./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2913419802

<...>
Warning: Permanently added '10.128.1.83' (ED25519) to the list of known hosts.
execve("./syz-executor2913419802", ["./syz-executor2913419802"], 0x7ffd00a4def0 /* 10 vars */) = 0
brk(NULL)                               = 0x555565a4e000
brk(0x555565a4ed00)                     = 0x555565a4ed00
arch_prctl(ARCH_SET_FS, 0x555565a4e380) = 0
set_tid_address(0x555565a4e650)         = 5834
set_robust_list(0x555565a4e660, 24)     = 0
rseq(0x555565a4eca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2913419802", 4096) = 28
getrandom("\x99\xc3\xbd\x6e\xab\x7a\xbc\xbc", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555565a4ed00
brk(0x555565a6fd00)                     = 0x555565a6fd00
brk(0x555565a70000)                     = 0x555565a70000
mprotect(0x7f43ef49f000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.r7t8Yi", 0700)       = 0
chmod("./syzkaller.r7t8Yi", 0777)       = 0
chdir("./syzkaller.r7t8Yi")             = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5835 attached
 <unfinished ...>
[pid  5835] set_robust_list(0x555565a4e660, 24 <unfinished ...>
[pid  5834] <... clone resumed>, child_tidptr=0x555565a4e650) = 5835
[pid  5835] <... set_robust_list resumed>) = 0
[pid  5835] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5835] getppid()                   = 0
[pid  5835] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5835] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5835] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5835] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5835] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5835] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5835] unshare(CLONE_NEWNS)        = 0
[pid  5835] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5835] unshare(CLONE_NEWIPC)       = 0
[pid  5835] unshare(CLONE_NEWCGROUP)    = 0
[pid  5835] unshare(CLONE_NEWUTS)       = 0
[pid  5835] unshare(CLONE_SYSVSEM)      = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "16777216", 8)     = 8
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "536870912", 9)    = 9
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "1024", 4)         = 4
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "8192", 4)         = 4
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "1024", 4)         = 4
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "1024", 4)         = 4
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5835] close(3)                    = 0
[pid  5835] getpid()                    = 1
[pid  5835] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5835] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5835] unshare(CLONE_NEWNET)       = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "0 65535", 7)      = 7
[pid  5835] close(3)                    = 0
[pid  5835] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid  5835] write(3, "100000", 6)       = 6
[pid  5835] close(3)                    = 0
[pid  5835] mkdir("./syz-tmp", 0777)    = 0
[pid  5835] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0
[pid  5835] mkdir("./syz-tmp/newroot", 0777) = 0
[pid  5835] mkdir("./syz-tmp/newroot/dev", 0700) = 0
[pid  5835] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5835] mkdir("./syz-tmp/newroot/proc", 0700) = 0
[pid  5835] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0
[pid  5835] mkdir("./syz-tmp/newroot/selinux", 0700) = 0
[pid  5835] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5835] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5835] mkdir("./syz-tmp/newroot/sys", 0700) = 0
[pid  5835] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5835] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5835] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5835] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5835] mkdir("./syz-tmp/pivot", 0777) = 0
[pid  5835] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0
[pid  5835] chdir("/")                  = 0
[pid  5835] umount2("./pivot", MNT_DETACH) = 0
[pid  5835] chroot("./newroot")         = 0
[pid  5835] chdir("/")                  = 0
[pid  5835] mkdir("/dev/binderfs", 0777) = 0
[pid  5835] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5835] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5835] mkdir("./0", 0777)          = 0
[pid  5835] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5835] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5835] close(3)                    = 0
[pid  5835] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555565a4e650) = 2
./strace-static-x86_64: Process 5838 attached
[pid  5838] set_robust_list(0x555565a4e660, 24) = 0
[pid  5838] chdir("./0")                = 0
[pid  5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5838] setpgid(0, 0)               = 0
[pid  5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5838] write(3, "1000", 4)         = 4
[pid  5838] close(3)                    = 0
[pid  5838] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5838] write(1, "executing program\n", 18executing program
) = 18
[pid  5838] memfd_create("syzkaller", 0) = 3
[pid  5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f43e6e00000
[pid  5838] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5838] munmap(0x7f43e6e00000, 138412032) = 0
[pid  5838] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5838] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5838] close(3)                    = 0
[pid  5838] close(4)                    = 0
[pid  5838] mkdir("\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", 0777) = 0
[pid  5838] mount("/dev/loop0", "\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", "exfat", MS_NOSUID|MS_NOEXEC|MS_POSIXACL|MS_RELATIME|MS_I_VERSION, "") = 0
[pid  5838] openat(AT_FDCWD, "\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", O_RDONLY|O_DIRECTORY) = 3
[pid  5838] chdir("\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b") = 0
[pid  5838] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid  5838] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 004) = 4
[pid  5838] mount("/dev/loop0", "./bus", NULL, MS_BIND, NULL) = 0
[pid  5838] open("./bus", O_RDONLY|O_LARGEFILE|O_NOFOLLOW|FASYNC) = 5
[   62.441428][ T5838] loop0: detected capacity change from 0 to 256
[pid  5838] ioctl(5, LOOP_SET_STATUS64, {lo_offset=0x2, lo_number=0, lo_flags=0, lo_file_name="\xef\x35\x9f\x41\x3b\xb9\x38\x52\xf7\xd6\xa4\xae\x6d\xdd\xfb\xd1\xce\x5d\x29\xc2\xee\x5e\x5c\x9d", ...}) = 0
[pid  5838] openat(AT_FDCWD, "memory.events.local", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = -1 EROFS (Read-only file system)
[pid  5838] close(3)                    = 0
[pid  5838] close(4)                    = 0
[pid  5838] close(5)                    = 0
[pid  5838] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5838] close(7)                    = -1 EBADF (Bad file descriptor)
[   62.510341][ T5838] loop0: detected capacity change from 256 to 255
[   62.528387][ T5838] exFAT-fs (loop0): error, in sector 160, dentry 2 should be unused, but 0xff
[   62.537474][ T5838] exFAT-fs (loop0): Filesystem has been set read-only
[pid  5838] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5838] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5838] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5838] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5838] exit_group(0)               = ?
