./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2136749939 <...> Warning: Permanently added '10.128.0.228' (ED25519) to the list of known hosts. execve("./syz-executor2136749939", ["./syz-executor2136749939"], 0x7ffcaef974b0 /* 10 vars */) = 0 brk(NULL) = 0x5555663ee000 brk(0x5555663eed40) = 0x5555663eed40 arch_prctl(ARCH_SET_FS, 0x5555663ee3c0) = 0 set_tid_address(0x5555663ee690) = 5846 set_robust_list(0x5555663ee6a0, 24) = 0 rseq(0x5555663eece0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2136749939", 4096) = 28 getrandom("\xcb\x4b\x6a\xdf\x07\xc2\x41\x53", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555663eed40 brk(0x55556640fd40) = 0x55556640fd40 brk(0x555566410000) = 0x555566410000 mprotect(0x7f06a3034000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555663ee690) = 5847 ./strace-static-x86_64: Process 5847 attached [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5847] set_robust_list(0x5555663ee6a0, 24) = 0 ./strace-static-x86_64: Process 5848 attached [pid 5846] <... clone resumed>, child_tidptr=0x5555663ee690) = 5848 [pid 5848] set_robust_list(0x5555663ee6a0, 24 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5848] <... set_robust_list resumed>) = 0 [pid 5847] mkdir("./syzkaller.jszW6U", 0700./strace-static-x86_64: Process 5849 attached [pid 5848] mkdir("./syzkaller.RrZLBF", 0700 [pid 5849] set_robust_list(0x5555663ee6a0, 24) = 0 [pid 5848] <... mkdir resumed>) = 0 [pid 5847] <... mkdir resumed>) = 0 [pid 5846] <... clone resumed>, child_tidptr=0x5555663ee690) = 5849 [pid 5848] chmod("./syzkaller.RrZLBF", 0777 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5849] mkdir("./syzkaller.DPWPVT", 0700 [pid 5848] <... chmod resumed>) = 0 [pid 5847] chmod("./syzkaller.jszW6U", 0777) = 0 ./strace-static-x86_64: Process 5850 attached [pid 5849] <... mkdir resumed>) = 0 [pid 5848] chdir("./syzkaller.RrZLBF" [pid 5847] chdir("./syzkaller.jszW6U" [pid 5846] <... clone resumed>, child_tidptr=0x5555663ee690) = 5850 [pid 5850] set_robust_list(0x5555663ee6a0, 24 [pid 5849] chmod("./syzkaller.DPWPVT", 0777 [pid 5848] <... chdir resumed>) = 0 [pid 5847] <... chdir resumed>) = 0 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5850] <... set_robust_list resumed>) = 0 [pid 5849] <... chmod resumed>) = 0 [pid 5848] mkdir("./0", 0777 [pid 5847] mkdir("./0", 0777 [pid 5849] chdir("./syzkaller.DPWPVT"./strace-static-x86_64: Process 5851 attached [pid 5850] mkdir("./syzkaller.vMhIiZ", 0700 [pid 5848] <... mkdir resumed>) = 0 [pid 5847] <... mkdir resumed>) = 0 [pid 5849] <... chdir resumed>) = 0 [pid 5846] <... clone resumed>, child_tidptr=0x5555663ee690) = 5851 [pid 5851] set_robust_list(0x5555663ee6a0, 24 [pid 5849] mkdir("./0", 0777 [pid 5851] <... set_robust_list resumed>) = 0 [pid 5850] <... mkdir resumed>) = 0 [pid 5849] <... mkdir resumed>) = 0 [pid 5848] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5847] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5849] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5851] getrandom( [pid 5850] chmod("./syzkaller.vMhIiZ", 0777 [pid 5848] <... openat resumed>) = 3 [pid 5847] <... openat resumed>) = 3 [pid 5851] <... getrandom resumed>"\x23\xbb\x2f\x7a\xa9\x61\x87\xdb", 8, GRND_NONBLOCK) = 8 [pid 5848] ioctl(3, LOOP_CLR_FD [pid 5851] mkdir("./syzkaller.jXbnWv", 0700 [pid 5850] <... chmod resumed>) = 0 [pid 5849] <... openat resumed>) = 3 [pid 5848] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5847] ioctl(3, LOOP_CLR_FD [pid 5851] <... mkdir resumed>) = 0 [pid 5850] chdir("./syzkaller.vMhIiZ" [pid 5848] close(3 [pid 5847] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5850] <... chdir resumed>) = 0 [pid 5849] ioctl(3, LOOP_CLR_FD [pid 5851] chmod("./syzkaller.jXbnWv", 0777 [pid 5850] mkdir("./0", 0777 [pid 5849] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5848] <... close resumed>) = 0 [pid 5847] close(3 [pid 5851] <... chmod resumed>) = 0 [pid 5849] close(3) = 0 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5852 attached [pid 5851] chdir("./syzkaller.jXbnWv") = 0 [pid 5848] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5853 attached [pid 5852] set_robust_list(0x5555663ee6a0, 24 [pid 5851] mkdir("./0", 0777 [pid 5847] <... close resumed>) = 0 [pid 5853] set_robust_list(0x5555663ee6a0, 24 [pid 5852] <... set_robust_list resumed>) = 0 [pid 5851] <... mkdir resumed>) = 0 [pid 5850] <... mkdir resumed>) = 0 [pid 5847] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] chdir("./0"./strace-static-x86_64: Process 5854 attached [pid 5853] <... set_robust_list resumed>) = 0 [pid 5851] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5852] <... chdir resumed>) = 0 [pid 5850] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5849] <... clone resumed>, child_tidptr=0x5555663ee690) = 5852 [pid 5848] <... clone resumed>, child_tidptr=0x5555663ee690) = 5853 [pid 5852] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5854] set_robust_list(0x5555663ee6a0, 24 [pid 5853] chdir("./0" [pid 5852] <... prctl resumed>) = 0 [pid 5850] <... openat resumed>) = 3 [pid 5847] <... clone resumed>, child_tidptr=0x5555663ee690) = 5854 [pid 5854] <... set_robust_list resumed>) = 0 [pid 5853] <... chdir resumed>) = 0 [pid 5851] <... openat resumed>) = 3 [pid 5850] ioctl(3, LOOP_CLR_FD [pid 5854] chdir("./0" [pid 5853] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5852] setpgid(0, 0 [pid 5851] ioctl(3, LOOP_CLR_FD [pid 5854] <... chdir resumed>) = 0 [pid 5853] <... prctl resumed>) = 0 [pid 5852] <... setpgid resumed>) = 0 [pid 5851] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5850] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5853] setpgid(0, 0 [pid 5852] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5851] close(3) = 0 [pid 5851] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5855 attached [pid 5855] set_robust_list(0x5555663ee6a0, 24 [pid 5852] <... openat resumed>) = 3 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5855] chdir("./0" [pid 5851] <... clone resumed>, child_tidptr=0x5555663ee690) = 5855 [pid 5852] write(3, "1000", 4) = 4 [pid 5855] <... chdir resumed>) = 0 [pid 5852] close(3 [pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5852] <... close resumed>) = 0 [pid 5855] <... prctl resumed>) = 0 [pid 5852] symlink("/dev/binderfs", "./binderfs" [pid 5855] setpgid(0, 0 [pid 5852] <... symlink resumed>) = 0 [pid 5855] <... setpgid resumed>) = 0 [pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program executing program ) = 3 [pid 5854] <... prctl resumed>) = 0 [pid 5853] <... setpgid resumed>) = 0 [pid 5850] close(3) = 0 [pid 5855] write(3, "1000", 4) = 4 [pid 5853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] write(1, "executing program\n", 18 [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5854] setpgid(0, 0 [pid 5855] close(3) = 0 [pid 5852] <... write resumed>) = 18 [pid 5855] symlink("/dev/binderfs", "./binderfs" [pid 5852] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] <... symlink resumed>) = 0 [pid 5854] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5857 attached [pid 5857] set_robust_list(0x5555663ee6a0, 24 [pid 5852] <... futex resumed>) = 0 [pid 5857] <... set_robust_list resumed>) = 0 [pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5852] rt_sigaction(SIGRT_1, {sa_handler=0x7f06a2fcf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f06a2fc01d0}, [pid 