./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2072353484 <...> Warning: Permanently added '10.128.1.61' (ED25519) to the list of known hosts. execve("./syz-executor2072353484", ["./syz-executor2072353484"], 0x7ffc9b1a6120 /* 10 vars */) = 0 brk(NULL) = 0x55557c043000 brk(0x55557c043d40) = 0x55557c043d40 arch_prctl(ARCH_SET_FS, 0x55557c0433c0) = 0 set_tid_address(0x55557c043690) = 282 set_robust_list(0x55557c0436a0, 24) = 0 rseq(0x55557c043ce0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2072353484", 4096) = 28 getrandom("\xf5\x61\x59\xf3\x37\xce\x6c\x98", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557c043d40 brk(0x55557c064d40) = 0x55557c064d40 brk(0x55557c065000) = 0x55557c065000 mprotect(0x7fd80e6a8000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 283 ./strace-static-x86_64: Process 283 attached [pid 283] set_robust_list(0x55557c0436a0, 24) = 0 [pid 282] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "10000000000", 11) = 11 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "20", 2) = 2 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "1", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "0", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "0", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "1", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "100", 3) = 3 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "0", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "0", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "7 4 1 3", 7) = 7 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "1", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "1", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "0", 1) = 1 [pid 282] close(3) = 0 [pid 282] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 [pid 282] write(3, "283", 3) = 3 [pid 282] close(3) = 0 [pid 282] kill(283, SIGKILL) = 0 [pid 283] +++ killed by SIGKILL +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=283, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 284 attached , child_tidptr=0x55557c043690) = 284 [pid 284] set_robust_list(0x55557c0436a0, 24) = 0 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 284] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 285 attached [pid 282] <... clone resumed>, child_tidptr=0x55557c043690) = 285 [pid 285] set_robust_list(0x55557c0436a0, 24 [pid 284] <... openat resumed>) = 3 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 286 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 287 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 288 [pid 285] <... set_robust_list resumed>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 284] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 284] close(3 [pid 285] <... openat resumed>) = 3 [pid 284] <... close resumed>) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 285] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 288 attached ./strace-static-x86_64: Process 287 attached ./strace-static-x86_64: Process 286 attached [pid 288] set_robust_list(0x55557c0436a0, 24 [pid 287] set_robust_list(0x55557c0436a0, 24 [pid 286] set_robust_list(0x55557c0436a0, 24 [pid 288] <... set_robust_list resumed>) = 0 [pid 287] <... set_robust_list resumed>) = 0 [pid 286] <... set_robust_list resumed>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 286] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 287] <... openat resumed>) = 3 [pid 288] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 287] ioctl(3, LOOP_CLR_FD [pid 286] <... openat resumed>) = 3 [pid 287] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 288] <... openat resumed>) = 3 [pid 287] close(3 [pid 286] ioctl(3, LOOP_CLR_FD [pid 288] ioctl(3, LOOP_CLR_FD [pid 287] <... close resumed>) = 0 [pid 286] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 288] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 286] close(3 [pid 288] close(3 [pid 286] <... close resumed>) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 292 ./strace-static-x86_64: Process 290 attached [pid 290] set_robust_list(0x55557c0436a0, 24) = 0 [pid 290] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 290] setpgid(0, 0) = 0 [pid 290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 290] write(3, "1000", 4) = 4 [pid 290] close(3) = 0 [pid 290] write(1, "executing program\n", 18executing program ) = 18 [pid 290] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 290] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 290] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 290] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 290] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 290] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 290] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0}./strace-static-x86_64: Process 292 attached [pid 292] set_robust_list(0x55557c0436a0, 24) = 0 [pid 292] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 290] <... clone3 resumed> => {parent_tid=[294]}, 88) = 294 [pid 290] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 290] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 290] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 292] <... prctl resumed>) = 0 [pid 292] setpgid(0, 0) = 0 [pid 292] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 292] write(3, "1000", 4) = 4 [pid 292] close(3) = 0 [pid 292] write(1, "executing program\n", 18executing program ) = 18 [pid 292] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 292] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 292] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 292] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 292] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 292] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[295]}, 88) = 295 [pid 292] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 292] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 295 attached [pid 295] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 295] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 295] memfd_create("syzkaller", 0) = 3 [pid 295] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [ 21.842556][ T24] audit: type=1400 audit(1751848227.530:64): avc: denied { execmem } for pid=282 