex resumed>) = ? [pid 6218] <... exit_group resumed>) = ? [pid 6221] +++ exited with 0 +++ [pid 6219] +++ exited with 0 +++ [pid 6218] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6218, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./286", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./286", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./286/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./286/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./286/binderfs") = 0 umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 [ 180.312279][ T6219] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./286/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./286/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./286/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./286/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./286") = 0 mkdir("./287", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6222 attached , child_tidptr=0x5555565f3690) = 6222 [pid 6222] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6222] chdir("./287") = 0 [pid 6222] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6222] setpgid(0, 0) = 0 [pid 6222] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6222] write(3, "1000", 4) = 4 [pid 6222] close(3) = 0 [pid 6222] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6222] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6222] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6222] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6222] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6222] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6222] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6223 attached [pid 6223] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6222] <... clone3 resumed> => {parent_tid=[6223]}, 88) = 6223 [pid 6223] <... rseq resumed>) = 0 [pid 6222] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6223] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6222] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6223] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6223] memfd_create("syzkaller", 0) = 3 [pid 6223] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6223] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6223] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6223] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6223] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6223] close(3) = 0 [pid 6223] mkdir("./file0", 0777) = 0 [ 180.549291][ T6223] loop0: detected capacity change from 0 to 8192 [ 180.565468][ T6223] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 180.578475][ T6223] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 180.587767][ T6223] REISERFS (device loop0): using ordered data mode [ 180.594297][ T6223] reiserfs: using flush barriers [pid 6223] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6223] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6223] chdir("./file0") = 0 [pid 6223] ioctl(4, LOOP_CLR_FD) = 0 [pid 6223] close(4) = 0 [pid 6223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6222] <... futex resumed>) = 0 [pid 6223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6223] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6223] mkdir(".", 0777 [pid 6222] <... futex resumed>) = 0 [pid 6223] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6222] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 180.600390][ T6223] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 180.617062][ T6223] REISERFS (device loop0): checking transaction log (loop0) [ 180.625521][ T6223] REISERFS (device loop0): Using r5 hash to sort names [pid 6223] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6223] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6222] <... futex resumed>) = 0 [pid 6223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6222] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6223] <... futex resumed>) = 0 [pid 6222] <... futex resumed>) = 1 [pid 6223] mkdir(".", 0777 [pid 6222] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6223] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6222] <... futex resumed>) = 0 [pid 6223] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6222] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6222] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 180.646711][ T6223] reiserfs: enabling write barrier flush mode [ 180.656004][ T6223] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6222] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6222] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6225 attached [pid 6225] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6223] <... mount resumed>) = 0 [pid 6222] <... clone3 resumed> => {parent_tid=[6225]}, 88) = 6225 [pid 6225] <... rseq resumed>) = 0 [pid 6222] rt_sigprocmask(SIG_SETMASK, [], [pid 6225] set_robust_list(0x7fd868e9f9a0, 24 [pid 6222] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6225] <... set_robust_list resumed>) = 0 [pid 6222] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6225] rt_sigprocmask(SIG_SETMASK, [], [pid 6222] <... futex resumed>) = 0 [pid 6225] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6222] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6225] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6223] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6225] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6222] <... futex resumed>) = 0 [pid 6225] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6223] <... openat resumed>) = 5 [pid 6223] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6223] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6222] exit_group(0 [pid 6225] <... futex resumed>) = ? [pid 6223] <... futex resumed>) = ? [pid 6222] <... exit_group resumed>) = ? [pid 6225] +++ exited with 0 +++ [pid 6223] +++ exited with 0 +++ [pid 6222] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6222, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./287", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./287", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./287/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./287/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./287/binderfs") = 0 [ 180.708136][ T6223] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./287/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./287/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./287/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./287/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./287") = 0 mkdir("./288", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6226 attached , child_tidptr=0x5555565f3690) = 6226 [pid 6226] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6226] chdir("./288") = 0 [pid 6226] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6226] setpgid(0, 0) = 0 [pid 6226] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6226] write(3, "1000", 4) = 4 [pid 6226] close(3) = 0 [pid 6226] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6226] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6226] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6226] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6226] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6226] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6226] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6226] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6227 attached [pid 6227] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6226] <... clone3 resumed> => {parent_tid=[6227]}, 88) = 6227 [pid 6227] set_robust_list(0x7fd868ec09a0, 24 [pid 6226] rt_sigprocmask(SIG_SETMASK, [], [pid 6227] <... set_robust_list resumed>) = 0 [pid 6226] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6227] rt_sigprocmask(SIG_SETMASK, [], [pid 6226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6227] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6226] <... futex resumed>) = 0 [pid 6227] memfd_create("syzkaller", 0 [pid 6226] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6227] <... memfd_create resumed>) = 3 [pid 6227] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6227] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6227] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6227] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6227] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6227] close(3) = 0 [pid 6227] mkdir("./file0", 0777) = 0 [ 180.937233][ T6227] loop0: detected capacity change from 0 to 8192 [ 180.953372][ T6227] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 180.966452][ T6227] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 180.975807][ T6227] REISERFS (device loop0): using ordered data mode [ 180.982546][ T6227] reiserfs: using flush barriers [pid 6227] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6227] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6227] chdir("./file0") = 0 [pid 6227] ioctl(4, LOOP_CLR_FD) = 0 [pid 6227] close(4) = 0 [pid 6227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6226] <... futex resumed>) = 0 [pid 6227] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6227] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6227] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6227] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6226] <... futex resumed>) = 0 [ 180.988917][ T6227] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 181.005582][ T6227] REISERFS (device loop0): checking transaction log (loop0) [ 181.013802][ T6227] REISERFS (device loop0): Using r5 hash to sort names [pid 6226] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6227] <... mount resumed>) = 0 [pid 6227] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6226] <... futex resumed>) = 0 [pid 6226] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6226] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6226] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6227] <... futex resumed>) = 1 [pid 6226] <... mmap resumed>) = 0x7fd868e7f000 [pid 6227] mkdir(".", 0777 [pid 6226] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6227] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6226] <... mprotect resumed>) = 0 [pid 6227] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6226] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6226] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6229 attached [pid 6229] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6226] <... clone3 resumed> => {parent_tid=[6229]}, 88) = 6229 [pid 6229] set_robust_list(0x7fd868e9f9a0, 24 [pid 6226] rt_sigprocmask(SIG_SETMASK, [], [pid 6229] <... set_robust_list resumed>) = 0 [pid 6226] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6229] rt_sigprocmask(SIG_SETMASK, [], [pid 6226] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6229] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6226] <... futex resumed>) = 0 [pid 6229] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6226] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6229] <... fsetxattr resumed>) = -1 EOPNOTSUPP (Operation not supported) [pid 6229] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6226] <... futex resumed>) = 0 [ 181.054917][ T6227] reiserfs: enabling write barrier flush mode [ 181.063691][ T6227] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6229] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6227] <... mount resumed>) = 0 [pid 6227] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6227] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6227] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6226] exit_group(0 [pid 6229] <... futex resumed>) = ? [pid 6227] <... futex resumed>) = ? [pid 6226] <... exit_group resumed>) = ? [pid 6229] +++ exited with 0 +++ [pid 6227] +++ exited with 0 +++ [pid 6226] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6226, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./288", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./288", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./288/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./288/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./288/binderfs") = 0 [ 181.104477][ T6227] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./288/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./288/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./288/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./288/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./288") = 0 mkdir("./289", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6230 attached [pid 6230] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6230] chdir("./289") = 0 [pid 6230] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6230] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6230 [pid 6230] <... setpgid resumed>) = 0 [pid 6230] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6230] write(3, "1000", 4) = 4 [pid 6230] close(3) = 0 [pid 6230] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6230] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6230] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6230] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6230] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6230] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6230] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6230] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6231 attached => {parent_tid=[6231]}, 88) = 6231 [pid 6230] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6230] <... futex resumed>) = 0 [pid 6231] set_robust_list(0x7fd868ec09a0, 24 [pid 6230] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6231] <... set_robust_list resumed>) = 0 [pid 6231] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6231] memfd_create("syzkaller", 0) = 3 [pid 6231] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6231] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6231] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6231] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6231] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6231] close(3) = 0 [pid 6231] mkdir("./file0", 0777) = 0 [ 181.394263][ T6231] loop0: detected capacity change from 0 to 8192 [ 181.409818][ T6231] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 181.422892][ T6231] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 181.432155][ T6231] REISERFS (device loop0): using ordered data mode [ 181.438668][ T6231] reiserfs: using flush barriers [pid 6231] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6231] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6231] chdir("./file0") = 0 [pid 6231] ioctl(4, LOOP_CLR_FD) = 0 [ 181.445093][ T6231] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 181.461725][ T6231] REISERFS (device loop0): checking transaction log (loop0) [ 181.469911][ T6231] REISERFS (device loop0): Using r5 hash to sort names [pid 6231] close(4) = 0 [pid 6231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6230] <... futex resumed>) = 0 [pid 6231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6230] <... futex resumed>) = 0 [pid 6231] mkdir(".", 0777 [pid 6230] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6231] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6231] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6231] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6230] <... futex resumed>) = 0 [pid 6231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6230] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6230] <... futex resumed>) = 0 [pid 6231] mkdir(".", 0777 [pid 6230] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6230] <... futex resumed>) = 0 [pid 6231] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6230] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6230] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6230] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6230] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6233 attached [pid 6233] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6233] set_robust_list(0x7fd868e9f9a0, 24 [pid 6231] <... mount resumed>) = 0 [pid 6230] <... clone3 resumed> => {parent_tid=[6233]}, 88) = 6233 [pid 6233] <... set_robust_list resumed>) = 0 [pid 6230] rt_sigprocmask(SIG_SETMASK, [], [pid 6233] rt_sigprocmask(SIG_SETMASK, [], [pid 6230] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6233] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6230] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6233] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6231] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6233] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6231] <... openat resumed>) = 5 [pid 6230] <... futex resumed>) = 0 [pid 6233] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6231] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6230] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6233] <... futex resumed>) = 0 [pid 6231] <... futex resumed>) = 0 [pid 6230] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6233] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6231] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6230] exit_group(0 [pid 6231] <... futex resumed>) = ? [pid 6233] <... futex resumed>) = ? [pid 6233] +++ exited with 0 +++ [pid 6231] +++ exited with 0 +++ [pid 6230] <... exit_group resumed>) = ? [pid 6230] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6230, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- umount2("./289", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./289", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 181.501972][ T6231] reiserfs: enabling write barrier flush mode [ 181.509937][ T6231] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 181.540050][ T6231] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./289/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./289/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./289/binderfs") = 0 umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./289/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./289/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./289/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./289/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./289") = 0 mkdir("./290", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6234 attached [pid 6234] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6234] chdir("./290") = 0 [pid 6234] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6234] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6234 [pid 6234] <... setpgid resumed>) = 0 [pid 6234] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6234] write(3, "1000", 4) = 4 [pid 6234] close(3) = 0 [pid 6234] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6234] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6234] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6234] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6234] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6234] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6235 attached [pid 6235] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6234] <... clone3 resumed> => {parent_tid=[6235]}, 88) = 6235 [pid 6235] <... rseq resumed>) = 0 [pid 6234] rt_sigprocmask(SIG_SETMASK, [], [pid 6235] set_robust_list(0x7fd868ec09a0, 24 [pid 6234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6235] <... set_robust_list resumed>) = 0 [pid 6234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6235] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] <... futex resumed>) = 0 [pid 6235] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6235] memfd_create("syzkaller", 0) = 3 [pid 6235] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6235] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6235] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6235] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6235] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6235] close(3) = 0 [pid 6235] mkdir("./file0", 0777) = 0 [ 181.799022][ T6235] loop0: detected capacity change from 0 to 8192 [ 181.809158][ T6235] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 181.822191][ T6235] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 181.831572][ T6235] REISERFS (device loop0): using ordered data mode [ 181.838065][ T6235] reiserfs: using flush barriers [pid 6235] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6235] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6235] chdir("./file0") = 0 [pid 6235] ioctl(4, LOOP_CLR_FD) = 0 [pid 6235] close(4) = 0 [pid 6235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6234] <... futex resumed>) = 0 [pid 6235] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6235] mkdir(".", 0777 [pid 6234] <... futex resumed>) = 0 [pid 6235] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6234] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 181.844661][ T6235] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 181.861047][ T6235] REISERFS (device loop0): checking transaction log (loop0) [ 181.869398][ T6235] REISERFS (device loop0): Using r5 hash to sort names [pid 6235] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6235] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6234] <... futex resumed>) = 0 [pid 6235] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6234] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6235] mkdir(".", 0777 [pid 6234] <... futex resumed>) = 0 [pid 6235] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6234] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6235] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6234] <... futex resumed>) = 0 [pid 6234] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6234] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6234] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6235] <... mount resumed>) = 0 [pid 6234] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6234] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6237 attached [pid 6235] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6234] <... clone3 resumed> => {parent_tid=[6237]}, 88) = 6237 [pid 6235] <... openat resumed>) = 5 [pid 6235] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6235] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6237] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6237] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6234] rt_sigprocmask(SIG_SETMASK, [], [pid 6237] rt_sigprocmask(SIG_SETMASK, [], [pid 6234] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6237] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6234] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6237] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6234] <... futex resumed>) = 0 [pid 6234] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6237] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [ 181.903658][ T6235] reiserfs: enabling write barrier flush mode [ 181.911350][ T6235] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 181.943135][ T6235] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6237] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6234] <... futex resumed>) = 0 [pid 6237] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6234] exit_group(0 [pid 6237] <... futex resumed>) = ? [pid 6235] <... futex resumed>) = ? [pid 6234] <... exit_group resumed>) = ? [pid 6237] +++ exited with 0 +++ [pid 6235] +++ exited with 0 +++ [pid 6234] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6234, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./290", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./290", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./290/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./290/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./290/binderfs") = 0 umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./290/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./290/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./290/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./290/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./290") = 0 mkdir("./291", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6238 attached [pid 6238] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6238] chdir("./291") = 0 [pid 6238] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6238 [pid 6238] setpgid(0, 0) = 0 [pid 6238] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6238] write(3, "1000", 4) = 4 [pid 6238] close(3) = 0 [pid 6238] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6238] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6238] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6238] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6238] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6238] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6239 attached [pid 6239] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6238] <... clone3 resumed> => {parent_tid=[6239]}, 88) = 6239 [pid 6239] set_robust_list(0x7fd868ec09a0, 24 [pid 6238] rt_sigprocmask(SIG_SETMASK, [], [pid 6239] <... set_robust_list resumed>) = 0 [pid 6238] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6239] rt_sigprocmask(SIG_SETMASK, [], [pid 6238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] <... futex resumed>) = 0 [pid 6239] memfd_create("syzkaller", 0 [pid 6238] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6239] <... memfd_create resumed>) = 3 [pid 6239] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6239] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6239] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6239] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6239] close(3) = 0 [pid 6239] mkdir("./file0", 0777) = 0 [ 182.266116][ T6239] loop0: detected capacity change from 0 to 8192 [ 182.280962][ T6239] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 182.294080][ T6239] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 182.303379][ T6239] REISERFS (device loop0): using ordered data mode [ 182.309887][ T6239] reiserfs: using flush barriers [pid 6239] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6239] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6239] chdir("./file0") = 0 [pid 6239] ioctl(4, LOOP_CLR_FD) = 0 [pid 6239] close(4) = 0 [pid 6239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6238] <... futex resumed>) = 0 [pid 6239] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6238] <... futex resumed>) = 0 [pid 6239] mkdir(".", 0777 [pid 6238] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6239] <... mkdir resumed>) = -1 EEXIST (File exists) [ 182.316581][ T6239] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 182.332938][ T6239] REISERFS (device loop0): checking transaction log (loop0) [ 182.341150][ T6239] REISERFS (device loop0): Using r5 hash to sort names [pid 6239] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6239] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6238] <... futex resumed>) = 0 [pid 6239] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6238] <... futex resumed>) = 0 [pid 6239] mkdir(".", 0777 [pid 6238] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6239] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6238] <... futex resumed>) = 0 [pid 6239] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6238] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6238] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6238] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6238] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6239] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6241 