5857] chdir("./0" [pid 5855] write(1, "executing program\n", 18 [pid 5852] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5854] <... openat resumed>) = 3 [pid 5850] <... clone resumed>, child_tidptr=0x5555663ee690) = 5857 [pid 5855] <... write resumed>) = 18 [pid 5853] <... openat resumed>) = 3 [pid 5852] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5857] <... chdir resumed>) = 0 [pid 5855] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] write(3, "1000", 4 [pid 5852] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5855] <... futex resumed>) = 0 [pid 5852] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5857] <... prctl resumed>) = 0 [pid 5855] rt_sigaction(SIGRT_1, {sa_handler=0x7f06a2fcf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f06a2fc01d0}, [pid 5854] <... write resumed>) = 4 [pid 5852] <... mmap resumed>) = 0x7f06a2f3f000 [pid 5857] setpgid(0, 0 [pid 5855] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5854] close(3 [pid 5853] write(3, "1000", 4 [pid 5852] mprotect(0x7f06a2f40000, 131072, PROT_READ|PROT_WRITEexecuting program [pid 5857] <... setpgid resumed>) = 0 [pid 5855] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5854] <... close resumed>) = 0 [pid 5853] <... write resumed>) = 4 [pid 5852] <... mprotect resumed>) = 0 [pid 5857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5855] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5854] symlink("/dev/binderfs", "./binderfs" [pid 5853] close(3 [pid 5857] <... openat resumed>) = 3 [pid 5855] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5854] <... symlink resumed>) = 0 [pid 5853] <... close resumed>) = 0 [pid 5852] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5853] symlink("/dev/binderfs", "./binderfs" [pid 5857] write(3, "1000", 4 [pid 5855] <... mmap resumed>) = 0x7f06a2f3f000 [pid 5852] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5857] <... write resumed>) = 4 [pid 5855] mprotect(0x7f06a2f40000, 131072, PROT_READ|PROT_WRITE [pid 5854] write(1, "executing program\n", 18 [pid 5853] <... symlink resumed>) = 0 [pid 5852] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f5f990, parent_tid=0x7f06a2f5f990, exit_signal=0, stack=0x7f06a2f3f000, stack_size=0x20300, tls=0x7f06a2f5f6c0}./strace-static-x86_64: Process 5858 attached [pid 5857] close(3 [pid 5855] <... mprotect resumed>) = 0 [pid 5854] <... write resumed>) = 18 executing program [pid 5853] write(1, "executing program\n", 18 [pid 5858] rseq(0x7f06a2f5ffe0, 0x20, 0, 0x53053053 [pid 5857] <... close resumed>) = 0 [pid 5855] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5854] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] <... write resumed>) = 18 [pid 5858] <... rseq resumed>) = 0 [pid 5857] symlink("/dev/binderfs", "./binderfs" [pid 5854] <... futex resumed>) = 0 [pid 5853] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000executing program [pid 5858] set_robust_list(0x7f06a2f5f9a0, 24 [pid 5857] <... symlink resumed>) = 0 [pid 5855] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5854] rt_sigaction(SIGRT_1, {sa_handler=0x7f06a2fcf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f06a2fc01d0}, [pid 5852] <... clone3 resumed> => {parent_tid=[5858]}, 88) = 5858 [pid 5858] <... set_robust_list resumed>) = 0 [pid 5854] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5858] rt_sigprocmask(SIG_SETMASK, [], [pid 5855] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f5f990, parent_tid=0x7f06a2f5f990, exit_signal=0, stack=0x7f06a2f3f000, stack_size=0x20300, tls=0x7f06a2f5f6c0} [pid 5852] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5859 attached [pid 5858] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5852] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] rseq(0x7f06a2f5ffe0, 0x20, 0, 0x53053053 [pid 5858] memfd_create("syzkaller", 0 [pid 5857] write(1, "executing program\n", 18 [pid 5852] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... rseq resumed>) = 0 [pid 5852] <... futex resumed>) = 0 [pid 5857] <... write resumed>) = 18 [pid 5852] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5859] set_robust_list(0x7f06a2f5f9a0, 24 [pid 5857] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] <... clone3 resumed> => {parent_tid=[5859]}, 88) = 5859 [pid 5859] <... set_robust_list resumed>) = 0 [pid 5858] <... memfd_create resumed>) = 3 [pid 5857] <... futex resumed>) = 0 [pid 5855] rt_sigprocmask(SIG_SETMASK, [], [pid 5859] rt_sigprocmask(SIG_SETMASK, [], [pid 5858] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5857] rt_sigaction(SIGRT_1, {sa_handler=0x7f06a2fcf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f06a2fc01d0}, [pid 5855] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5854] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5859] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5858] <... mmap resumed>) = 0x7f069aa00000 [pid 5857] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5855] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5859] memfd_create("syzkaller", 0 [pid 5857] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5855] <... futex resumed>) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5853] rt_sigaction(SIGRT_1, {sa_handler=0x7f06a2fcf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f06a2fc01d0}, [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5855] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5857] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f06a2f3f000 [pid 5859] <... memfd_create resumed>) = 3 [pid 5857] mprotect(0x7f06a2f40000, 131072, PROT_READ|PROT_WRITE [pid 5859] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5857] <... mprotect resumed>) = 0 [pid 5859] <... mmap resumed>) = 0x7f069aa00000 [pid 5858] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5857] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5854] <... mmap resumed>) = 0x7f06a2f3f000 [pid 5853] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5854] mprotect(0x7f06a2f40000, 131072, PROT_READ|PROT_WRITE [pid 5857] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5853] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5854] <... mprotect resumed>) = 0 [pid 5853] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f5f990, parent_tid=0x7f06a2f5f990, exit_signal=0, stack=0x7f06a2f3f000, stack_size=0x20300, tls=0x7f06a2f5f6c0}./strace-static-x86_64: Process 5860 attached [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5853] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5854] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5858] <... write resumed>) = 65536 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f5f990, parent_tid=0x7f06a2f5f990, exit_signal=0, stack=0x7f06a2f3f000, stack_size=0x20300, tls=0x7f06a2f5f6c0} [pid 5853] <... mmap resumed>) = 0x7f06a2f3f000 [pid 5853] mprotect(0x7f06a2f40000, 131072, PROT_READ|PROT_WRITE [pid 5860] rseq(0x7f06a2f5ffe0, 0x20, 0, 0x53053053 [pid 5859] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5853] <... mprotect resumed>) = 0 [pid 5860] <... rseq resumed>) = 0 [pid 5857] <... clone3 resumed> => {parent_tid=[5860]}, 88) = 5860 ./strace-static-x86_64: Process 5861 attached [pid 5860] set_robust_list(0x7f06a2f5f9a0, 24 [pid 5858] munmap(0x7f069aa00000, 138412032 [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5854] <... clone3 