./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2840870057

<...>
Warning: Permanently added '10.128.1.3' (ED25519) to the list of known hosts.
execve("./syz-executor2840870057", ["./syz-executor2840870057"], 0x7ffc3b96d420 /* 10 vars */) = 0
brk(NULL)                               = 0x55557f95d000
brk(0x55557f95dd00)                     = 0x55557f95dd00
arch_prctl(ARCH_SET_FS, 0x55557f95d380) = 0
set_tid_address(0x55557f95d650)         = 341
set_robust_list(0x55557f95d660, 24)     = 0
rseq(0x55557f95dca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2840870057", 4096) = 28
getrandom("\x18\x1a\x96\x5a\x20\xf6\xf2\x89", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55557f95dd00
brk(0x55557f97ed00)                     = 0x55557f97ed00
brk(0x55557f97f000)                     = 0x55557f97f000
mprotect(0x7f0257927000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
mkdir("/syzcgroup", 0777)               = 0
mkdir("/syzcgroup/unified", 0777)       = 0
mount("none", "/syzcgroup/unified", "cgroup2", 0, NULL) = 0
chmod("/syzcgroup/unified", 0777)       = 0
openat(AT_FDCWD, "/syzcgroup/unified/cgroup.subtree_control", O_WRONLY) = 3
write(3, "+cpu", 4)                     = 4
write(3, "+io", 3)                      = 3
write(3, "+pids", 5)                    = 5
close(3)                                = 0
mkdir("/syzcgroup/net", 0777)           = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "net") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio") = -1 EINVAL (Invalid argument)
[   23.772220][   T23] audit: type=1400 audit(1746081056.940:81): avc:  denied  { execmem } for  pid=341 comm="syz-executor284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   23.792883][   T23] audit: type=1400 audit(1746081056.960:82): avc:  denied  { mounton } for  pid=341 comm="syz-executor284" path="/syzcgroup/unified" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   23.793126][  T341] cgroup1: Unknown subsys name 'net'
mount("none", "/syzcgroup/net", "cgroup", 0, "devices") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "freezer") = 0
umount2("/syzcgroup/net", 0)            = 0
[   23.816434][   T23] audit: type=1400 audit(1746081056.960:83): avc:  denied  { mount } for  pid=341 comm="syz-executor284" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   23.822747][  T341] cgroup1: Unknown subsys name 'net_prio'
[   23.851053][  T341] cgroup1: Unknown subsys name 'devices'
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
[   23.858331][   T23] audit: type=1400 audit(1746081057.030:84): avc:  denied  { unmount } for  pid=341 comm="syz-executor284" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio,freezer") = 0
chmod("/syzcgroup/net", 0777)           = 0
mkdir("/syzcgroup/cpu", 0777)           = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "hugetlb") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "rlimit") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "memory") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = ? ERESTARTNOINTR (To be restarted)
[   24.092669][  T341] cgroup1: Unknown subsys name 'hugetlb'
[   24.099358][  T341] cgroup1: Unknown subsys name 'rlimit'
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,memory") = 0
chmod("/syzcgroup/cpu", 0777)           = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cgroup.clone_children", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cpuset.memory_pressure_enabled", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
chmod("/dev/raw-gadget", 0666)          = 0
mkdir("./syzkaller.lcjrWp", 0700)       = 0
chmod("./syzkaller.lcjrWp", 0777)       = 0
chdir("./syzkaller.lcjrWp")             = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 344
./strace-static-x86_64: Process 344 attached
[pid   344] set_robust_list(0x55557f95d660, 24) = 0
[pid   344] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   344] getppid()                   = 0
[pid   344] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid   344] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid   344] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid   344] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid   344] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid   344] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid   344] unshare(CLONE_NEWNS)        = 0
[pid   344] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] unshare(CLONE_NEWIPC)       = -1 EINVAL (Invalid argument)
[pid   344] unshare(CLONE_NEWCGROUP)    = 0
[pid   344] unshare(CLONE_NEWUTS)       = 0
[pid   344] unshare(CLONE_SYSVSEM)      = 0
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   344] getpid()                    = 1
[pid   344] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, inheritable=0}) = 0
[pid   344] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, inheritable=0}) = 0
[pid   344] unshare(CLONE_NEWNET)       = 0
[pid   344] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "0 65535", 7)      = 7
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/dev/net/tun", O_RDWR|O_NONBLOCK) = 3
[pid   344] dup2(3, 200)                = 200
[pid   344] close(3)                    = 0
[pid   344] ioctl(200, TUNSETIFF, 0x7ffefdda02e0) = 0
[pid   344] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/accept_dad", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "0", 1)            = 1
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/router_solicitations", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "0", 1)            = 1
[pid   344] close(3)                    = 0
[pid   344] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
[pid   344] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid   344] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid   344] close(4)                    = 0
[   24.262442][   T23] audit: type=1400 audit(1746081057.430:85): avc:  denied  { setattr } for  pid=341 comm="syz-executor284" name="raw-gadget" dev="devtmpfs" ino=9568 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[pid   344] sendto(3, [{nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x18\x00\x00\x0b\x00\x00\x00\x08\x00\x02\x00\xac\x14\x14\xaa\x08\x00\x01\x00\xac\x14\x14\xaa"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid   344] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid   344] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid   344] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid   344] close(4)                    = 0
[pid   344] sendto(3, [{nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x78\x00\x00\x0b\x00\x00\x00\x14\x00\x02\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid   344] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid   344] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid   344] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid   344] close(4)                    = 0
[pid   344] sendto(3, [{nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x08\x00\x01\x00\xac\x14\x14\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 48, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 48
[pid   344] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid   344] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid   344] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid   344] close(4)                    = 0
[pid   344] sendto(3, [{nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 60, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 60
[pid   344] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid   344] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid   344] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid   344] close(4)                    = 0
[pid   344] sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xaa\x00\x00"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
[pid   344] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "100000", 6)       = 6
[pid   344] close(3)                    = 0
[pid   344] mkdir("./syz-tmp", 0777)    = 0
[pid   344] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0
[pid   344] mkdir("./syz-tmp/newroot", 0777) = 0
[pid   344] mkdir("./syz-tmp/newroot/dev", 0700) = 0
[pid   344] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mkdir("./syz-tmp/newroot/proc", 0700) = 0
[pid   344] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0
[pid   344] mkdir("./syz-tmp/newroot/selinux", 0700) = 0
[pid   344] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid   344] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mkdir("./syz-tmp/newroot/sys", 0700) = 0
[pid   344] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid   344] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mkdir("./syz-tmp/newroot/syz-inputs", 0700) = 0
[pid   344] mount("/syz-inputs", "./syz-tmp/newroot/syz-inputs", NULL, MS_RDONLY|MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid   344] mkdir("./syz-tmp/newroot/syzcgroup", 0700) = 0
[pid   344] mkdir("./syz-tmp/newroot/syzcgroup/unified", 0700) = 0
[pid   344] mkdir("./syz-tmp/newroot/syzcgroup/cpu", 0700) = 0
[pid   344] mkdir("./syz-tmp/newroot/syzcgroup/net", 0700) = 0
[pid   344] mount("/syzcgroup/unified", "./syz-tmp/newroot/syzcgroup/unified", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mount("/syzcgroup/cpu", "./syz-tmp/newroot/syzcgroup/cpu", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mount("/syzcgroup/net", "./syz-tmp/newroot/syzcgroup/net", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid   344] mkdir("./syz-tmp/pivot", 0777) = 0
[pid   344] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0
[pid   344] chdir("/")                  = 0
[   24.293710][   T23] audit: type=1400 audit(1746081057.460:86): avc:  denied  { mounton } for  pid=344 comm="syz-executor284" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[pid   344] umount2("./pivot", MNT_DETACH) = 0
[pid   344] chroot("./newroot")         = 0
[pid   344] chdir("/")                  = 0
[pid   344] mkdir("/dev/gadgetfs", 0777) = 0
[pid   344] mount("gadgetfs", "/dev/gadgetfs", "gadgetfs", 0, NULL) = -1 ENODEV (No such device)
[pid   344] mkdir("/dev/binderfs", 0777) = 0
[pid   344] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid   344] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid   344] getpid()                    = 1
[pid   344] mkdir("/syzcgroup/unified/syz0", 0777) = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/unified/syz0/pids.max", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "32", 2)           = 2
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/unified/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "1", 1)            = 1
[pid   344] close(3)                    = 0
[   24.334826][   T23] audit: type=1400 audit(1746081057.500:87): avc:  denied  { create } for  pid=338 comm="strace-static-x" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   24.356303][   T23] audit: type=1400 audit(1746081057.500:88): avc:  denied  { write } for  pid=338 comm="strace-static-x" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[pid   344] mkdir("/syzcgroup/cpu/syz0", 0777) = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "1", 1)            = 1
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.soft_limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "313524224", 9)    = 9
[pid   344] close(3)                    = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "314572800", 9)    = 9
[pid   344] close(3)                    = 0
[pid   344] mkdir("/syzcgroup/net/syz0", 0777) = 0
[pid   344] openat(AT_FDCWD, "/syzcgroup/net/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid   344] write(3, "1", 1)            = 1
[pid   344] close(3)                    = 0
[pid   344] mkdir("./0", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 345 attached
 <unfinished ...>
[pid   345] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 2
[pid   345] <... set_robust_list resumed>) = 0
[pid   345] chdir("./0")                = 0
[pid   345] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   345] setpgid(0, 0)               = 0
[pid   345] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   345] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   345] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   345] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   345] write(3, "1000", 4)         = 4
[pid   345] close(3)                    = 0
[pid   345] read(200, "\x33\x33\x00\x00\x00\x16\xaa\xaa\xaa\xaa\xaa\xaa\x86\xdd\x60\x00\x00\x00\x00\x38\x00\x01\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x16\x3a\x00\x05\x02\x00\x00\x01\x00\x8f\x00\xc2\x46\x00\x00\x00\x02\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xff\xaa\xaa\xaa\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00"..., 1000) = 110
[pid   345] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   345] symlink("/dev/binderfs", "./binderfs") = 0
[pid   345] write(1, "executing program\n", 18) = 18
executing program
[pid   345] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   345] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   345] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   345] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   345] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   345] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   345] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   345] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   345] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   345] memfd_create("syzkaller", 0) = 5
[pid   345] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   345] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   345] munmap(0x7f024f46f000, 138412032) = 0
[pid   345] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   345] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   345] close(5)                    = 0
[pid   345] close(6)                    = 0
[pid   345] mkdir("./file0", 0777)      = 0
[   24.377064][   T23] audit: type=1400 audit(1746081057.500:89): avc:  denied  { nlmsg_read } for  pid=338 comm="strace-static-x" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   24.379651][  T344] request_module fs-gadgetfs succeeded, but still no fs?