attached [pid 6239] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6238] <... clone3 resumed> => {parent_tid=[6241]}, 88) = 6241 [pid 6241] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6239] <... openat resumed>) = 5 [pid 6239] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6241] <... rseq resumed>) = 0 [pid 6238] rt_sigprocmask(SIG_SETMASK, [], [pid 6241] set_robust_list(0x7fd868e9f9a0, 24 [pid 6239] <... futex resumed>) = 0 [pid 6239] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6238] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6238] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6241] <... set_robust_list resumed>) = 0 [pid 6241] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6241] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [ 182.375553][ T6239] reiserfs: enabling write barrier flush mode [ 182.383577][ T6239] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 182.414492][ T6239] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6241] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6238] <... futex resumed>) = 0 [pid 6241] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6238] exit_group(0 [pid 6241] <... futex resumed>) = ? [pid 6239] <... futex resumed>) = ? [pid 6238] <... exit_group resumed>) = ? [pid 6241] +++ exited with 0 +++ [pid 6239] +++ exited with 0 +++ [pid 6238] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6238, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./291", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./291", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./291/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./291/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./291/binderfs") = 0 umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./291/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./291/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./291/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./291/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./291") = 0 mkdir("./292", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6242 attached , child_tidptr=0x5555565f3690) = 6242 [pid 6242] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6242] chdir("./292") = 0 [pid 6242] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6242] setpgid(0, 0) = 0 [pid 6242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6242] write(3, "1000", 4) = 4 [pid 6242] close(3) = 0 [pid 6242] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6242] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6242] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6242] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6242] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6242] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6242] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6242] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6243 attached [pid 6243] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6242] <... clone3 resumed> => {parent_tid=[6243]}, 88) = 6243 [pid 6243] <... rseq resumed>) = 0 [pid 6242] rt_sigprocmask(SIG_SETMASK, [], [pid 6243] set_robust_list(0x7fd868ec09a0, 24 [pid 6242] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6243] <... set_robust_list resumed>) = 0 [pid 6242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6243] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6242] <... futex resumed>) = 0 [pid 6243] memfd_create("syzkaller", 0 [pid 6242] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6243] <... memfd_create resumed>) = 3 [pid 6243] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6243] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6243] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6243] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6243] close(3) = 0 [pid 6243] mkdir("./file0", 0777) = 0 [ 182.677693][ T6243] loop0: detected capacity change from 0 to 8192 [ 182.705066][ T6243] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 182.718085][ T6243] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6243] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6243] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6243] chdir("./file0") = 0 [pid 6243] ioctl(4, LOOP_CLR_FD) = 0 [pid 6243] close(4) = 0 [pid 6243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6242] <... futex resumed>) = 0 [pid 6243] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6243] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6242] <... futex resumed>) = 0 [pid 6243] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6242] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 182.727338][ T6243] REISERFS (device loop0): using ordered data mode [ 182.733863][ T6243] reiserfs: using flush barriers [ 182.740181][ T6243] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 182.756841][ T6243] REISERFS (device loop0): checking transaction log (loop0) [ 182.765029][ T6243] REISERFS (device loop0): Using r5 hash to sort names [pid 6243] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6243] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6242] <... futex resumed>) = 0 [pid 6242] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6242] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6242] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6242] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6243] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6242] <... mprotect resumed>) = 0 [pid 6243] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6242] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6242] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6245 attached [pid 6245] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6242] <... clone3 resumed> => {parent_tid=[6245]}, 88) = 6245 [pid 6245] <... rseq resumed>) = 0 [pid 6242] rt_sigprocmask(SIG_SETMASK, [], [pid 6245] set_robust_list(0x7fd868e9f9a0, 24 [pid 6242] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6242] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6245] <... set_robust_list resumed>) = 0 [pid 6242] <... futex resumed>) = 0 [pid 6245] rt_sigprocmask(SIG_SETMASK, [], [ 182.796413][ T6243] reiserfs: enabling write barrier flush mode [ 182.804259][ T6243] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6242] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6245] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6245] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6243] <... mount resumed>) = 0 [pid 6245] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6243] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6245] <... futex resumed>) = 1 [pid 6242] <... futex resumed>) = 0 [pid 6245] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6243] <... openat resumed>) = 5 [pid 6243] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6242] exit_group(0 [pid 6245] <... futex resumed>) = ? [pid 6245] +++ exited with 0 +++ [pid 6242] <... exit_group resumed>) = ? [pid 6243] <... futex resumed>) = ? [pid 6243] +++ exited with 0 +++ [pid 6242] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6242, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./292", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./292", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./292/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./292/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./292/binderfs") = 0 [ 182.837987][ T6243] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./292/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./292/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./292/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./292/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./292") = 0 mkdir("./293", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6246 attached [pid 6246] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6246] chdir("./293") = 0 [pid 6246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6246] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6246 [pid 6246] <... setpgid resumed>) = 0 [pid 6246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6246] write(3, "1000", 4) = 4 [pid 6246] close(3) = 0 [pid 6246] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6246] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6246] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6246] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6246] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6246] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6246] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6247 attached => {parent_tid=[6247]}, 88) = 6247 [pid 6247] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6246] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6247] <... rseq resumed>) = 0 [pid 6247] set_robust_list(0x7fd868ec09a0, 24 [pid 6246] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6247] <... set_robust_list resumed>) = 0 [pid 6247] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6247] memfd_create("syzkaller", 0) = 3 [pid 6247] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6247] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6247] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6247] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6247] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6247] close(3) = 0 [pid 6247] mkdir("./file0", 0777) = 0 [ 183.066401][ T6247] loop0: detected capacity change from 0 to 8192 [ 183.082183][ T6247] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 183.095409][ T6247] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 183.104729][ T6247] REISERFS (device loop0): using ordered data mode [ 183.111289][ T6247] reiserfs: using flush barriers [pid 6247] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6247] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6247] chdir("./file0") = 0 [pid 6247] ioctl(4, LOOP_CLR_FD) = 0 [pid 6247] close(4) = 0 [pid 6247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6247] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6246] <... futex resumed>) = 0 [pid 6246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6247] <... futex resumed>) = 0 [pid 6246] <... futex resumed>) = 1 [pid 6247] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6246] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 183.117364][ T6247] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 183.133960][ T6247] REISERFS (device loop0): checking transaction log (loop0) [ 183.142188][ T6247] REISERFS (device loop0): Using r5 hash to sort names [pid 6247] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6247] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6246] <... futex resumed>) = 0 [pid 6247] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6246] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6247] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6246] <... futex resumed>) = 0 [pid 6247] mkdir(".", 0777 [pid 6246] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6247] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6246] <... futex resumed>) = 0 [pid 6247] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6246] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6246] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6246] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6246] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6249 attached [pid 6247] <... mount resumed>) = 0 [pid 6246] <... clone3 resumed> => {parent_tid=[6249]}, 88) = 6249 [pid 6249] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6249] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6249] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6247] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6246] rt_sigprocmask(SIG_SETMASK, [], [pid 6249] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6247] <... openat resumed>) = 5 [pid 6246] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6247] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6246] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6247] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6246] <... futex resumed>) = 1 [pid 6249] <... futex resumed>) = 0 [pid 6246] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6249] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6249] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6249] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6246] <... futex resumed>) = 0 [pid 6246] exit_group(0) = ? [pid 6247] <... futex resumed>) = ? [pid 6249] <... futex resumed>) = ? [pid 6247] +++ exited with 0 +++ [pid 6249] +++ exited with 0 +++ [pid 6246] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6246, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./293", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./293", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./293/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 183.193244][ T6247] reiserfs: enabling write barrier flush mode [ 183.201168][ T6247] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 183.232270][ T6247] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./293/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./293/binderfs") = 0 umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./293/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./293/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./293/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./293/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./293") = 0 mkdir("./294", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6250 attached [pid 6250] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6250] chdir("./294") = 0 [pid 6250] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6250] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6250 [pid 6250] <... setpgid resumed>) = 0 [pid 6250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6250] write(3, "1000", 4) = 4 [pid 6250] close(3) = 0 [pid 6250] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6250] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6250] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6250] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6250] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6250] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6250] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6250] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6251 attached [pid 6251] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6250] <... clone3 resumed> => {parent_tid=[6251]}, 88) = 6251 [pid 6251] <... rseq resumed>) = 0 [pid 6250] rt_sigprocmask(SIG_SETMASK, [], [pid 6251] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6250] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6251] rt_sigprocmask(SIG_SETMASK, [], [pid 6250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6251] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6250] <... futex resumed>) = 0 [pid 6251] memfd_create("syzkaller", 0 [pid 6250] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6251] <... memfd_create resumed>) = 3 [pid 6251] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6251] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6251] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6251] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6251] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6251] close(3) = 0 [pid 6251] mkdir("./file0", 0777) = 0 [ 183.467892][ T6251] loop0: detected capacity change from 0 to 8192 [ 183.488478][ T6251] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 183.501625][ T6251] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 183.510946][ T6251] REISERFS (device loop0): using ordered data mode [pid 6251] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6251] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6251] chdir("./file0") = 0 [pid 6251] ioctl(4, LOOP_CLR_FD) = 0 [pid 6251] close(4) = 0 [pid 6251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6250] <... futex resumed>) = 0 [pid 6250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6251] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6250] <... futex resumed>) = 0 [ 183.517534][ T6251] reiserfs: using flush barriers [ 183.523666][ T6251] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 183.540303][ T6251] REISERFS (device loop0): checking transaction log (loop0) [ 183.548835][ T6251] REISERFS (device loop0): Using r5 hash to sort names [pid 6251] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6250] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6251] <... mount resumed>) = 0 [pid 6251] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6250] <... futex resumed>) = 0 [pid 6251] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6251] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6250] <... futex resumed>) = 0 [pid 6251] mkdir(".", 0777 [pid 6250] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6251] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6250] <... futex resumed>) = 0 [pid 6251] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6250] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6250] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6250] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6250] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6253 attached [pid 6253] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6250] <... clone3 resumed> => {parent_tid=[6253]}, 88) = 6253 [pid 6253] <... rseq resumed>) = 0 [pid 6250] rt_sigprocmask(SIG_SETMASK, [], [pid 6253] set_robust_list(0x7fd868e9f9a0, 24 [pid 6250] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6253] <... set_robust_list resumed>) = 0 [pid 6250] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6253] rt_sigprocmask(SIG_SETMASK, [], [pid 6250] <... futex resumed>) = 0 [pid 6253] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6250] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6253] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EOPNOTSUPP (Operation not supported) [pid 6253] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 183.581826][ T6251] reiserfs: enabling write barrier flush mode [ 183.590385][ T6251] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6250] <... futex resumed>) = 0 [pid 6253] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6251] <... mount resumed>) = 0 [pid 6251] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6251] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6251] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6250] exit_group(0 [pid 6253] <... futex resumed>) = ? [pid 6251] <... futex resumed>) = ? [pid 6250] <... exit_group resumed>) = ? [pid 6253] +++ exited with 0 +++ [pid 6251] +++ exited with 0 +++ [pid 6250] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6250, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./294", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./294", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./294/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./294/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./294/binderfs") = 0 [ 183.633748][ T6251] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./294/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./294/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./294/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./294/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./294") = 0 mkdir("./295", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6254 attached [pid 6254] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6254] chdir("./295") = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6254 [pid 6254] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6254] setpgid(0, 0) = 0 [pid 6254] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6254] write(3, "1000", 4) = 4 [pid 6254] close(3) = 0 [pid 6254] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6254] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6254] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6254] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6254] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6254] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6254] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6254] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6255 attached [pid 6255] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6254] <... clone3 resumed> => {parent_tid=[6255]}, 88) = 6255 [pid 6255] <... rseq resumed>) = 0 [pid 6255] set_robust_list(0x7fd868ec09a0, 24 [pid 6254] rt_sigprocmask(SIG_SETMASK, [], [pid 6255] <... set_robust_list resumed>) = 0 [pid 6254] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6255] rt_sigprocmask(SIG_SETMASK, [], [pid 6254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6254] <... futex resumed>) = 0 [pid 6254] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6255] memfd_create("syzkaller", 0) = 3 [pid 6255] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6255] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6255] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6255] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6255] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6255] close(3) = 0 [pid 6255] mkdir("./file0", 0777) = 0 [ 183.904510][ T6255] loop0: detected capacity change from 0 to 8192 [ 183.920202][ T6255] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 183.933263][ T6255] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 183.942579][ T6255] REISERFS (device loop0): using ordered data mode [ 183.949076][ T6255] reiserfs: using flush barriers [pid 6255] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6255] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6255] chdir("./file0") = 0 [pid 6255] ioctl(4, LOOP_CLR_FD) = 0 [pid 6255] close(4) = 0 [pid 6255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6254] <... futex resumed>) = 0 [pid 6255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6254] <... futex resumed>) = 0 [pid 6255] mkdir(".", 0777 [pid 6254] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6255] <... mkdir resumed>) = -1 EEXIST (File exists) [ 183.955504][ T6255] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 183.972019][ T6255] REISERFS (device loop0): checking transaction log (loop0) [ 183.980265][ T6255] REISERFS (device loop0): Using r5 hash to sort names [pid 6255] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6255] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6254] <... futex resumed>) = 0 [pid 6255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6254] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6254] <... futex resumed>) = 0 [pid 6255] mkdir(".", 0777 [pid 6254] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6254] <... futex resumed>) = 0 [pid 6254] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6255] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6254] <... mmap resumed>) = 0x7fd868e7f000 [pid 6254] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6254] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6254] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6257 attached [pid 6257] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6254] <... clone3 resumed> => {parent_tid=[6257]}, 88) = 6257 [pid 6257] <... rseq resumed>) = 0 [pid 6254] rt_sigprocmask(SIG_SETMASK, [], [pid 6257] set_robust_list(0x7fd868e9f9a0, 24 [pid 6254] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6257] <... set_robust_list resumed>) = 0 [pid 6257] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6257] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6254] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... mount resumed>) = 0 [pid 6257] <... futex resumed>) = 0 [pid 6254] <... futex resumed>) = 1 [pid 6255] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6257] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6254] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6255] <... openat resumed>) = 5 [pid 6257] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6255] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6257] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6255] <... futex resumed>) = 0 [pid 6255] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6257] <... futex resumed>) = 1 [pid 6254] <... futex resumed>) = 0 [pid 6257] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6254] exit_group(0 [pid 6257] <... futex resumed>) = ? [pid 6255] <... futex resumed>) = ? [pid 6257] +++ exited with 0 +++ [pid 6255] +++ exited with 0 +++ [pid 6254] <... exit_group resumed>) = ? [pid 6254] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6254, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./295", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./295", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./295/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 184.012926][ T6255] reiserfs: enabling write barrier flush mode [ 184.021840][ T6255] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 184.047406][ T6255] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./295/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./295/binderfs") = 0 umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./295/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./295/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./295/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./295/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./295") = 0 mkdir("./296", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6258 attached [pid 6258] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6258] chdir("./296") = 0 [pid 6258] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6258] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6258 [pid 6258] <... setpgid resumed>) = 0 [pid 6258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6258] write(3, "1000", 4) = 4 [pid 6258] close(3) = 0 [pid 6258] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6258] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6258] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6258] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6258] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6258] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6258] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6258] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6259 attached => {parent_tid=[6259]}, 88) = 6259 [pid 6259] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6258] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6259] <... rseq resumed>) = 0 [pid 6258] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6259] set_robust_list(0x7fd868ec09a0, 24 [pid 6258] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6259] <... set_robust_list resumed>) = 0 [pid 6259] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6259] memfd_create("syzkaller", 0) = 3 [pid 6259] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6259] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6259] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6259] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6259] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6259] close(3) = 0 [pid 6259] mkdir("./file0", 0777) = 0 [ 184.299869][ T6259] loop0: detected capacity change from 0 to 8192 [ 184.310181][ T6259] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 184.323209][ T6259] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 184.332518][ T6259] REISERFS (device loop0): using ordered data mode [ 184.339013][ T6259] reiserfs: using flush barriers [pid 