comm="syz-executor207" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 21.859825][ T24] audit: type=1400 audit(1751848227.550:65): avc: denied { read write } for pid=284 comm="syz-executor207" name="loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 21.863050][ T24] audit: type=1400 audit(1751848227.550:66): avc: denied { open } for pid=284 comm="syz-executor207" path="/dev/loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 288] <... close resumed>) = 0 [pid 287] <... clone resumed>, child_tidptr=0x55557c043690) = 290 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 284] <... clone resumed>, child_tidptr=0x55557c043690) = 296 [pid 288] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 286] <... clone resumed>, child_tidptr=0x55557c043690) = 297 [pid 288] <... clone resumed>, child_tidptr=0x55557c043690) = 298 ./strace-static-x86_64: Process 297 attached ./strace-static-x86_64: Process 298 attached ./strace-static-x86_64: Process 294 attached [pid 297] set_robust_list(0x55557c0436a0, 24 [pid 298] set_robust_list(0x55557c0436a0, 24 [pid 297] <... set_robust_list resumed>) = 0 [pid 298] <... set_robust_list resumed>) = 0 [pid 294] set_robust_list(0x7fd80e5de9a0, 24 [pid 297] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 294] <... set_robust_list resumed>) = 0 [pid 298] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 297] <... prctl resumed>) = 0 [pid 294] rt_sigprocmask(SIG_SETMASK, [], [pid 298] <... prctl resumed>) = 0 [pid 297] setpgid(0, 0 [pid 294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 298] setpgid(0, 0 [pid 297] <... setpgid resumed>) = 0 [pid 298] <... setpgid resumed>) = 0 [pid 297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 294] memfd_create("syzkaller", 0 [pid 298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 294] <... memfd_create resumed>) = 3 [pid 297] <... openat resumed>) = 3 [pid 298] <... openat resumed>) = 3 [pid 294] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 297] write(3, "1000", 4 [pid 294] <... mmap resumed>) = 0x7fd8061be000 [pid 298] write(3, "1000", 4 [pid 297] <... write resumed>) = 4 executing program ./strace-static-x86_64: Process 296 attached [pid 296] set_robust_list(0x55557c0436a0, 24) = 0 [pid 296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 296] setpgid(0, 0) = 0 [pid 296] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 296] write(3, "1000", 4) = 4 [pid 296] close(3) = 0 [pid 296] write(1, "executing program\n", 18) = 18 [pid 296] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 296] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 296] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 296] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 296] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 296] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 296] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[299]}, 88) = 299 [pid 296] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 296] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 296] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 298] <... write resumed>) = 4 [pid 297] close(3 [pid 298] close(3 [pid 297] <... close resumed>) = 0 [pid 298] <... close resumed>) = 0 [pid 297] write(1, "executing program\n", 18executing program [pid 298] write(1, "executing program\n", 18 [pid 297] <... write resumed>) = 18 executing program [pid 298] <... write resumed>) = 18 [pid 297] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 298] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 297] <... futex resumed>) = 0 [pid 297] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, [pid 298] <... futex resumed>) = 0 [pid 297] <... rt_sigaction resumed>NULL, 8) = 0 [pid 298] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 297] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 298] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 298] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 297] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE [pid 298] <... mmap resumed>) = 0x7fd80e5be000 [pid 297] <... mprotect resumed>) = 0 [pid 298] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE [pid 297] rt_sigprocmask(SIG_BLOCK, ~[], [pid 298] <... mprotect resumed>) = 0 [pid 298] rt_sigprocmask(SIG_BLOCK, ~[], [pid 297] <... rt_sigprocmask resumed>[], 8) = 0 [pid 298] <... rt_sigprocmask resumed>[], 8) = 0 [pid 297] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} [pid 298] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} [pid 297] <... clone3 resumed> => {parent_tid=[300]}, 88) = 300 [pid 298] <... clone3 resumed> => {parent_tid=[301]}, 88) = 301 [pid 297] rt_sigprocmask(SIG_SETMASK, [], [pid 298] rt_sigprocmask(SIG_SETMASK, [], [pid 297] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 298] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 297] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 298] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 297] <... futex resumed>) = 0 [pid 298] <... futex resumed>) = 0 [pid 298] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 297] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 299 attached [pid 299] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 299] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 299] memfd_create("syzkaller", 0) = 3 [pid 299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 ./strace-static-x86_64: Process 300 attached [pid 300] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 300] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 300] memfd_create("syzkaller", 0./strace-static-x86_64: Process 301 attached ) = 3 [pid 300] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 301] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 301] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 301] memfd_create("syzkaller", 0) = 3 [pid 301] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [ 21.890344][ T24] audit: type=1400 audit(1751848227.560:67): avc: denied { ioctl } for pid=284 comm="syz-executor207" path="/dev/loop0" dev="devtmpfs" ino=115 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 294] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 295] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 301] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 300] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 294] <... write resumed>) = 20699119 [pid 294] munmap(0x7fd8061be000, 138412032) = 0 [pid 294] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 294] ioctl(4, LOOP_SET_FD, 3 [pid 301] <... write resumed>) = 20699119 [pid 301] munmap(0x7fd8061be000, 138412032 [pid 294] <... ioctl resumed>) = 0 [pid 294] close(3) = 0 [pid 294] close(4 [pid 301] <... munmap resumed>) = 0 [pid 301] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 295] <... write resumed>) = 20699119 [pid 295] munmap(0x7fd8061be000, 138412032) = 0 [pid 295] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 299] <... write resumed>) = 20699119 [pid 299] munmap(0x7fd8061be000, 138412032) = 0 [pid 299] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 300] <... write resumed>) = 20699119 [pid 300] munmap(0x7fd8061be000, 138412032) = 0 [pid 300] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 294] <... close resumed>) = 0 [pid 301] <... openat resumed>) = 4 [pid 301] ioctl(4, LOOP_SET_FD, 3 [pid 294] mkdir("./file4", 0777) = 0 [pid 294] mount("/dev/loop3", "./file4", "f2fs", 0, "noinline_xattr,active_logs=4,discard,fault_injection=00000000000000041160,fault_type=000000000000000"... [pid 301] <... ioctl resumed>) = 0 [pid 300] <... openat resumed>) = 4 [pid 299] <... openat resumed>) = 4 [pid 295] <... openat resumed>) = 4 [pid 301] close(3 [pid 299] ioctl(4, LOOP_SET_FD, 3 [pid 295] ioctl(4, LOOP_SET_FD, 3 [pid 301] <... close resumed>) = 0 [pid 301] close(4 [pid 300] ioctl(4, LOOP_SET_FD, 3 [pid 295] <... ioctl resumed>) = 0 [pid 295] close(3) = 0 [pid 295] close(4 [pid 299] <... ioctl resumed>) = 0 [pid 299] close(3) = 0 [ 22.179181][ T24] audit: type=1400 audit(1751848227.870:68): avc: denied { mounton } for pid=290 comm="syz-executor207" path="/root/file4" dev="sda1" ino=2024 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 22.208288][ T294] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 22.215304][ T294] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [pid 299] close(4 [pid 301] <... close resumed>) = 0 [pid 301] mkdir("./file4", 0777) = -1 EEXIST (File exists) [pid 301] mount("/dev/loop4", "./file4", "f2fs", 0, "noinline_xattr,active_logs=4,discard,fault_injection=00000000000000041160,fault_type=000000000000000"... [pid 300] <... ioctl resumed>) = 0 [pid 300] close(3) = 0 [pid 300] close(4 [pid 294] <... mount resumed>) = 0 [pid 294] openat(AT_FDCWD, "./file4", O_RDONLY|O_DIRECTORY) = 3 [pid 294] chdir("./file4") = 0 [ 22.223477][ T294] F2FS-fs (loop3): fault_injection options not supported [ 22.230483][ T294] F2FS-fs (loop3): fault_type options not supported [ 22.237571][ T294] F2FS-fs (loop3): invalid crc value [ 22.243718][ T294] F2FS-fs (loop3): Found nat_bits in checkpoint [ 22.258753][ T294] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 22.265783][ T294] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [pid 294] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 295] <... close resumed>) = 0 [pid 294] <... openat resumed>) = 4 [pid 295] mkdir("./file4", 0777 [pid 294] ioctl(4, LOOP_CLR_FD [pid 295] <... mkdir resumed>) = -1 EEXIST (File exists) [ 22.273392][ T24] audit: type=1400 audit(1751848227.960:69): avc: denied { mount } for pid=290 comm="syz-executor207" name="/" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [pid 295] mount("/dev/loop1", "./file4", "f2fs", 0, "noinline_xattr,active_logs=4,discard,fault_injection=00000000000000041160,fault_type=000000000000000"... [pid 299] <... close resumed>) = 0 [pid 299] mkdir("./file4", 0777) = -1 EEXIST (File exists) [pid 299] mount("/dev/loop0", "./file4", "f2fs", 0, "noinline_xattr,active_logs=4,discard,fault_injection=00000000000000041160,fault_type=000000000000000"... [pid 300] <... close resumed>) = 0 [ 22.308027][ T24] audit: type=1400 audit(1751848228.000:70): avc: denied { mounton } for pid=292 comm="syz-executor207" path="/root/file4" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [pid 294] <... ioctl resumed>) = 0 [pid 294] close(4 [pid 300] mkdir("./file4", 0777) = -1 EEXIST (File exists) [ 22.378274][ T301] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 22.385438][ T299] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 22.391741][ T295] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 22.392442][ T301] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 22.399599][ T299] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 22.407612][ T301] F2FS-fs (loop4): fault_injection options not supported [pid 300] mount("/dev/loop2", "./file4", "f2fs", 0, "noinline_xattr,active_logs=4,discard,fault_injection=00000000000000041160,fault_type=000000000000000"... [pid 294] <... close resumed>) = 0 [pid 294] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 294] futex(0x7fd80e6ae6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 290] <... futex resumed>) = 0 [pid 290] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 294] <... futex resumed>) = 0 [ 22.415865][ T295] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 22.422653][ T301] F2FS-fs (loop4): fault_type options not supported [ 22.431056][ T295] F2FS-fs (loop1): fault_injection options not supported [ 22.437956][ T301] F2FS-fs (loop4): invalid crc value [ 22.444466][ T299] F2FS-fs (loop0): fault_injection options not supported [ 22.449723][ T295] F2FS-fs (loop1): fault_type options not supported [ 22.463489][ T300] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 22.470574][ T300] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [pid 290] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 294] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 4 [pid 294] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 294] futex(0x7fd80e6ae6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 290] <... futex resumed>) = 0 [pid 290] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 290] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 294] <... futex resumed>) = 0 [ 22.471223][ T24] audit: type=1400 audit(1751848228.160:71): avc: denied { write } for pid=290 comm="syz-executor207" name="/" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 22.479179][ T300] F2FS-fs (loop2): fault_injection options