[   24.398523][   T23] audit: type=1400 audit(1746081057.500:90): avc:  denied  { module_request } for  pid=338 comm="strace-static-x" kmod="net-pf-16-proto-4-type-16" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[pid   345] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   345] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   345] chdir("./file0")            = 0
[pid   345] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   345] ioctl(6, LOOP_CLR_FD)       = 0
[pid   345] close(6)                    = 0
[pid   345] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   345] write(6, "#! ./file1\n", 11) = 11
[pid   345] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   345] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   345] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=2, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   24.478369][  T345] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   24.510224][  T346] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-345: bg 0: block 234: padding at end of block bitmap is not set
[   24.527288][  T345] syz-executor284 (345) used greatest stack depth: 20608 bytes left
[pid   344] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./0/file0")          = 0
[pid   344] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./0/binderfs")      = 0
[pid   344] umount2("./0/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./0/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./0/cgroup.net")    = 0
[pid   344] umount2("./0/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./0/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./0/cgroup.cpu")    = 0
[pid   344] umount2("./0/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./0/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./0/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./0")                = 0
[pid   344] mkdir("./1", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 3
./strace-static-x86_64: Process 350 attached
[pid   350] set_robust_list(0x55557f95d660, 24) = 0
[pid   350] chdir("./1")                = 0
[pid   350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   350] setpgid(0, 0)               = 0
[pid   350] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   350] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   350] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   350] write(3, "1000", 4)         = 4
[pid   350] close(3)                    = 0
[pid   350] read(200, "\x33\x33\x00\x00\x00\x16\xaa\xaa\xaa\xaa\xaa\xaa\x86\xdd\x60\x00\x00\x00\x00\x38\x00\x01\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x16\x3a\x00\x05\x02\x00\x00\x01\x00\x8f\x00\xc2\x46\x00\x00\x00\x02\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xff\xaa\xaa\xaa\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00"..., 1000) = 110
[pid   350] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   350] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   350] write(1, "executing program\n", 18) = 18
[pid   350] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   350] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   350] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   350] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   350] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   350] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   350] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   350] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   350] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   350] memfd_create("syzkaller", 0) = 5
[pid   350] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   350] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   350] munmap(0x7f024f46f000, 138412032) = 0
[pid   350] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   350] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   350] close(5)                    = 0
[pid   350] close(6)                    = 0
[pid   350] mkdir("./file0", 0777)      = 0
[pid   350] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   350] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   350] chdir("./file0")            = 0
[pid   350] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   350] ioctl(6, LOOP_CLR_FD)       = 0
[pid   350] close(6)                    = 0
[pid   350] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   350] write(6, "#! ./file1\n", 11) = 11
[pid   350] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   350] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   350] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=3, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   24.737684][  T350] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   24.769432][  T351] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-350: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./1/file0")          = 0
[pid   344] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./1/binderfs")      = 0
[pid   344] umount2("./1/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./1/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./1/cgroup.net")    = 0
[pid   344] umount2("./1/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./1/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./1/cgroup.cpu")    = 0
[pid   344] umount2("./1/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./1/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./1/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./1")                = 0
[pid   344] mkdir("./2", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3executing program
)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 4
./strace-static-x86_64: Process 355 attached
[pid   355] set_robust_list(0x55557f95d660, 24) = 0
[pid   355] chdir("./2")                = 0
[pid   355] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   355] setpgid(0, 0)               = 0
[pid   355] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   355] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   355] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   355] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   355] write(3, "1000", 4)         = 4
[pid   355] close(3)                    = 0
[pid   355] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   355] symlink("/dev/binderfs", "./binderfs") = 0
[pid   355] write(1, "executing program\n", 18) = 18
[pid   355] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   355] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   355] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   355] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   355] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   355] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   355] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   355] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   355] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   355] memfd_create("syzkaller", 0) = 5
[pid   355] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   355] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   355] munmap(0x7f024f46f000, 138412032) = 0
[pid   355] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   355] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   355] close(5)                    = 0
[pid   355] close(6)                    = 0
[pid   355] mkdir("./file0", 0777)      = 0
[pid   355] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   355] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   355] chdir("./file0")            = 0
[pid   355] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   355] ioctl(6, LOOP_CLR_FD)       = 0
[pid   355] close(6)                    = 0
[pid   355] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   355] write(6, "#! ./file1\n", 11) = 11
[pid   355] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   355] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   355] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=4, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   24.897772][  T355] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   24.927879][  T356] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-355: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./2/file0")          = 0
[pid   344] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./2/binderfs")      = 0
[pid   344] umount2("./2/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./2/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./2/cgroup.net")    = 0
[pid   344] umount2("./2/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./2/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./2/cgroup.cpu")    = 0
[pid   344] umount2("./2/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./2/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./2/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./2")                = 0
[pid   344] mkdir("./3", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 360 attached
 <unfinished ...>
[pid   360] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 5
[pid   360] <... set_robust_list resumed>) = 0
[pid   360] chdir("./3")                = 0
[pid   360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   360] setpgid(0, 0)               = 0
[pid   360] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   360] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   360] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   360] write(3, "1000", 4)         = 4
[pid   360] close(3)                    = 0
[pid   360] read(200, "\x33\x33\x00\x00\x00\x16\xaa\xaa\xaa\xaa\xaa\xaa\x86\xdd\x60\x00\x00\x00\x00\x38\x00\x01\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x16\x3a\x00\x05\x02\x00\x00\x01\x00\x8f\x00\xc2\x46\x00\x00\x00\x02\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xff\xaa\xaa\xaa\x04\x00\x00\x00\xff\x02\x00\x00\x00\x00"..., 1000) = 110
[pid   360] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   360] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   360] write(1, "executing program\n", 18) = 18
[pid   360] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   360] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   360] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   360] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   360] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   360] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   360] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   360] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   360] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   360] memfd_create("syzkaller", 0) = 5
[pid   360] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   360] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   360] munmap(0x7f024f46f000, 138412032) = 0
[pid   360] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   360] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   360] close(5)                    = 0
[pid   360] close(6)                    = 0
[pid   360] mkdir("./file0", 0777)      = 0
[pid   360] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   360] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   360] chdir("./file0")            = 0
[pid   360] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   360] ioctl(6, LOOP_CLR_FD)       = 0
[pid   360] close(6)                    = 0
[pid   360] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   360] write(6, "#! ./file1\n", 11) = 11
[pid   360] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   360] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   360] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=5, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   25.071577][  T360] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   25.101667][  T361] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-360: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./3/file0")          = 0
[pid   344] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./3/binderfs")      = 0
[pid   344] umount2("./3/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./3/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./3/cgroup.net")    = 0
[pid   344] umount2("./3/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./3/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./3/cgroup.cpu")    = 0
[pid   344] umount2("./3/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./3/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./3/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./3")                = 0
[pid   344] mkdir("./4", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 365 attached
 <unfinished ...>
[pid   365] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 6
[pid   365] <... set_robust_list resumed>) = 0
[pid   365] chdir("./4")                = 0
[pid   365] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   365] setpgid(0, 0)               = 0
[pid   365] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   365] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   365] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   365] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   365] write(3, "1000", 4)         = 4
[pid   365] close(3)                    = 0
[pid   365] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   365] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   365] write(1, "executing program\n", 18) = 18
[pid   365] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   365] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   365] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   365] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   365] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   365] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   365] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   365] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   365] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   365] memfd_create("syzkaller", 0) = 5
[pid   365] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   365] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   365] munmap(0x7f024f46f000, 138412032) = 0
[pid   365] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   365] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   365] close(5)                    = 0
[pid   365] close(6)                    = 0
[pid   365] mkdir("./file0", 0777)      = 0
[pid   365] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   365] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   365] chdir("./file0")            = 0
[pid   365] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   365] ioctl(6, LOOP_CLR_FD)       = 0
[pid   365] close(6)                    = 0
[pid   365] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   365] write(6, "#! ./file1\n", 11) = 11
[pid   365] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   365] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   365] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=6, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   25.275203][  T365] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   25.305429][  T366] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-365: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./4/file0")          = 0
[pid   344] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./4/binderfs")      = 0
[pid   344] umount2("./4/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./4/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./4/cgroup.net")    = 0
[pid   344] umount2("./4/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./4/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./4/cgroup.cpu")    = 0
[pid   344] umount2("./4/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./4/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./4/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./4")                = 0
[pid   344] mkdir("./5", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 370 attached
, child_tidptr=0x55557f95d650) = 7
[pid   370] set_robust_list(0x55557f95d660, 24) = 0
[pid   370] chdir("./5")                = 0
[pid   370] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   370] setpgid(0, 0)               = 0
[pid   370] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   370] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   370] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   370] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   370] write(3, "1000", 4)         = 4
[pid   370] close(3)                    = 0
[pid   370] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   370] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   370] write(1, "executing program\n", 18) = 18
[pid   370] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   370] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   370] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   370] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   370] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   370] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   370] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   370] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   370] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   370] memfd_create("syzkaller", 0) = 5
[pid   370] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   370] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   370] munmap(0x7f024f46f000, 138412032) = 0
[pid   370] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   370] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   370] close(5)                    = 0
[pid   370] close(6)                    = 0
[pid   370] mkdir("./file0", 0777)      = 0
[pid   370] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   370] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   370] chdir("./file0")            = 0
[pid   370] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   370] ioctl(6, LOOP_CLR_FD)       = 0
[pid   370] close(6)                    = 0
[pid   370] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   370] write(6, "#! ./file1\n", 11) = 11
[pid   370] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   370] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   370] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=7, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   25.567643][  T370] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   25.609174][  T371] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-370: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./5/file0")          = 0
[pid   344] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./5/binderfs")      = 0
[pid   344] umount2("./5/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./5/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./5/cgroup.net")    = 0
[pid   344] umount2("./5/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./5/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./5/cgroup.cpu")    = 0
[pid   344] umount2("./5/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./5/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./5/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./5")                = 0
[pid   344] mkdir("./6", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 375 attached
 <unfinished ...>
[pid   375] set_robust_list(0x55557f95d660, 24) = 0
[pid   375] chdir("./6")                = 0
[pid   375] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   375] setpgid(0, 0)               = 0
[pid   375] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 8
[pid   375] <... symlink resumed>)      = 0
[pid   375] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   375] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   375] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   375] write(3, "1000", 4)         = 4
[pid   375] close(3)                    = 0
[pid   375] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   375] symlink("/dev/binderfs", "./binderfs") = 0
[pid   375] write(1, "executing program\n", 18executing program
) = 18
[pid   375] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   375] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   375] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   375] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   375] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   375] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   375] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   375] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   375] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   375] memfd_create("syzkaller", 0) = 5
[pid   375] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   375] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   375] munmap(0x7f024f46f000, 138412032) = 0
[pid   375] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   375] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   375] close(5)                    = 0
[pid   375] close(6)                    = 0
[pid   375] mkdir("./file0", 0777)      = 0
[pid   375] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   375] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   375] chdir("./file0")            = 0
[pid   375] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   375] ioctl(6, LOOP_CLR_FD)       = 0
[pid   375] close(6)                    = 0
[pid   375] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   375] write(6, "#! ./file1\n", 11) = 11
[pid   375] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   375] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   375] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=8, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   25.777767][  T375] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./6/file0")          = 0
[pid   344] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./6/binderfs")      = 0
[pid   344] umount2("./6/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./6/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./6/cgroup.net")    = 0
[pid   344] umount2("./6/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./6/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./6/cgroup.cpu")    = 0
[pid   344] umount2("./6/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./6/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./6/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./6")                = 0
[pid   344] mkdir("./7", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 380 attached
 <unfinished ...>
[pid   380] set_robust_list(0x55557f95d660, 24) = 0
[pid   380] chdir("./7" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 9
[pid   380] <... chdir resumed>)        = 0
[pid   380] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   380] setpgid(0, 0)               = 0