6259] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6259] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6259] chdir("./file0") = 0 [pid 6259] ioctl(4, LOOP_CLR_FD) = 0 [pid 6259] close(4) = 0 [pid 6259] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6258] <... futex resumed>) = 0 [pid 6259] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6258] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6259] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6258] <... futex resumed>) = 0 [pid 6259] mkdir(".", 0777 [pid 6258] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6259] <... mkdir resumed>) = -1 EEXIST (File exists) [ 184.345405][ T6259] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 184.361856][ T6259] REISERFS (device loop0): checking transaction log (loop0) [ 184.369999][ T6259] REISERFS (device loop0): Using r5 hash to sort names [pid 6259] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6259] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6259] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6259] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6258] <... futex resumed>) = 0 [pid 6258] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6259] <... futex resumed>) = 0 [pid 6258] <... futex resumed>) = 1 [pid 6259] mkdir(".", 0777 [pid 6258] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6259] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6258] <... futex resumed>) = 0 [pid 6259] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6258] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6258] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6258] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6258] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6261 attached [pid 6259] <... mount resumed>) = 0 [pid 6261] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6259] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6258] <... clone3 resumed> => {parent_tid=[6261]}, 88) = 6261 [pid 6261] set_robust_list(0x7fd868e9f9a0, 24 [pid 6259] <... openat resumed>) = 5 [pid 6258] rt_sigprocmask(SIG_SETMASK, [], [pid 6261] <... set_robust_list resumed>) = 0 [pid 6259] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6261] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6259] <... futex resumed>) = 0 [pid 6261] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6259] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6258] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6258] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6261] <... futex resumed>) = 0 [pid 6258] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6261] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6261] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6258] <... futex resumed>) = 0 [pid 6258] exit_group(0 [pid 6259] <... futex resumed>) = ? [pid 6258] <... exit_group resumed>) = ? [pid 6259] +++ exited with 0 +++ [pid 6261] +++ exited with 0 +++ [pid 6258] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6258, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- [ 184.411521][ T6259] reiserfs: enabling write barrier flush mode [ 184.419575][ T6259] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 184.444831][ T6259] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./296", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./296", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./296/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./296/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./296/binderfs") = 0 umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./296/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./296/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./296/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./296/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./296") = 0 mkdir("./297", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6262 attached , child_tidptr=0x5555565f3690) = 6262 [pid 6262] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6262] chdir("./297") = 0 [pid 6262] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6262] setpgid(0, 0) = 0 [pid 6262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6262] write(3, "1000", 4) = 4 [pid 6262] close(3) = 0 [pid 6262] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6262] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6262] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6262] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6262] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6262] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6262] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6262] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6263 attached [pid 6263] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6262] <... clone3 resumed> => {parent_tid=[6263]}, 88) = 6263 [pid 6263] <... rseq resumed>) = 0 [pid 6262] rt_sigprocmask(SIG_SETMASK, [], [pid 6263] set_robust_list(0x7fd868ec09a0, 24 [pid 6262] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6263] <... set_robust_list resumed>) = 0 [pid 6262] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6263] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6262] <... futex resumed>) = 0 [pid 6263] memfd_create("syzkaller", 0 [pid 6262] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6263] <... memfd_create resumed>) = 3 [pid 6263] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6263] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6263] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6263] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6263] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6263] close(3) = 0 [pid 6263] mkdir("./file0", 0777) = 0 [ 184.746482][ T6263] loop0: detected capacity change from 0 to 8192 [ 184.762545][ T6263] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 184.775643][ T6263] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 184.784905][ T6263] REISERFS (device loop0): using ordered data mode [ 184.791437][ T6263] reiserfs: using flush barriers [pid 6263] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6263] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6263] chdir("./file0") = 0 [pid 6263] ioctl(4, LOOP_CLR_FD) = 0 [pid 6263] close(4) = 0 [pid 6263] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6262] <... futex resumed>) = 0 [pid 6263] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6262] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6263] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6262] <... futex resumed>) = 0 [pid 6263] mkdir(".", 0777 [pid 6262] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6263] <... mkdir resumed>) = -1 EEXIST (File exists) [ 184.797745][ T6263] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 184.814428][ T6263] REISERFS (device loop0): checking transaction log (loop0) [ 184.822882][ T6263] REISERFS (device loop0): Using r5 hash to sort names [pid 6263] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6263] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6263] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6262] <... futex resumed>) = 0 [pid 6263] <... futex resumed>) = 1 [pid 6262] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6263] mkdir(".", 0777 [pid 6262] <... futex resumed>) = 0 [pid 6263] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6263] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6262] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6262] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6263] <... mount resumed>) = 0 [pid 6262] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6263] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6262] <... mprotect resumed>) = 0 [pid 6263] <... openat resumed>) = 5 [pid 6262] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6263] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6262] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6265 attached [pid 6263] <... futex resumed>) = 0 [pid 6265] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6263] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6262] <... clone3 resumed> => {parent_tid=[6265]}, 88) = 6265 [pid 6265] <... rseq resumed>) = 0 [pid 6265] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6265] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6262] rt_sigprocmask(SIG_SETMASK, [], [pid 6265] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6262] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6262] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6265] <... futex resumed>) = 0 [pid 6262] <... futex resumed>) = 1 [pid 6265] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6262] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6265] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6265] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6262] <... futex resumed>) = 0 [pid 6262] exit_group(0 [pid 6265] <... futex resumed>) = ? [pid 6263] <... futex resumed>) = ? [pid 6262] <... exit_group resumed>) = ? [pid 6265] +++ exited with 0 +++ [pid 6263] +++ exited with 0 +++ [pid 6262] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6262, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./297", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./297", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 184.859059][ T6263] reiserfs: enabling write barrier flush mode [ 184.867614][ T6263] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 184.887424][ T6263] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./297/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./297/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./297/binderfs") = 0 umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./297/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./297/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./297/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./297/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./297") = 0 mkdir("./298", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6266 attached , child_tidptr=0x5555565f3690) = 6266 [pid 6266] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6266] chdir("./298") = 0 [pid 6266] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6266] setpgid(0, 0) = 0 [pid 6266] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6266] write(3, "1000", 4) = 4 [pid 6266] close(3) = 0 [pid 6266] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6266] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6266] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6266] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6266] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6266] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6266] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6266] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6267 attached [pid 6267] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6267] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6267] rt_sigprocmask(SIG_SETMASK, [], [pid 6266] <... clone3 resumed> => {parent_tid=[6267]}, 88) = 6267 [pid 6267] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6266] rt_sigprocmask(SIG_SETMASK, [], [pid 6267] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6266] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6266] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6267] <... futex resumed>) = 0 [pid 6266] <... futex resumed>) = 1 [pid 6267] memfd_create("syzkaller", 0 [pid 6266] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6267] <... memfd_create resumed>) = 3 [pid 6267] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6267] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6267] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6267] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6267] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6267] close(3) = 0 [pid 6267] mkdir("./file0", 0777) = 0 [ 185.193316][ T6267] loop0: detected capacity change from 0 to 8192 [ 185.203423][ T6267] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 185.216469][ T6267] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 185.225815][ T6267] REISERFS (device loop0): using ordered data mode [ 185.232352][ T6267] reiserfs: using flush barriers [pid 6267] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6267] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6267] chdir("./file0") = 0 [pid 6267] ioctl(4, LOOP_CLR_FD) = 0 [pid 6267] close(4) = 0 [pid 6267] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6266] <... futex resumed>) = 0 [pid 6266] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6266] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6267] mkdir(".", 0777) = -1 EEXIST (File exists) [ 185.238528][ T6267] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 185.255300][ T6267] REISERFS (device loop0): checking transaction log (loop0) [ 185.263620][ T6267] REISERFS (device loop0): Using r5 hash to sort names [pid 6267] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6267] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6267] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6266] <... futex resumed>) = 0 [pid 6267] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6266] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6267] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6266] <... futex resumed>) = 0 [pid 6267] mkdir(".", 0777 [pid 6266] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6267] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6266] <... futex resumed>) = 0 [pid 6267] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6266] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6266] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6266] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 185.326602][ T6267] reiserfs: enabling write barrier flush mode [ 185.334635][ T6267] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6266] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6269 attached [pid 6267] <... mount resumed>) = 0 [pid 6266] <... clone3 resumed> => {parent_tid=[6269]}, 88) = 6269 [pid 6269] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6267] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6267] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6267] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6266] rt_sigprocmask(SIG_SETMASK, [], [pid 6269] <... rseq resumed>) = 0 [pid 6269] set_robust_list(0x7fd868e9f9a0, 24 [pid 6266] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6269] <... set_robust_list resumed>) = 0 [pid 6266] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6269] rt_sigprocmask(SIG_SETMASK, [], [pid 6266] <... futex resumed>) = 0 [pid 6269] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6266] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6269] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6269] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6266] <... futex resumed>) = 0 [pid 6269] <... futex resumed>) = 1 [pid 6266] exit_group(0 [pid 6269] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6267] <... futex resumed>) = ? [pid 6266] <... exit_group resumed>) = ? [pid 6269] +++ exited with 0 +++ [pid 6267] +++ exited with 0 +++ [pid 6266] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6266, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./298", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./298", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./298/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./298/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 185.375203][ T6267] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./298/binderfs") = 0 umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./298/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./298/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./298/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./298/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./298") = 0 mkdir("./299", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6270 attached [pid 6270] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6270] chdir("./299" [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6270 [pid 6270] <... chdir resumed>) = 0 [pid 6270] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6270] setpgid(0, 0) = 0 [pid 6270] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6270] write(3, "1000", 4) = 4 [pid 6270] close(3) = 0 [pid 6270] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6270] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6270] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6270] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6270] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6270] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6270] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6270] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6271 attached [pid 6271] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6270] <... clone3 resumed> => {parent_tid=[6271]}, 88) = 6271 [pid 6271] <... rseq resumed>) = 0 [pid 6270] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6271] set_robust_list(0x7fd868ec09a0, 24 [pid 6270] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6271] <... set_robust_list resumed>) = 0 [pid 6270] <... futex resumed>) = 0 [pid 6271] rt_sigprocmask(SIG_SETMASK, [], [pid 6270] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6271] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6271] memfd_create("syzkaller", 0) = 3 [pid 6271] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6271] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6271] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6271] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6271] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6271] close(3) = 0 [pid 6271] mkdir("./file0", 0777) = 0 [ 185.642730][ T6271] loop0: detected capacity change from 0 to 8192 [ 185.656760][ T6271] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 185.669838][ T6271] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 185.679223][ T6271] REISERFS (device loop0): using ordered data mode [ 185.685755][ T6271] reiserfs: using flush barriers [pid 6271] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6271] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6271] chdir("./file0") = 0 [pid 6271] ioctl(4, LOOP_CLR_FD) = 0 [pid 6271] close(4) = 0 [pid 6271] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6270] <... futex resumed>) = 0 [pid 6271] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6270] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6271] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6270] <... futex resumed>) = 0 [pid 6271] mkdir(".", 0777 [pid 6270] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6271] <... mkdir resumed>) = -1 EEXIST (File exists) [ 185.692121][ T6271] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 185.708507][ T6271] REISERFS (device loop0): checking transaction log (loop0) [ 185.717085][ T6271] REISERFS (device loop0): Using r5 hash to sort names [pid 6271] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6271] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6271] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6270] <... futex resumed>) = 0 [pid 6271] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6270] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6271] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6271] mkdir(".", 0777 [pid 6270] <... futex resumed>) = 0 [pid 6270] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6271] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6270] <... futex resumed>) = 0 [pid 6271] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6270] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6270] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6270] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6270] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6273 attached [pid 6273] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6273] set_robust_list(0x7fd868e9f9a0, 24 [pid 6270] <... clone3 resumed> => {parent_tid=[6273]}, 88) = 6273 [pid 6273] <... set_robust_list resumed>) = 0 [pid 6273] rt_sigprocmask(SIG_SETMASK, [], [pid 6270] rt_sigprocmask(SIG_SETMASK, [], [pid 6273] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6273] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6270] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6273] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6270] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6273] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6271] <... mount resumed>) = 0 [pid 6270] <... futex resumed>) = 0 [pid 6270] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6271] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6273] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6271] <... openat resumed>) = 5 [pid 6273] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6271] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6270] <... futex resumed>) = 0 [pid 6273] <... futex resumed>) = 1 [pid 6271] <... futex resumed>) = 0 [pid 6270] exit_group(0) = ? [pid 6273] +++ exited with 0 +++ [pid 6271] +++ exited with 0 +++ [pid 6270] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6270, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./299", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./299", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./299/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./299/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./299/binderfs") = 0 [ 185.740769][ T6271] reiserfs: enabling write barrier flush mode [ 185.749135][ T6271] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 185.778891][ T6271] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./299/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./299/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./299/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./299/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./299") = 0 mkdir("./300", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6274 attached , child_tidptr=0x5555565f3690) = 6274 [pid 6274] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6274] chdir("./300") = 0 [pid 6274] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6274] setpgid(0, 0) = 0 [pid 6274] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6274] write(3, "1000", 4) = 4 [pid 6274] close(3) = 0 [pid 6274] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6274] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6274] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6274] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6274] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6274] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6274] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6274] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6275 attached [pid 6275] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6275] set_robust_list(0x7fd868ec09a0, 24 [pid 6274] <... clone3 resumed> => {parent_tid=[6275]}, 88) = 6275 [pid 6275] <... set_robust_list resumed>) = 0 [pid 6274] rt_sigprocmask(SIG_SETMASK, [], [pid 6275] rt_sigprocmask(SIG_SETMASK, [], [pid 6274] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6275] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6274] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6275] memfd_create("syzkaller", 0 [pid 6274] <... futex resumed>) = 0 [pid 6274] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6275] <... memfd_create resumed>) = 3 [pid 6275] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6275] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6275] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6275] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6275] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6275] close(3) = 0 [pid 6275] mkdir("./file0", 0777) = 0 [ 186.057170][ T6275] loop0: detected capacity change from 0 to 8192 [ 186.081260][ T6275] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 186.094264][ T6275] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6275] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6275] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6275] chdir("./file0") = 0 [pid 6275] ioctl(4, LOOP_CLR_FD) = 0 [pid 6275] close(4) = 0 [pid 6275] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6274] <... futex resumed>) = 0 [pid 6275] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6274] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6275] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6274] <... futex resumed>) = 0 [pid 6275] mkdir(".", 0777) = -1 EEXIST (File exists) [ 186.103626][ T6275] REISERFS (device loop0): using ordered data mode [ 186.110123][ T6275] reiserfs: using flush barriers [ 186.116348][ T6275] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 186.132774][ T6275] REISERFS (device loop0): checking transaction log (loop0) [ 186.140955][ T6275] REISERFS (device loop0): Using r5 hash to sort names [pid 6274] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6275] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6275] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6275] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6275] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6274] <... futex resumed>) = 0 [pid 6274] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6275] <... futex resumed>) = 0 [pid 6274] <... futex resumed>) = 1 [pid 6275] mkdir(".", 0777 [pid 6274] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6275] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6274] <... futex resumed>) = 0 [pid 6275] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6274] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 186.174689][ T6275] reiserfs: enabling write barrier flush mode [ 186.184390][ T6275] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6274] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6275] <... mount resumed>) = 0 [pid 6275] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6274] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6275] <... openat resumed>) = 5 [pid 6274] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6275] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6274] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6277 attached [pid 6275] <... futex resumed>) = 0 [pid 6277] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6275] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6274] <... clone3 resumed> => {parent_tid=[6277]}, 88) = 6277 [pid 6277] <... rseq resumed>) = 0 [pid 6274] rt_sigprocmask(SIG_SETMASK, [], [pid 6277] set_robust_list(0x7fd868e9f9a0, 24 [pid 6274] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6277] <... set_robust_list resumed>) = 0 [pid 6274] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6277] rt_sigprocmask(SIG_SETMASK, [], [pid 6274] <... futex resumed>) = 0 [pid 6277] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6274] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6277] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6277] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6274] <... futex resumed>) = 0 [pid 6277] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6274] exit_group(0 [pid 6277] <... futex resumed>) = ? [pid 6275] <... futex resumed>) = ? [pid 6277] +++ exited with 0 +++ [pid 6275] +++ exited with 0 +++ [pid 6274] <... exit_group resumed>) = ? [pid 6274] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6274, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=10 /* 0.10 