not supported [ 22.508019][ T295] F2FS-fs (loop1): invalid crc value [ 22.508324][ T294] F2FS-fs (loop3): switch discard_unit option is not allowed [ 22.519043][ T300] F2FS-fs (loop2): fault_type options not supported [pid 294] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL [pid 290] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 290] futex(0x7fd80e6ae6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 290] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e59d000 [pid 290] mprotect(0x7fd80e59e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 290] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 290] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5bd990, parent_tid=0x7fd80e5bd990, exit_signal=0, stack=0x7fd80e59d000, stack_size=0x20300, tls=0x7fd80e5bd6c0} => {parent_tid=[317]}, 88) = 317 [pid 290] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 290] futex(0x7fd80e6ae6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 290] futex(0x7fd80e6ae6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 317 attached [pid 317] set_robust_list(0x7fd80e5bd9a0, 24) = 0 [pid 317] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 22.525369][ T299] F2FS-fs (loop0): fault_type options not supported [ 22.527972][ T24] audit: type=1400 audit(1751848228.160:72): avc: denied { add_name } for pid=290 comm="syz-executor207" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 22.536431][ T295] F2FS-fs (loop1): Found nat_bits in checkpoint [pid 317] write(4, NULL, 4294966626 [pid 294] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 294] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 22.554801][ T24] audit: type=1400 audit(1751848228.160:73): avc: denied { create } for pid=290 comm="syz-executor207" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 22.562989][ T317] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 22.592692][ T300] F2FS-fs (loop2): invalid crc value [ 22.592871][ T317] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 22.606496][ T317] CPU: 0 PID: 317 Comm: syz-executor207 Not tainted 5.10.238-syzkaller-00008-g59e9a7228857 #0 [ 22.608408][ T299] F2FS-fs (loop0): invalid crc value [pid 294] futex(0x7fd80e6ae6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 295] <... mount resumed>) = 0 [pid 295] openat(AT_FDCWD, "./file4", O_RDONLY|O_DIRECTORY) = 3 [pid 295] chdir("./file4") = 0 [pid 295] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 295] ioctl(4, LOOP_CLR_FD) = 0 [ 22.616697][ T317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 22.616722][ T317] RIP: 0010:update_sit_entry+0x58e/0xf50 [ 22.616732][ T317] Code: 00 00 49 8d 5d 18 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 10 2a 94 ff 48 8b 1b 48 03 5d a8 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 ab 08 00 00 44 0f b6 33 44 89 f0 44 8b [ 22.625386][ T301] F2FS-fs (loop4): Found nat_bits in checkpoint [ 22.631998][ T317] RSP: 0018:ffffc90000df6df0 EFLAGS: 00010246 [ 22.632006][ T317] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [pid 295] close(4) = 0 [pid 295] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 292] <... futex resumed>) = 0 [pid 292] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 295] <... futex resumed>) = 1 [pid 295] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 4 [pid 295] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 292] <... futex resumed>) = 0 [pid 292] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 295] <... futex resumed>) = 1 [pid 295] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL) = -1 EINVAL (Invalid argument) [pid 295] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 292] <... futex resumed>) = 0 [pid 292] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 295] <... futex resumed>) = 1 [pid 295] write(4, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 295] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 292] <... futex resumed>) = 0 [pid 292] exit_group(0) = ? [pid 295] <... futex resumed>) = ? [pid 295] +++ exited with 0 +++ [pid 292] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=292, si_uid=0, si_status=0, si_utime=3, si_stime=18} --- [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 326 [ 22.632010][ T317] RDX: ffff888128144f00 RSI: 0000000000000000 RDI: 0000000000000000 [ 22.632014][ T317] RBP: ffffc90000df6e70 R08: ffff888128144f00 R09: 0000000000000003 [ 22.632017][ T317] R10: 00000000ffffffff R11: 0000000000000000 R12: dffffc0000000000 [ 22.632022][ T317] R13: ffff88810a67c9b8 R14: ffff8881027b20c0 R15: ffff8881027b2000 [ 22.632027][ T317] FS: 00007fd80e5bd6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 22.632032][ T317] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [pid 301] <... mount resumed>) = 0 [pid 301] openat(AT_FDCWD, "./file4", O_RDONLY|O_DIRECTORY) = 3 [pid 301] chdir("./file4") = 0 [pid 301] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 301] ioctl(4, LOOP_CLR_FD) = 0 [pid 301] close(4) = 0 [pid 301] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 301] futex(0x7fd80e6ae6c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 326 attached [pid 326] set_robust_list(0x55557c0436a0, 24) = 0 [pid 326] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 326] setpgid(0, 0) = 0 [pid 326] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 326] write(3, "1000", 4) = 4 [pid 326] close(3) = 0 [pid 326] write(1, "executing program\n", 18executing program ) = 18 [pid 326] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 326] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 326] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 326] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[329]}, 88) = 329 [pid 326] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 326] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 326] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 329 attached [pid 329] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 329] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 329] memfd_create("syzkaller", 0) = 3 [pid 329] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [ 22.632036][ T317] CR2: 0000000000000000 CR3: 0000000120f6e000 CR4: 00000000003506b0 [ 22.632049][ T317] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.651269][ T295] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 22.657213][ T317] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.657216][ T317] Call Trace: [ 22.657227][ T317] f2fs_allocate_data_block+0x156b/0x3a10 [ 22.657239][ T317] ? _raw_spin_unlock+0x4d/0x70 [ 22.663733][ T295] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 22.669464][ T317] ? f2fs_inode_dirtied+0x26b/0x2a0 [ 22.669470][ T317] ? f2fs_io_type_to_rw_hint+0x1e0/0x1e0 [ 22.669476][ T317] ? f2fs_mark_inode_dirty_sync+0x110/0x140 [ 22.669486][ T317] ? inc_valid_block_count+0x562/0xa90 [ 22.698194][ T295] F2FS-fs (loop1): switch discard_unit option is not allowed [ 22.701252][ T317] __allocate_data_block+0x52a/0x980 [ 22.701260][ T317] ? f2fs_map_blocks+0x35c0/0x35c0 [ 22.701267][ T317] f2fs_map_blocks+0xdc8/0x35c0 [ 22.701276][ T317] ? f2fs_do_map_lock+0x290/0x290 [pid 329] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119 [pid 329] munmap(0x7fd8061be000, 138412032) = 0 [pid 329] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 329] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 329] ioctl(4, LOOP_CLR_FD) = 0 [pid 298] <... futex resumed>) = 0 [pid 298] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 301] <... futex resumed>) = 0 [pid 298] <... futex resumed>) = 1 [pid 301] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000 [pid 298] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 301] <... openat resumed>) = 4 [pid 301] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 298] <... futex resumed>) = 0 [pid 301] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL [pid 298] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 298] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 329] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 329] close(4) = 0 [ 22.701284][ T317] ? workingset_activation+0x250/0x250 [ 22.701291][ T317] f2fs_iomap_begin+0x19d/0x680 [ 22.701299][ T317] ? f2fs_destroy_bio_entry_cache+0x20/0x20 [ 22.701308][ T317] ? invalidate_mapping_pagevec+0x40/0x40 [ 22.701316][ T317] iomap_apply+0x115/0x6a0 [ 22.701324][ T317] ? trace_raw_output_iomap_apply+0x260/0x260 [ 22.701337][ T317] ? filemap_fdatawait_range+0xe6/0x130 [ 22.712932][ T301] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 22.718173][ T317] __iomap_dio_rw+0x7ad/0x1110 [pid 329] close(3 [pid 301] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 301] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 298] <... futex resumed>) = 0 [pid 298] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 298] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 301] <... futex resumed>) = 1 [pid 301] write(4, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 301] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 298] <... futex resumed>) = 0 [pid 298] exit_group(0) = ? [pid 301] <... futex resumed>) = ? [pid 301] +++ exited with 0 +++ [pid 298] +++ exited with 0 +++ [pid 288] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=298, si_uid=0, si_status=0, si_utime=2, si_stime=18} --- [pid 288] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 288] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 288] ioctl(3, LOOP_CLR_FD) = 0 [pid 288] close(3) = 0 [pid 288] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 330 ./strace-static-x86_64: Process 330 attached [pid 330] set_robust_list(0x55557c0436a0, 24) = 0 [pid 330] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 330] setpgid(0, 0) = 0 [pid 330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 330] write(3, "1000", 4) = 4 [pid 330] close(3) = 0 [pid 330] write(1, "executing program\n", 18executing program ) = 18 [pid 330] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 330] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 330] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 330] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 330] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[331]}, 88) = 331 [pid 330] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 330] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 330] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 329] <... close resumed>) = 0 [pid 329] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 326] <... futex resumed>) = 0 [pid 326] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 326] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 329] <... futex resumed>) = 1 [pid 329] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 3 [pid 329] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 326] <... futex resumed>) = 0 [pid 326] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 326] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 329] <... futex resumed>) = 1 [pid 329] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL) = -1 EINVAL (Invalid argument) [pid 329] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 326] <... futex resumed>) = 0 [pid 326] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 326] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 329] <... futex resumed>) = 1 [pid 329] write(3, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 329] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 326] <... futex resumed>) = 0 [pid 326] exit_group(0) = ? [pid 329] <... futex resumed>) = ? [pid 329] +++ exited with 0 +++ [pid 326] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=326, si_uid=0, si_status=0, si_utime=2, si_stime=6} --- [ 22.718179][ T317] ? __iomap_dio_rw+0x1110/0x1110 [ 22.718186][ T317] ? iomap_dio_complete+0x6a0/0x6a0 [ 22.718193][ T317] ? __init_rwsem+0x1c0/0x1c0 [ 22.718200][ T317] ? __get_user_nocheck_8+0x10/0x13 [ 22.718207][ T317] f2fs_file_write_iter+0x12ad/0x2580 [ 22.718215][ T317] ? f2fs_file_read_iter+0xb10/0xb10 [ 22.718223][ T317] ? copy_fpregs_to_fpstate+0x14a/0x1b0 [ 22.718230][ T317] ? __kasan_check_write+0x14/0x20 [ 22.718236][ T317] ? __switch_to+0x50f/0xfc0 [ 22.718242][ T317] ? __kasan_check_read+0x11/0x20 [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 332 ./strace-static-x86_64: Process 332 attached ./strace-static-x86_64: Process 331 attached [pid 290] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 22.718248][ T317] ? psi_group_change+0x7d3/0xe40 [ 22.718253][ T317] ? compat_start_thread+0x80/0x80 [ 22.718259][ T317] ? native_set_ldt+0x370/0x370 [ 22.718267][ T317] ? avc_policy_seqno+0x1b/0x70 [ 22.718273][ T317] ? selinux_file_permission+0x2a5/0x510 [ 22.718280][ T317] ? security_file_permission+0x83/0xa0 [ 22.718291][ T317] ? iov_iter_init+0x3f/0x120 [ 22.732806][ T301] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 22.740721][ T317] vfs_write+0x725/0xd60 [ 22.740729][ T317] ? __kasan_check_write+0x14/0x20 [pid 332] set_robust_list(0x55557c0436a0, 24 [pid 331] set_robust_list(0x7fd80e5de9a0, 24 [pid 299] <... mount resumed>) = 0 [pid 299] openat(AT_FDCWD, "./file4", O_RDONLY|O_DIRECTORY) = 3 [pid 299] chdir("./file4") = 0 [pid 299] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 299] ioctl(4, LOOP_CLR_FD) = 0 [pid 299] close(4) = 0 [pid 299] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = 0 [pid 296] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 296] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] <... futex resumed>) = 1 [pid 299] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 4 [pid 299] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = 0 [pid 296] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 296] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] <... futex resumed>) = 1 [pid 299] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL [pid 332] <... set_robust_list resumed>) = 0 [pid 331] <... set_robust_list resumed>) = 0 [pid 332] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 331] rt_sigprocmask(SIG_SETMASK, [], [pid 300] <... mount resumed>) = 0 [pid 300] openat(AT_FDCWD, "./file4", O_RDONLY|O_DIRECTORY) = 3 [pid 300] chdir("./file4") = 0 [pid 300] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 300] ioctl(4, LOOP_CLR_FD) = 0 [pid 300] close(4) = 0 [pid 300] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 300] futex(0x7fd80e6ae6c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 299] <... mount resumed>) = -1 EINVAL (Invalid argument) [ 22.740736][ T317] ? kernel_write+0x3c0/0x3c0 [ 22.740742][ T317] ? cgroup_leave_frozen+0x166/0x2b0 [ 22.740750][ T317] ? mutex_trylock+0xa0/0xa0 [ 22.740756][ T317] ? __fget_files+0x2c4/0x320 [ 22.740762][ T317] ? __fdget_pos+0x2d2/0x380 [ 22.740768][ T317] ? ksys_write+0x71/0x240 [ 22.740774][ T317] ksys_write+0x140/0x240 [ 22.740780][ T317] ? __ia32_sys_read+0x90/0x90 [ 22.740786][ T317] ? fpu__clear_all+0x20/0x20 [ 22.740796][ T317] ? fpu__clear_all+0x20/0x20 [pid 299] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = 0 [pid 296] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 296] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] <... futex resumed>) = 1 [pid 299] write(4, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 299] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = 0 [pid 296] exit_group(0) = ? [pid 299] <... futex resumed>) = ? [pid 299] +++ exited with 0 +++ [pid 296] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=296, si_uid=0, si_status=0, si_utime=2, si_stime=14} --- [pid 284] restart_syscall(<... resuming interrupted clone ...> [pid 332] <... prctl resumed>) = 0 [pid 332] setpgid(0, 0) = 0 [pid 332] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 332] write(3, "1000", 4) = 4 executing program [pid 332] close(3) = 0 [pid 332] write(1, "executing program\n", 18) = 18 [pid 332] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 332] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 332] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 332] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 332] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 332] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[335]}, 88) = 335 [pid 332] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 332] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 331] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 331] memfd_create("syzkaller", 0) = 3 [pid 331] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 284] <... restart_syscall resumed>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 336 [ 22.767788][ T300] F2FS-fs (loop2): Found nat_bits in checkpoint [ 22.769462][ T317] __x64_sys_write+0x7b/0x90 [ 22.769469][ T317] do_syscall_64+0x31/0x40 [ 22.769484][ T317] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 22.873070][ T301] F2FS-fs (loop4): switch discard_unit option is not allowed [ 22.875779][ T317] RIP: 0033:0x7fd80e621b79 [ 22.875790][ T317] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [pid 297] <... futex resumed>) = 0 [pid 297] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] <... futex resumed>) = 0 [pid 297] <... futex resumed>) = 1 [pid 300] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000 [pid 297] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... openat resumed>) = 4 [ 22.938515][ T299] F2FS-fs (loop0): Found nat_bits in checkpoint [ 22.941349][ T317] RSP: 002b:00007fd80e5bd218 EFLAGS: 00000246 [ 22.965914][ T299] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 22.969314][ T317] ORIG_RAX: 0000000000000001 [ 22.969321][ T317] RAX: ffffffffffffffda RBX: 00007fd80e6ae6d8 RCX: 00007fd80e621b79 [ 22.969325][ T317] RDX: 00000000fffffd62 RSI: 0000000000000000 RDI: 0000000000000004 [ 22.969329][ T317] RBP: 00007fd80e6ae6d0 R08: 00007fff942be9d7 R09: 0000000000000000 [pid 300] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 297] <... futex resumed>) = 0 [pid 297] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL [pid 297] <... futex resumed>) = 0 ./strace-static-x86_64: Process 336 attached ./strace-static-x86_64: Process 335 attached [pid 331] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 297] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... mount resumed>) = -1 EINVAL (Invalid argument) [pid 300] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 297] <... futex resumed>) = 0 [pid 297] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 297] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... futex resumed>) = 1 [pid 300] write(4, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 300] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 297] <... futex resumed>) = 0 [pid 297] exit_group(0) = ? [pid 300] <... futex resumed>) = ? [pid 300] +++ exited with 0 +++ [pid 297] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=297, si_uid=0, si_status=0, si_utime=2, si_stime=18} --- [pid 286] restart_syscall(<... resuming interrupted clone ...