[pid   380] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   380] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   380] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   380] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   380] write(3, "1000", 4)         = 4
[pid   380] close(3)                    = 0
[pid   380] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   380] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   380] write(1, "executing program\n", 18) = 18
[pid   380] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   380] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   380] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   380] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   380] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   380] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   380] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   380] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   380] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   380] memfd_create("syzkaller", 0) = 5
[pid   380] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[   25.821926][  T376] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-375: bg 0: block 234: padding at end of block bitmap is not set
[pid   380] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   380] munmap(0x7f024f46f000, 138412032) = 0
[pid   380] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   380] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   380] close(5)                    = 0
[pid   380] close(6)                    = 0
[pid   380] mkdir("./file0", 0777)      = 0
[pid   380] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   380] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   380] chdir("./file0")            = 0
[pid   380] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   380] ioctl(6, LOOP_CLR_FD)       = 0
[pid   380] close(6)                    = 0
[pid   380] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   380] write(6, "#! ./file1\n", 11) = 11
[pid   380] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   380] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   380] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=9, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   25.927632][  T380] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   25.955053][  T380] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./7/file0")          = 0
[pid   344] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./7/binderfs")      = 0
[pid   344] umount2("./7/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./7/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./7/cgroup.net")    = 0
[pid   344] umount2("./7/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./7/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./7/cgroup.cpu")    = 0
[pid   344] umount2("./7/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./7/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./7/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./7")                = 0
[pid   344] mkdir("./8", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 10
./strace-static-x86_64: Process 385 attached
[pid   385] set_robust_list(0x55557f95d660, 24) = 0
[pid   385] chdir("./8")                = 0
[pid   385] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   385] setpgid(0, 0)               = 0
[pid   385] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   385] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   385] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   385] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   385] write(3, "1000", 4)         = 4
[pid   385] close(3)                    = 0
[pid   385] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   385] symlink("/dev/binderfs", "./binderfs") = 0
[pid   385] write(1, "executing program\n", 18executing program
) = 18
[pid   385] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   385] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   385] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   385] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   385] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   385] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   385] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   385] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   385] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   385] memfd_create("syzkaller", 0) = 5
[pid   385] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   385] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   385] munmap(0x7f024f46f000, 138412032) = 0
[pid   385] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   385] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   385] close(5)                    = 0
[pid   385] close(6)                    = 0
[pid   385] mkdir("./file0", 0777)      = 0
[pid   385] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   385] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   385] chdir("./file0")            = 0
[pid   385] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   385] ioctl(6, LOOP_CLR_FD)       = 0
[pid   385] close(6)                    = 0
[pid   385] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   385] write(6, "#! ./file1\n", 11) = 11
[pid   385] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   385] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   385] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=10, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   26.117795][  T385] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   26.148616][  T386] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-385: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./8/file0")          = 0
[pid   344] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./8/binderfs")      = 0
[pid   344] umount2("./8/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./8/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./8/cgroup.net")    = 0
[pid   344] umount2("./8/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./8/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./8/cgroup.cpu")    = 0
[pid   344] umount2("./8/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./8/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./8/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./8")                = 0
[pid   344] mkdir("./9", 0777)          = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 390 attached
, child_tidptr=0x55557f95d650) = 11
[pid   390] set_robust_list(0x55557f95d660, 24) = 0
[pid   390] chdir("./9")                = 0
[pid   390] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   390] setpgid(0, 0)               = 0
[pid   390] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   390] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   390] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   390] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   390] write(3, "1000", 4)         = 4
[pid   390] close(3)                    = 0
[pid   390] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   390] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   390] write(1, "executing program\n", 18) = 18
[pid   390] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   390] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   390] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   390] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   390] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   390] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   390] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   390] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   390] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   390] memfd_create("syzkaller", 0) = 5
[pid   390] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   390] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   390] munmap(0x7f024f46f000, 138412032) = 0
[pid   390] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   390] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   390] close(5)                    = 0
[pid   390] close(6)                    = 0
[pid   390] mkdir("./file0", 0777)      = 0
[pid   390] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   390] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   390] chdir("./file0")            = 0
[pid   390] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   390] ioctl(6, LOOP_CLR_FD)       = 0
[pid   390] close(6)                    = 0
[pid   390] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   390] write(6, "#! ./file1\n", 11) = 11
[pid   390] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   390] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   390] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=11, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   26.337789][  T390] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   26.369862][  T391] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-390: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./9/file0")          = 0
[pid   344] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./9/binderfs")      = 0
[pid   344] umount2("./9/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./9/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./9/cgroup.net")    = 0
[pid   344] umount2("./9/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./9/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./9/cgroup.cpu")    = 0
[pid   344] umount2("./9/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./9/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./9/cgroup")        = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./9")                = 0
[pid   344] mkdir("./10", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 12
./strace-static-x86_64: Process 395 attached
[pid   395] set_robust_list(0x55557f95d660, 24) = 0
[pid   395] chdir("./10")               = 0
[pid   395] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   395] setpgid(0, 0)               = 0
[pid   395] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   395] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   395] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   395] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   395] write(3, "1000", 4)         = 4
[pid   395] close(3)                    = 0
[pid   395] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   395] symlink("/dev/binderfs", "./binderfs") = 0
[pid   395] write(1, "executing program\n", 18executing program
) = 18
[pid   395] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   395] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   395] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   395] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   395] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   395] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   395] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   395] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   395] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   395] memfd_create("syzkaller", 0) = 5
[pid   395] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   395] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   395] munmap(0x7f024f46f000, 138412032) = 0
[pid   395] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   395] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   395] close(5)                    = 0
[pid   395] close(6)                    = 0
[pid   395] mkdir("./file0", 0777)      = 0
[pid   395] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   395] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   395] chdir("./file0")            = 0
[pid   395] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   395] ioctl(6, LOOP_CLR_FD)       = 0
[pid   395] close(6)                    = 0
[pid   395] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   395] write(6, "#! ./file1\n", 11) = 11
[pid   395] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   395] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   395] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=12, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=4} ---
[   26.507993][  T395] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   26.551127][  T396] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-395: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./10/file0")         = 0
[pid   344] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./10/binderfs")     = 0
[pid   344] umount2("./10/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./10/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./10/cgroup.net")   = 0
[pid   344] umount2("./10/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./10/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./10/cgroup.cpu")   = 0
[pid   344] umount2("./10/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./10/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./10/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./10")               = 0
[pid   344] mkdir("./11", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 400 attached
 <unfinished ...>
[pid   400] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 13
[pid   400] <... set_robust_list resumed>) = 0
[pid   400] chdir("./11")               = 0
[pid   400] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   400] setpgid(0, 0)               = 0
[pid   400] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   400] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   400] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   400] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   400] write(3, "1000", 4)         = 4
[pid   400] close(3)                    = 0
[pid   400] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   400] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   400] write(1, "executing program\n", 18) = 18
[pid   400] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   400] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   400] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   400] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   400] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   400] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   400] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   400] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   400] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   400] memfd_create("syzkaller", 0) = 5
[pid   400] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   400] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   400] munmap(0x7f024f46f000, 138412032) = 0
[pid   400] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   400] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   400] close(5)                    = 0
[pid   400] close(6)                    = 0
[pid   400] mkdir("./file0", 0777)      = 0
[pid   400] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   400] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   400] chdir("./file0")            = 0
[pid   400] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   400] ioctl(6, LOOP_CLR_FD)       = 0
[pid   400] close(6)                    = 0
[pid   400] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   400] write(6, "#! ./file1\n", 11) = 11
[pid   400] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   400] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   400] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=13, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   26.727790][  T400] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./11/file0")         = 0
[pid   344] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./11/binderfs")     = 0
[pid   344] umount2("./11/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./11/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./11/cgroup.net")   = 0
[pid   344] umount2("./11/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./11/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./11/cgroup.cpu")   = 0
[pid   344] umount2("./11/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./11/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./11/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./11")               = 0
[pid   344] mkdir("./12", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 14
./strace-static-x86_64: Process 405 attached
[pid   405] set_robust_list(0x55557f95d660, 24) = 0
[pid   405] chdir("./12")               = 0
[pid   405] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   405] setpgid(0, 0)               = 0
[pid   405] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   405] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   405] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   405] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[   26.767211][  T401] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-400: bg 0: block 234: padding at end of block bitmap is not set
[pid   405] write(3, "1000", 4)         = 4
[pid   405] close(3)                    = 0
[pid   405] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   405] symlink("/dev/binderfs", "./binderfs") = 0
[pid   405] write(1, "executing program\n", 18executing program
) = 18
[pid   405] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   405] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   405] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   405] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   405] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   405] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   405] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   405] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   405] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   405] memfd_create("syzkaller", 0) = 5
[pid   405] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   405] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   405] munmap(0x7f024f46f000, 138412032) = 0
[pid   405] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   405] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   405] close(5)                    = 0
[pid   405] close(6)                    = 0
[pid   405] mkdir("./file0", 0777)      = 0
[pid   405] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   405] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   405] chdir("./file0")            = 0
[pid   405] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   405] ioctl(6, LOOP_CLR_FD)       = 0
[pid   405] close(6)                    = 0
[pid   405] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   405] write(6, "#! ./file1\n", 11) = 11
[pid   405] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   405] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   405] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=14, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   26.877879][  T405] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   26.908890][  T406] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-405: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./12/file0")         = 0
[pid   344] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./12/binderfs")     = 0
[pid   344] umount2("./12/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./12/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./12/cgroup.net")   = 0
[pid   344] umount2("./12/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./12/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./12/cgroup.cpu")   = 0
[pid   344] umount2("./12/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./12/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./12/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./12")               = 0
[pid   344] mkdir("./13", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 410 attached
 <unfinished ...>
[pid   410] set_robust_list(0x55557f95d660, 24) = 0
[pid   410] chdir("./13" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 15
[pid   410] <... chdir resumed>)        = 0
[pid   410] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   410] setpgid(0, 0)               = 0
[pid   410] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   410] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   410] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   410] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   410] write(3, "1000", 4)         = 4
[pid   410] close(3)                    = 0
[pid   410] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   410] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   410] write(1, "executing program\n", 18) = 18
[pid   410] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   410] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   410] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   410] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   410] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   410] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   410] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   410] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   410] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   410] memfd_create("syzkaller", 0) = 5
[pid   410] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   410] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   410] munmap(0x7f024f46f000, 138412032) = 0
[pid   410] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   410] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   410] close(5)                    = 0
[pid   410] close(6)                    = 0
[pid   410] mkdir("./file0", 0777)      = 0
[pid   410] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   410] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   410] chdir("./file0")            = 0
[pid   410] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   410] ioctl(6, LOOP_CLR_FD)       = 0
[pid   410] close(6)                    = 0
[pid   410] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   410] write(6, "#! ./file1\n", 11) = 11
[pid   410] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   410] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   410] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=15, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   27.097636][  T410] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   27.125015][  T410] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./13/file0")         = 0
[pid   344] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./13/binderfs")     = 0
[pid   344] umount2("./13/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./13/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./13/cgroup.net")   = 0