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./300", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./300", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./300/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./300/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./300/binderfs") = 0 [ 186.215658][ T6275] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./300/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./300/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./300/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./300/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./300") = 0 mkdir("./301", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6278 attached , child_tidptr=0x5555565f3690) = 6278 [pid 6278] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6278] chdir("./301") = 0 [pid 6278] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6278] setpgid(0, 0) = 0 [pid 6278] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6278] write(3, "1000", 4) = 4 [pid 6278] close(3) = 0 [pid 6278] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6278] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6278] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6278] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6278] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6278] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6278] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6278] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6279 attached => {parent_tid=[6279]}, 88) = 6279 [pid 6278] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6278] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6279] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6278] <... futex resumed>) = 0 [pid 6279] set_robust_list(0x7fd868ec09a0, 24 [pid 6278] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6279] <... set_robust_list resumed>) = 0 [pid 6279] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6279] memfd_create("syzkaller", 0) = 3 [pid 6279] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6279] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6279] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6279] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6279] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6279] close(3) = 0 [pid 6279] mkdir("./file0", 0777) = 0 [ 186.483264][ T6279] loop0: detected capacity change from 0 to 8192 [ 186.499716][ T6279] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 186.512976][ T6279] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 186.522354][ T6279] REISERFS (device loop0): using ordered data mode [pid 6279] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6279] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6279] chdir("./file0") = 0 [pid 6279] ioctl(4, LOOP_CLR_FD) = 0 [pid 6279] close(4) = 0 [pid 6279] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6278] <... futex resumed>) = 0 [pid 6279] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6278] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6279] <... futex resumed>) = 0 [pid 6278] <... futex resumed>) = 1 [pid 6279] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6278] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 186.528868][ T6279] reiserfs: using flush barriers [ 186.535235][ T6279] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 186.551666][ T6279] REISERFS (device loop0): checking transaction log (loop0) [ 186.560070][ T6279] REISERFS (device loop0): Using r5 hash to sort names [pid 6279] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6279] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6279] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6278] <... futex resumed>) = 0 [pid 6279] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6278] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6279] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6278] <... futex resumed>) = 0 [pid 6279] mkdir(".", 0777 [pid 6278] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6279] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6279] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6278] <... futex resumed>) = 0 [pid 6278] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6278] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6278] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6278] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6281 attached [ 186.586950][ T6279] reiserfs: enabling write barrier flush mode [ 186.594979][ T6279] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6281] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6278] <... clone3 resumed> => {parent_tid=[6281]}, 88) = 6281 [pid 6281] set_robust_list(0x7fd868e9f9a0, 24 [pid 6278] rt_sigprocmask(SIG_SETMASK, [], [pid 6281] <... set_robust_list resumed>) = 0 [pid 6281] rt_sigprocmask(SIG_SETMASK, [], [pid 6278] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6281] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6278] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6281] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6278] <... futex resumed>) = 0 [pid 6278] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6281] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6279] <... mount resumed>) = 0 [pid 6279] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6279] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6281] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6279] <... futex resumed>) = 0 [pid 6278] <... futex resumed>) = 0 [pid 6281] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6279] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6278] exit_group(0 [pid 6281] <... futex resumed>) = ? [pid 6279] <... futex resumed>) = ? [pid 6278] <... exit_group resumed>) = ? [pid 6281] +++ exited with 0 +++ [pid 6279] +++ exited with 0 +++ [pid 6278] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6278, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./301", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./301", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./301/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 186.627633][ T6279] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./301/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./301/binderfs") = 0 umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./301/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./301/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./301/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./301/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./301") = 0 mkdir("./302", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6282 attached , child_tidptr=0x5555565f3690) = 6282 [pid 6282] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6282] chdir("./302") = 0 [pid 6282] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6282] setpgid(0, 0) = 0 [pid 6282] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6282] write(3, "1000", 4) = 4 [pid 6282] close(3) = 0 [pid 6282] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6282] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6282] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6282] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6282] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6282] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6282] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6282] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6283 attached [pid 6283] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6282] <... clone3 resumed> => {parent_tid=[6283]}, 88) = 6283 [pid 6283] set_robust_list(0x7fd868ec09a0, 24 [pid 6282] rt_sigprocmask(SIG_SETMASK, [], [pid 6283] <... set_robust_list resumed>) = 0 [pid 6283] rt_sigprocmask(SIG_SETMASK, [], [pid 6282] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6283] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6282] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6283] memfd_create("syzkaller", 0 [pid 6282] <... futex resumed>) = 0 [pid 6282] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6283] <... memfd_create resumed>) = 3 [pid 6283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6283] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6283] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6283] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6283] close(3) = 0 [pid 6283] mkdir("./file0", 0777) = 0 [ 186.882892][ T6283] loop0: detected capacity change from 0 to 8192 [ 186.898609][ T6283] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 186.911753][ T6283] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 186.920974][ T6283] REISERFS (device loop0): using ordered data mode [ 186.927512][ T6283] reiserfs: using flush barriers [pid 6283] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6283] chdir("./file0") = 0 [pid 6283] ioctl(4, LOOP_CLR_FD) = 0 [pid 6283] close(4) = 0 [pid 6283] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6282] <... futex resumed>) = 0 [pid 6283] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6282] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6283] mkdir(".", 0777 [pid 6282] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6283] <... mkdir resumed>) = -1 EEXIST (File exists) [ 186.933609][ T6283] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 186.950097][ T6283] REISERFS (device loop0): checking transaction log (loop0) [ 186.958357][ T6283] REISERFS (device loop0): Using r5 hash to sort names [pid 6283] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6283] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6283] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6282] <... futex resumed>) = 0 [pid 6282] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6283] mkdir(".", 0777 [pid 6282] <... futex resumed>) = 0 [pid 6283] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6283] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6282] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6282] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6282] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6282] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 186.995659][ T6283] reiserfs: enabling write barrier flush mode [ 187.004495][ T6283] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6282] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6285 attached [pid 6283] <... mount resumed>) = 0 [pid 6282] <... clone3 resumed> => {parent_tid=[6285]}, 88) = 6285 [pid 6285] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6285] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6285] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6285] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6283] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6282] rt_sigprocmask(SIG_SETMASK, [], [pid 6283] <... openat resumed>) = 5 [pid 6282] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6282] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6285] <... futex resumed>) = 0 [pid 6283] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6282] <... futex resumed>) = 1 [pid 6285] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6283] <... futex resumed>) = 0 [pid 6282] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6283] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6285] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6285] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6282] <... futex resumed>) = 0 [pid 6285] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6282] exit_group(0 [pid 6283] <... futex resumed>) = ? [pid 6285] <... futex resumed>) = ? [pid 6282] <... exit_group resumed>) = ? [pid 6283] +++ exited with 0 +++ [pid 6285] +++ exited with 0 +++ [pid 6282] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6282, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./302", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 187.041474][ T6283] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./302", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./302/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./302/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./302/binderfs") = 0 umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./302/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./302/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./302/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./302/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./302") = 0 mkdir("./303", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6286 attached [pid 6286] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6286] chdir("./303") = 0 [pid 6286] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6286] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6286 [pid 6286] <... setpgid resumed>) = 0 [pid 6286] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6286] write(3, "1000", 4) = 4 [pid 6286] close(3) = 0 [pid 6286] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6286] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6286] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6286] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6286] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6286] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6286] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6286] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6287 attached [pid 6287] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6287] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6287] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6286] <... clone3 resumed> => {parent_tid=[6287]}, 88) = 6287 [pid 6287] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6286] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6286] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6287] <... futex resumed>) = 0 [pid 6286] <... futex resumed>) = 1 [pid 6287] memfd_create("syzkaller", 0 [pid 6286] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6287] <... memfd_create resumed>) = 3 [pid 6287] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6287] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6287] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6287] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6287] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6287] close(3) = 0 [pid 6287] mkdir("./file0", 0777) = 0 [ 187.315858][ T6287] loop0: detected capacity change from 0 to 8192 [ 187.331657][ T6287] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 187.344669][ T6287] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 187.354032][ T6287] REISERFS (device loop0): using ordered data mode [ 187.360539][ T6287] reiserfs: using flush barriers [pid 6287] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6287] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6287] chdir("./file0") = 0 [pid 6287] ioctl(4, LOOP_CLR_FD) = 0 [pid 6287] close(4) = 0 [pid 6287] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6286] <... futex resumed>) = 0 [pid 6286] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6287] mkdir(".", 0777 [pid 6286] <... futex resumed>) = 0 [pid 6287] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6287] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 187.367041][ T6287] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 187.383531][ T6287] REISERFS (device loop0): checking transaction log (loop0) [ 187.392013][ T6287] REISERFS (device loop0): Using r5 hash to sort names [pid 6286] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6287] <... mount resumed>) = 0 [pid 6287] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6287] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6287] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6286] <... futex resumed>) = 0 [pid 6286] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6287] <... futex resumed>) = 0 [pid 6286] <... futex resumed>) = 1 [pid 6287] mkdir(".", 0777 [pid 6286] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6287] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6286] <... futex resumed>) = 0 [pid 6286] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6287] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6286] <... mmap resumed>) = 0x7fd868e7f000 [pid 6286] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6286] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6287] <... mount resumed>) = 0 [pid 6286] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6286] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6287] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6289 attached ) = 5 [pid 6286] <... clone3 resumed> => {parent_tid=[6289]}, 88) = 6289 [pid 6289] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6287] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6289] <... rseq resumed>) = 0 [pid 6287] <... futex resumed>) = 0 [pid 6289] set_robust_list(0x7fd868e9f9a0, 24 [pid 6287] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6289] <... set_robust_list resumed>) = 0 [pid 6289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6289] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6286] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6286] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6289] <... futex resumed>) = 0 [pid 6289] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6286] <... futex resumed>) = 1 [pid 6289] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6286] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6289] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6286] <... futex resumed>) = 0 [pid 6289] <... futex resumed>) = 1 [pid 6286] exit_group(0 [pid 6289] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6287] <... futex resumed>) = ? [pid 6286] <... exit_group resumed>) = ? [pid 6289] +++ exited with 0 +++ [pid 6287] +++ exited with 0 +++ [pid 6286] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6286, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./303", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./303", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 187.419358][ T6287] reiserfs: enabling write barrier flush mode [ 187.427668][ T6287] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 187.450237][ T6287] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./303/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./303/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./303/binderfs") = 0 umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./303/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./303/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./303/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./303/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./303") = 0 mkdir("./304", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6290 ./strace-static-x86_64: Process 6290 attached [pid 6290] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6290] chdir("./304") = 0 [pid 6290] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6290] setpgid(0, 0) = 0 [pid 6290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6290] write(3, "1000", 4) = 4 [pid 6290] close(3) = 0 [pid 6290] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6290] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6290] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6290] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6290] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6290] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6290] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6290] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6291 attached [pid 6291] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6290] <... clone3 resumed> => {parent_tid=[6291]}, 88) = 6291 [pid 6291] <... rseq resumed>) = 0 [pid 6290] rt_sigprocmask(SIG_SETMASK, [], [pid 6291] set_robust_list(0x7fd868ec09a0, 24 [pid 6290] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6291] <... set_robust_list resumed>) = 0 [pid 6290] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6291] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6290] <... futex resumed>) = 0 [pid 6291] memfd_create("syzkaller", 0 [pid 6290] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6291] <... memfd_create resumed>) = 3 [pid 6291] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6291] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6291] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6291] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6291] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6291] close(3) = 0 [pid 6291] mkdir("./file0", 0777) = 0 [ 187.706868][ T6291] loop0: detected capacity change from 0 to 8192 [ 187.722602][ T6291] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 187.735695][ T6291] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 187.745107][ T6291] REISERFS (device loop0): using ordered data mode [ 187.751644][ T6291] reiserfs: using flush barriers [pid 6291] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6291] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6291] chdir("./file0") = 0 [pid 6291] ioctl(4, LOOP_CLR_FD) = 0 [pid 6291] close(4) = 0 [pid 6291] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6291] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6290] <... futex resumed>) = 0 [pid 6290] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6291] <... futex resumed>) = 0 [pid 6290] <... futex resumed>) = 1 [pid 6291] mkdir(".", 0777 [pid 6290] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6291] <... mkdir resumed>) = -1 EEXIST (File exists) [ 187.757699][ T6291] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 187.774435][ T6291] REISERFS (device loop0): checking transaction log (loop0) [ 187.782975][ T6291] REISERFS (device loop0): Using r5 hash to sort names [pid 6291] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6291] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6291] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6290] <... futex resumed>) = 0 [pid 6291] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6290] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6291] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6291] mkdir(".", 0777 [pid 6290] <... futex resumed>) = 0 [pid 6291] <... mkdir resumed>) = -1 EEXIST (File exists) [ 187.829898][ T6291] reiserfs: enabling write barrier flush mode [ 187.837725][ T6291] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6291] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6290] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6291] <... mount resumed>) = 0 [pid 6290] <... futex resumed>) = 0 [pid 6290] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6291] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6290] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6291] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6290] <... mprotect resumed>) = 0 [pid 6291] <... futex resumed>) = 0 [pid 6291] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6290] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6290] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6293 attached => {parent_tid=[6293]}, 88) = 6293 [pid 6293] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6290] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6290] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6290] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6293] <... rseq resumed>) = 0 [pid 6293] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6293] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6293] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6293] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6290] <... futex resumed>) = 0 [ 187.874430][ T6291] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6293] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6290] exit_group(0 [pid 6293] <... futex resumed>) = ? [pid 6291] <... futex resumed>) = ? [pid 6290] <... exit_group resumed>) = ? [pid 6293] +++ exited with 0 +++ [pid 6291] +++ exited with 0 +++ [pid 6290] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6290, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./304", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./304", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./304/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./304/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./304/binderfs") = 0 umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./304/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./304/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./304/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./304/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./304") = 0 mkdir("./305", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6294 attached , child_tidptr=0x5555565f3690) = 6294 [pid 6294] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6294] chdir("./305") = 0 [pid 6294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6294] setpgid(0, 0) = 0 [pid 6294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6294] write(3, "1000", 4) = 4 [pid 6294] close(3) = 0 [pid 6294] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6294] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6294] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6294] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6294] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6294] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6295 attached => {parent_tid=[6295]}, 88) = 6295 [pid 6295] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6295] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6295] rt_sigprocmask(SIG_SETMASK, [], [pid 6294] rt_sigprocmask(SIG_SETMASK, [], [pid 6295] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6295] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6294] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6295] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6294] <... futex resumed>) = 0 [pid 6295] memfd_create("syzkaller", 0 [pid 6294] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6295] <... memfd_create resumed>) = 3 [pid 6295] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6295] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6295] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6295] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6295] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6295] close(3) = 0 [pid 6295] mkdir("./file0", 0777) = 0 [ 188.173965][ T6295] loop0: detected capacity change from 0 to 8192 [ 188.189743][ T6295] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 188.203035][ T6295] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 188.212344][ T6295] REISERFS (device loop0): using ordered data mode [ 188.218853][ T6295] reiserfs: using flush barriers [pid 6295] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6295] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6295] chdir("./file0") = 0 [pid 6295] ioctl(4, LOOP_CLR_FD) = 0 [pid 6295] close(4) = 0 [pid 6295] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6294] <... futex resumed>) = 0 [pid 6295] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6294] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6295] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6294] <... futex resumed>) = 0 [pid 6295] mkdir(".", 0777 [pid 6294] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6295] <... mkdir resumed>) = -1 EEXIST (File exists) [ 188.225151][ T6295] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 188.241695][ T6295] REISERFS (device loop0): checking transaction log (loop0) [ 188.249960][ T6295] REISERFS (device loop0): Using r5 hash to sort