resumed> => {parent_tid=[5861]}, 88) = 5861 [pid 5853] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5861] rseq(0x7f06a2f5ffe0, 0x20, 0, 0x53053053 [pid 5860] <... set_robust_list resumed>) = 0 [pid 5859] <... write resumed>) = 65536 [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5861] <... rseq resumed>) = 0 [pid 5860] rt_sigprocmask(SIG_SETMASK, [], [pid 5858] <... munmap resumed>) = 0 [pid 5857] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5854] rt_sigprocmask(SIG_SETMASK, [], [pid 5853] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f5f990, parent_tid=0x7f06a2f5f990, exit_signal=0, stack=0x7f06a2f3f000, stack_size=0x20300, tls=0x7f06a2f5f6c0} [pid 5860] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] munmap(0x7f069aa00000, 138412032./strace-static-x86_64: Process 5862 attached [pid 5861] set_robust_list(0x7f06a2f5f9a0, 24 [pid 5853] <... clone3 resumed> => {parent_tid=[5862]}, 88) = 5862 [pid 5861] <... set_robust_list resumed>) = 0 [pid 5860] memfd_create("syzkaller", 0 [pid 5853] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] rt_sigprocmask(SIG_SETMASK, [], [pid 5857] <... futex resumed>) = 0 [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] <... munmap resumed>) = 0 [pid 5853] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] rseq(0x7f06a2f5ffe0, 0x20, 0, 0x53053053 [pid 5861] futex(0x7f06a303a6a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] <... rseq resumed>) = 0 [pid 5853] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] set_robust_list(0x7f06a2f5f9a0, 24 [pid 5860] <... memfd_create resumed>) = 3 [pid 5858] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5857] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5854] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] <... futex resumed>) = 0 [pid 5860] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5859] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5858] <... openat resumed>) = 4 [pid 5862] <... set_robust_list resumed>) = 0 [pid 5861] <... futex resumed>) = 0 [pid 5860] <... mmap resumed>) = 0x7f069aa00000 [pid 5859] <... openat resumed>) = 4 [pid 5858] ioctl(4, LOOP_SET_FD, 3 [pid 5854] <... futex resumed>) = 1 [pid 5853] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5862] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] memfd_create("syzkaller", 0 [pid 5860] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5859] ioctl(4, LOOP_SET_FD, 3 [pid 5854] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5861] <... memfd_create resumed>) = 3 [pid 5861] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f069aa00000 [pid 5862] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] memfd_create("syzkaller", 0 [pid 5861] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5860] <... write resumed>) = 65536 [pid 5859] <... ioctl resumed>) = 0 [pid 5862] <... memfd_create resumed>) = 3 [pid 5860] munmap(0x7f069aa00000, 138412032 [pid 5859] close(3 [pid 5858] <... ioctl resumed>) = 0 [pid 5862] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5860] <... munmap resumed>) = 0 [pid 5859] <... close resumed>) = 0 [pid 5858] close(3 [pid 5862] <... mmap resumed>) = 0x7f069aa00000 [pid 5860] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5859] close(4 [pid 5858] <... close resumed>) = 0 [pid 5860] <... openat resumed>) = 4 [pid 5859] <... close resumed>) = 0 [pid 5858] close(4 [pid 5860] ioctl(4, LOOP_SET_FD, 3 [pid 5859] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5858] <... close resumed>) = 0 [pid 5862] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536 [pid 5861] <... write resumed>) = 65536 [pid 5860] <... ioctl resumed>) = 0 [pid 5859] <... mkdir resumed>) = 0 [pid 5858] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5861] munmap(0x7f069aa00000, 138412032 [pid 5860] close(3 [ 125.678799][ T5858] loop2: detected capacity change from 0 to 128 [ 125.687945][ T5859] loop4: detected capacity change from 0 to 128 [ 125.700547][ T5860] loop3: detected capacity change from 0 to 128 [ 125.715131][ T5859] ======================================================= [ 125.715131][ T5859] WARNING: The mand mount option has been deprecated and [pid 5859] mount("/dev/loop4", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_RDONLY|MS_NODEV|MS_SYNCHRONOUS|MS_MANDLOCK|MS_SILENT|MS_LAZYTIME, "\xff\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37" [pid 5858] <... mkdir resumed>) = 0 [pid 5862] <... write resumed>) = 65536 [pid 5861] <... munmap resumed>) = 0 [pid 5862] munmap(0x7f069aa00000, 138412032 [pid 5861] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5860] <... close resumed>) = 0 [pid 5860] close(4) = 0 [pid 5860] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5862] <... munmap resumed>) = 0 [pid 5862] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5861] <... openat resumed>) = 4 [pid 5860] <... mkdir resumed>) = 0 [pid 5862] <... openat resumed>) = 4 [pid 5860] mount("/dev/loop3", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_RDONLY|MS_NODEV|MS_SYNCHRONOUS|MS_MANDLOCK|MS_SILENT|MS_LAZYTIME, "\xff\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37" [pid 5861] ioctl(4, LOOP_SET_FD, 3 [pid 5862] ioctl(4, LOOP_SET_FD, 3 [pid 5860] <... mount resumed>) = 0 [pid 5859] <... mount resumed>) = 0 [pid 5860] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY) = 3 [pid 5860] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5859] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5860] <... chdir resumed>) = 0 [pid 5859] <... openat resumed>) = 3 [pid 5860] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5859] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5860] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... chdir resumed>) = 0 [pid 5858] mount("/dev/loop2", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_RDONLY|MS_NODEV|MS_SYNCHRONOUS|MS_MANDLOCK|MS_SILENT|MS_LAZYTIME, "\xff\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37" [pid 5859] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5862] <... ioctl resumed>) = 0 [pid 5861] <... ioctl resumed>) = 0 [pid 5860] <... futex resumed>) = 1 [pid 5859] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5860] futex(0x7f06a303a6a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] <... futex resumed>) = 0 [pid 5860] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5857] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5860] openat(AT_FDCWD, "mnt", O_RDONLY [pid 5857] <... futex resumed>) = 0 [ 125.715131][ T5859] and is ignored by this kernel. Remove the mand [ 125.715131][ T5859] option from the mount to silence this warning. [ 125.715131][ T5859] ======================================================= [ 125.753437][ T5861] loop0: detected capacity change from 0 to 128 [ 125.760288][ T5862] loop1: detected capacity change from 0 to 128 [pid 5862] close(3 [pid 5861] close(3 [pid 5859] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5859] <... futex resumed>) = 1 [pid 5855] <... futex resumed>) = 0 [pid 5855] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] <... close resumed>) = 0 [pid 5861] <... close resumed>) = 0 [pid 5859] openat(AT_FDCWD, "mnt", O_RDONLY [pid 5858] <... mount resumed>) = 0 [pid 5858] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY) = 3 [pid 5855] <... futex resumed>) = 0 [pid 5855] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f") = 0 [pid 5858] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5858] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5858] futex(0x7f06a303a6a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5852] <... futex resumed>) = 0 [pid 5852] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] <... futex resumed>) = 0 [ 125.781174][ T5860] syz-executor213: attempt to access beyond end of device [ 125.781174][ T5860] loop3: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 125.799195][ T5859] syz-executor213: attempt to access beyond end of device [ 125.799195][ T5859] loop4: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 125.801323][ T5858] syz-executor213: attempt to access beyond end of device [ 125.801323][ T5858] loop2: rw=0, sector=6491536, nr_sectors = 2 limit=128 [pid 5858] openat(AT_FDCWD, "mnt", O_RDONLY [pid 5862] close(4 [pid 5861] close(4 [pid 5852] <... futex resumed>) = 1 [pid 5852] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] <... close resumed>) = 0 [pid 5861] <... close resumed>) = 0 [pid 5862] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5861] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5862] <... mkdir resumed>) = 0 [pid 5861] <... mkdir resumed>) = 0 [pid 5861] mount("/dev/loop0", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_RDONLY|MS_NODEV|MS_SYNCHRONOUS|MS_MANDLOCK|MS_SILENT|MS_LAZYTIME, "\xff\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37" [pid 5862] mount("/dev/loop1", "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", "sysv", MS_RDONLY|MS_NODEV|MS_SYNCHRONOUS|MS_MANDLOCK|MS_SILENT|MS_LAZYTIME, "\xff\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x30\x31\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37\x37" [pid 5855] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5855] futex(0x7f06a303a6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5855] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f06a2f1e000 [pid 5855] mprotect(0x7f06a2f1f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5855] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5855] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f3e990, parent_tid=0x7f06a2f3e990, exit_signal=0, stack=0x7f06a2f1e000, stack_size=0x20300, tls=0x7f06a2f3e6c0} [pid 5862] <... mount resumed>) = 0 [pid 5855] <... clone3 resumed> => {parent_tid=[5865]}, 88) = 5865 [pid 5862] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5855] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5855] futex(0x7f06a303a6b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5855] futex(0x7f06a303a6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5857] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5857] futex(0x7f06a303a6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5857] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f06a2f1e000 [pid 5857] mprotect(0x7f06a2f1f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5857] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5857] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f3e990, parent_tid=0x7f06a2f3e990, exit_signal=0, stack=0x7f06a2f1e000, stack_size=0x20300, tls=0x7f06a2f3e6c0} => {parent_tid=[5866]}, 88) = 5866 [pid 5862] <... openat resumed>) = 3 [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] <... mount resumed>) = 0 [pid 5862] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5862] <... chdir resumed>) = 0 [pid 5857] futex(0x7f06a303a6b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5862] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5861] openat(AT_FDCWD, "\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", O_RDONLY|O_DIRECTORY [pid 5857] <... futex resumed>) = 0 [ 125.815613][ T5859] Buffer I/O error on dev loop4, logical block 3245768, async page read [ 125.835926][ T5860] Buffer I/O error on dev loop3, logical block 3245768, async page read [ 125.845833][ T5859] syz-executor213: attempt to access beyond end of device [ 125.845833][ T5859] loop4: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 125.847345][ T5860] syz-executor213: attempt to access beyond end of device [ 125.847345][ T5860] loop3: rw=0, sector=17666806, nr_sectors = 2 limit=128 [pid 5857] futex(0x7f06a303a6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5866 attached ./strace-static-x86_64: Process 5865 attached [pid 5862] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5861] <... openat resumed>) = 3 [pid 5852] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5852] futex(0x7f06a303a6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5865] rseq(0x7f06a2f3efe0, 0x20, 0, 0x53053053 [pid 5852] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5865] <... rseq resumed>) = 0 [pid 5852] <... mmap resumed>) = 0x7f06a2f1e000 [pid 5865] set_robust_list(0x7f06a2f3e9a0, 24 [pid 5852] mprotect(0x7f06a2f1f000, 131072, PROT_READ|PROT_WRITE [pid 5865] <... set_robust_list resumed>) = 0 [pid 5852] <... mprotect resumed>) = 0 [pid 5865] rt_sigprocmask(SIG_SETMASK, [], [pid 5852] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5865] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5852] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5865] openat(AT_FDCWD, "blkio.bfq.io_service_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5852] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f3e990, parent_tid=0x7f06a2f3e990, exit_signal=0, stack=0x7f06a2f1e000, stack_size=0x20300, tls=0x7f06a2f3e6c0} => {parent_tid=[5867]}, 88) = 5867 [pid 5852] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5852] futex(0x7f06a303a6b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5852] futex(0x7f06a303a6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5867 attached [pid 5867] rseq(0x7f06a2f3efe0, 0x20, 0, 0x53053053) = 0 [pid 5867] set_robust_list(0x7f06a2f3e9a0, 24) = 0 [pid 5867] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5867] openat(AT_FDCWD, "blkio.bfq.io_service_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5862] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] chdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f" [pid 5866] rseq(0x7f06a2f3efe0, 0x20, 0, 0x53053053 [pid 5862] <... futex resumed>) = 1 [pid 5861] <... chdir resumed>) = 0 [pid 5853] <... futex resumed>) = 0 [ 125.884990][ T5858] Buffer I/O error on dev loop2, logical block 3245768, async page read [ 125.888572][ T5859] Buffer I/O error on dev loop4, logical block 8833403, async page read [ 125.900046][ T5858] syz-executor213: attempt to access beyond end of device [ 125.900046][ T5858] loop2: rw=0, sector=17666806, nr_sectors = 2 limit=128 [ 125.918136][ T5859] syz-executor213: attempt to access beyond end of device [ 125.918136][ T5859] loop4: rw=0, sector=26539618, nr_sectors = 2 limit=128 [pid 5866] <... rseq resumed>) = 0 [pid 5862] openat(AT_FDCWD, "mnt", O_RDONLY [pid 5861] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5857] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5855] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5853] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5853] <... futex resumed>) = 0 [pid 5852] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 125.921243][ T5860] Buffer I/O error on dev loop3, logical block 8833403, async page read [ 125.933647][ T5859] Buffer I/O error