[pid   344] umount2("./13/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./13/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./13/cgroup.cpu")   = 0
[pid   344] umount2("./13/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./13/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./13/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./13")               = 0
[pid   344] mkdir("./14", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 415 attached
, child_tidptr=0x55557f95d650) = 16
[pid   415] set_robust_list(0x55557f95d660, 24) = 0
[pid   415] chdir("./14")               = 0
[pid   415] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   415] setpgid(0, 0)               = 0
[pid   415] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   415] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   415] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   415] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   415] write(3, "1000", 4)         = 4
[pid   415] close(3)                    = 0
[pid   415] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   415] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   415] write(1, "executing program\n", 18) = 18
[pid   415] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   415] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   415] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   415] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   415] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   415] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   415] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   415] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   415] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   415] memfd_create("syzkaller", 0) = 5
[pid   415] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   415] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   415] munmap(0x7f024f46f000, 138412032) = 0
[pid   415] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   415] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   415] close(5)                    = 0
[pid   415] close(6)                    = 0
[pid   415] mkdir("./file0", 0777)      = 0
[pid   415] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   415] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   415] chdir("./file0")            = 0
[pid   415] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   415] ioctl(6, LOOP_CLR_FD)       = 0
[pid   415] close(6)                    = 0
[pid   415] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   415] write(6, "#! ./file1\n", 11) = 11
[pid   415] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   415] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   415] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=16, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   27.348075][  T415] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./14/file0")         = 0
[pid   344] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./14/binderfs")     = 0
[pid   344] umount2("./14/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./14/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./14/cgroup.net")   = 0
[pid   344] umount2("./14/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./14/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./14/cgroup.cpu")   = 0
[pid   344] umount2("./14/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./14/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./14/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./14")               = 0
[pid   344] mkdir("./15", 0777)         = 0
[   27.391488][  T416] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-415: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWRexecuting program
) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 17
./strace-static-x86_64: Process 420 attached
[pid   420] set_robust_list(0x55557f95d660, 24) = 0
[pid   420] chdir("./15")               = 0
[pid   420] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   420] setpgid(0, 0)               = 0
[pid   420] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   420] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   420] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   420] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   420] write(3, "1000", 4)         = 4
[pid   420] close(3)                    = 0
[pid   420] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   420] symlink("/dev/binderfs", "./binderfs") = 0
[pid   420] write(1, "executing program\n", 18) = 18
[pid   420] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   420] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   420] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   420] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   420] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   420] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   420] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   420] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   420] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   420] memfd_create("syzkaller", 0) = 5
[pid   420] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   420] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   420] munmap(0x7f024f46f000, 138412032) = 0
[pid   420] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   420] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   420] close(5)                    = 0
[pid   420] close(6)                    = 0
[pid   420] mkdir("./file0", 0777)      = 0
[pid   420] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   420] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   420] chdir("./file0")            = 0
[pid   420] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   420] ioctl(6, LOOP_CLR_FD)       = 0
[pid   420] close(6)                    = 0
[pid   420] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   420] write(6, "#! ./file1\n", 11) = 11
[pid   420] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   420] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   420] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=17, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   27.517812][  T420] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   27.548657][  T421] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-420: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./15/file0")         = 0
[pid   344] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./15/binderfs")     = 0
[pid   344] umount2("./15/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./15/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./15/cgroup.net")   = 0
[pid   344] umount2("./15/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./15/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./15/cgroup.cpu")   = 0
[pid   344] umount2("./15/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./15/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./15/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./15")               = 0
[pid   344] mkdir("./16", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 18
./strace-static-x86_64: Process 425 attached
[pid   425] set_robust_list(0x55557f95d660, 24) = 0
[pid   425] chdir("./16")               = 0
[pid   425] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   425] setpgid(0, 0)               = 0
[pid   425] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   425] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   425] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   425] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   425] write(3, "1000", 4)         = 4
[pid   425] close(3)                    = 0
[pid   425] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   425] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   425] write(1, "executing program\n", 18) = 18
[pid   425] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   425] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   425] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   425] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   425] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   425] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   425] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   425] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   425] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   425] memfd_create("syzkaller", 0) = 5
[pid   425] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   425] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   425] munmap(0x7f024f46f000, 138412032) = 0
[pid   425] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   425] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   425] close(5)                    = 0
[pid   425] close(6)                    = 0
[pid   425] mkdir("./file0", 0777)      = 0
[pid   425] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   425] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   425] chdir("./file0")            = 0
[pid   425] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   425] ioctl(6, LOOP_CLR_FD)       = 0
[pid   425] close(6)                    = 0
[pid   425] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   425] write(6, "#! ./file1\n", 11) = 11
[pid   425] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   425] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   425] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=18, si_uid=0, si_status=SIGBUS, si_utime=1, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   27.687776][  T425] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   27.718648][  T426] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-425: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./16/file0")         = 0
[pid   344] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./16/binderfs")     = 0
[pid   344] umount2("./16/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./16/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./16/cgroup.net")   = 0
[pid   344] umount2("./16/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./16/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./16/cgroup.cpu")   = 0
[pid   344] umount2("./16/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./16/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./16/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./16")               = 0
[pid   344] mkdir("./17", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 430 attached
, child_tidptr=0x55557f95d650) = 19
[pid   430] set_robust_list(0x55557f95d660, 24) = 0
[pid   430] chdir("./17")               = 0
[pid   430] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   430] setpgid(0, 0)               = 0
[pid   430] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   430] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   430] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   430] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   430] write(3, "1000", 4)         = 4
[pid   430] close(3)                    = 0
[pid   430] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   430] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   430] write(1, "executing program\n", 18) = 18
[pid   430] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   430] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   430] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   430] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   430] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   430] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   430] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   430] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   430] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   430] memfd_create("syzkaller", 0) = 5
[pid   430] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   430] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   430] munmap(0x7f024f46f000, 138412032) = 0
[pid   430] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   430] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   430] close(5)                    = 0
[pid   430] close(6)                    = 0
[pid   430] mkdir("./file0", 0777)      = 0
[pid   430] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   430] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   430] chdir("./file0")            = 0
[pid   430] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   430] ioctl(6, LOOP_CLR_FD)       = 0
[pid   430] close(6)                    = 0
[pid   430] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   430] write(6, "#! ./file1\n", 11) = 11
[pid   430] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   430] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   430] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=19, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   27.900910][  T430] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   27.931376][  T431] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-430: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./17/file0")         = 0
[pid   344] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./17/binderfs")     = 0
[pid   344] umount2("./17/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./17/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./17/cgroup.net")   = 0
[pid   344] umount2("./17/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./17/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./17/cgroup.cpu")   = 0
[pid   344] umount2("./17/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./17/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./17/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./17")               = 0
[pid   344] mkdir("./18", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 435 attached
 <unfinished ...>
[pid   435] set_robust_list(0x55557f95d660, 24) = 0
[pid   435] chdir("./18")               = 0
[pid   435] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   435] setpgid(0, 0)               = 0
[pid   435] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   435] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   435] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   435] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   435] write(3, "1000", 4)         = 4
[pid   435] close(3)                    = 0
[pid   435] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   435] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   435] write(1, "executing program\n", 18) = 18
[pid   435] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 20
[pid   435] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   435] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   435] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   435] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   435] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   435] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   435] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   435] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   435] memfd_create("syzkaller", 0) = 5
[pid   435] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   435] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   435] munmap(0x7f024f46f000, 138412032) = 0
[pid   435] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   435] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   435] close(5)                    = 0
[pid   435] close(6)                    = 0
[pid   435] mkdir("./file0", 0777)      = 0
[pid   435] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   435] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   435] chdir("./file0")            = 0
[pid   435] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   435] ioctl(6, LOOP_CLR_FD)       = 0
[pid   435] close(6)                    = 0
[pid   435] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   435] write(6, "#! ./file1\n", 11) = 11
[pid   435] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   435] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   435] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=20, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   28.067560][  T435] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.094857][  T435] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./18/file0")         = 0
[pid   344] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./18/binderfs")     = 0
[pid   344] umount2("./18/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./18/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./18/cgroup.net")   = 0
[pid   344] umount2("./18/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./18/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./18/cgroup.cpu")   = 0
[pid   344] umount2("./18/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./18/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./18/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./18")               = 0
[pid   344] mkdir("./19", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 440 attached
 <unfinished ...>
[pid   440] set_robust_list(0x55557f95d660, 24) = 0
[pid   440] chdir("./19" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 21
[pid   440] <... chdir resumed>)        = 0
[pid   440] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   440] setpgid(0, 0)               = 0
[pid   440] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   440] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   440] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   440] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   440] write(3, "1000", 4)         = 4
[pid   440] close(3)                    = 0
[pid   440] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   440] symlink("/dev/binderfs", "./binderfs") = 0
[pid   440] write(1, "executing program\n", 18executing program
) = 18
[pid   440] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   440] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   440] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   440] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   440] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   440] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   440] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   440] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   440] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   440] memfd_create("syzkaller", 0) = 5
[pid   440] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   440] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   440] munmap(0x7f024f46f000, 138412032) = 0
[pid   440] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   440] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   440] close(5)                    = 0
[pid   440] close(6)                    = 0
[pid   440] mkdir("./file0", 0777)      = 0
[pid   440] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   440] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   440] chdir("./file0")            = 0
[pid   440] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   440] ioctl(6, LOOP_CLR_FD)       = 0
[pid   440] close(6)                    = 0
[pid   440] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   440] write(6, "#! ./file1\n", 11) = 11
[pid   440] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   440] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   440] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=21, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   28.247835][  T440] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.278137][  T441] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-440: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./19/file0")         = 0
[pid   344] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./19/binderfs")     = 0
[pid   344] umount2("./19/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./19/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./19/cgroup.net")   = 0
[pid   344] umount2("./19/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./19/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./19/cgroup.cpu")   = 0
[pid   344] umount2("./19/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./19/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./19/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./19")               = 0
[pid   344] mkdir("./20", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 445 attached
, child_tidptr=0x55557f95d650) = 22
[pid   445] set_robust_list(0x55557f95d660, 24) = 0
[pid   445] chdir("./20")               = 0
[pid   445] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   445] setpgid(0, 0)               = 0
[pid   445] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   445] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   445] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   445] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   445] write(3, "1000", 4)         = 4
[pid   445] close(3)                    = 0
[pid   445] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   445] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   445] write(1, "executing program\n", 18) = 18
[pid   445] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   445] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   445] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   445] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   445] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   445] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   445] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   445] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   445] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   445] memfd_create("syzkaller", 0) = 5
[pid   445] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   445] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   445] munmap(0x7f024f46f000, 138412032) = 0
[pid   445] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   445] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   445] close(5)                    = 0
[pid   445] close(6)                    = 0
[pid   445] mkdir("./file0", 0777)      = 0
[pid   445] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   445] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   445] chdir("./file0")            = 0
[pid   445] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   445] ioctl(6, LOOP_CLR_FD)       = 0
[pid   445] close(6)                    = 0
[pid   445] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   445] write(6, "#! ./file1\n", 11) = 11
[pid   445] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   445] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   445] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=22, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./20/file0")         = 0