names [ 188.263301][ T6295] reiserfs: enabling write barrier flush mode [pid 6295] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6295] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6295] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6294] <... futex resumed>) = 0 [pid 6294] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6295] mkdir(".", 0777 [pid 6294] <... futex resumed>) = 0 [pid 6295] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6294] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6295] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6294] <... mmap resumed>) = 0x7fd868e7f000 [pid 6294] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 188.272948][ T6295] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6294] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6295] <... mount resumed>) = 0 [pid 6294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6295] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6297 attached [pid 6297] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6295] <... openat resumed>) = 5 [pid 6297] <... rseq resumed>) = 0 [pid 6297] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6295] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6297] rt_sigprocmask(SIG_SETMASK, [], [pid 6295] <... futex resumed>) = 0 [pid 6297] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6297] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6295] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6294] <... clone3 resumed> => {parent_tid=[6297]}, 88) = 6297 [pid 6294] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6294] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6297] <... futex resumed>) = 0 [pid 6294] <... futex resumed>) = 1 [pid 6297] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6294] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6297] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6297] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6297] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6294] <... futex resumed>) = 0 [pid 6294] exit_group(0) = ? [pid 6297] <... futex resumed>) = ? [pid 6295] <... futex resumed>) = ? [pid 6297] +++ exited with 0 +++ [pid 6295] +++ exited with 0 +++ [pid 6294] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6294, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- umount2("./305", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./305", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./305/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 188.318272][ T6295] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./305/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./305/binderfs") = 0 umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./305/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./305/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./305/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./305/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./305") = 0 mkdir("./306", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565f3690) = 6298 ./strace-static-x86_64: Process 6298 attached [pid 6298] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6298] chdir("./306") = 0 [pid 6298] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6298] setpgid(0, 0) = 0 [pid 6298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6298] write(3, "1000", 4) = 4 [pid 6298] close(3) = 0 [pid 6298] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6298] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6298] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6298] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6298] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6298] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6298] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6298] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6299 attached [pid 6299] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6298] <... clone3 resumed> => {parent_tid=[6299]}, 88) = 6299 [pid 6299] set_robust_list(0x7fd868ec09a0, 24 [pid 6298] rt_sigprocmask(SIG_SETMASK, [], [pid 6299] <... set_robust_list resumed>) = 0 [pid 6298] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6299] rt_sigprocmask(SIG_SETMASK, [], [pid 6298] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6299] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6298] <... futex resumed>) = 0 [pid 6299] memfd_create("syzkaller", 0 [pid 6298] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6299] <... memfd_create resumed>) = 3 [pid 6299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6299] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6299] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6299] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6299] close(3) = 0 [pid 6299] mkdir("./file0", 0777) = 0 [ 188.616151][ T6299] loop0: detected capacity change from 0 to 8192 [ 188.626151][ T6299] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 188.639549][ T6299] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 188.648823][ T6299] REISERFS (device loop0): using ordered data mode [ 188.655399][ T6299] reiserfs: using flush barriers [pid 6299] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6299] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6299] chdir("./file0") = 0 [pid 6299] ioctl(4, LOOP_CLR_FD) = 0 [pid 6299] close(4) = 0 [pid 6299] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6299] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6298] <... futex resumed>) = 0 [pid 6298] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6299] <... futex resumed>) = 0 [pid 6298] <... futex resumed>) = 1 [pid 6299] mkdir(".", 0777 [pid 6298] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6299] <... mkdir resumed>) = -1 EEXIST (File exists) [ 188.662367][ T6299] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 188.678986][ T6299] REISERFS (device loop0): checking transaction log (loop0) [ 188.687533][ T6299] REISERFS (device loop0): Using r5 hash to sort names [pid 6299] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6299] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6299] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6298] <... futex resumed>) = 0 [pid 6298] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6299] mkdir(".", 0777 [pid 6298] <... futex resumed>) = 0 [pid 6299] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6298] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6299] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6298] <... futex resumed>) = 0 [pid 6298] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6298] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6299] <... mount resumed>) = 0 [pid 6298] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6298] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6299] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 6301 attached ) = 5 [pid 6299] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6299] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6298] <... clone3 resumed> => {parent_tid=[6301]}, 88) = 6301 [ 188.724998][ T6299] reiserfs: enabling write barrier flush mode [ 188.733287][ T6299] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 188.764307][ T6299] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [pid 6301] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6298] rt_sigprocmask(SIG_SETMASK, [], [pid 6301] set_robust_list(0x7fd868e9f9a0, 24 [pid 6298] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6301] <... set_robust_list resumed>) = 0 [pid 6298] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6301] rt_sigprocmask(SIG_SETMASK, [], [pid 6298] <... futex resumed>) = 0 [pid 6301] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6298] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6301] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6301] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6298] <... futex resumed>) = 0 [pid 6298] exit_group(0 [pid 6301] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6299] <... futex resumed>) = ? [pid 6298] <... exit_group resumed>) = ? [pid 6301] +++ exited with 0 +++ [pid 6299] +++ exited with 0 +++ [pid 6298] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6298, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./306", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./306", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./306/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./306/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./306/binderfs") = 0 umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./306/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./306/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./306/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./306/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./306") = 0 mkdir("./307", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6302 attached , child_tidptr=0x5555565f3690) = 6302 [pid 6302] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6302] chdir("./307") = 0 [pid 6302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6302] setpgid(0, 0) = 0 [pid 6302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6302] write(3, "1000", 4) = 4 [pid 6302] close(3) = 0 [pid 6302] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6302] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6302] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6302] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6302] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6302] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6302] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6302] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6303 attached [pid 6303] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6302] <... clone3 resumed> => {parent_tid=[6303]}, 88) = 6303 [pid 6303] <... rseq resumed>) = 0 [pid 6303] set_robust_list(0x7fd868ec09a0, 24 [pid 6302] rt_sigprocmask(SIG_SETMASK, [], [pid 6303] <... set_robust_list resumed>) = 0 [pid 6302] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6303] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6302] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6303] memfd_create("syzkaller", 0 [pid 6302] <... futex resumed>) = 0 [pid 6303] <... memfd_create resumed>) = 3 [pid 6302] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6303] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6303] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6303] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6303] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6303] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6303] close(3) = 0 [pid 6303] mkdir("./file0", 0777) = 0 [ 189.053960][ T6303] loop0: detected capacity change from 0 to 8192 [ 189.074251][ T6303] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 189.087451][ T6303] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 189.096748][ T6303] REISERFS (device loop0): using ordered data mode [pid 6303] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6303] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6303] chdir("./file0") = 0 [pid 6303] ioctl(4, LOOP_CLR_FD) = 0 [pid 6303] close(4) = 0 [pid 6303] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6302] <... futex resumed>) = 0 [pid 6302] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6302] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6303] mkdir(".", 0777) = -1 EEXIST (File exists) [ 189.103309][ T6303] reiserfs: using flush barriers [ 189.109823][ T6303] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 189.126489][ T6303] REISERFS (device loop0): checking transaction log (loop0) [ 189.134662][ T6303] REISERFS (device loop0): Using r5 hash to sort names [pid 6303] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6303] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6303] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6303] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6302] <... futex resumed>) = 0 [pid 6302] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6303] <... futex resumed>) = 0 [pid 6302] <... futex resumed>) = 1 [pid 6303] mkdir(".", 0777 [pid 6302] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6303] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6302] <... futex resumed>) = 0 [pid 6303] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 189.179588][ T6303] reiserfs: enabling write barrier flush mode [ 189.188206][ T6303] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6302] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6302] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6303] <... mount resumed>) = 0 [pid 6302] <... mprotect resumed>) = 0 [pid 6303] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6302] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6303] <... openat resumed>) = 5 [pid 6302] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6302] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6303] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 6305 attached [pid 6303] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6305] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6302] <... clone3 resumed> => {parent_tid=[6305]}, 88) = 6305 [pid 6305] set_robust_list(0x7fd868e9f9a0, 24 [pid 6302] rt_sigprocmask(SIG_SETMASK, [], [pid 6305] <... set_robust_list resumed>) = 0 [pid 6302] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6305] rt_sigprocmask(SIG_SETMASK, [], [pid 6302] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6305] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6302] <... futex resumed>) = 0 [pid 6305] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6302] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6305] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6305] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6305] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6302] <... futex resumed>) = 0 [pid 6302] exit_group(0 [pid 6305] <... futex resumed>) = ? [pid 6303] <... futex resumed>) = ? [pid 6302] <... exit_group resumed>) = ? [pid 6305] +++ exited with 0 +++ [pid 6303] +++ exited with 0 +++ [pid 6302] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6302, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./307", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./307", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./307/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./307/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./307/binderfs") = 0 [ 189.228284][ T6303] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./307/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./307/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./307/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./307/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./307") = 0 mkdir("./308", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6306 attached , child_tidptr=0x5555565f3690) = 6306 [pid 6306] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6306] chdir("./308") = 0 [pid 6306] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6306] setpgid(0, 0) = 0 [pid 6306] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6306] write(3, "1000", 4) = 4 [pid 6306] close(3) = 0 [pid 6306] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6306] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6306] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6306] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6306] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6306] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6306] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6306] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6307 attached [pid 6307] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6306] <... clone3 resumed> => {parent_tid=[6307]}, 88) = 6307 [pid 6307] set_robust_list(0x7fd868ec09a0, 24 [pid 6306] rt_sigprocmask(SIG_SETMASK, [], [pid 6307] <... set_robust_list resumed>) = 0 [pid 6307] rt_sigprocmask(SIG_SETMASK, [], [pid 6306] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6307] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6306] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6307] memfd_create("syzkaller", 0 [pid 6306] <... futex resumed>) = 0 [pid 6307] <... memfd_create resumed>) = 3 [pid 6306] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6307] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6307] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6307] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6307] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6307] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6307] close(3) = 0 [pid 6307] mkdir("./file0", 0777) = 0 [ 189.536592][ T6307] loop0: detected capacity change from 0 to 8192 [ 189.551301][ T6307] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 189.564390][ T6307] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 189.573665][ T6307] REISERFS (device loop0): using ordered data mode [ 189.580176][ T6307] reiserfs: using flush barriers [pid 6307] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6307] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6307] chdir("./file0") = 0 [pid 6307] ioctl(4, LOOP_CLR_FD) = 0 [pid 6307] close(4) = 0 [pid 6307] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6307] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6306] <... futex resumed>) = 0 [pid 6306] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6306] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6307] <... futex resumed>) = 0 [pid 6307] mkdir(".", 0777) = -1 EEXIST (File exists) [ 189.586787][ T6307] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 189.603159][ T6307] REISERFS (device loop0): checking transaction log (loop0) [ 189.611492][ T6307] REISERFS (device loop0): Using r5 hash to sort names [pid 6307] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6307] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6307] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6306] <... futex resumed>) = 0 [pid 6307] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6306] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6307] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6306] <... futex resumed>) = 0 [pid 6307] mkdir(".", 0777 [pid 6306] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6307] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6306] <... futex resumed>) = 0 [pid 6307] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6306] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6306] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6306] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6307] <... mount resumed>) = 0 [pid 6306] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6306] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6309 attached [pid 6307] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6306] <... clone3 resumed> => {parent_tid=[6309]}, 88) = 6309 [pid 6309] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6306] rt_sigprocmask(SIG_SETMASK, [], [pid 6309] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6306] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6309] rt_sigprocmask(SIG_SETMASK, [], [pid 6306] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6309] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6307] <... openat resumed>) = 5 [pid 6306] <... futex resumed>) = 0 [pid 6309] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6306] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6309] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6307] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6307] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6309] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6306] <... futex resumed>) = 0 [pid 6309] <... futex resumed>) = 1 [pid 6306] exit_group(0 [pid 6307] <... futex resumed>) = ? [pid 6306] <... exit_group resumed>) = ? [pid 6307] +++ exited with 0 +++ [pid 6309] +++ exited with 0 +++ [pid 6306] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6306, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} --- umount2("./308", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 189.647017][ T6307] reiserfs: enabling write barrier flush mode [ 189.655587][ T6307] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 189.685963][ T6307] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. openat(AT_FDCWD, "./308", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./308/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./308/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./308/binderfs") = 0 umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./308/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./308/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./308/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./308/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./308") = 0 mkdir("./309", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6310 attached , child_tidptr=0x5555565f3690) = 6310 [pid 6310] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6310] chdir("./309") = 0 [pid 6310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6310] setpgid(0, 0) = 0 [pid 6310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6310] write(3, "1000", 4) = 4 [pid 6310] close(3) = 0 [pid 6310] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6310] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6310] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6310] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6310] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6310] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6310] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6310] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6311 attached [pid 6311] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6310] <... clone3 resumed> => {parent_tid=[6311]}, 88) = 6311 [pid 6310] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6310] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6310] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6311] <... rseq resumed>) = 0 [pid 6311] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6311] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6311] memfd_create("syzkaller", 0) = 3 [pid 6311] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6311] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6311] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6311] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6311] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6311] close(3) = 0 [pid 6311] mkdir("./file0", 0777) = 0 [ 189.964185][ T6311] loop0: detected capacity change from 0 to 8192 [ 189.979257][ T6311] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 189.992338][ T6311] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 190.001669][ T6311] REISERFS (device loop0): using ordered data mode [ 190.008374][ T6311] reiserfs: using flush barriers [pid 6311] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6311] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6311] chdir("./file0") = 0 [pid 6311] ioctl(4, LOOP_CLR_FD) = 0 [pid 6311] close(4) = 0 [pid 6311] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6311] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6310] <... futex resumed>) = 0 [pid 6310] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6311] <... futex resumed>) = 0 [pid 6310] <... futex resumed>) = 1 [pid 6311] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6311] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [ 190.015055][ T6311] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 190.032022][ T6311] REISERFS (device loop0): checking transaction log (loop0) [ 190.040218][ T6311] REISERFS (device loop0): Using r5 hash to sort names [pid 6310] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6311] <... mount resumed>) = 0 [pid 6311] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6311] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6310] <... futex resumed>) = 0 [pid 6311] <... futex resumed>) = 1 [pid 6310] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6311] mkdir(".", 0777 [pid 6310] <... futex resumed>) = 0 [pid 6311] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6310] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6311] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6310] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6310] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6310] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6310] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6313 attached [pid 6313] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6310] <... clone3 resumed> => {parent_tid=[6313]}, 88) = 6313 [pid 6313] <... rseq resumed>) = 0 [pid 6311] <... mount resumed>) = 0 [pid 6310] rt_sigprocmask(SIG_SETMASK, [], [pid 6313] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6313] rt_sigprocmask(SIG_SETMASK, [], [pid 6311] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6310] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6313] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6313] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6310] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6313] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6311] <... openat resumed>) = 5 [pid 6310] <... futex resumed>) = 0 [pid 6313] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6311] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6310] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6311] <... futex resumed>) = 0 [pid 6311] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6313] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6313] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6310] <... futex resumed>) = 0 [pid 6313] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6310] exit_group(0 [pid 6311] <... futex resumed>) = ? [pid 6310] <... exit_group resumed>) = ? [pid 6313] <... futex resumed>) = ? [pid 6311] +++ exited with 0 +++ [pid 6313] +++ exited with 0 +++ [pid 6310] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6310, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=13 /* 0.13 s */} --- [ 190.091080][ T6311] reiserfs: enabling write barrier flush mode [ 190.098985][ T6311] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 190.127151][ T6311] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./309", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./309", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./309/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./309/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./309/binderfs") = 0 umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./309/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./309/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./309/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./309/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./309") = 0 mkdir("./310", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6314 attached , child_tidptr=0x5555565f3690) = 6314 [pid 6314] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6314] chdir("./310") = 0 [pid 6314] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6314] setpgid(0, 0) = 0 [pid 6314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6314] write(3, "1000", 4) = 4 [pid 6314] close(3) = 0 [pid 