[pid  5838] +++ exited with 0 +++
[pid  5835] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
[pid  5835] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5835] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5835] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5835] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=80, ...}, AT_EMPTY_PATH) = 0
[pid  5835] getdents64(3, 0x555565a4f6f0 /* 4 entries */, 32768) = 112
[pid  5835] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5835] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5835] unlink("./0/binderfs")      = 0
[pid  5835] umount2("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EBUSY (Device or resource busy)
[pid  5835] newfstatat(AT_FDCWD, "\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5835] umount2("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EBUSY (Device or resource busy)
[pid  5835] openat(AT_FDCWD, "\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5835] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid  5835] getdents64(4, 0x555565a57730 /* 3 entries */, 32768) = 88
[pid  5835] umount2("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b\x2f\x6d\x65\x6d\x6f\x72\x79\x2e\x65\x76\x65\x6e\x74\x73\x2e\x6c\x6f\x63\x61\x6c", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5835] newfstatat(AT_FDCWD, "\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b\x2f\x6d\x65\x6d\x6f\x72\x79\x2e\x65\x76\x65\x6e\x74\x73\x2e\x6c\x6f\x63\x61\x6c", {st_mode=S_IFREG|0700, st_size=0, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5835] unlink("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b\x2f\x6d\x65\x6d\x6f\x72\x79\x2e\x65\x76\x65\x6e\x74\x73\x2e\x6c\x6f\x63\x61\x6c") = -1 EROFS (Read-only file system)
[   62.922936][ T5835] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000005) bogus content (0x0000ffff)
[pid  5835] getdents64(4, 0x555565a57730, 32768) = -1 EIO (Input/output error)
[pid  5835] close(4)                    = 0
[pid  5835] rmdir("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b") = -1 EBUSY (Device or resource busy)
[pid  5835] umount2("\x2e\x2f\x30\x2f\xe9\x1f\x71\x89\x59\x1e\x92\x33\x61\x4b", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EBUSY (Device or resource busy)
[pid  5835] exit_group(1)               = ?