[pid   344] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./20/binderfs")     = 0
[pid   344] umount2("./20/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./20/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./20/cgroup.net")   = 0
[pid   344] umount2("./20/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./20/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./20/cgroup.cpu")   = 0
[pid   344] umount2("./20/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./20/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./20/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./20")               = 0
[pid   344] mkdir("./21", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[   28.442021][  T445] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.472436][  T446] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-445: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] close(3executing program
)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 450 attached
, child_tidptr=0x55557f95d650) = 23
[pid   450] set_robust_list(0x55557f95d660, 24) = 0
[pid   450] chdir("./21")               = 0
[pid   450] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   450] setpgid(0, 0)               = 0
[pid   450] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   450] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   450] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   450] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   450] write(3, "1000", 4)         = 4
[pid   450] close(3)                    = 0
[pid   450] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   450] symlink("/dev/binderfs", "./binderfs") = 0
[pid   450] write(1, "executing program\n", 18) = 18
[pid   450] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   450] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   450] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   450] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   450] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   450] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   450] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   450] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   450] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   450] memfd_create("syzkaller", 0) = 5
[pid   450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   450] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   450] munmap(0x7f024f46f000, 138412032) = 0
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   450] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   450] close(5)                    = 0
[pid   450] close(6)                    = 0
[pid   450] mkdir("./file0", 0777)      = 0
[pid   450] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   450] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   450] chdir("./file0")            = 0
[pid   450] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   450] ioctl(6, LOOP_CLR_FD)       = 0
[pid   450] close(6)                    = 0
[pid   450] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   450] write(6, "#! ./file1\n", 11) = 11
[pid   450] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   450] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   450] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=23, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   28.587627][  T450] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.618013][  T451] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-450: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./21/file0")         = 0
[pid   344] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./21/binderfs")     = 0
[pid   344] umount2("./21/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./21/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./21/cgroup.net")   = 0
[pid   344] umount2("./21/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./21/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./21/cgroup.cpu")   = 0
[pid   344] umount2("./21/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./21/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./21/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./21")               = 0
[pid   344] mkdir("./22", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 455 attached
 <unfinished ...>
[pid   455] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 24
[pid   455] <... set_robust_list resumed>) = 0
[pid   455] chdir("./22")               = 0
[pid   455] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   455] setpgid(0, 0)               = 0
[pid   455] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   455] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   455] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   455] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   455] write(3, "1000", 4)         = 4
[pid   455] close(3)                    = 0
[pid   455] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   455] symlink("/dev/binderfs", "./binderfs") = 0
[pid   455] write(1, "executing program\n", 18executing program
) = 18
[pid   455] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   455] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   455] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   455] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   455] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   455] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   455] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   455] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   455] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   455] memfd_create("syzkaller", 0) = 5
[pid   455] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   455] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   455] munmap(0x7f024f46f000, 138412032) = 0
[pid   455] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   455] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   455] close(5)                    = 0
[pid   455] close(6)                    = 0
[pid   455] mkdir("./file0", 0777)      = 0
[pid   455] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   455] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   455] chdir("./file0")            = 0
[pid   455] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   455] ioctl(6, LOOP_CLR_FD)       = 0
[pid   455] close(6)                    = 0
[pid   455] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   455] write(6, "#! ./file1\n", 11) = 11
[pid   455] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   455] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   455] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=24, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./22/file0")         = 0
[pid   344] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./22/binderfs")     = 0
[pid   344] umount2("./22/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./22/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./22/cgroup.net")   = 0
[pid   344] umount2("./22/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./22/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./22/cgroup.cpu")   = 0
[pid   344] umount2("./22/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./22/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./22/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./22")               = 0
[pid   344] mkdir("./23", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 25
[   28.759284][  T455] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.787077][  T455] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
./strace-static-x86_64: Process 460 attached
[pid   460] set_robust_list(0x55557f95d660, 24) = 0
[pid   460] chdir("./23")               = 0
[pid   460] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   460] setpgid(0, 0)               = 0
[pid   460] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   460] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   460] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   460] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   460] write(3, "1000", 4)         = 4
[pid   460] close(3)                    = 0
[pid   460] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   460] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   460] write(1, "executing program\n", 18) = 18
[pid   460] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   460] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   460] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   460] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   460] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   460] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   460] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   460] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   460] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   460] memfd_create("syzkaller", 0) = 5
[pid   460] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   460] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   460] munmap(0x7f024f46f000, 138412032) = 0
[pid   460] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   460] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   460] close(5)                    = 0
[pid   460] close(6)                    = 0
[pid   460] mkdir("./file0", 0777)      = 0
[pid   460] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   460] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   460] chdir("./file0")            = 0
[pid   460] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   460] ioctl(6, LOOP_CLR_FD)       = 0
[pid   460] close(6)                    = 0
[pid   460] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   460] write(6, "#! ./file1\n", 11) = 11
[pid   460] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   460] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   460] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=25, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   28.907718][  T460] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   28.937017][  T461] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-460: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./23/file0")         = 0
[pid   344] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./23/binderfs")     = 0
[pid   344] umount2("./23/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./23/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./23/cgroup.net")   = 0
[pid   344] umount2("./23/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./23/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./23/cgroup.cpu")   = 0
[pid   344] umount2("./23/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./23/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./23/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./23")               = 0
[pid   344] mkdir("./24", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
, child_tidptr=0x55557f95d650) = 26
./strace-static-x86_64: Process 465 attached
[pid   465] set_robust_list(0x55557f95d660, 24) = 0
[pid   465] chdir("./24")               = 0
[pid   465] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   465] setpgid(0, 0)               = 0
[pid   465] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   465] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   465] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   465] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   465] write(3, "1000", 4)         = 4
[pid   465] close(3)                    = 0
[pid   465] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   465] symlink("/dev/binderfs", "./binderfs") = 0
[pid   465] write(1, "executing program\n", 18) = 18
[pid   465] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   465] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   465] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   465] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   465] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   465] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   465] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   465] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   465] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   465] memfd_create("syzkaller", 0) = 5
[pid   465] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   465] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   465] munmap(0x7f024f46f000, 138412032) = 0
[pid   465] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   465] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   465] close(5)                    = 0
[pid   465] close(6)                    = 0
[pid   465] mkdir("./file0", 0777)      = 0
[pid   465] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   465] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   465] chdir("./file0")            = 0
[pid   465] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   465] ioctl(6, LOOP_CLR_FD)       = 0
[pid   465] close(6)                    = 0
[pid   465] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   465] write(6, "#! ./file1\n", 11) = 11
[pid   465] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   465] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   465] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=26, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   29.067552][  T465] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.098404][  T466] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-465: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./24/file0")         = 0
[pid   344] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./24/binderfs")     = 0
[pid   344] umount2("./24/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./24/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./24/cgroup.net")   = 0
[pid   344] umount2("./24/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./24/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./24/cgroup.cpu")   = 0
[pid   344] umount2("./24/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./24/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./24/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./24")               = 0
[pid   344] mkdir("./25", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 470 attached
, child_tidptr=0x55557f95d650) = 27
[pid   470] set_robust_list(0x55557f95d660, 24) = 0
[pid   470] chdir("./25")               = 0
[pid   470] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   470] setpgid(0, 0)               = 0
[pid   470] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   470] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   470] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   470] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   470] write(3, "1000", 4)         = 4
[pid   470] close(3)                    = 0
[pid   470] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   470] symlink("/dev/binderfs", "./binderfs") = 0
[pid   470] write(1, "executing program\n", 18executing program
) = 18
[pid   470] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   470] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   470] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   470] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   470] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   470] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   470] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   470] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   470] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   470] memfd_create("syzkaller", 0) = 5
[pid   470] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   470] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   470] munmap(0x7f024f46f000, 138412032) = 0
[pid   470] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   470] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   470] close(5)                    = 0
[pid   470] close(6)                    = 0
[pid   470] mkdir("./file0", 0777)      = 0
[pid   470] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   470] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   470] chdir("./file0")            = 0
[pid   470] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   470] ioctl(6, LOOP_CLR_FD)       = 0
[pid   470] close(6)                    = 0
[pid   470] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   470] write(6, "#! ./file1\n", 11) = 11
[pid   470] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   470] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   470] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=27, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   29.233286][  T470] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.265051][  T471] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-470: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./25/file0")         = 0
[pid   344] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./25/binderfs")     = 0
[pid   344] umount2("./25/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./25/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./25/cgroup.net")   = 0
[pid   344] umount2("./25/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./25/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./25/cgroup.cpu")   = 0
[pid   344] umount2("./25/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./25/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./25/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./25")               = 0
[pid   344] mkdir("./26", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 475 attached
, child_tidptr=0x55557f95d650) = 28
[pid   475] set_robust_list(0x55557f95d660, 24) = 0
[pid   475] chdir("./26")               = 0
[pid   475] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   475] setpgid(0, 0)               = 0
[pid   475] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   475] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   475] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   475] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   475] write(3, "1000", 4)         = 4
[pid   475] close(3)                    = 0
[pid   475] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   475] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   475] write(1, "executing program\n", 18) = 18
[pid   475] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   475] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   475] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   475] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   475] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   475] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   475] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   475] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   475] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   475] memfd_create("syzkaller", 0) = 5
[pid   475] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   475] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   475] munmap(0x7f024f46f000, 138412032) = 0
[pid   475] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   475] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   475] close(5)                    = 0
[pid   475] close(6)                    = 0
[pid   475] mkdir("./file0", 0777)      = 0
[pid   475] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   475] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   475] chdir("./file0")            = 0
[pid   475] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   475] ioctl(6, LOOP_CLR_FD)       = 0
[pid   475] close(6)                    = 0
[pid   475] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   475] write(6, "#! ./file1\n", 11) = 11
[pid   475] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   475] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   475] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=28, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   29.407656][  T475] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.437591][  T476] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-475: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./26/file0")         = 0
[pid   344] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./26/binderfs")     = 0
[pid   344] umount2("./26/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./26/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./26/cgroup.net")   = 0
[pid   344] umount2("./26/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./26/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./26/cgroup.cpu")   = 0
[pid   344] umount2("./26/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./26/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./26/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./26")               = 0
[pid   344] mkdir("./27", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 480 attached
, child_tidptr=0x55557f95d650) = 29
[pid   480] set_robust_list(0x55557f95d660, 24) = 0
[pid   480] chdir("./27")               = 0
[pid   480] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   480] setpgid(0, 0)               = 0
[pid   480] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   480] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   480] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   480] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   480] write(3, "1000", 4)         = 4
[pid   480] close(3)                    = 0
[pid   480] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   480] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   480] write(1, "executing program\n", 18) = 18
[pid   480] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   480] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   480] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   480] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   480] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   480] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   480] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   480] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   480] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   480] memfd_create("syzkaller", 0) = 5
[pid   480] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   480] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   480] munmap(0x7f024f46f000, 138412032) = 0
[pid   480] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   480] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   480] close(5)                    = 0
[pid   480] close(6)                    = 0
[pid   480] mkdir("./file0", 0777)      = 0
[pid   480] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   480] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   480] chdir("./file0")            = 0