6314] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6314] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6314] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6314] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6314] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6314] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6314] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6314] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6315 attached => {parent_tid=[6315]}, 88) = 6315 [pid 6315] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6314] rt_sigprocmask(SIG_SETMASK, [], [pid 6315] set_robust_list(0x7fd868ec09a0, 24 [pid 6314] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6315] <... set_robust_list resumed>) = 0 [pid 6315] rt_sigprocmask(SIG_SETMASK, [], [pid 6314] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6315] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6314] <... futex resumed>) = 0 [pid 6315] memfd_create("syzkaller", 0 [pid 6314] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6315] <... memfd_create resumed>) = 3 [pid 6315] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6315] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6315] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6315] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6315] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6315] close(3) = 0 [pid 6315] mkdir("./file0", 0777) = 0 [ 190.456502][ T6315] loop0: detected capacity change from 0 to 8192 [ 190.483890][ T6315] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 190.496893][ T6315] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6315] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6315] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6315] chdir("./file0") = 0 [pid 6315] ioctl(4, LOOP_CLR_FD) = 0 [pid 6315] close(4) = 0 [pid 6315] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6314] <... futex resumed>) = 0 [pid 6315] <... futex resumed>) = 1 [pid 6314] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6315] mkdir(".", 0777 [ 190.506178][ T6315] REISERFS (device loop0): using ordered data mode [ 190.512709][ T6315] reiserfs: using flush barriers [ 190.518800][ T6315] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 190.535549][ T6315] REISERFS (device loop0): checking transaction log (loop0) [ 190.543892][ T6315] REISERFS (device loop0): Using r5 hash to sort names [pid 6314] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6315] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6315] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6315] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6315] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6314] <... futex resumed>) = 0 [pid 6315] <... futex resumed>) = 1 [pid 6314] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6315] mkdir(".", 0777 [pid 6314] <... futex resumed>) = 0 [pid 6315] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6314] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6315] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6314] <... futex resumed>) = 0 [pid 6314] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6314] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6314] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6314] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6317 attached [pid 6317] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6315] <... mount resumed>) = 0 [pid 6314] <... clone3 resumed> => {parent_tid=[6317]}, 88) = 6317 [pid 6317] <... rseq resumed>) = 0 [pid 6314] rt_sigprocmask(SIG_SETMASK, [], [pid 6317] set_robust_list(0x7fd868e9f9a0, 24 [pid 6314] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6317] <... set_robust_list resumed>) = 0 [pid 6314] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6317] rt_sigprocmask(SIG_SETMASK, [], [pid 6314] <... futex resumed>) = 0 [pid 6317] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6314] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6317] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6315] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6315] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6317] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6315] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6317] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6314] <... futex resumed>) = 0 [pid 6317] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6314] exit_group(0 [pid 6317] <... futex resumed>) = ? [pid 6315] <... futex resumed>) = ? [pid 6317] +++ exited with 0 +++ [pid 6315] +++ exited with 0 +++ [pid 6314] <... exit_group resumed>) = ? [pid 6314] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6314, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- umount2("./310", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./310", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./310/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./310/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./310/binderfs") = 0 [ 190.582001][ T6315] reiserfs: enabling write barrier flush mode [ 190.590601][ T6315] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 190.613661][ T6315] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./310/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./310/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./310/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./310/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./310") = 0 mkdir("./311", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6318 attached , child_tidptr=0x5555565f3690) = 6318 [pid 6318] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6318] chdir("./311") = 0 [pid 6318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6318] setpgid(0, 0) = 0 [pid 6318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6318] write(3, "1000", 4) = 4 [pid 6318] close(3) = 0 [pid 6318] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6318] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6318] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6318] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6318] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6318] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6318] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6318] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6319 attached => {parent_tid=[6319]}, 88) = 6319 [pid 6318] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6319] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6318] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6319] set_robust_list(0x7fd868ec09a0, 24 [pid 6318] <... futex resumed>) = 0 [pid 6319] <... set_robust_list resumed>) = 0 [pid 6318] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6319] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6319] memfd_create("syzkaller", 0) = 3 [pid 6319] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6319] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6319] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6319] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6319] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6319] close(3) = 0 [pid 6319] mkdir("./file0", 0777) = 0 [ 190.880074][ T6319] loop0: detected capacity change from 0 to 8192 [ 190.905198][ T6319] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 190.918265][ T6319] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6319] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6319] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6319] chdir("./file0") = 0 [pid 6319] ioctl(4, LOOP_CLR_FD) = 0 [pid 6319] close(4) = 0 [pid 6319] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6318] <... futex resumed>) = 0 [pid 6319] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6318] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6319] <... futex resumed>) = 0 [pid 6318] <... futex resumed>) = 1 [pid 6319] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6318] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 190.927567][ T6319] REISERFS (device loop0): using ordered data mode [ 190.934095][ T6319] reiserfs: using flush barriers [ 190.940203][ T6319] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 190.956855][ T6319] REISERFS (device loop0): checking transaction log (loop0) [ 190.965059][ T6319] REISERFS (device loop0): Using r5 hash to sort names [pid 6319] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6319] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6319] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6318] <... futex resumed>) = 0 [pid 6319] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6318] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6319] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6318] <... futex resumed>) = 0 [pid 6319] mkdir(".", 0777 [pid 6318] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6319] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6318] <... futex resumed>) = 0 [pid 6319] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6318] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6318] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6318] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6318] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6321 attached => {parent_tid=[6321]}, 88) = 6321 [pid 6321] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6318] rt_sigprocmask(SIG_SETMASK, [], [pid 6321] <... rseq resumed>) = 0 [pid 6318] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6318] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6321] set_robust_list(0x7fd868e9f9a0, 24 [pid 6318] <... futex resumed>) = 0 [pid 6321] <... set_robust_list resumed>) = 0 [pid 6318] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6321] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6321] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6319] <... mount resumed>) = 0 [pid 6321] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6319] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6321] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6319] <... openat resumed>) = 5 [pid 6321] <... futex resumed>) = 1 [pid 6319] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6318] <... futex resumed>) = 0 [pid 6321] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6319] <... futex resumed>) = 0 [pid 6319] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6318] exit_group(0 [pid 6321] <... futex resumed>) = ? [pid 6319] <... futex resumed>) = ? [pid 6318] <... exit_group resumed>) = ? [pid 6321] +++ exited with 0 +++ [pid 6319] +++ exited with 0 +++ [pid 6318] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6318, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./311", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./311", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./311/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./311/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./311/binderfs") = 0 [ 191.001689][ T6319] reiserfs: enabling write barrier flush mode [ 191.009872][ T6319] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 191.032911][ T6319] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./311/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./311/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./311/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./311/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./311") = 0 mkdir("./312", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6322 attached , child_tidptr=0x5555565f3690) = 6322 [pid 6322] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6322] chdir("./312") = 0 [pid 6322] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6322] setpgid(0, 0) = 0 [pid 6322] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6322] write(3, "1000", 4) = 4 [pid 6322] close(3) = 0 [pid 6322] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6322] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6322] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6322] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6322] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6322] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6322] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6322] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6323 attached [pid 6323] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6322] <... clone3 resumed> => {parent_tid=[6323]}, 88) = 6323 [pid 6323] <... rseq resumed>) = 0 [pid 6322] rt_sigprocmask(SIG_SETMASK, [], [pid 6323] set_robust_list(0x7fd868ec09a0, 24 [pid 6322] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6323] <... set_robust_list resumed>) = 0 [pid 6322] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6323] rt_sigprocmask(SIG_SETMASK, [], [pid 6322] <... futex resumed>) = 0 [pid 6323] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6323] memfd_create("syzkaller", 0 [pid 6322] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6323] <... memfd_create resumed>) = 3 [pid 6323] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6323] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6323] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6323] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6323] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6323] close(3) = 0 [pid 6323] mkdir("./file0", 0777) = 0 [ 191.287788][ T6323] loop0: detected capacity change from 0 to 8192 [ 191.303698][ T6323] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 191.316862][ T6323] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 191.326156][ T6323] REISERFS (device loop0): using ordered data mode [ 191.332685][ T6323] reiserfs: using flush barriers [pid 6323] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6323] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6323] chdir("./file0") = 0 [pid 6323] ioctl(4, LOOP_CLR_FD) = 0 [pid 6323] close(4) = 0 [pid 6323] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6322] <... futex resumed>) = 0 [pid 6322] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6323] mkdir(".", 0777 [pid 6322] <... futex resumed>) = 0 [pid 6323] <... mkdir resumed>) = -1 EEXIST (File exists) [ 191.338813][ T6323] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 191.355578][ T6323] REISERFS (device loop0): checking transaction log (loop0) [ 191.364018][ T6323] REISERFS (device loop0): Using r5 hash to sort names [pid 6322] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6323] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6323] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6323] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6323] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6322] <... futex resumed>) = 0 [pid 6322] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6323] <... futex resumed>) = 0 [pid 6322] <... futex resumed>) = 1 [pid 6323] mkdir(".", 0777 [pid 6322] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6323] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6322] <... futex resumed>) = 0 [pid 6323] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6322] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 191.402142][ T6323] reiserfs: enabling write barrier flush mode [ 191.410685][ T6323] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6322] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6323] <... mount resumed>) = 0 [pid 6323] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6322] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6323] <... openat resumed>) = 5 [pid 6322] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6323] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6322] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6323] <... futex resumed>) = 0 [pid 6323] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 6325 attached [pid 6325] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6322] <... clone3 resumed> => {parent_tid=[6325]}, 88) = 6325 [pid 6325] <... rseq resumed>) = 0 [pid 6322] rt_sigprocmask(SIG_SETMASK, [], [pid 6325] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6322] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6325] rt_sigprocmask(SIG_SETMASK, [], [pid 6322] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6325] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6322] <... futex resumed>) = 0 [pid 6325] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6322] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6325] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6325] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6322] <... futex resumed>) = 0 [pid 6325] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6322] exit_group(0 [pid 6325] <... futex resumed>) = ? [pid 6323] <... futex resumed>) = ? [pid 6322] <... exit_group resumed>) = ? [pid 6325] +++ exited with 0 +++ [pid 6323] +++ exited with 0 +++ [pid 6322] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6322, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- umount2("./312", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./312", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./312/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./312/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./312/binderfs") = 0 [ 191.442426][ T6323] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./312/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./312/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./312/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./312/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./312") = 0 mkdir("./313", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6326 attached , child_tidptr=0x5555565f3690) = 6326 [pid 6326] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6326] chdir("./313") = 0 [pid 6326] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6326] setpgid(0, 0) = 0 [pid 6326] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6326] write(3, "1000", 4) = 4 [pid 6326] close(3) = 0 [pid 6326] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6326] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6326] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6326] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6326] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6327 attached => {parent_tid=[6327]}, 88) = 6327 [pid 6327] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6327] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6327] rt_sigprocmask(SIG_SETMASK, [], [pid 6326] rt_sigprocmask(SIG_SETMASK, [], [pid 6327] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6326] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6327] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6326] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6327] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6326] <... futex resumed>) = 0 [pid 6326] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6327] memfd_create("syzkaller", 0) = 3 [pid 6327] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6327] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6327] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6327] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6327] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6327] close(3) = 0 [pid 6327] mkdir("./file0", 0777) = 0 [ 191.752496][ T6327] loop0: detected capacity change from 0 to 8192 [ 191.767576][ T6327] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 191.780595][ T6327] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 191.789935][ T6327] REISERFS (device loop0): using ordered data mode [ 191.796478][ T6327] reiserfs: using flush barriers [pid 6327] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6327] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6327] chdir("./file0") = 0 [pid 6327] ioctl(4, LOOP_CLR_FD) = 0 [pid 6327] close(4) = 0 [pid 6327] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6327] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6326] <... futex resumed>) = 0 [pid 6326] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6327] <... futex resumed>) = 0 [pid 6326] <... futex resumed>) = 1 [pid 6327] mkdir(".", 0777 [pid 6326] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6327] <... mkdir resumed>) = -1 EEXIST (File exists) [ 191.802976][ T6327] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 191.819375][ T6327] REISERFS (device loop0): checking transaction log (loop0) [ 191.827852][ T6327] REISERFS (device loop0): Using r5 hash to sort names [pid 6327] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6327] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6327] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6327] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6326] <... futex resumed>) = 0 [pid 6326] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6327] <... futex resumed>) = 0 [pid 6326] <... futex resumed>) = 1 [pid 6327] mkdir(".", 0777 [pid 6326] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6327] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6327] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6326] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 191.853958][ T6327] reiserfs: enabling write barrier flush mode [ 191.863607][ T6327] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6329 attached [pid 6329] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6327] <... mount resumed>) = 0 [pid 6326] <... clone3 resumed> => {parent_tid=[6329]}, 88) = 6329 [pid 6329] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6326] rt_sigprocmask(SIG_SETMASK, [], [pid 6329] rt_sigprocmask(SIG_SETMASK, [], [pid 6326] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6329] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6329] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6326] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6329] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6326] <... futex resumed>) = 0 [pid 6329] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6326] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6329] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6329] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6327] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6329] <... futex resumed>) = 1 [pid 6327] <... openat resumed>) = 5 [pid 6326] <... futex resumed>) = 0 [pid 6329] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6327] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6327] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6326] exit_group(0 [pid 6329] <... futex resumed>) = ? [pid 6326] <... exit_group resumed>) = ? [pid 6329] +++ exited with 0 +++ [pid 6327] <... futex resumed>) = ? [pid 6327] +++ exited with 0 +++ [pid 6326] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6326, si_uid=0, si_status=0, si_utime=0, si_stime=15 /* 0.15 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./313", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./313", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 191.917792][ T6327] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./313/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./313/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./313/binderfs") = 0 umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./313/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./313/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./313/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./313/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./313") = 0 mkdir("./314", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6330 attached [pid 6330] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6330] chdir("./314") = 0 [pid 6330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6330] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6330 [pid 6330] <... setpgid resumed>) = 0 [pid 6330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6330] write(3, "1000", 4) = 4 [pid 6330] close(3) = 0 [pid 6330] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6330] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6330] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6330] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6330] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6330] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6331 attached [pid 6331] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6330] <... clone3 resumed> => {parent_tid=[6331]}, 88) = 6331 [pid 6331] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6330] rt_sigprocmask(SIG_SETMASK, [], [pid 6331] rt_sigprocmask(SIG_SETMASK, [], [pid 6330] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6331] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6330] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6331] memfd_create("syzkaller", 0 [pid 6330] <... futex resumed>) = 0 [pid 6330] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6331] <... memfd_create resumed>) = 3 [pid 6331] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6331] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6331] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6331] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6331] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6331] close(3) = 0 [pid 6331] mkdir("./file0", 0777) = 0 [ 192.211512][ T6331] loop0: detected capacity change from 0 to 8192 [ 192.232368][ T6331] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 192.245358][ T6331] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 192.254647][ T6331] REISERFS (device loop0): using ordered data mode [pid 6331] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6331] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6331] chdir("./file0") = 0 [pid 6331] ioctl(4, LOOP_CLR_FD) = 0 [pid 6331] close(4) = 0 [pid 6331] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6330] <... futex resumed>) = 0 [pid 6331] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6330] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 192.261165][ T6331] reiserfs: using flush barriers [ 192.267616][ T6331] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 192.284052][ T6331] REISERFS (device loop0): checking transaction log (loop0) [ 192.292798][ T6331] REISERFS (device loop0): Using r5 hash to sort names [pid 6330] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6331] <... futex resumed>) = 0 [pid 6331] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6331] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6331] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6331] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6330] <... futex resumed>) = 0 [pid 6330] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6331] <... futex resumed>) = 1 [pid 6330] <... futex resumed>) = 0 [pid 6331] mkdir(".", 0777 [pid 6330] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6331] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6330] <... futex resumed>) = 0 [pid 6330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6331] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6330] <... mmap resumed>) = 0x7fd868e7f000 [pid 6330] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 192.345642][ T6331] reiserfs: enabling write barrier flush mode [ 192.353601][ T6331] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6330] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6331] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6333 attached [pid 6330] <... clone3 resumed> => {parent_tid=[6333]}, 88) = 6333 [pid 6333] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6330] rt_sigprocmask(SIG_SETMASK, [], [pid 6333] <... rseq resumed>) = 0 [pid 6331] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6330] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6333] set_robust_list(0x7fd868e9f9a0, 