[   62.986143][ T5835] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000005) bogus content (0x0000ffff)
[   63.038735][    C0] ------------[ cut here ]------------
[   63.044255][    C0] VFS: brelse: Trying to free free buffer
[   63.050109][    C0] WARNING: CPU: 0 PID: 0 at fs/buffer.c:1229 invalidate_bh_lru+0x102/0x1b0
[   63.058729][    C0] Modules linked in:
[   63.062662][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-next-20241122-syzkaller #0
[   63.072159][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.082254][    C0] RIP: 0010:invalidate_bh_lru+0x102/0x1b0
[   63.087987][    C0] Code: 44 ee da ff f0 ff 0b eb 25 e8 ba fa 6f ff 41 80 3c 2e 00 75 2a eb 30 e8 ac fa 6f ff 90 48 c7 c7 20 e1 18 8c e8 2f 99 30 ff 90 <0f> 0b 90 90 48 bd 00 00 00 00 00 fc ff df 41 80 3c 2e 00 74 08 4c
[   63.107682][    C0] RSP: 0018:ffffc90000007f30 EFLAGS: 00010046
[   63.114188][    C0] RAX: 8dc1809847c71b00 RBX: ffff8880749c44e8 RCX: ffffffff8e6965c0
[   63.122162][    C0] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[   63.130130][    C0] RBP: 0000000000000000 R08: ffffffff81601b32 R09: 1ffff110170c519a
[   63.138189][    C0] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff8880b8639838
[   63.146163][    C0] R13: 0000000000000008 R14: 1ffff110170c7308 R15: ffff8880b8639840
[   63.154128][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[   63.163057][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   63.169632][    C0] CR2: 0000555565a5f738 CR3: 000000000e736000 CR4: 00000000003526f0
[   63.177597][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   63.185565][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   63.193530][    C0] Call Trace:
[   63.196801][    C0]  <IRQ>
[   63.199641][    C0]  ? __warn+0x168/0x4e0
[   63.203794][    C0]  ? invalidate_bh_lru+0x102/0x1b0
[   63.208906][    C0]  ? report_bug+0x2b3/0x500
[   63.213417][    C0]  ? invalidate_bh_lru+0x102/0x1b0
[   63.218527][    C0]  ? handle_bug+0x60/0x90
[   63.222846][    C0]  ? exc_invalid_op+0x1a/0x50
[   63.227517][    C0]  ? asm_exc_invalid_op+0x1a/0x20
[   63.232537][    C0]  ? __warn_printk+0x292/0x360
[   63.237296][    C0]  ? invalidate_bh_lru+0x102/0x1b0
[   63.242404][    C0]  ? __pfx_invalidate_bh_lru+0x10/0x10
[   63.247861][    C0]  __flush_smp_call_function_queue+0x3fc/0x1690
[   63.254101][    C0]  ? __pfx_invalidate_bh_lru+0x10/0x10
[   63.259560][    C0]  __sysvec_call_function_single+0xb8/0x430
[   63.265454][    C0]  sysvec_call_function_single+0x9e/0xc0
[   63.271082][    C0]  </IRQ>
[   63.274004][    C0]  <TASK>
[   63.276928][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[   63.282899][    C0] RIP: 0010:acpi_safe_halt+0x21/0x30
[   63.288178][    C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 00 d6 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 25 da 9f 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[   63.307798][    C0] RSP: 0018:ffffffff8e607ca8 EFLAGS: 00000246
[   63.313869][    C0] RAX: ffffffff8e6965c0 RBX: ffff8881436d5864 RCX: 000000000001a851
[   63.321838][    C0] RDX: 0000000000000001 RSI: ffff8881436d5800 RDI: ffff8881436d5864
[   63.329823][    C0] RBP: 000000000003a9f8 R08: ffff8880b8637cdb R09: 1ffff110170c6f9b
[   63.337807][    C0] R10: dffffc0000000000 R11: ffffffff8bc88150 R12: ffff888021ba0000
[   63.345783][    C0] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff8f110580
[   63.353756][    C0]  ? __pfx_acpi_idle_enter+0x10/0x10
[   63.359048][    C0]  acpi_idle_enter+0xe4/0x140
[   63.363721][    C0]  cpuidle_enter_state+0x109/0x470
[   63.368823][    C0]  ? __pfx_menu_select+0x10/0x10
[   63.373755][    C0]  cpuidle_enter+0x5d/0xa0
[   63.378515][    C0]  do_idle+0x372/0x5c0
[   63.382583][    C0]  ? __pfx___schedule+0x10/0x10
[   63.387430][    C0]  ? __pfx_do_idle+0x10/0x10
[   63.392018][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   63.397909][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   63.404235][    C0]  ? rest_init+0x31/0x300
[   63.408555][    C0]  ? rest_init+0x31/0x300
[   63.412904][    C0]  cpu_startup_entry+0x42/0x60
[   63.417666][    C0]  rest_init+0x2dc/0x300
[   63.421900][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[   63.427439][    C0]  start_kernel+0x47f/0x500
[   63.431940][    C0]  x86_64_start_reservations+0x2a/0x30
[   63.437390][    C0]  x86_64_start_kernel+0x9f/0xa0
[   63.442320][    C0]  common_startup_64+0x13e/0x147