[pid   480] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   480] ioctl(6, LOOP_CLR_FD)       = 0
[pid   480] close(6)                    = 0
[pid   480] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   480] write(6, "#! ./file1\n", 11) = 11
[pid   480] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   480] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   480] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=29, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   29.607603][  T480] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.635658][  T480] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./27/file0")         = 0
[pid   344] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./27/binderfs")     = 0
[pid   344] umount2("./27/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./27/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./27/cgroup.net")   = 0
[pid   344] umount2("./27/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./27/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./27/cgroup.cpu")   = 0
[pid   344] umount2("./27/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./27/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./27/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./27")               = 0
[pid   344] mkdir("./28", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 485 attached
, child_tidptr=0x55557f95d650) = 30
[pid   485] set_robust_list(0x55557f95d660, 24) = 0
[pid   485] chdir("./28")               = 0
[pid   485] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   485] setpgid(0, 0)               = 0
[pid   485] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   485] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   485] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   485] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   485] write(3, "1000", 4)         = 4
[pid   485] close(3)                    = 0
[pid   485] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   485] symlink("/dev/binderfs", "./binderfs") = 0
[pid   485] write(1, "executing program\n", 18executing program
) = 18
[pid   485] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   485] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   485] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   485] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   485] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   485] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   485] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   485] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   485] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   485] memfd_create("syzkaller", 0) = 5
[pid   485] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   485] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   485] munmap(0x7f024f46f000, 138412032) = 0
[pid   485] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   485] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   485] close(5)                    = 0
[pid   485] close(6)                    = 0
[pid   485] mkdir("./file0", 0777)      = 0
[pid   485] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   485] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   485] chdir("./file0")            = 0
[pid   485] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   485] ioctl(6, LOOP_CLR_FD)       = 0
[pid   485] close(6)                    = 0
[pid   485] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   485] write(6, "#! ./file1\n", 11) = 11
[pid   485] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   485] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   485] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=30, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./28/file0")         = 0
[pid   344] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./28/binderfs")     = 0
[pid   344] umount2("./28/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./28/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./28/cgroup.net")   = 0
[pid   344] umount2("./28/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./28/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./28/cgroup.cpu")   = 0
[pid   344] umount2("./28/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./28/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./28/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./28")               = 0
[pid   344] mkdir("./29", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[   29.804958][  T485] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.835468][  T486] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-485: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 490 attached
 <unfinished ...>
[pid   490] set_robust_list(0x55557f95d660, 24) = 0
[pid   490] chdir("./29" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 31
[pid   490] <... chdir resumed>)        = 0
[pid   490] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   490] setpgid(0, 0)               = 0
[pid   490] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   490] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   490] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   490] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   490] write(3, "1000", 4)         = 4
[pid   490] close(3)                    = 0
[pid   490] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   490] symlink("/dev/binderfs", "./binderfs") = 0
[pid   490] write(1, "executing program\n", 18executing program
) = 18
[pid   490] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   490] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   490] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   490] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   490] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   490] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   490] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   490] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   490] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   490] memfd_create("syzkaller", 0) = 5
[pid   490] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   490] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   490] munmap(0x7f024f46f000, 138412032) = 0
[pid   490] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   490] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   490] close(5)                    = 0
[pid   490] close(6)                    = 0
[pid   490] mkdir("./file0", 0777)      = 0
[pid   490] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   490] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   490] chdir("./file0")            = 0
[pid   490] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   490] ioctl(6, LOOP_CLR_FD)       = 0
[pid   490] close(6)                    = 0
[pid   490] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   490] write(6, "#! ./file1\n", 11) = 11
[pid   490] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   490] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   490] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=31, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   29.951487][  T490] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   29.981476][  T491] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-490: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./29/file0")         = 0
[pid   344] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./29/binderfs")     = 0
[pid   344] umount2("./29/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./29/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./29/cgroup.net")   = 0
[pid   344] umount2("./29/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./29/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./29/cgroup.cpu")   = 0
[pid   344] umount2("./29/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./29/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./29/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./29")               = 0
[pid   344] mkdir("./30", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 495 attached
 <unfinished ...>
[pid   495] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 32
[pid   495] <... set_robust_list resumed>) = 0
[pid   495] chdir("./30")               = 0
[pid   495] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   495] setpgid(0, 0)               = 0
[pid   495] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   495] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   495] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   495] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   495] write(3, "1000", 4)         = 4
[pid   495] close(3)                    = 0
[pid   495] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid   495] symlink("/dev/binderfs", "./binderfs") = 0
[pid   495] write(1, "executing program\n", 18) = 18
[pid   495] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   495] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   495] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   495] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   495] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   495] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   495] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   495] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   495] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   495] memfd_create("syzkaller", 0) = 5
[pid   495] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   495] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   495] munmap(0x7f024f46f000, 138412032) = 0
[pid   495] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   495] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   495] close(5)                    = 0
[pid   495] close(6)                    = 0
[pid   495] mkdir("./file0", 0777)      = 0
[pid   495] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   495] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   495] chdir("./file0")            = 0
[pid   495] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   495] ioctl(6, LOOP_CLR_FD)       = 0
[pid   495] close(6)                    = 0
[pid   495] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   495] write(6, "#! ./file1\n", 11) = 11
[pid   495] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   495] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   495] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=32, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./30/file0")         = 0
[pid   344] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./30/binderfs")     = 0
[pid   344] umount2("./30/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./30/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./30/cgroup.net")   = 0
[pid   344] umount2("./30/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./30/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./30/cgroup.cpu")   = 0
[pid   344] umount2("./30/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./30/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./30/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./30")               = 0
[pid   344] mkdir("./31", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[   30.117590][  T495] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   30.145659][  T495] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 500 attached
, child_tidptr=0x55557f95d650) = 33
[pid   500] set_robust_list(0x55557f95d660, 24) = 0
[pid   500] chdir("./31")               = 0
[pid   500] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   500] setpgid(0, 0)               = 0
[pid   500] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   500] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   500] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   500] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   500] write(3, "1000", 4)         = 4
[pid   500] close(3)                    = 0
[pid   500] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   500] symlink("/dev/binderfs", "./binderfs") = 0
[pid   500] write(1, "executing program\n", 18executing program
) = 18
[pid   500] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   500] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   500] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   500] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   500] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   500] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   500] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   500] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   500] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   500] memfd_create("syzkaller", 0) = 5
[pid   500] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   500] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   500] munmap(0x7f024f46f000, 138412032) = 0
[pid   500] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   500] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   500] close(5)                    = 0
[pid   500] close(6)                    = 0
[pid   500] mkdir("./file0", 0777)      = 0
[pid   500] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   500] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   500] chdir("./file0")            = 0
[pid   500] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   500] ioctl(6, LOOP_CLR_FD)       = 0
[pid   500] close(6)                    = 0
[pid   500] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   500] write(6, "#! ./file1\n", 11) = 11
[pid   500] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   500] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   500] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=33, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   30.265574][  T500] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   30.296357][  T501] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-500: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./31/file0")         = 0
[pid   344] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./31/binderfs")     = 0
[pid   344] umount2("./31/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./31/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./31/cgroup.net")   = 0
[pid   344] umount2("./31/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./31/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./31/cgroup.cpu")   = 0
[pid   344] umount2("./31/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./31/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./31/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./31")               = 0
[pid   344] mkdir("./32", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 505 attached
 <unfinished ...>
[pid   505] set_robust_list(0x55557f95d660, 24) = 0
[pid   505] chdir("./32" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 34
[pid   505] <... chdir resumed>)        = 0
[pid   505] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   505] setpgid(0, 0)               = 0
[pid   505] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   505] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   505] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   505] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   505] write(3, "1000", 4)         = 4
[pid   505] close(3)                    = 0
[pid   505] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   505] symlink("/dev/binderfs", "./binderfs") = 0
[pid   505] write(1, "executing program\n", 18executing program
) = 18
[pid   505] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   505] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   505] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   505] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   505] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   505] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   505] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   505] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   505] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   505] memfd_create("syzkaller", 0) = 5
[pid   505] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   505] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   505] munmap(0x7f024f46f000, 138412032) = 0
[pid   505] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   505] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   505] close(5)                    = 0
[pid   505] close(6)                    = 0
[pid   505] mkdir("./file0", 0777)      = 0
[pid   505] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   505] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   505] chdir("./file0")            = 0
[pid   505] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   505] ioctl(6, LOOP_CLR_FD)       = 0
[pid   505] close(6)                    = 0
[pid   505] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   505] write(6, "#! ./file1\n", 11) = 11
[pid   505] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   505] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   505] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=34, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   30.427610][  T505] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   30.458431][  T506] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-505: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./32/file0")         = 0
[pid   344] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./32/binderfs")     = 0
[pid   344] umount2("./32/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./32/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./32/cgroup.net")   = 0
[pid   344] umount2("./32/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./32/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./32/cgroup.cpu")   = 0
[pid   344] umount2("./32/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./32/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./32/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./32")               = 0
[pid   344] mkdir("./33", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 35
./strace-static-x86_64: Process 510 attached
[pid   510] set_robust_list(0x55557f95d660, 24) = 0
[pid   510] chdir("./33")               = 0
[pid   510] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   510] setpgid(0, 0)               = 0
[pid   510] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   510] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   510] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   510] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   510] write(3, "1000", 4)         = 4
[pid   510] close(3)                    = 0
[pid   510] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   510] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   510] write(1, "executing program\n", 18) = 18
[pid   510] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   510] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   510] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   510] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   510] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   510] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   510] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   510] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   510] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   510] memfd_create("syzkaller", 0) = 5
[pid   510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   510] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   510] munmap(0x7f024f46f000, 138412032) = 0
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   510] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   510] close(5)                    = 0
[pid   510] close(6)                    = 0
[pid   510] mkdir("./file0", 0777)      = 0
[pid   510] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   510] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   510] chdir("./file0")            = 0
[pid   510] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   510] ioctl(6, LOOP_CLR_FD)       = 0
[pid   510] close(6)                    = 0
[pid   510] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   510] write(6, "#! ./file1\n", 11) = 11
[pid   510] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   510] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   510] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=35, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./33/file0")         = 0
[pid   344] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./33/binderfs")     = 0
[pid   344] umount2("./33/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./33/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./33/cgroup.net")   = 0
[pid   344] umount2("./33/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./33/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./33/cgroup.cpu")   = 0
[pid   344] umount2("./33/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./33/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./33/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./33")               = 0
[pid   344] mkdir("./34", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 515 attached
 <unfinished ...>
[pid   515] set_robust_list(0x55557f95d660, 24) = 0
[pid   515] chdir("./34")               = 0
[pid   515] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   515] setpgid(0, 0 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 36
[pid   515] <... setpgid resumed>)      = 0
[pid   515] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   515] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   515] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   515] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   515] write(3, "1000", 4)         = 4
[pid   515] close(3)                    = 0
[pid   515] read(200, executing program
0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   515] symlink("/dev/binderfs", "./binderfs") = 0
[pid   515] write(1, "executing program\n", 18) = 18
[pid   515] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   515] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   515] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   515] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   515] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   515] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   515] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   515] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   515] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   515] memfd_create("syzkaller", 0) = 5
[pid   515] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[   30.717888][  T510] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   30.740113][  T510] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   515] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   515] munmap(0x7f024f46f000, 138412032) = 0