24 [pid 6330] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6333] <... set_robust_list resumed>) = 0 [pid 6330] <... futex resumed>) = 0 [pid 6333] rt_sigprocmask(SIG_SETMASK, [], [pid 6330] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6333] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6333] fsetxattr(4, "security.ima", "\x04\x07", 2, 0) = -1 EINVAL (Invalid argument) [pid 6331] <... openat resumed>) = 5 [pid 6331] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6331] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6333] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6330] <... futex resumed>) = 0 [pid 6333] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6330] exit_group(0 [pid 6333] <... futex resumed>) = ? [pid 6331] <... futex resumed>) = ? [pid 6330] <... exit_group resumed>) = ? [pid 6333] +++ exited with 0 +++ [pid 6331] +++ exited with 0 +++ [pid 6330] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6330, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./314", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./314", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./314/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./314/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 192.390716][ T6331] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./314/binderfs") = 0 umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./314/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./314/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./314/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./314/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./314") = 0 mkdir("./315", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6334 attached , child_tidptr=0x5555565f3690) = 6334 [pid 6334] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6334] chdir("./315") = 0 [pid 6334] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6334] setpgid(0, 0) = 0 [pid 6334] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6334] write(3, "1000", 4) = 4 [pid 6334] close(3) = 0 [pid 6334] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6334] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6334] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6334] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6334] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6334] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6334] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6334] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6335 attached => {parent_tid=[6335]}, 88) = 6335 [pid 6335] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6335] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6334] rt_sigprocmask(SIG_SETMASK, [], [pid 6335] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6334] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6335] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6334] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6335] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6334] <... futex resumed>) = 0 [pid 6334] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6335] memfd_create("syzkaller", 0) = 3 [pid 6335] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6335] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6335] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6335] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6335] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6335] close(3) = 0 [pid 6335] mkdir("./file0", 0777) = 0 [ 192.652691][ T6335] loop0: detected capacity change from 0 to 8192 [ 192.668636][ T6335] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 192.681681][ T6335] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 192.690874][ T6335] REISERFS (device loop0): using ordered data mode [ 192.697413][ T6335] reiserfs: using flush barriers [pid 6335] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6335] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6335] chdir("./file0") = 0 [pid 6335] ioctl(4, LOOP_CLR_FD) = 0 [pid 6335] close(4) = 0 [pid 6335] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6334] <... futex resumed>) = 0 [pid 6335] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6334] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6335] mkdir(".", 0777 [pid 6334] <... futex resumed>) = 0 [pid 6335] <... mkdir resumed>) = -1 EEXIST (File exists) [ 192.703614][ T6335] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 192.720406][ T6335] REISERFS (device loop0): checking transaction log (loop0) [ 192.728893][ T6335] REISERFS (device loop0): Using r5 hash to sort names [pid 6334] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6335] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6335] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6335] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6334] <... futex resumed>) = 0 [pid 6335] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6334] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6335] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6334] <... futex resumed>) = 0 [pid 6335] mkdir(".", 0777 [pid 6334] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6335] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6334] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 6335] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6334] <... mmap resumed>) = 0x7fd868e7f000 [pid 6334] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 192.762875][ T6335] reiserfs: enabling write barrier flush mode [ 192.772670][ T6335] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6334] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6335] <... mount resumed>) = 0 [pid 6334] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6334] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6337 attached [pid 6337] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6335] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6334] <... clone3 resumed> => {parent_tid=[6337]}, 88) = 6337 [pid 6337] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6335] <... openat resumed>) = 5 [pid 6334] rt_sigprocmask(SIG_SETMASK, [], [pid 6337] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6335] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6334] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6337] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6335] <... futex resumed>) = 0 [pid 6334] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6337] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6335] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6334] <... futex resumed>) = 0 [pid 6337] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6334] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6337] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6337] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6334] <... futex resumed>) = 0 [pid 6337] <... futex resumed>) = 1 [pid 6334] exit_group(0 [pid 6337] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6335] <... futex resumed>) = ? [pid 6334] <... exit_group resumed>) = ? [pid 6337] +++ exited with 0 +++ [pid 6335] +++ exited with 0 +++ [pid 6334] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6334, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./315", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./315", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./315/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./315/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./315/binderfs") = 0 [ 192.804061][ T6335] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./315/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./315/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./315/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./315/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./315") = 0 mkdir("./316", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6338 attached [pid 6338] set_robust_list(0x5555565f36a0, 24) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6338 [pid 6338] chdir("./316") = 0 [pid 6338] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6338] setpgid(0, 0) = 0 [pid 6338] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6338] write(3, "1000", 4) = 4 [pid 6338] close(3) = 0 [pid 6338] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6338] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6338] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6338] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6338] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6338] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6338] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6338] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6339 attached => {parent_tid=[6339]}, 88) = 6339 [pid 6338] rt_sigprocmask(SIG_SETMASK, [], [pid 6339] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6338] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6339] set_robust_list(0x7fd868ec09a0, 24 [pid 6338] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6339] <... set_robust_list resumed>) = 0 [pid 6338] <... futex resumed>) = 0 [pid 6339] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6338] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6339] memfd_create("syzkaller", 0) = 3 [pid 6339] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6339] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6339] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6339] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6339] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6339] close(3) = 0 [pid 6339] mkdir("./file0", 0777) = 0 [ 193.072243][ T6339] loop0: detected capacity change from 0 to 8192 [ 193.093061][ T6339] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 193.106191][ T6339] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 193.115466][ T6339] REISERFS (device loop0): using ordered data mode [pid 6339] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6339] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6339] chdir("./file0") = 0 [pid 6339] ioctl(4, LOOP_CLR_FD) = 0 [pid 6339] close(4) = 0 [pid 6339] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6338] <... futex resumed>) = 0 [pid 6339] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 6338] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6338] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6339] mkdir(".", 0777) = -1 EEXIST (File exists) [ 193.122107][ T6339] reiserfs: using flush barriers [ 193.128193][ T6339] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 193.144743][ T6339] REISERFS (device loop0): checking transaction log (loop0) [ 193.152989][ T6339] REISERFS (device loop0): Using r5 hash to sort names [pid 6339] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6339] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6339] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6338] <... futex resumed>) = 0 [pid 6339] mkdir(".", 0777 [pid 6338] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6339] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6338] <... futex resumed>) = 0 [pid 6339] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6338] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6338] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6338] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 193.190013][ T6339] reiserfs: enabling write barrier flush mode [ 193.198282][ T6339] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6338] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6339] <... mount resumed>) = 0 [pid 6338] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6341 attached [pid 6339] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6341] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6339] <... openat resumed>) = 5 [pid 6338] <... clone3 resumed> => {parent_tid=[6341]}, 88) = 6341 [pid 6341] <... rseq resumed>) = 0 [pid 6341] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6339] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6338] rt_sigprocmask(SIG_SETMASK, [], [pid 6341] rt_sigprocmask(SIG_SETMASK, [], [pid 6339] <... futex resumed>) = 0 [pid 6338] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6341] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6339] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6338] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6341] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6338] <... futex resumed>) = 0 [pid 6338] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6341] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6341] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6338] <... futex resumed>) = 0 [pid 6341] <... futex resumed>) = 1 [pid 6338] exit_group(0 [pid 6341] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = ? [pid 6339] <... futex resumed>) = ? [pid 6338] <... exit_group resumed>) = ? [pid 6341] +++ exited with 0 +++ [pid 6339] +++ exited with 0 +++ [pid 6338] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6338, si_uid=0, si_status=0, si_utime=0, si_stime=9 /* 0.09 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./316", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./316", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./316/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 193.231619][ T6339] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. newfstatat(AT_FDCWD, "./316/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./316/binderfs") = 0 umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./316/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./316/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./316/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./316/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./316") = 0 mkdir("./317", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6342 attached [pid 6342] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6342] chdir("./317") = 0 [pid 6342] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6342] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6342 [pid 6342] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6342] write(3, "1000", 4) = 4 [pid 6342] close(3) = 0 [pid 6342] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6342] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6342] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6342] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6342] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6342] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6342] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6342] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6343 attached => {parent_tid=[6343]}, 88) = 6343 [pid 6342] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6343] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6342] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6343] set_robust_list(0x7fd868ec09a0, 24 [pid 6342] <... futex resumed>) = 0 [pid 6343] <... set_robust_list resumed>) = 0 [pid 6343] rt_sigprocmask(SIG_SETMASK, [], [pid 6342] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6343] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6343] memfd_create("syzkaller", 0) = 3 [pid 6343] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6343] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6343] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6343] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6343] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6343] close(3) = 0 [pid 6343] mkdir("./file0", 0777) = 0 [ 193.517784][ T6343] loop0: detected capacity change from 0 to 8192 [ 193.533249][ T6343] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 193.546325][ T6343] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 193.555603][ T6343] REISERFS (device loop0): using ordered data mode [ 193.562123][ T6343] reiserfs: using flush barriers [pid 6343] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6343] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6343] chdir("./file0") = 0 [pid 6343] ioctl(4, LOOP_CLR_FD) = 0 [pid 6343] close(4) = 0 [pid 6343] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6342] <... futex resumed>) = 0 [pid 6343] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6342] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6343] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6342] <... futex resumed>) = 0 [pid 6343] mkdir(".", 0777 [ 193.568462][ T6343] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 193.585103][ T6343] REISERFS (device loop0): checking transaction log (loop0) [ 193.593347][ T6343] REISERFS (device loop0): Using r5 hash to sort names [pid 6342] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6343] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6343] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6343] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6343] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6342] <... futex resumed>) = 0 [pid 6343] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6342] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6343] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6342] <... futex resumed>) = 0 [pid 6343] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6342] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6343] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6342] <... futex resumed>) = 0 [pid 6342] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6342] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6342] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [ 193.618196][ T6343] reiserfs: enabling write barrier flush mode [ 193.628063][ T6343] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6342] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6345 attached [pid 6345] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6342] <... clone3 resumed> => {parent_tid=[6345]}, 88) = 6345 [pid 6345] <... rseq resumed>) = 0 [pid 6342] rt_sigprocmask(SIG_SETMASK, [], [pid 6345] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6342] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6345] rt_sigprocmask(SIG_SETMASK, [], [pid 6342] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6345] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6342] <... futex resumed>) = 0 [pid 6345] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6343] <... mount resumed>) = 0 [pid 6342] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6345] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6345] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6345] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6342] <... futex resumed>) = 0 [pid 6343] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6343] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6343] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6342] exit_group(0 [pid 6345] <... futex resumed>) = ? [pid 6343] <... futex resumed>) = ? [pid 6342] <... exit_group resumed>) = ? [pid 6345] +++ exited with 0 +++ [pid 6343] +++ exited with 0 +++ [pid 6342] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6342, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./317", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./317", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./317/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./317/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./317/binderfs") = 0 [ 193.671756][ T6343] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./317/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./317/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./317/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./317/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./317") = 0 mkdir("./318", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6346 attached , child_tidptr=0x5555565f3690) = 6346 [pid 6346] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6346] chdir("./318") = 0 [pid 6346] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6346] setpgid(0, 0) = 0 [pid 6346] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6346] write(3, "1000", 4) = 4 [pid 6346] close(3) = 0 [pid 6346] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6346] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6346] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6346] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6346] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6346] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6346] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6346] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6347 attached [pid 6347] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6346] <... clone3 resumed> => {parent_tid=[6347]}, 88) = 6347 [pid 6347] set_robust_list(0x7fd868ec09a0, 24 [pid 6346] rt_sigprocmask(SIG_SETMASK, [], [pid 6347] <... set_robust_list resumed>) = 0 [pid 6347] rt_sigprocmask(SIG_SETMASK, [], [pid 6346] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6347] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6346] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6347] memfd_create("syzkaller", 0 [pid 6346] <... futex resumed>) = 0 [pid 6346] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6347] <... memfd_create resumed>) = 3 [pid 6347] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6347] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6347] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6347] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6347] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6347] close(3) = 0 [pid 6347] mkdir("./file0", 0777) = 0 [ 193.940577][ T6347] loop0: detected capacity change from 0 to 8192 [ 193.951339][ T6347] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 193.964487][ T6347] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 193.974161][ T6347] REISERFS (device loop0): using ordered data mode [ 193.980700][ T6347] reiserfs: using flush barriers [pid 6347] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6347] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6347] chdir("./file0") = 0 [pid 6347] ioctl(4, LOOP_CLR_FD) = 0 [pid 6347] close(4) = 0 [pid 6347] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6346] <... futex resumed>) = 0 [pid 6347] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6346] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6347] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6346] <... futex resumed>) = 0 [pid 6346] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [ 193.987086][ T6347] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 194.003471][ T6347] REISERFS (device loop0): checking transaction log (loop0) [ 194.011840][ T6347] REISERFS (device loop0): Using r5 hash to sort names [pid 6347] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6347] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6347] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6347] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6346] <... futex resumed>) = 0 [pid 6347] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6346] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6347] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6347] mkdir(".", 0777 [pid 6346] <... futex resumed>) = 0 [pid 6347] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6346] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6347] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6346] <... futex resumed>) = 0 [pid 6346] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [ 194.041629][ T6347] reiserfs: enabling write barrier flush mode [ 194.050766][ T6347] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6346] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6346] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6347] <... mount resumed>) = 0 [pid 6346] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6349 attached [pid 6347] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6349] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6349] set_robust_list(0x7fd868e9f9a0, 24 [pid 6346] <... clone3 resumed> => {parent_tid=[6349]}, 88) = 6349 [pid 6349] <... set_robust_list resumed>) = 0 [pid 6347] <... openat resumed>) = 5 [pid 6346] rt_sigprocmask(SIG_SETMASK, [], [pid 6349] rt_sigprocmask(SIG_SETMASK, [], [pid 6347] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6346] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6349] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6349] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6346] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6346] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6349] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6347] <... futex resumed>) = 0 [pid 6349] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6347] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6349] <... futex resumed>) = 1 [pid 6346] <... futex resumed>) = 0 [pid 6349] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6346] exit_group(0 [pid 6349] <... futex resumed>) = ? [pid 6347] <... futex resumed>) = ? [pid 6346] <... exit_group resumed>) = ? [pid 6349] +++ exited with 0 +++ [pid 6347] +++ exited with 0 +++ [pid 6346] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6346, si_uid=0, si_status=0, si_utime=0, si_stime=14 /* 0.14 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./318", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./318", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./318/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./318/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./318/binderfs") = 0 [ 194.092815][ T6347] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./318/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./318/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./318/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./318/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./318") = 0 mkdir("./319", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6350 attached [pid 6350] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6350] chdir("./319") = 0 [pid 6350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6350] setpgid(0, 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6350 [pid 6350] <... setpgid resumed>) = 0 [pid 6350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6350] write(3, "1000", 4) = 4 [pid 6350] close(3) = 0 [pid 6350] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6350] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6350] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6350] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6350] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6350] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6350] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6350] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6351 attached => {parent_tid=[6351]}, 88) = 6351 [pid 6351] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6351] set_robust_list(0x7fd868ec09a0, 24) = 0 [pid 6350] rt_sigprocmask(SIG_SETMASK, [], [pid 6351] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6351] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6350] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6350] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6351] <... futex resumed>) = 0 [pid 6350] <... futex resumed>) = 1 [pid 6351] memfd_create("syzkaller", 0 [pid 6350] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6351] <... memfd_create resumed>) = 3 [pid 