on dev loop4, logical block 13269809, async page read [ 125.942826][ T5858] Buffer I/O error on dev loop2, logical block 8833403, async page read [ 125.950271][ T5862] syz-executor213: attempt to access beyond end of device [ 125.950271][ T5862] loop1: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 125.959339][ T5860] syz-executor213: attempt to access beyond end of device [ 125.959339][ T5860] loop3: rw=0, sector=26539618, nr_sectors = 2 limit=128 [pid 5866] set_robust_list(0x7f06a2f3e9a0, 24 [pid 5861] futex(0x7f06a303a6ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] <... set_robust_list resumed>) = 0 [pid 5861] <... futex resumed>) = 1 [pid 5854] <... futex resumed>) = 0 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] openat(AT_FDCWD, "mnt", O_RDONLY [pid 5854] futex(0x7f06a303a6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5866] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5854] futex(0x7f06a303a6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] openat(AT_FDCWD, "blkio.bfq.io_service_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5853] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5853] futex(0x7f06a303a6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5853] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f06a2f1e000 [pid 5853] mprotect(0x7f06a2f1f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5853] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5853] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f3e990, parent_tid=0x7f06a2f3e990, exit_signal=0, stack=0x7f06a2f1e000, stack_size=0x20300, tls=0x7f06a2f3e6c0}./strace-static-x86_64: Process 5868 attached [ 125.972752][ T5862] Buffer I/O error on dev loop1, logical block 3245768, async page read [ 125.988254][ T5858] syz-executor213: attempt to access beyond end of device [ 125.988254][ T5858] loop2: rw=0, sector=26539618, nr_sectors = 2 limit=128 [ 125.995345][ T5859] Buffer I/O error on dev loop4, logical block 8073606, async page read [ 126.010317][ T5858] Buffer I/O error on dev loop2, logical block 13269809, async page read => {parent_tid=[5868]}, 88) = 5868 [pid 5853] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5853] futex(0x7f06a303a6b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5868] rseq(0x7f06a2f3efe0, 0x20, 0, 0x53053053 [pid 5853] <... futex resumed>) = 0 [pid 5868] <... rseq resumed>) = 0 [pid 5868] set_robust_list(0x7f06a2f3e9a0, 24 [pid 5853] futex(0x7f06a303a6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5868] <... set_robust_list resumed>) = 0 [pid 5868] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5868] openat(AT_FDCWD, "blkio.bfq.io_service_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5854] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5854] futex(0x7f06a303a6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5854] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f06a2f1e000 [pid 5854] mprotect(0x7f06a2f1f000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5854] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5854] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f06a2f3e990, parent_tid=0x7f06a2f3e990, exit_signal=0, stack=0x7f06a2f1e000, stack_size=0x20300, tls=0x7f06a2f3e6c0} => {parent_tid=[5869]}, 88) = 5869 ./strace-static-x86_64: Process 5869 attached [pid 5854] rt_sigprocmask(SIG_SETMASK, [], [pid 5869] rseq(0x7f06a2f3efe0, 0x20, 0, 0x53053053 [pid 5854] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5869] <... rseq resumed>) = 0 [pid 5869] set_robust_list(0x7f06a2f3e9a0, 24 [pid 5854] futex(0x7f06a303a6b8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5869] rt_sigprocmask(SIG_SETMASK, [], [pid 5854] futex(0x7f06a303a6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5869] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5869] openat(AT_FDCWD, "blkio.bfq.io_service_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 [pid 5853] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5854] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5855] exit_group(0) = ? [pid 5857] exit_group(0) = ? [pid 5852] exit_group(0) = ? [pid 5853] exit_group(0) = ? [pid 5854] exit_group(0) = ? [pid 5848] kill(-5853, SIGKILL) = 0 [pid 5848] kill(5853, SIGKILL [pid 5849] kill(-5852, SIGKILL [pid 5848] <... kill resumed>) = 0 [pid 5849] <... kill resumed>) = 0 [pid 5849] kill(5852, SIGKILL) = 0 [pid 5847] kill(-5854, SIGKILL) = 0 [pid 5847] kill(5854, SIGKILL) = 0 [pid 5851] kill(-5855, SIGKILL) = 0 [pid 5851] kill(5855, SIGKILL) = 0 [pid 5850] kill(-5857, SIGKILL) = 0 [pid 5850] kill(5857, SIGKILL) = 0 [pid 5848] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5848] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5849] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5848] getdents64(3, [pid 5849] <... openat resumed>) = 3 [pid 5848] <... getdents64 resumed>0x5555663ef730 /* 2 entries */, 32768) = 48 [pid 5849] newfstatat(3, "", [pid 5848] getdents64(3, [pid 5849] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5848] <... getdents64 resumed>0x5555663ef730 /* 0 entries */, 32768) = 0 [pid 5849] getdents64(3, [pid 5848] close(3 [pid 5849] <... getdents64 resumed>0x5555663ef730 /* 2 entries */, 32768) = 48 [pid 5848] <... close resumed>) = 0 [pid 5849] getdents64(3, 0x5555663ef730 /* 0 entries */, 32768) = 0 [pid 5849] close(3) = 0 [pid 5850] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5850] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5850] getdents64(3, 0x5555663ef730 /* 2 entries */, 32768) = 48 [pid 5850] getdents64(3, 0x5555663ef730 /* 0 entries */, 32768) = 0 [pid 5850] close(3) = 0 [pid 5851] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5851] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5851] getdents64(3, 0x5555663ef730 /* 2 entries */, 32768) = 48 [pid 5851] getdents64(3, 0x5555663ef730 /* 0 entries */, 32768) = 0 [pid 5851] close(3) = 0 [pid 5847] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5847] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5847] getdents64(3, 0x5555663ef730 /* 2 entries */, 32768) = 48 [pid 5847] getdents64(3, 0x5555663ef730 /* 0 entries */, 32768) = 0 [pid 5847] close(3) = 0 [ 286.768087][ T30] INFO: task syz-executor213:5867 blocked for more than 143 seconds. [ 286.776412][ T30] Not tainted 6.12.0-rc7-syzkaller #0 [ 286.817019][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.825756][ T30] task:syz-executor213 state:D stack:27920 pid:5867 tgid:5852 ppid:5849 flags:0x00004006 [ 286.896986][ T30] Call Trace: [ 286.900325][ T30] [ 286.903280][ T30] __schedule+0x17fa/0x4bd0 [ 286.936997][ T30] ? __pfx___schedule+0x10/0x10 [ 286.941922][ T30] ? __pfx_lock_release+0x10/0x10 [ 286.977008][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.983078][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 287.026999][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.032186][ T30] ? schedule+0x90/0x320 [ 287.036454][ T30] schedule+0x14b/0x320 [ 287.087053][ T30] schedule_preempt_disabled+0x13/0x30 [ 287.092588][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 287.136980][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 287.142963][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.187007][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 287.192132][ T30] ? rcu_read_lock_any_held+0xb7/0x160 [ 287.227003][ T30] down_write+0x1d7/0x220 [ 287.231403][ T30] ? __pfx_down_write+0x10/0x10 [ 287.236278][ T30] ? sb_end_write+0xe9/0x1c0 [ 287.287010][ T30] path_openat+0x89a/0x3590 [ 287.291597][ T30] ? __lock_acquire+0x1384/0x2050 [ 287.296677][ T30] ? __pfx_path_openat+0x10/0x10 [ 287.347021][ T30] do_filp_open+0x235/0x490 [ 287.351603][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 287.356675][ T30] ? _raw_spin_unlock+0x28/0x50 [ 287.407006][ T30] ? alloc_fd+0x5a1/0x640 [ 287.411423][ T30] do_sys_openat2+0x13e/0x1d0 [ 287.416125][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 287.456996][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 287.462266][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.487033][ T30] ? ptrace_notify+0x279/0x380 [ 287.491872][ T30] __x64_sys_openat+0x247/0x2a0 [ 287.496750][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 287.547000][ T30] ? do_syscall_64+0x100/0x230 [ 287.551846][ T30] do_syscall_64+0xf3/0x230 [ 287.556380][ T30] ? clear_bhb_loop+0x35/0x90 [ 287.596985][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.602961][ T30] RIP: 0033:0x7f06a2fa8c09 [ 287.626996][ T30] RSP: 002b:00007f06a2f3e228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 287.635485][ T30] RAX: ffffffffffffffda RBX: 00007f06a303a6b8 RCX: 00007f06a2fa8c09 [ 287.676972][ T30] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c [ 287.685008][ T30] RBP: 00007f06a303a6b0 R08: 00007ffc5d2d1447 R09: 00007f06a2f3e6c0 [ 287.736974][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6bc [ 287.745014][ T30] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 287.796987][ T30] [ 287.800138][ T30] INFO: task syz-executor213:5868 blocked for more than 144 seconds. [ 287.827044][ T30] Not tainted 6.12.0-rc7-syzkaller #0 [ 287.832990][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.867079][ T30] task:syz-executor213 state:D stack:27920 pid:5868 tgid:5853 ppid:5848 flags:0x00004006 [ 287.907075][ T30] Call Trace: [ 287.910420][ T30] [ 287.913371][ T30] __schedule+0x17fa/0x4bd0 [ 287.967069][ T30] ? __pfx___schedule+0x10/0x10 [ 287.971990][ T30] ? __pfx_lock_release+0x10/0x10 [ 288.007042][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.013109][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 288.036975][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 288.042163][ T30] ? schedule+0x90/0x320 [ 288.046428][ T30] schedule+0x14b/0x320 [ 288.076985][ T30] schedule_preempt_disabled+0x13/0x30 [ 288.082510][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 288.117080][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 288.123077][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 288.167051][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 288.172174][ T30] ? rcu_read_lock_any_held+0xb7/0x160 [ 288.207009][ T30] down_write+0x1d7/0x220 [ 288.211409][ T30] ? __pfx_down_write+0x10/0x10 [ 288.216290][ T30] ? sb_end_write+0xe9/0x1c0 [ 288.256988][ T30] path_openat+0x89a/0x3590 [ 288.261610][ T30] ? __pfx_path_openat+0x10/0x10 [ 288.266597][ T30] do_filp_open+0x235/0x490 [ 288.316986][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 288.322116][ T30] ? _raw_spin_unlock+0x28/0x50 [ 288.347001][ T30] ? alloc_fd+0x5a1/0x640 [ 288.351412][ T30] do_sys_openat2+0x13e/0x1d0 [ 288.356115][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 288.387230][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 288.392514][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 288.416977][ T30] ? ptrace_notify+0x279/0x380 [ 288.421814][ T30] __x64_sys_openat+0x247/0x2a0 [ 288.426692][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 288.456977][ T30] ? do_syscall_64+0x100/0x230 [ 288.461823][ T30] do_syscall_64+0xf3/0x230 [ 288.466357][ T30] ? clear_bhb_loop+0x35/0x90 [ 288.516977][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.522939][ T30] RIP: 0033:0x7f06a2fa8c09 [ 288.556981][ T30] RSP: 002b:00007f06a2f3e228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 288.565467][ T30] RAX: ffffffffffffffda RBX: 00007f06a303a6b8 RCX: 00007f06a2fa8c09 [ 288.636974][ T30] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c [ 288.645014][ T30] RBP: 00007f06a303a6b0 R08: 00007ffc5d2d1447 R09: 00007f06a2f3e6c0 [ 288.676974][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6bc [ 288.685010][ T30] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 288.727439][ T30] [ 288.737254][ T30] INFO: task syz-executor213:5869 blocked for more than 145 seconds. [ 288.745378][ T30] Not tainted 6.12.0-rc7-syzkaller #0 [ 288.776994][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 288.785720][ T30] task:syz-executor213 state:D stack:27920 pid:5869 tgid:5854 ppid:5847 flags:0x00004006 [ 288.837273][ T30] Call Trace: [ 288.840621][ T30] [ 288.843573][ T30] __schedule+0x17fa/0x4bd0 [ 288.896992][ T30] ? __pfx___schedule+0x10/0x10 [ 288.901919][ T30] ? __pfx_lock_release+0x10/0x10 [ 288.936971][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.943041][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 288.976983][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 288.982178][ T30] ? schedule+0x90/0x320 [ 288.986444][ T30] schedule+0x14b/0x320 [ 289.016975][ T30] schedule_preempt_disabled+0x13/0x30 [ 289.022505][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 289.056974][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 289.062966][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 289.087412][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 289.092530][ T30] ? rcu_read_lock_any_held+0xb7/0x160 [ 289.126993][ T30] down_write+0x1d7/0x220 [ 289.131402][ T30] ? __pfx_down_write+0x10/0x10 [ 289.136279][ T30] ? sb_end_write+0xe9/0x1c0 [ 289.196995][ T30] path_openat+0x89a/0x3590 [ 289.201596][ T30] ? __pfx_path_openat+0x10/0x10 [ 289.206575][ T30] do_filp_open+0x235/0x490 [ 289.247014][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 289.252137][ T30] ? _raw_spin_unlock+0x28/0x50 [ 289.277185][ T30] ? alloc_fd+0x5a1/0x640 [ 289.281589][ T30] do_sys_openat2+0x13e/0x1d0 [ 289.286300][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 289.326998][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 289.332277][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 289.376980][ T30] ? ptrace_notify+0x279/0x380 [ 289.381821][ T30] __x64_sys_openat+0x247/0x2a0 [ 289.386721][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 289.427484][ T30] ? do_syscall_64+0x100/0x230 [ 289.432338][ T30] do_syscall_64+0xf3/0x230 [ 289.436874][ T30] ? clear_bhb_loop+0x35/0x90 [ 289.507004][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.512973][ T30] RIP: 0033:0x7f06a2fa8c09 [ 289.547004][ T30] RSP: 002b:00007f06a2f3e228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 289.555491][ T30] RAX: ffffffffffffffda RBX: 00007f06a303a6b8 RCX: 00007f06a2fa8c09 [ 289.596975][ T30] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c [ 289.605027][ T30] RBP: 00007f06a303a6b0 R08: 00007ffc5d2d1447 R09: 00007f06a2f3e6c0 [ 289.656972][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6bc [ 289.665041][ T30] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 289.707014][ T30] [ 289.717159][ T30] INFO: task syz-executor213:5865 blocked for more than 146 seconds. [ 289.725267][ T30] Not tainted 6.12.0-rc7-syzkaller #0 [ 289.757088][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 