> [pid 336] set_robust_list(0x55557c0436a0, 24) = 0 [pid 336] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 336] setpgid(0, 0) = 0 [pid 336] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 336] write(3, "1000", 4) = 4 [pid 336] close(3executing program ) = 0 [pid 336] write(1, "executing program\n", 18) = 18 [pid 336] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 336] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 336] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 336] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 336] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 336] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 336] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[337]}, 88) = 337 [pid 336] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 336] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 336] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 335] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 335] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 335] memfd_create("syzkaller", 0) = 3 [pid 335] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 286] <... restart_syscall resumed>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [ 22.969338][ T317] R10: 0000000000000000 R11: 0000000000000246 R12: 0034656c69662f2e [ 22.973825][ T299] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 22.978613][ T317] R13: 00002000000000c0 R14: 00007fff942be8f0 R15: 00007fff942be9d8 [ 22.978618][ T317] Modules linked in: [ 22.978778][ T317] ---[ end trace de8d5cc82e98e3eb ]--- [ 22.988792][ T300] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 22.993324][ T317] RIP: 0010:update_sit_entry+0x58e/0xf50 [ 23.022120][ T299] F2FS-fs (loop0): switch discard_unit option is not allowed [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3./strace-static-x86_64: Process 337 attached [pid 331] <... write resumed>) = 20699119 [pid 286] <... close resumed>) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 338 [pid 331] munmap(0x7fd8061be000, 138412032) = 0 [pid 331] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 331] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 331] ioctl(4, LOOP_CLR_FD) = 0 [pid 337] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 337] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 337] memfd_create("syzkaller", 0) = 3 [pid 337] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 331] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 331] close(4) = 0 [pid 331] close(3./strace-static-x86_64: Process 338 attached [pid 338] set_robust_list(0x55557c0436a0, 24) = 0 [pid 338] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 338] setpgid(0, 0) = 0 [pid 338] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 338] write(3, "1000", 4) = 4 [pid 338] close(3) = 0 [pid 338] write(1, "executing program\n", 18executing program ) = 18 [pid 338] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 338] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 338] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 338] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 338] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 338] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 338] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0}./strace-static-x86_64: Process 339 attached => {parent_tid=[339]}, 88) = 339 [pid 339] set_robust_list(0x7fd80e5de9a0, 24 [pid 338] rt_sigprocmask(SIG_SETMASK, [], [pid 339] <... set_robust_list resumed>) = 0 [pid 338] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 339] rt_sigprocmask(SIG_SETMASK, [], [pid 338] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 339] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 338] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 339] memfd_create("syzkaller", 0) = 3 [pid 339] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 331] <... close resumed>) = 0 [pid 331] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 330] <... futex resumed>) = 0 [pid 330] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 330] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 331] <... futex resumed>) = 1 [pid 331] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 3 [pid 331] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 330] <... futex resumed>) = 0 [pid 330] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 330] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 331] <... futex resumed>) = 1 [pid 331] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL) = -1 EINVAL (Invalid argument) [pid 331] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 330] <... futex resumed>) = 0 [pid 330] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 330] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 331] <... futex resumed>) = 1 [pid 331] write(3, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 331] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 330] <... futex resumed>) = 0 [pid 330] exit_group(0) = ? [pid 331] <... futex resumed>) = ? [pid 331] +++ exited with 0 +++ [pid 330] +++ exited with 0 +++ [pid 288] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=330, si_uid=0, si_status=0, si_utime=3, si_stime=7} --- [pid 288] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 288] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 288] ioctl(3, LOOP_CLR_FD) = 0 [pid 288] close(3) = 0 [pid 288] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557c043690) = 340 [ 23.025247][ T317] Code: 00 00 49 8d 5d 18 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 10 2a 94 ff 48 8b 1b 48 03 5d a8 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 ab 08 00 00 44 0f b6 33 44 89 f0 44 8b [ 23.031932][ T300] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 23.036097][ T317] RSP: 0018:ffffc90000df6df0 EFLAGS: 00010246 [ 23.117922][ T300] F2FS-fs (loop2): switch discard_unit option is not allowed [ 23.154919][ T317] ./strace-static-x86_64: Process 340 attached [pid 340] set_robust_list(0x55557c0436a0, 24) = 0 [pid 340] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 