[   63.447265][    C0]  </TASK>
[   63.450285][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   63.457583][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-next-20241122-syzkaller #0
[   63.467058][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.477121][    C0] Call Trace:
[   63.480538][    C0]  <IRQ>
[   63.483411][    C0]  dump_stack_lvl+0x241/0x360
[   63.488277][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[   63.493496][    C0]  ? __pfx__printk+0x10/0x10
[   63.498100][    C0]  ? _printk+0xd5/0x120
[   63.502260][    C0]  ? __init_begin+0x41000/0x41000
[   63.507304][    C0]  ? vscnprintf+0x5d/0x90
[   63.511642][    C0]  panic+0x349/0x880
[   63.515543][    C0]  ? __warn+0x177/0x4e0
[   63.519699][    C0]  ? __pfx_panic+0x10/0x10
[   63.524131][    C0]  ? show_trace_log_lvl+0x3b2/0x410
[   63.529345][    C0]  ? common_startup_64+0x13e/0x147
[   63.534461][    C0]  __warn+0x34b/0x4e0
[   63.538444][    C0]  ? invalidate_bh_lru+0x102/0x1b0
[   63.543553][    C0]  report_bug+0x2b3/0x500
[   63.547877][    C0]  ? invalidate_bh_lru+0x102/0x1b0
[   63.552983][    C0]  handle_bug+0x60/0x90
[   63.557129][    C0]  exc_invalid_op+0x1a/0x50
[   63.561623][    C0]  asm_exc_invalid_op+0x1a/0x20
[   63.566462][    C0] RIP: 0010:invalidate_bh_lru+0x102/0x1b0
[   63.572187][    C0] Code: 44 ee da ff f0 ff 0b eb 25 e8 ba fa 6f ff 41 80 3c 2e 00 75 2a eb 30 e8 ac fa 6f ff 90 48 c7 c7 20 e1 18 8c e8 2f 99 30 ff 90 <0f> 0b 90 90 48 bd 00 00 00 00 00 fc ff df 41 80 3c 2e 00 74 08 4c
[   63.591802][    C0] RSP: 0018:ffffc90000007f30 EFLAGS: 00010046
[   63.597881][    C0] RAX: 8dc1809847c71b00 RBX: ffff8880749c44e8 RCX: ffffffff8e6965c0
[   63.605852][    C0] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[   63.613822][    C0] RBP: 0000000000000000 R08: ffffffff81601b32 R09: 1ffff110170c519a
[   63.622067][    C0] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff8880b8639838
[   63.630047][    C0] R13: 0000000000000008 R14: 1ffff110170c7308 R15: ffff8880b8639840
[   63.638035][    C0]  ? __warn_printk+0x292/0x360
[   63.642814][    C0]  ? __pfx_invalidate_bh_lru+0x10/0x10
[   63.648314][    C0]  __flush_smp_call_function_queue+0x3fc/0x1690
[   63.654568][    C0]  ? __pfx_invalidate_bh_lru+0x10/0x10
[   63.660031][    C0]  __sysvec_call_function_single+0xb8/0x430
[   63.665929][    C0]  sysvec_call_function_single+0x9e/0xc0
[   63.671557][    C0]  </IRQ>
[   63.674477][    C0]  <TASK>
[   63.677401][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[   63.683373][    C0] RIP: 0010:acpi_safe_halt+0x21/0x30
[   63.688650][    C0] Code: 90 90 90 90 90 90 90 90 90 65 48 8b 04 25 00 d6 03 00 48 f7 00 08 00 00 00 75 10 66 90 0f 00 2d 25 da 9f 00 f3 0f 1e fa fb f4 <fa> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[   63.708247][    C0] RSP: 0018:ffffffff8e607ca8 EFLAGS: 00000246
[   63.714313][    C0] RAX: ffffffff8e6965c0 RBX: ffff8881436d5864 RCX: 000000000001a851
[   63.722277][    C0] RDX: 0000000000000001 RSI: ffff8881436d5800 RDI: ffff8881436d5864
[   63.730242][    C0] RBP: 000000000003a9f8 R08: ffff8880b8637cdb R09: 1ffff110170c6f9b
[   63.738213][    C0] R10: dffffc0000000000 R11: ffffffff8bc88150 R12: ffff888021ba0000
[   63.746176][    C0] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff8f110580
[   63.754149][    C0]  ? __pfx_acpi_idle_enter+0x10/0x10
[   63.759453][    C0]  acpi_idle_enter+0xe4/0x140
[   63.764296][    C0]  cpuidle_enter_state+0x109/0x470
[   63.769405][    C0]  ? __pfx_menu_select+0x10/0x10
[   63.774335][    C0]  cpuidle_enter+0x5d/0xa0
[   63.778747][    C0]  do_idle+0x372/0x5c0
[   63.782817][    C0]  ? __pfx___schedule+0x10/0x10
[   63.787672][    C0]  ? __pfx_do_idle+0x10/0x10
[   63.792256][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   63.798141][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   63.804468][    C0]  ? rest_init+0x31/0x300
[   63.808786][    C0]  ? rest_init+0x31/0x300
[   63.813106][    C0]  cpu_startup_entry+0x42/0x60
[   63.817868][    C0]  rest_init+0x2dc/0x300
[   63.822102][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[   63.827645][    C0]  start_kernel+0x47f/0x500
[   63.832152][    C0]  x86_64_start_reservations+0x2a/0x30
[   63.837601][    C0]  x86_64_start_kernel+0x9f/0xa0
[   63.842542][    C0]  common_startup_64+0x13e/0x147
[   63.847481][    C0]  </TASK>
[   63.850618][    C0] Kernel Offset: disabled
[   63.854953][    C0] Rebooting in 86400 seconds..