[pid   515] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   515] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   515] close(5)                    = 0
[pid   515] close(6)                    = 0
[pid   515] mkdir("./file0", 0777)      = 0
[pid   515] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   515] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   515] chdir("./file0")            = 0
[pid   515] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   515] ioctl(6, LOOP_CLR_FD)       = 0
[pid   515] close(6)                    = 0
[pid   515] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   515] write(6, "#! ./file1\n", 11) = 11
[pid   515] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   515] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   515] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=36, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   30.847619][  T515] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   30.879719][  T516] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-515: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./34/file0")         = 0
[pid   344] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./34/binderfs")     = 0
[pid   344] umount2("./34/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./34/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./34/cgroup.net")   = 0
[pid   344] umount2("./34/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./34/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./34/cgroup.cpu")   = 0
[pid   344] umount2("./34/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./34/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./34/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./34")               = 0
[pid   344] mkdir("./35", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 520 attached
, child_tidptr=0x55557f95d650) = 37
[pid   520] set_robust_list(0x55557f95d660, 24) = 0
[pid   520] chdir("./35")               = 0
[pid   520] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   520] setpgid(0, 0)               = 0
[pid   520] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   520] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   520] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   520] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   520] write(3, "1000", 4)         = 4
[pid   520] close(3)                    = 0
[pid   520] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   520] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   520] write(1, "executing program\n", 18) = 18
[pid   520] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   520] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   520] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   520] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   520] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   520] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   520] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   520] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   520] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   520] memfd_create("syzkaller", 0) = 5
[pid   520] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   520] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   520] munmap(0x7f024f46f000, 138412032) = 0
[pid   520] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   520] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   520] close(5)                    = 0
[pid   520] close(6)                    = 0
[pid   520] mkdir("./file0", 0777)      = 0
[pid   520] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   520] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   520] chdir("./file0")            = 0
[pid   520] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   520] ioctl(6, LOOP_CLR_FD)       = 0
[pid   520] close(6)                    = 0
[pid   520] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   520] write(6, "#! ./file1\n", 11) = 11
[pid   520] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   520] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   520] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=37, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   31.087692][  T520] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./35/file0")         = 0
[pid   344] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./35/binderfs")     = 0
[pid   344] umount2("./35/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./35/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./35/cgroup.net")   = 0
[pid   344] umount2("./35/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./35/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./35/cgroup.cpu")   = 0
[pid   344] umount2("./35/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./35/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./35/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./35")               = 0
[pid   344] mkdir("./36", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 525 attached
 <unfinished ...>
[pid   525] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 38
[pid   525] <... set_robust_list resumed>) = 0
[pid   525] chdir("./36")               = 0
[pid   525] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   525] setpgid(0, 0)               = 0
[pid   525] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   525] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   525] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[   31.127792][  T520] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   525] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   525] write(3, "1000", 4)         = 4
[pid   525] close(3)                    = 0
[pid   525] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   525] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   525] write(1, "executing program\n", 18) = 18
[pid   525] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   525] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   525] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   525] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   525] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   525] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   525] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   525] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   525] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   525] memfd_create("syzkaller", 0) = 5
[pid   525] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   525] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   525] munmap(0x7f024f46f000, 138412032) = 0
[pid   525] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   525] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   525] close(5)                    = 0
[pid   525] close(6)                    = 0
[pid   525] mkdir("./file0", 0777)      = 0
[pid   525] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   525] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   525] chdir("./file0")            = 0
[pid   525] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   525] ioctl(6, LOOP_CLR_FD)       = 0
[pid   525] close(6)                    = 0
[pid   525] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   525] write(6, "#! ./file1\n", 11) = 11
[pid   525] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   525] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   525] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=38, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   31.244314][  T525] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   31.271609][  T525] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./36/file0")         = 0
[pid   344] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./36/binderfs")     = 0
[pid   344] umount2("./36/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./36/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./36/cgroup.net")   = 0
[pid   344] umount2("./36/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./36/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./36/cgroup.cpu")   = 0
[pid   344] umount2("./36/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./36/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./36/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./36")               = 0
[pid   344] mkdir("./37", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 530 attached
 <unfinished ...>
[pid   530] set_robust_list(0x55557f95d660, 24) = 0
[pid   530] chdir("./37")               = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 39
[pid   530] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   530] setpgid(0, 0)               = 0
[pid   530] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   530] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   530] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   530] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   530] write(3, "1000", 4)         = 4
[pid   530] close(3)                    = 0
[pid   530] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   530] symlink("/dev/binderfs", "./binderfs") = 0
[pid   530] write(1, "executing program\n", 18executing program
) = 18
[pid   530] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   530] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   530] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   530] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   530] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   530] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   530] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   530] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   530] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   530] memfd_create("syzkaller", 0) = 5
[pid   530] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   530] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   530] munmap(0x7f024f46f000, 138412032) = 0
[pid   530] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   530] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   530] close(5)                    = 0
[pid   530] close(6)                    = 0
[pid   530] mkdir("./file0", 0777)      = 0
[pid   530] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   530] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   530] chdir("./file0")            = 0
[pid   530] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   530] ioctl(6, LOOP_CLR_FD)       = 0
[pid   530] close(6)                    = 0
[pid   530] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   530] write(6, "#! ./file1\n", 11) = 11
[pid   530] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   530] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   530] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=39, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   31.447722][  T530] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   31.478807][  T531] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-530: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./37/file0")         = 0
[pid   344] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./37/binderfs")     = 0
[pid   344] umount2("./37/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./37/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./37/cgroup.net")   = 0
[pid   344] umount2("./37/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./37/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./37/cgroup.cpu")   = 0
[pid   344] umount2("./37/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./37/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./37/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./37")               = 0
[pid   344] mkdir("./38", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 535 attached
, child_tidptr=0x55557f95d650) = 40
[pid   535] set_robust_list(0x55557f95d660, 24) = 0
[pid   535] chdir("./38")               = 0
[pid   535] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   535] setpgid(0, 0)               = 0
[pid   535] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   535] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   535] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   535] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   535] write(3, "1000", 4)         = 4
[pid   535] close(3)                    = 0
[pid   535] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   535] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   535] write(1, "executing program\n", 18) = 18
[pid   535] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   535] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   535] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   535] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   535] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   535] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   535] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   535] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   535] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   535] memfd_create("syzkaller", 0) = 5
[pid   535] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   535] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   535] munmap(0x7f024f46f000, 138412032) = 0
[pid   535] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   535] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   535] close(5)                    = 0
[pid   535] close(6)                    = 0
[pid   535] mkdir("./file0", 0777)      = 0
[pid   535] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   535] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   535] chdir("./file0")            = 0
[pid   535] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   535] ioctl(6, LOOP_CLR_FD)       = 0
[pid   535] close(6)                    = 0
[pid   535] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   535] write(6, "#! ./file1\n", 11) = 11
[pid   535] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   535] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   535] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=40, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   31.657667][  T535] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   31.688966][  T536] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-535: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./38/file0")         = 0
[pid   344] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./38/binderfs")     = 0
[pid   344] umount2("./38/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./38/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./38/cgroup.net")   = 0
[pid   344] umount2("./38/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./38/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./38/cgroup.cpu")   = 0
[pid   344] umount2("./38/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./38/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./38/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./38")               = 0
[pid   344] mkdir("./39", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
, child_tidptr=0x55557f95d650) = 41
./strace-static-x86_64: Process 540 attached
[pid   540] set_robust_list(0x55557f95d660, 24) = 0
[pid   540] chdir("./39")               = 0
[pid   540] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   540] setpgid(0, 0)               = 0
[pid   540] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   540] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   540] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   540] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   540] write(3, "1000", 4)         = 4
[pid   540] close(3)                    = 0
[pid   540] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   540] symlink("/dev/binderfs", "./binderfs") = 0
[pid   540] write(1, "executing program\n", 18) = 18
[pid   540] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   540] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   540] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   540] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   540] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   540] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   540] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   540] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   540] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   540] memfd_create("syzkaller", 0) = 5
[pid   540] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   540] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   540] munmap(0x7f024f46f000, 138412032) = 0
[pid   540] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   540] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   540] close(5)                    = 0
[pid   540] close(6)                    = 0
[pid   540] mkdir("./file0", 0777)      = 0
[pid   540] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   540] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   540] chdir("./file0")            = 0
[pid   540] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   540] ioctl(6, LOOP_CLR_FD)       = 0
[pid   540] close(6)                    = 0
[pid   540] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   540] write(6, "#! ./file1\n", 11) = 11
[pid   540] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   540] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   540] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=41, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=4} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./39/file0")         = 0
[pid   344] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./39/binderfs")     = 0
[pid   344] umount2("./39/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./39/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./39/cgroup.net")   = 0
[pid   344] umount2("./39/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./39/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./39/cgroup.cpu")   = 0
[pid   344] umount2("./39/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./39/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./39/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[   31.807689][  T540] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   31.838957][  T541] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-540: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] rmdir("./39")               = 0
[pid   344] mkdir("./40", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 545 attached
, child_tidptr=0x55557f95d650) = 42
[pid   545] set_robust_list(0x55557f95d660, 24) = 0
[pid   545] chdir("./40")               = 0
[pid   545] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   545] setpgid(0, 0)               = 0
[pid   545] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   545] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   545] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   545] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   545] write(3, "1000", 4)         = 4
[pid   545] close(3)                    = 0
[pid   545] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   545] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   545] write(1, "executing program\n", 18) = 18
[pid   545] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   545] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   545] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   545] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   545] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   545] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   545] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   545] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   545] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   545] memfd_create("syzkaller", 0) = 5
[pid   545] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   545] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   545] munmap(0x7f024f46f000, 138412032) = 0
[pid   545] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   545] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   545] close(5)                    = 0
[pid   545] close(6)                    = 0
[pid   545] mkdir("./file0", 0777)      = 0
[pid   545] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   545] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   545] chdir("./file0")            = 0
[pid   545] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   545] ioctl(6, LOOP_CLR_FD)       = 0
[pid   545] close(6)                    = 0
[pid   545] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   545] write(6, "#! ./file1\n", 11) = 11
[pid   545] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   545] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   545] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=42, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   31.957681][  T545] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   31.983561][  T546] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-545: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./40/file0")         = 0
[pid   344] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./40/binderfs")     = 0
[pid   344] umount2("./40/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./40/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./40/cgroup.net")   = 0
[pid   344] umount2("./40/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./40/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./40/cgroup.cpu")   = 0
[pid   344] umount2("./40/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./40/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./40/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./40")               = 0
[pid   344] mkdir("./41", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 43
./strace-static-x86_64: Process 550 attached
[pid   550] set_robust_list(0x55557f95d660, 24) = 0
[pid   550] chdir("./41")               = 0
[pid   550] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   550] setpgid(0, 0)               = 0
[pid   550] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   550] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   550] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   550] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   550] write(3, "1000", 4)         = 4
[pid   550] close(3)                    = 0
[pid   550] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   550] symlink("/dev/binderfs", "./binderfs") = 0
[pid   550] write(1, "executing program\n", 18) = 18
[pid   550] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   550] ioctl(3, VHOST_SET_OWNERexecuting program
, 0) = 0