289.765819][ T30] task:syz-executor213 state:D stack:27288 pid:5865 tgid:5855 ppid:5851 flags:0x00004006 [ 289.836979][ T30] Call Trace: [ 289.840318][ T30] [ 289.843266][ T30] __schedule+0x17fa/0x4bd0 [ 289.867034][ T30] ? __pfx___schedule+0x10/0x10 [ 289.871954][ T30] ? __pfx_lock_release+0x10/0x10 [ 289.896980][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 289.903033][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 289.936984][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 289.942173][ T30] ? schedule+0x90/0x320 [ 289.946450][ T30] schedule+0x14b/0x320 [ 289.976984][ T30] schedule_preempt_disabled+0x13/0x30 [ 289.982513][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 290.016980][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 290.022970][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 290.056983][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 290.062094][ T30] ? rcu_read_lock_any_held+0xb7/0x160 [ 290.097003][ T30] down_write+0x1d7/0x220 [ 290.101413][ T30] ? __pfx_down_write+0x10/0x10 [ 290.106294][ T30] ? sb_end_write+0xe9/0x1c0 [ 290.167001][ T30] path_openat+0x89a/0x3590 [ 290.171611][ T30] ? __pfx_path_openat+0x10/0x10 [ 290.176598][ T30] do_filp_open+0x235/0x490 [ 290.216990][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 290.222110][ T30] ? _raw_spin_unlock+0x28/0x50 [ 290.247040][ T30] ? alloc_fd+0x5a1/0x640 [ 290.251452][ T30] do_sys_openat2+0x13e/0x1d0 [ 290.256168][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 290.296984][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 290.302257][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 290.336982][ T30] ? ptrace_notify+0x279/0x380 [ 290.341822][ T30] __x64_sys_openat+0x247/0x2a0 [ 290.346703][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 290.386980][ T30] ? do_syscall_64+0x100/0x230 [ 290.391823][ T30] do_syscall_64+0xf3/0x230 [ 290.396356][ T30] ? clear_bhb_loop+0x35/0x90 [ 290.426974][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.432950][ T30] RIP: 0033:0x7f06a2fa8c09 [ 290.466988][ T30] RSP: 002b:00007f06a2f3e228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 290.475475][ T30] RAX: ffffffffffffffda RBX: 00007f06a303a6b8 RCX: 00007f06a2fa8c09 [ 290.526976][ T30] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c [ 290.535016][ T30] RBP: 00007f06a303a6b0 R08: 00007ffc5d2d1447 R09: 00007f06a2f3e6c0 [ 290.566996][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6bc [ 290.575034][ T30] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 290.646985][ T30] [ 290.650093][ T30] INFO: task syz-executor213:5866 blocked for more than 147 seconds. [ 290.686983][ T30] Not tainted 6.12.0-rc7-syzkaller #0 [ 290.692931][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 290.726973][ T30] task:syz-executor213 state:D stack:27920 pid:5866 tgid:5857 ppid:5850 flags:0x00004006 [ 290.757036][ T30] Call Trace: [ 290.760372][ T30] [ 290.763321][ T30] __schedule+0x17fa/0x4bd0 [ 290.786995][ T30] ? __pfx___schedule+0x10/0x10 [ 290.791915][ T30] ? __pfx_lock_release+0x10/0x10 [ 290.826971][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 290.833028][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 290.876971][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 290.882154][ T30] ? schedule+0x90/0x320 [ 290.886417][ T30] schedule+0x14b/0x320 [ 290.936976][ T30] schedule_preempt_disabled+0x13/0x30 [ 290.942503][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 290.966977][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 290.972966][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 291.006975][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 291.012091][ T30] ? rcu_read_lock_any_held+0xb7/0x160 [ 291.046994][ T30] down_write+0x1d7/0x220 [ 291.051392][ T30] ? __pfx_down_write+0x10/0x10 [ 291.056277][ T30] ? sb_end_write+0xe9/0x1c0 [ 291.096978][ T30] path_openat+0x89a/0x3590 [ 291.101586][ T30] ? __pfx_path_openat+0x10/0x10 [ 291.106572][ T30] do_filp_open+0x235/0x490 [ 291.157104][ T30] ? __pfx_do_filp_open+0x10/0x10 [ 291.162229][ T30] ? _raw_spin_unlock+0x28/0x50 [ 291.197448][ T30] ? alloc_fd+0x5a1/0x640 [ 291.201860][ T30] do_sys_openat2+0x13e/0x1d0 [ 291.206566][ T30] ? __pfx_do_sys_openat2+0x10/0x10 [ 291.257048][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 291.262325][ T30] ? _raw_spin_unlock_irq+0x2e/0x50 [ 291.297059][ T30] ? ptrace_notify+0x279/0x380 [ 291.301907][ T30] __x64_sys_openat+0x247/0x2a0 [ 291.306794][ T30] ? __pfx___x64_sys_openat+0x10/0x10 [ 291.337263][ T30] ? do_syscall_64+0x100/0x230 [ 291.342108][ T30] do_syscall_64+0xf3/0x230 [ 291.346645][ T30] ? clear_bhb_loop+0x35/0x90 [ 291.387020][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.392992][ T30] RIP: 0033:0x7f06a2fa8c09 [ 291.417035][ T30] RSP: 002b:00007f06a2f3e228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 291.425525][ T30] RAX: ffffffffffffffda RBX: 00007f06a303a6b8 RCX: 00007f06a2fa8c09 [ 291.477058][ T30] RDX: 000000000000275a RSI: 0000000020000040 RDI: 00000000ffffff9c [ 291.485097][ T30] RBP: 00007f06a303a6b0 R08: 00007ffc5d2d1447 R09: 00007f06a2f3e6c0 [ 291.526992][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6bc [ 291.535031][ T30] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 291.597051][ T30] [ 291.600198][ T30] [ 291.600198][ T30] Showing all locks held in the system: [ 291.637031][ T30] 1 lock held by khungtaskd/30: [ 291.641939][ T30] #0: ffffffff8e937da0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 291.677404][ T30] 1 lock held by kswapd0/88: [ 291.682082][ T30] 2 locks held by getty/5584: [ 291.686776][ T30] #0: ffff88803122d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 291.736973][ T30] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 291.766996][ T30] 1 lock held by syz-executor213/5858: [ 291.772506][ T30] 1 lock held by syz-executor213/5867: [ 291.826990][ T30] #0: ffff8880779506c0 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: path_openat+0x89a/0x3590 [ 291.856990][ T30] 1 lock held by syz-executor213/5862: [ 291.862504][ T30] 1 lock held by syz-executor213/5868: [ 291.886994][ T30] #0: ffff8880779a8c00 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: path_openat+0x89a/0x3590 [ 291.916982][ T30] 2 locks held by syz-executor213/5861: [ 291.922583][ T30] 1 lock held by syz-executor213/5869: [ 291.966990][ T30] #0: ffff8880779a86c0 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: path_openat+0x89a/0x3590 [ 292.007416][ T30] 1 lock held by syz-executor213/5859: [ 292.012933][ T30] 1 lock held by syz-executor213/5865: [ 292.036975][ T30] #0: ffff8880779a8180 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: path_openat+0x89a/0x3590 [ 292.076993][ T30] 1 lock held by syz-executor213/5860: [ 292.082503][ T30] 1 lock held by syz-executor213/5866: [ 292.107011][ T30] #0: ffff888077950180 (&type->i_mutex_dir_key#6){++++}-{3:3}, at: path_openat+0x89a/0x3590 [ 292.156970][ T30] [ 292.159349][ T30] ============================================= [ 292.159349][ T30] [ 292.197088][ T30] NMI backtrace for cpu 1 [ 292.201482][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc7-syzkaller #0 [ 292.210268][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 292.220348][ T30] Call Trace: [ 292.223639][ T30] [ 292.226588][ T30] dump_stack_lvl+0x241/0x360 [ 292.231296][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 292.236521][ T30] ? __pfx__printk+0x10/0x10 [ 292.241147][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 292.246115][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 292.251598][ T30] ? _printk+0xd5/0x120 [ 292.255773][ T30] ? __pfx__printk+0x10/0x10 [ 292.260406][ T30] ? __wake_up_klogd+0xcc/0x110 [ 292.265298][ T30] ? __pfx__printk+0x10/0x10 [ 292.269916][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 292.274969][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 292.280975][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 292.286983][ T30] watchdog+0xff4/0x1040 [ 292.291258][ T30] ? watchdog+0x1ea/0x1040 [ 292.295703][ T30] ? __pfx_watchdog+0x10/0x10 [ 292.300411][ T30] kthread+0x2f0/0x390 [ 292.304496][ T30] ? __pfx_watchdog+0x10/0x10 [ 292.309198][ T30] ? __pfx_kthread+0x10/0x10 [ 292.313806][ T30] ret_from_fork+0x4b/0x80 [ 292.318247][ T30] ? __pfx_kthread+0x10/0x10 [ 292.322855][ T30] ret_from_fork_asm+0x1a/0x30 [ 292.327657][ T30] [ 292.330876][ T30] Sending NMI from CPU 1 to CPUs 0: [ 292.336133][ C0] NMI backtrace for cpu 0 [ 292.336147][ C0] CPU: 0 UID: 0 PID: 5858 Comm: syz-executor213 Not tainted 6.12.0-rc7-syzkaller #0 [ 292.336165][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 292.336174][ C0] RIP: 0010:__lock_acquire+0x40c/0x2050 [ 292.336202][ C0] Code: 00 00 00 48 89 03 65 8b 05 bd 35 92 7e 31 db 85 c0 0f 95 c3 01 db 49 8d bc 24 c4 0a 00 00 48 89 f8 48 c1 e8 03 48 89 44 24 58 <0f> b6 04 30 84 c0 48 89 7c 24 18 0f 85 90 13 00 00 31 c0 83 bc 24 [ 292.336219][ C0] RSP: 0018:ffffc900040a7390 EFLAGS: 00000803 [ 292.336234][ C0] RAX: 1ffff1100fa3bc98 RBX: 0000000000000000 RCX: ffffffff9a39f903 [ 292.336245][ C0] RDX: 0000000000000001 RSI: dffffc0000000000 RDI: ffff88807d1de4c4 [ 292.336256][ C0] RBP: 0000000000000005 R08: 0000000000000022 R09: ffff88807d1de4e0 [ 292.336266][ C0] R10: dffffc0000000000 R11: fffffbfff2037bae R12: ffff88807d1dda00 [ 292.336277][ C0] R13: 0000000000000022 R14: 0000000000000000 R15: ffffffff8e937da0 [ 292.336288][ C0] FS: 00007f06a2f5f6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 292.336301][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 292.336312][ C0] CR2: 00007ffd2f46aedc CR3: 00000000351fe000 CR4: 00000000003526f0 [ 292.336329][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 292.336338][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 292.336348][ C0] Call Trace: [ 292.336354][ C0] [ 292.336360][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 292.336381][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 292.336401][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 292.336426][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 292.336445][ C0] ? nmi_handle+0x14f/0x5a0 [ 292.336460][ C0] ? nmi_handle+0x2a/0x5a0 [ 292.336474][ C0] ? __lock_acquire+0x40c/0x2050 [ 292.336493][ C0] ? default_do_nmi+0x63/0x160 [ 292.336514][ C0] ? exc_nmi+0x123/0x1f0 [ 292.336532][ C0] ? end_repeat_nmi+0xf/0x53 [ 292.336552][ C0] ? __lock_acquire+0x40c/0x2050 [ 292.336571][ C0] ? __lock_acquire+0x40c/0x2050 [ 292.336591][ C0] ? __lock_acquire+0x40c/0x2050 [ 292.336610][ C0] [ 292.336615][ C0] [ 292.336625][ C0] lock_acquire+0x1ed/0x550 [ 292.336644][ C0] ? filemap_get_entry+0x123/0x3b0 [ 292.336667][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 292.336686][ C0] ? folio_end_read+0x1ca/0x4d0 [ 292.336705][ C0] ? block_read_full_folio+0xa30/0xcd0 [ 292.336729][ C0] filemap_get_entry+0x144/0x3b0 [ 292.336748][ C0] ? filemap_get_entry+0x123/0x3b0 [ 292.336768][ C0] ? filemap_get_entry+0x123/0x3b0 [ 292.336787][ C0] ? __pfx_filemap_get_entry+0x10/0x10 [ 292.336809][ C0] ? folio_add_lru+0x1cd/0x4f0 [ 292.336824][ C0] ? filemap_read_folio+0x326/0x630 [ 292.336840][ C0] __filemap_get_folio+0x71/0xbd0 [ 292.336863][ C0] do_read_cache_folio+0xdd/0x850 [ 292.336878][ C0] ? __pfx_sysv_read_folio+0x10/0x10 [ 292.336895][ C0] sysv_find_entry+0x16a/0x4b0 [ 292.336918][ C0] sysv_inode_by_name+0x98/0x2a0 [ 292.336934][ C0] ? __pfx_sysv_inode_by_name+0x10/0x10 [ 292.336951][ C0] sysv_lookup+0x6b/0xe0 [ 292.336966][ C0] ? __pfx_sysv_lookup+0x10/0x10 [ 292.336981][ C0] path_openat+0x11a7/0x3590 [ 292.337016][ C0] ? __pfx_path_openat+0x10/0x10 [ 292.337039][ C0] do_filp_open+0x235/0x490 [ 292.337056][ C0] ? __pfx_do_filp_open+0x10/0x10 [ 292.337079][ C0] ? _raw_spin_unlock+0x28/0x50 [ 292.337093][ C0] ? alloc_fd+0x5a1/0x640 [ 292.337114][ C0] do_sys_openat2+0x13e/0x1d0 [ 292.337129][ C0] ? __pfx_do_sys_openat2+0x10/0x10 [ 292.337144][ C0] ? lockdep_hardirqs_on+0x99/0x150 [ 292.337160][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 292.337174][ C0] ? ptrace_notify+0x279/0x380 [ 292.337191][ C0] __x64_sys_openat+0x247/0x2a0 [ 292.337206][ C0] ? __pfx___x64_sys_openat+0x10/0x10 [ 292.337222][ C0] ? do_syscall_64+0x100/0x230 [ 292.337241][ C0] do_syscall_64+0xf3/0x230 [ 292.337258][ C0] ? clear_bhb_loop+0x35/0x90 [ 292.337274][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.337289][ C0] RIP: 0033:0x7f06a2fa8c09 [ 292.337303][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 292.337314][ C0] RSP: 002b:00007f06a2f5f228 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 292.337330][ C0] RAX: ffffffffffffffda RBX: 00007f06a303a6a8 RCX: 00007f06a2fa8c09 [ 292.337341][ C0] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 00000000ffffff9c [ 292.337350][ C0] RBP: 00007f06a303a6a0 R08: 00007f06a2f5f6c0 R09: 00007f06a2f5f6c0 [ 292.337361][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06a303a6ac [ 292.337371][ C0] R13: 00007f06a2ffd06b R14: 00007f06a2ffd0c0 R15: 00007ffc5d2d1448 [ 292.337386][ C0] [ 292.337393][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.260 msecs [ 293.257041][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 293.263942][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc7-syzkaller #0 [ 293.272737][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 293.282815][ T30] Call Trace: [ 293.286127][ T30] [ 293.289081][ T30] dump_stack_lvl+0x241/0x360 [ 293.293793][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 293.299024][ T30] ? __pfx__printk+0x10/0x10 [ 293.303633][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 293.309649][ T30] ? vscnprintf+0x5d/0x90 [ 293.314017][ T30] panic+0x349/0x880 [ 293.317936][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 293.324118][ T30] ? __pfx_panic+0x10/0x10 [ 293.328559][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 293.333948][ T30] ? __irq_work_queue_local+0x137/0x410 [ 293.339522][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 293.344914][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 293.351103][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 293.357294][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 293.363479][ T30] watchdog+0x1033/0x1040 [ 293.367837][ T30] ? watchdog+0x1ea/0x1040 [ 293.372284][ T30] ? __pfx_watchdog+0x10/0x10 [ 293.376993][ T30] kthread+0x2f0/0x390 [ 293.381083][ T30] ? __pfx_watchdog+0x10/0x10 [ 293.385777][ T30] ? __pfx_kthread+0x10/0x10 [ 293.390385][ T30] ret_from_fork+0x4b/0x80 [ 293.394822][ T30] ? __pfx_kthread+0x10/0x10 [ 293.399421][ T30] ret_from_fork_asm+0x1a/0x30 [ 293.404194][ T30] [ 293.407496][ T30] Kernel Offset: disabled [ 293.411810][ T30] Rebooting in 86400 seconds..