340] setpgid(0, 0) = 0 [pid 340] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 340] write(3, "1000", 4) = 4 [pid 340] close(3) = 0 [pid 340] write(1, "executing program\n", 18executing program ) = 18 [pid 340] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] rt_sigaction(SIGRT_1, {sa_handler=0x7fd80e647a60, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd80e639110}, NULL, 8) = 0 [pid 340] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 340] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd80e5be000 [pid 340] mprotect(0x7fd80e5bf000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 340] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 340] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd80e5de990, parent_tid=0x7fd80e5de990, exit_signal=0, stack=0x7fd80e5be000, stack_size=0x20300, tls=0x7fd80e5de6c0} => {parent_tid=[341]}, 88) = 341 [pid 340] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 340] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 341 attached [pid 341] set_robust_list(0x7fd80e5de9a0, 24) = 0 [pid 341] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 341] memfd_create("syzkaller", 0) = 3 [pid 341] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd8061be000 [pid 335] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 290] exit_group(0 [pid 294] <... futex resumed>) = ? [pid 290] <... exit_group resumed>) = ? [pid 294] +++ exited with 0 +++ [pid 337] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 339] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 341] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 335] <... write resumed>) = 20699119 [pid 335] munmap(0x7fd8061be000, 138412032) = 0 [pid 335] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 335] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 335] ioctl(4, LOOP_CLR_FD) = 0 [pid 337] <... write resumed>) = 20699119 [pid 335] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 335] close(4) = 0 [ 23.356771][ T317] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 23.364746][ T317] RDX: ffff888128144f00 RSI: 0000000000000000 RDI: 0000000000000000 [pid 335] close(3 [pid 337] munmap(0x7fd8061be000, 138412032) = 0 [pid 337] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 337] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 337] ioctl(4, LOOP_CLR_FD) = 0 [pid 337] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 337] close(4) = 0 [pid 337] close(3 [pid 339] <... write resumed>) = 20699119 [ 23.400918][ T317] RBP: ffffc90000df6e70 R08: ffff888128144f00 R09: 0000000000000003 [ 23.426767][ T317] R10: 00000000ffffffff R11: 0000000000000000 R12: dffffc0000000000 [ 23.434853][ T317] R13: ffff88810a67c9b8 R14: ffff8881027b20c0 R15: ffff8881027b2000 [pid 339] munmap(0x7fd8061be000, 138412032) = 0 [pid 339] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 339] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 339] ioctl(4, LOOP_CLR_FD) = 0 [pid 341] <... write resumed>) = 20699119 [pid 339] ioctl(4, LOOP_SET_FD, 3 [pid 337] <... close resumed>) = 0 [pid 335] <... close resumed>) = 0 [pid 335] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 332] <... futex resumed>) = 0 [pid 332] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 335] <... futex resumed>) = 1 [pid 341] munmap(0x7fd8061be000, 138412032 [pid 335] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000 [pid 341] <... munmap resumed>) = 0 [pid 335] <... openat resumed>) = 3 [pid 335] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 332] <... futex resumed>) = 0 [pid 332] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 335] <... futex resumed>) = 1 [pid 335] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL) = -1 EINVAL (Invalid argument) [pid 335] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 332] <... futex resumed>) = 0 [pid 332] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 335] <... futex resumed>) = 1 [pid 335] write(3, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 335] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 332] <... futex resumed>) = 0 [pid 332] exit_group(0) = ? [pid 335] <... futex resumed>) = ? [pid 335] +++ exited with 0 +++ [pid 332] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=332, si_uid=0, si_status=0, si_utime=4, si_stime=5} --- [pid 285] restart_syscall(<... resuming interrupted clone ...> [pid 341] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 341] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 341] ioctl(4, LOOP_CLR_FD) = 0 [pid 337] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] <... futex resumed>) = 0 [pid 336] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 336] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... futex resumed>) = 1 [pid 337] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_SYNC|O_DIRECT, 000) = 3 [pid 337] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] <... futex resumed>) = 0 [pid 336] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 336] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... futex resumed>) = 1 [pid 337] mount(NULL, ".", NULL, MS_NODEV|MS_REMOUNT|MS_MOVE|MS_POSIXACL|MS_LAZYTIME, NULL) = -1 EINVAL (Invalid argument) [pid 337] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] <... futex resumed>) = 0 [pid 336] futex(0x7fd80e6ae6c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 336] futex(0x7fd80e6ae6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... futex resumed>) = 1 [pid 337] write(3, NULL, 4294966626) = -1 EFAULT (Bad address) [pid 337] futex(0x7fd80e6ae6cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] <... futex resumed>) = 0 [pid 336] exit_group(0) = ? [pid 341] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [ 23.449256][ T317] FS: 00007fd80e5bd6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.458343][ T317] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.465609][ T317] CR2: 00007fd80757b000 CR3: 0000000120f6e000 CR4: 00000000003506b0 [ 23.474081][ T317] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.482290][ T317] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.490397][ T317] Kernel panic - not syncing: Fatal exception [ 23.496576][ T317] Kernel Offset: disabled [ 23.500872][ T317] Rebooting in 86400 seconds..