6351] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6351] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6351] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6351] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6351] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6351] close(3) = 0 [pid 6351] mkdir("./file0", 0777) = 0 [ 194.299174][ T6351] loop0: detected capacity change from 0 to 8192 [ 194.324439][ T6351] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 194.337435][ T6351] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6351] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6351] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6351] chdir("./file0") = 0 [pid 6351] ioctl(4, LOOP_CLR_FD) = 0 [ 194.346767][ T6351] REISERFS (device loop0): using ordered data mode [ 194.353319][ T6351] reiserfs: using flush barriers [ 194.359691][ T6351] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 194.376292][ T6351] REISERFS (device loop0): checking transaction log (loop0) [ 194.384495][ T6351] REISERFS (device loop0): Using r5 hash to sort names [pid 6351] close(4) = 0 [pid 6351] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6350] <... futex resumed>) = 0 [pid 6351] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6350] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6351] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6351] mkdir(".", 0777 [pid 6350] <... futex resumed>) = 0 [pid 6351] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6350] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6351] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6351] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6351] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6350] <... futex resumed>) = 0 [pid 6351] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6350] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6351] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6350] <... futex resumed>) = 0 [pid 6351] mkdir(".", 0777 [pid 6350] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6351] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6351] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6350] <... futex resumed>) = 0 [pid 6350] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6350] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6350] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6351] <... mount resumed>) = 0 [pid 6350] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6350] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6353 attached [pid 6353] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6353] set_robust_list(0x7fd868e9f9a0, 24) = 0 [pid 6350] <... clone3 resumed> => {parent_tid=[6353]}, 88) = 6353 [pid 6353] rt_sigprocmask(SIG_SETMASK, [], [pid 6350] rt_sigprocmask(SIG_SETMASK, [], [pid 6353] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6350] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6353] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6350] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6353] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6350] <... futex resumed>) = 0 [pid 6353] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6350] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6353] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6351] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6351] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6353] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6350] <... futex resumed>) = 0 [pid 6353] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6351] <... futex resumed>) = 0 [pid 6350] exit_group(0) = ? [pid 6353] <... futex resumed>) = ? [pid 6353] +++ exited with 0 +++ [pid 6351] +++ exited with 0 +++ [pid 6350] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6350, si_uid=0, si_status=0, si_utime=0, si_stime=12 /* 0.12 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./319", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./319", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./319/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./319/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 194.409460][ T6351] reiserfs: enabling write barrier flush mode [ 194.417646][ T6351] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 194.448210][ T6351] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. unlink("./319/binderfs") = 0 umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./319/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./319/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./319/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./319/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./319") = 0 mkdir("./320", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6354 attached [pid 6354] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6354] chdir("./320") = 0 [pid 6354] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6354] setpgid(0, 0) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x5555565f3690) = 6354 [pid 6354] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6354] write(3, "1000", 4) = 4 [pid 6354] close(3) = 0 [pid 6354] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6354] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6354] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6354] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6354] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6354] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6354] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6354] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6355 attached [pid 6355] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6354] <... clone3 resumed> => {parent_tid=[6355]}, 88) = 6355 [pid 6355] <... rseq resumed>) = 0 [pid 6355] set_robust_list(0x7fd868ec09a0, 24 [pid 6354] rt_sigprocmask(SIG_SETMASK, [], [pid 6355] <... set_robust_list resumed>) = 0 [pid 6354] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6355] rt_sigprocmask(SIG_SETMASK, [], [pid 6354] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6355] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6354] <... futex resumed>) = 0 [pid 6354] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6355] memfd_create("syzkaller", 0) = 3 [pid 6355] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6355] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6355] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6355] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6355] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6355] close(3) = 0 [pid 6355] mkdir("./file0", 0777) = 0 [ 194.673833][ T6355] loop0: detected capacity change from 0 to 8192 [ 194.699691][ T6355] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 194.712800][ T6355] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [pid 6355] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6355] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6355] chdir("./file0") = 0 [pid 6355] ioctl(4, LOOP_CLR_FD) = 0 [ 194.722086][ T6355] REISERFS (device loop0): using ordered data mode [ 194.728600][ T6355] reiserfs: using flush barriers [ 194.735049][ T6355] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 194.751623][ T6355] REISERFS (device loop0): checking transaction log (loop0) [ 194.759802][ T6355] REISERFS (device loop0): Using r5 hash to sort names [pid 6355] close(4) = 0 [pid 6355] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6354] <... futex resumed>) = 0 [pid 6355] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6354] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6355] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 6354] <... futex resumed>) = 0 [pid 6355] mkdir(".", 0777 [pid 6354] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6355] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6355] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6355] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6355] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6354] <... futex resumed>) = 0 [pid 6355] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6354] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6355] <... futex resumed>) = 0 [pid 6354] <... futex resumed>) = 1 [pid 6355] mkdir(".", 0777 [pid 6354] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6355] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6354] <... futex resumed>) = 0 [pid 6355] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6354] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6354] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 194.782861][ T6355] reiserfs: enabling write barrier flush mode [ 194.791016][ T6355] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6354] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6354] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0} [pid 6355] <... mount resumed>) = 0 ./strace-static-x86_64: Process 6357 attached [pid 6357] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6354] <... clone3 resumed> => {parent_tid=[6357]}, 88) = 6357 [pid 6357] <... rseq resumed>) = 0 [pid 6354] rt_sigprocmask(SIG_SETMASK, [], [pid 6357] set_robust_list(0x7fd868e9f9a0, 24 [pid 6354] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6357] <... set_robust_list resumed>) = 0 [pid 6354] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6357] rt_sigprocmask(SIG_SETMASK, [], [pid 6354] <... futex resumed>) = 0 [pid 6357] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6357] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6354] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6357] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6357] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6357] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6354] <... futex resumed>) = 0 [pid 6355] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6355] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6355] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6354] exit_group(0 [pid 6357] <... futex resumed>) = ? [pid 6355] <... futex resumed>) = ? [pid 6354] <... exit_group resumed>) = ? [pid 6357] +++ exited with 0 +++ [pid 6355] +++ exited with 0 +++ [pid 6354] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6354, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- umount2("./320", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./320", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 [ 194.834366][ T6355] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./320/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./320/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./320/binderfs") = 0 umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./320/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./320/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./320/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./320/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./320") = 0 mkdir("./321", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6358 attached , child_tidptr=0x5555565f3690) = 6358 [pid 6358] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6358] chdir("./321") = 0 [pid 6358] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6358] setpgid(0, 0) = 0 [pid 6358] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6358] write(3, "1000", 4) = 4 [pid 6358] close(3) = 0 [pid 6358] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6358] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6358] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6358] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6358] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6358] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6358] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6358] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6359 attached [pid 6359] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053 [pid 6358] <... clone3 resumed> => {parent_tid=[6359]}, 88) = 6359 [pid 6359] <... rseq resumed>) = 0 [pid 6358] rt_sigprocmask(SIG_SETMASK, [], [pid 6359] set_robust_list(0x7fd868ec09a0, 24 [pid 6358] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6359] <... set_robust_list resumed>) = 0 [pid 6358] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6359] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 6358] <... futex resumed>) = 0 [pid 6359] memfd_create("syzkaller", 0 [pid 6358] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6359] <... memfd_create resumed>) = 3 [pid 6359] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6359] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6359] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6359] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6359] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6359] close(3) = 0 [pid 6359] mkdir("./file0", 0777) = 0 [ 195.155140][ T6359] loop0: detected capacity change from 0 to 8192 [ 195.168937][ T6359] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 195.181942][ T6359] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 195.191135][ T6359] REISERFS (device loop0): using ordered data mode [ 195.197926][ T6359] reiserfs: using flush barriers [pid 6359] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6359] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6359] chdir("./file0") = 0 [pid 6359] ioctl(4, LOOP_CLR_FD) = 0 [pid 6359] close(4) = 0 [pid 6359] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6358] <... futex resumed>) = 0 [pid 6358] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [ 195.204168][ T6359] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 195.220530][ T6359] REISERFS (device loop0): checking transaction log (loop0) [ 195.228754][ T6359] REISERFS (device loop0): Using r5 hash to sort names [pid 6359] mkdir(".", 0777) = -1 EEXIST (File exists) [pid 6358] <... futex resumed>) = 0 [pid 6358] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6359] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6359] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6359] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6358] <... futex resumed>) = 0 [pid 6359] mkdir(".", 0777 [pid 6358] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6359] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6359] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6358] <... futex resumed>) = 0 [pid 6358] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6358] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6358] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE) = 0 [ 195.262166][ T6359] reiserfs: enabling write barrier flush mode [ 195.270655][ T6359] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6358] rt_sigprocmask(SIG_BLOCK, ~[], [pid 6359] <... mount resumed>) = 0 [pid 6358] <... rt_sigprocmask resumed>[], 8) = 0 [pid 6359] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY [pid 6358] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6361 attached [pid 6361] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053 [pid 6358] <... clone3 resumed> => {parent_tid=[6361]}, 88) = 6361 [pid 6359] <... openat resumed>) = 5 [pid 6361] <... rseq resumed>) = 0 [pid 6359] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6358] rt_sigprocmask(SIG_SETMASK, [], [pid 6361] set_robust_list(0x7fd868e9f9a0, 24 [pid 6359] <... futex resumed>) = 0 [pid 6358] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6361] <... set_robust_list resumed>) = 0 [pid 6358] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6361] rt_sigprocmask(SIG_SETMASK, [], [pid 6358] <... futex resumed>) = 0 [pid 6361] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6358] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6361] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [pid 6359] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6361] <... fsetxattr resumed>) = -1 EINVAL (Invalid argument) [pid 6361] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6358] <... futex resumed>) = 0 [pid 6361] futex(0x7fd868f8c6d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6358] exit_group(0 [pid 6361] <... futex resumed>) = ? [pid 6359] <... futex resumed>) = ? [pid 6361] +++ exited with 0 +++ [pid 6359] +++ exited with 0 +++ [pid 6358] <... exit_group resumed>) = ? [pid 6358] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6358, si_uid=0, si_status=0, si_utime=0, si_stime=13 /* 0.13 s */} --- restart_syscall(<... resuming interrupted clone ...>) = 0 umount2("./321", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./321", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(3, 0x5555565f4730 /* 4 entries */, 32768) = 112 umount2("./321/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./321/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 unlink("./321/binderfs") = 0 [ 195.323996][ T6359] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0 umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) newfstatat(AT_FDCWD, "./321/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 umount2("./321/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) openat(AT_FDCWD, "./321/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 getdents64(4, 0x5555565fc770 /* 2 entries */, 32768) = 48 getdents64(4, 0x5555565fc770 /* 0 entries */, 32768) = 0 close(4) = 0 rmdir("./321/file0") = 0 getdents64(3, 0x5555565f4730 /* 0 entries */, 32768) = 0 close(3) = 0 rmdir("./321") = 0 mkdir("./322", 0777) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 6362 attached , child_tidptr=0x5555565f3690) = 6362 [pid 6362] set_robust_list(0x5555565f36a0, 24) = 0 [pid 6362] chdir("./322") = 0 [pid 6362] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 6362] setpgid(0, 0) = 0 [pid 6362] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 6362] write(3, "1000", 4) = 4 [pid 6362] close(3) = 0 [pid 6362] symlink("/dev/binderfs", "./binderfs") = 0 [pid 6362] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6362] rt_sigaction(SIGRT_1, {sa_handler=0x7fd868f2a2b0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd868f1b460}, NULL, 8) = 0 [pid 6362] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 6362] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868ea0000 [pid 6362] mprotect(0x7fd868ea1000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 6362] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6362] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868ec0990, parent_tid=0x7fd868ec0990, exit_signal=0, stack=0x7fd868ea0000, stack_size=0x20300, tls=0x7fd868ec06c0}./strace-static-x86_64: Process 6363 attached => {parent_tid=[6363]}, 88) = 6363 [pid 6362] rt_sigprocmask(SIG_SETMASK, [], [pid 6363] rseq(0x7fd868ec0fe0, 0x20, 0, 0x53053053) = 0 [pid 6362] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6363] set_robust_list(0x7fd868ec09a0, 24 [pid 6362] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6363] <... set_robust_list resumed>) = 0 [pid 6362] <... futex resumed>) = 0 [pid 6363] rt_sigprocmask(SIG_SETMASK, [], [pid 6362] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6363] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6363] memfd_create("syzkaller", 0) = 3 [pid 6363] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd860aa0000 [pid 6363] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 [pid 6363] munmap(0x7fd860aa0000, 138412032) = 0 [pid 6363] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 6363] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 6363] close(3) = 0 [pid 6363] mkdir("./file0", 0777) = 0 [ 195.564696][ T6363] loop0: detected capacity change from 0 to 8192 [ 195.580035][ T6363] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 195.593063][ T6363] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 195.602351][ T6363] REISERFS (device loop0): using ordered data mode [ 195.608867][ T6363] reiserfs: using flush barriers [pid 6363] mount("/dev/loop0", "./file0", "reiserfs", MS_RDONLY|MS_NOSUID|MS_DIRSYNC|MS_REC|MS_SILENT|MS_RELATIME|MS_STRICTATIME, "") = 0 [pid 6363] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 6363] chdir("./file0") = 0 [pid 6363] ioctl(4, LOOP_CLR_FD) = 0 [pid 6363] close(4) = 0 [pid 6363] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 6362] <... futex resumed>) = 0 [pid 6362] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6362] futex(0x7fd868f8c6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 6363] <... futex resumed>) = 1 [pid 6363] mkdir(".", 0777) = -1 EEXIST (File exists) [ 195.615122][ T6363] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 195.631668][ T6363] REISERFS (device loop0): checking transaction log (loop0) [ 195.639843][ T6363] REISERFS (device loop0): Using r5 hash to sort names [pid 6363] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "") = 0 [pid 6363] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 4 [pid 6363] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 6362] <... futex resumed>) = 0 [pid 6362] futex(0x7fd868f8c6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6363] mkdir(".", 0777 [pid 6362] <... futex resumed>) = 0 [pid 6363] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 6362] futex(0x7fd868f8c6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 6362] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd868e7f000 [pid 6362] mprotect(0x7fd868e80000, 131072, PROT_READ|PROT_WRITE [pid 6363] mount(NULL, ".", 0x200000c0, MS_NOEXEC|MS_SYNCHRONOUS|MS_REMOUNT|MS_DIRSYNC|MS_NOATIME|MS_SILENT|MS_PRIVATE|MS_RELATIME|MS_I_VERSION|MS_STRICTATIME, "" [pid 6362] <... mprotect resumed>) = 0 [ 195.668090][ T6363] reiserfs: enabling write barrier flush mode [ 195.676774][ T6363] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [pid 6362] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 6362] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd868e9f990, parent_tid=0x7fd868e9f990, exit_signal=0, stack=0x7fd868e7f000, stack_size=0x20300, tls=0x7fd868e9f6c0}./strace-static-x86_64: Process 6365 attached [pid 6365] rseq(0x7fd868e9ffe0, 0x20, 0, 0x53053053) = 0 [pid 6362] <... clone3 resumed> => {parent_tid=[6365]}, 88) = 6365 [pid 6365] set_robust_list(0x7fd868e9f9a0, 24 [pid 6362] rt_sigprocmask(SIG_SETMASK, [], [pid 6365] <... set_robust_list resumed>) = 0 [pid 6362] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6365] rt_sigprocmask(SIG_SETMASK, [], [pid 6362] futex(0x7fd868f8c6d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 6365] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 6362] <... futex resumed>) = 0 [pid 6365] fsetxattr(4, "security.ima", "\x04\x07", 2, 0 [ 195.718029][ T6363] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 195.727642][ T6365] general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#1] PREEMPT SMP KASAN [ 195.739441][ T6365] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f] [ 195.747918][ T6365] CPU: 0 PID: 6365 Comm: syz-executor145 Not tainted 6.7.0-rc7-syzkaller-00049-g453f5db0619e #0 [ 195.758309][ T6365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [pid 6362] futex(0x7fd868f8c6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 6363] <... mount resumed>) = 0 [pid 6363] openat(AT_FDCWD, ".", O_RDONLY|O_DIRECTORY) = 5 [pid 6363] futex(0x7fd868f8c6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 195.768343][ T6365] RIP: 0010:reiserfs_xattr_set+0x2d4/0x5c0 [ 195.774156][ T6365] Code: e9 03 80 3c 11 00 0f 85 e0 02 00 00 4d 8b a4 24 a0 05 00 00 48 ba 00 00 00 00 00 fc ff df 49 8d 7c 24 68 48 89 f9 48 c1 e9 03 <80> 3c 11 00 0f 85 cc 02 00 00 49 83 7c 24 68 00 0f 84 eb 01 00 00 [ 195.793776][ T6365] RSP: 0018:ffffc9000a22f8f0 EFLAGS: 00010212 [ 195.799825][ T6365] RAX: 000000000000006c RBX: ffff88805d650190 RCX: 000000000000000d [ 195.807778][ T6365] RDX: dffffc0000000000 RSI: ffffffff822cd9af RDI: 0000000000000068 [ 195.815742][ T6365] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 195.823701][ T6365] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000000 [ 195.831665][ T6365] R13: ffff88801c4e0000 R14: ffff88805d6501b8 R15: 0000000000000036 [ 195.839719][ T6365] FS: 00007fd868e9f6c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 195.848640][ T6365] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 195.855217][ T6365] CR2: 00007fd868e9fd58 CR3: 0000000079dbb000 CR4: 0000000000350ef0 [ 195.863181][ T6365] Call Trace: [ 195.866451][ T6365] [ 195.869377][ T6365] ? show_regs+0x8f/0xa0 [ 195.873719][ T6365] ? die_addr+0x4f/0xd0 [ 195.877869][ T6365] ? exc_general_protection+0x155/0x230 [ 195.883428][ T6365] ? asm_exc_general_protection+0x26/0x30 [ 195.889164][ T6365] ? reiserfs_xattr_set+0x28f/0x5c0 [ 195.894350][ T6365] ? reiserfs_xattr_set+0x2d4/0x5c0 [ 195.899537][ T6365] ? reiserfs_xattr_set_handle+0xce0/0xce0 [ 195.905339][ T6365] ? __up_read+0x1fc/0x760 [ 195.909754][ T6365] ? down_read+0xc9/0x330 [ 195.914086][ T6365] ? reiserfs_initxattrs+0x190/0x190 [ 195.919357][ T6365] security_set+0x85/0xb0 [ 195.923675][ T6365] __vfs_setxattr+0x173/0x1d0 [ 195.928346][ T6365] ? evm_inode_init_security+0x310/0x310 [ 195.933971][ T6365] ? __vfs_removexattr+0x1c0/0x1c0 [ 195.939077][ T6365] __vfs_setxattr_noperm+0x127/0x5e0 [ 195.944445][ T6365] __vfs_setxattr_locked+0x17e/0x250 [ 195.949732][ T6365] vfs_setxattr+0x146/0x350 [ 195.954233][ T6365] ? __vfs_setxattr_locked+0x250/0x250 [ 195.959685][ T6365] ? __might_fault+0xe6/0x1a0 [ 195.964356][ T6365] do_setxattr+0x142/0x170 [ 195.968769][ T6365] setxattr+0x159/0x170 [ 195.972920][ T6365] ? do_setxattr+0x170/0x170 [ 195.977503][ T6365] ? do_raw_spin_lock+0x12e/0x2b0 [ 195.982525][ T6365] ? mnt_get_write_access+0x20c/0x300 [ 195.987885][ T6365] __x64_sys_fsetxattr+0x25e/0x310 [ 195.992989][ T6365] do_syscall_64+0x40/0x110 [ 195.997484][ T6365] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 196.003366][ T6365] RIP: 0033:0x7fd868f03e99 [ 196.007768][ T6365] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 196.027539][ T6365] RSP: 002b:00007fd868e9f228 EFLAGS: 00000246 ORIG_RAX: 00000000000000be [ 196.035941][ T6365] RAX: ffffffffffffffda RBX: 00007fd868f8c6d8 RCX: 00007fd868f03e99 [ 196.043896][ T6365] RDX: 0000000020000400 RSI: 00000000200003c0 RDI: 0000000000000004 [ 196.051854][ T6365] RBP: 00007fd868f8c6d0 R08: 0000000000000000 R09: 00007fd868e9f6c0 [ 196.059813][ T6365] R10: 0000000000000002 R11: 0000000000000246 R12: 00007fd868f58073 [pid 6363] futex(0x7fd868f8c6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 6362] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 196.067862][ T6365] R13: 00007fd868f5806b R14: 3404af7c435ebb98 R15: 00007ffd907624e8 [ 196.075827][ T6365] [ 196.078829][ T6365] Modules linked in: [ 196.082998][ T6365] ---[ end trace 0000000000000000 ]--- [ 196.089203][ T6365] RIP: 0010:reiserfs_xattr_set+0x2d4/0x5c0 [ 196.095117][ T6365] Code: e9 03 80 3c 11 00 0f 85 e0 02 00 00 4d 8b a4 24 a0 05 00 00 48 ba 00 00 00 00 00 fc ff df 49 8d 7c 24 68 48 89 f9 48 c1 e9 03 <80> 3c 11 00 0f 85 cc 02 00 00 49 83 7c 24 68 00 0f 84 eb 01 00 00 [ 196.115050][ T6365] RSP: 0018:ffffc9000a22f8f0 EFLAGS: 00010212 [ 196.121115][ T6365] RAX: 000000000000006c RBX: ffff88805d650190 RCX: 000000000000000d [ 196.129112][ T6365] RDX: dffffc0000000000 RSI: ffffffff822cd9af RDI: 0000000000000068 [ 196.137104][ T6365] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 196.145127][ T6365] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000000 [ 196.153138][ T6365] R13: ffff88801c4e0000 R14: ffff88805d6501b8 R15: 0000000000000036 [ 196.161100][ T6365] FS: 00007fd868e9f6c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 196.170056][ T6365] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 196.176669][ T6365] CR2: 00007fd860e9f000 CR3: 0000000079dbb000 CR4: 0000000000350ef0 [ 196.184673][ T6365] Kernel panic - not syncing: Fatal exception [ 196.191079][ T6365] Kernel Offset: disabled [ 196.195385][ T6365] Rebooting in 86400 seconds..