[pid   550] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   550] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   550] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   550] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   550] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   550] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   550] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   550] memfd_create("syzkaller", 0) = 5
[pid   550] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   550] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   550] munmap(0x7f024f46f000, 138412032) = 0
[pid   550] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   550] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   550] close(5)                    = 0
[pid   550] close(6)                    = 0
[pid   550] mkdir("./file0", 0777)      = 0
[pid   550] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   550] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   550] chdir("./file0")            = 0
[pid   550] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   550] ioctl(6, LOOP_CLR_FD)       = 0
[pid   550] close(6)                    = 0
[pid   550] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   550] write(6, "#! ./file1\n", 11) = 11
[pid   550] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   550] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   550] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=43, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   32.097620][  T550] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.122607][  T550] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./41/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./41/file0")         = 0
[pid   344] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./41/binderfs")     = 0
[pid   344] umount2("./41/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./41/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./41/cgroup.net")   = 0
[pid   344] umount2("./41/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./41/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./41/cgroup.cpu")   = 0
[pid   344] umount2("./41/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./41/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./41/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./41")               = 0
[pid   344] mkdir("./42", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 555 attached
 <unfinished ...>
[pid   555] set_robust_list(0x55557f95d660, 24) = 0
[pid   555] chdir("./42")               = 0
[pid   555] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   555] setpgid(0, 0)               = 0
[pid   555] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 44
[pid   555] <... symlink resumed>)      = 0
[pid   555] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   555] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   555] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   555] write(3, "1000", 4)         = 4
[pid   555] close(3)                    = 0
[pid   555] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   555] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   555] write(1, "executing program\n", 18) = 18
[pid   555] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   555] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   555] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   555] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   555] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   555] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   555] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   555] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   555] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   555] memfd_create("syzkaller", 0) = 5
[pid   555] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   555] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   555] munmap(0x7f024f46f000, 138412032) = 0
[pid   555] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   555] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   555] close(5)                    = 0
[pid   555] close(6)                    = 0
[pid   555] mkdir("./file0", 0777)      = 0
[pid   555] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   555] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   555] chdir("./file0")            = 0
[pid   555] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   555] ioctl(6, LOOP_CLR_FD)       = 0
[pid   555] close(6)                    = 0
[pid   555] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   555] write(6, "#! ./file1\n", 11) = 11
[pid   555] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   555] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   555] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=44, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   32.307399][  T555] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.338822][  T556] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-555: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./42/file0")         = 0
[pid   344] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./42/binderfs")     = 0
[pid   344] umount2("./42/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./42/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./42/cgroup.net")   = 0
[pid   344] umount2("./42/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./42/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./42/cgroup.cpu")   = 0
[pid   344] umount2("./42/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./42/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./42/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./42")               = 0
[pid   344] mkdir("./43", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 560 attached
 <unfinished ...>
[pid   560] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 45
[pid   560] <... set_robust_list resumed>) = 0
[pid   560] chdir("./43")               = 0
[pid   560] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   560] setpgid(0, 0)               = 0
[pid   560] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   560] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   560] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   560] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   560] write(3, "1000", 4)         = 4
[pid   560] close(3)                    = 0
[pid   560] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   560] symlink("/dev/binderfs", "./binderfs") = 0
[pid   560] write(1, "executing program\n", 18executing program
) = 18
[pid   560] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   560] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   560] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   560] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   560] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   560] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   560] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   560] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   560] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   560] memfd_create("syzkaller", 0) = 5
[pid   560] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   560] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   560] munmap(0x7f024f46f000, 138412032) = 0
[pid   560] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   560] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   560] close(5)                    = 0
[pid   560] close(6)                    = 0
[pid   560] mkdir("./file0", 0777)      = 0
[pid   560] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   560] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   560] chdir("./file0")            = 0
[pid   560] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   560] ioctl(6, LOOP_CLR_FD)       = 0
[pid   560] close(6)                    = 0
[pid   560] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   560] write(6, "#! ./file1\n", 11) = 11
[pid   560] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   560] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   560] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=45, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   32.527733][  T560] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.557783][  T561] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-560: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./43/file0")         = 0
[pid   344] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./43/binderfs")     = 0
[pid   344] umount2("./43/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./43/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./43/cgroup.net")   = 0
[pid   344] umount2("./43/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./43/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./43/cgroup.cpu")   = 0
[pid   344] umount2("./43/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./43/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./43/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./43")               = 0
[pid   344] mkdir("./44", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 46
./strace-static-x86_64: Process 565 attached
[pid   565] set_robust_list(0x55557f95d660, 24) = 0
[pid   565] chdir("./44")               = 0
[pid   565] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   565] setpgid(0, 0)               = 0
[pid   565] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   565] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   565] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   565] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   565] write(3, "1000", 4)         = 4
[pid   565] close(3)                    = 0
[pid   565] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   565] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   565] write(1, "executing program\n", 18) = 18
[pid   565] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   565] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   565] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   565] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   565] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   565] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   565] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   565] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   565] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   565] memfd_create("syzkaller", 0) = 5
[pid   565] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   565] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   565] munmap(0x7f024f46f000, 138412032) = 0
[pid   565] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   565] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   565] close(5)                    = 0
[pid   565] close(6)                    = 0
[pid   565] mkdir("./file0", 0777)      = 0
[pid   565] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   565] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   565] chdir("./file0")            = 0
[pid   565] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   565] ioctl(6, LOOP_CLR_FD)       = 0
[pid   565] close(6)                    = 0
[pid   565] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   565] write(6, "#! ./file1\n", 11) = 11
[pid   565] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   565] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   565] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=46, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./44/file0")         = 0
[pid   344] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./44/binderfs")     = 0
[pid   344] umount2("./44/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./44/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./44/cgroup.net")   = 0
[pid   344] umount2("./44/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./44/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./44/cgroup.cpu")   = 0
[pid   344] umount2("./44/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./44/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./44/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./44")               = 0
[pid   344] mkdir("./45", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
executing program
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 47
./strace-static-x86_64: Process 570 attached
[pid   570] set_robust_list(0x55557f95d660, 24) = 0
[pid   570] chdir("./45")               = 0
[pid   570] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   570] setpgid(0, 0)               = 0
[pid   570] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   570] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   570] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   570] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   570] write(3, "1000", 4)         = 4
[pid   570] close(3)                    = 0
[pid   570] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   570] symlink("/dev/binderfs", "./binderfs") = 0
[pid   570] write(1, "executing program\n", 18) = 18
[pid   570] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   570] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   570] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   570] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   570] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   570] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   570] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   570] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   570] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   570] memfd_create("syzkaller", 0) = 5
[pid   570] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   570] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   570] munmap(0x7f024f46f000, 138412032) = 0
[pid   570] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   570] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   570] close(5)                    = 0
[pid   570] close(6)                    = 0
[pid   570] mkdir("./file0", 0777)      = 0
[   32.687919][  T565] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.718817][  T566] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-565: bg 0: block 234: padding at end of block bitmap is not set
[pid   570] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   570] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   570] chdir("./file0")            = 0
[pid   570] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   570] ioctl(6, LOOP_CLR_FD)       = 0
[pid   570] close(6)                    = 0
[pid   570] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   570] write(6, "#! ./file1\n", 11) = 11
[pid   570] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   570] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   570] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=47, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./45/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./45/file0")         = 0
[pid   344] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./45/binderfs")     = 0
[pid   344] umount2("./45/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./45/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./45/cgroup.net")   = 0
[   32.805564][  T570] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.836194][  T571] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-570: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./45/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./45/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./45/cgroup.cpu")   = 0
[pid   344] umount2("./45/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./45/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./45/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./45")               = 0
[pid   344] mkdir("./46", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 575 attached
, child_tidptr=0x55557f95d650) = 48
[pid   575] set_robust_list(0x55557f95d660, 24) = 0
[pid   575] chdir("./46")               = 0
[pid   575] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   575] setpgid(0, 0)               = 0
[pid   575] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   575] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   575] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   575] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   575] write(3, "1000", 4)         = 4
[pid   575] close(3)                    = 0
[pid   575] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid   575] symlink("/dev/binderfs", "./binderfs") = 0
[pid   575] write(1, "executing program\n", 18) = 18
[pid   575] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   575] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   575] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   575] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   575] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   575] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   575] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   575] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   575] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   575] memfd_create("syzkaller", 0) = 5
[pid   575] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   575] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   575] munmap(0x7f024f46f000, 138412032) = 0
[pid   575] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   575] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   575] close(5)                    = 0
[pid   575] close(6)                    = 0
[pid   575] mkdir("./file0", 0777)      = 0
[pid   575] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   575] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   575] chdir("./file0")            = 0
[pid   575] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   575] ioctl(6, LOOP_CLR_FD)       = 0
[pid   575] close(6)                    = 0
[pid   575] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   575] write(6, "#! ./file1\n", 11) = 11
[pid   575] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   575] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   575] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=48, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   32.957630][  T575] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   32.987926][  T576] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-575: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./46/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./46/file0")         = 0
[pid   344] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./46/binderfs")     = 0
[pid   344] umount2("./46/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./46/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./46/cgroup.net")   = 0
[pid   344] umount2("./46/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./46/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./46/cgroup.cpu")   = 0
[pid   344] umount2("./46/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./46/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./46/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./46")               = 0
[pid   344] mkdir("./47", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 580 attached
 <unfinished ...>
[pid   580] set_robust_list(0x55557f95d660, 24) = 0
[pid   580] chdir("./47" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 49
[pid   580] <... chdir resumed>)        = 0
[pid   580] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   580] setpgid(0, 0)               = 0
[pid   580] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   580] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   580] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   580] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   580] write(3, "1000", 4)         = 4
[pid   580] close(3)                    = 0
[pid   580] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid   580] symlink("/dev/binderfs", "./binderfs") = 0
[pid   580] write(1, "executing program\n", 18) = 18
[pid   580] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   580] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   580] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   580] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   580] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   580] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   580] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   580] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   580] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   580] memfd_create("syzkaller", 0) = 5
[pid   580] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   580] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   580] munmap(0x7f024f46f000, 138412032) = 0
[pid   580] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   580] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   580] close(5)                    = 0
[pid   580] close(6)                    = 0
[pid   580] mkdir("./file0", 0777)      = 0
[pid   580] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   580] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   580] chdir("./file0")            = 0
[pid   580] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   580] ioctl(6, LOOP_CLR_FD)       = 0
[pid   580] close(6)                    = 0
[pid   580] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   580] write(6, "#! ./file1\n", 11) = 11
[pid   580] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   580] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   580] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=49, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   33.127690][  T580] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   33.158233][  T581] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-580: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./47/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./47/file0")         = 0
[pid   344] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./47/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./47/binderfs")     = 0
[pid   344] umount2("./47/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./47/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./47/cgroup.net")   = 0
[pid   344] umount2("./47/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./47/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./47/cgroup.cpu")   = 0
[pid   344] umount2("./47/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./47/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./47/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./47")               = 0
[pid   344] mkdir("./48", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 585 attached
, child_tidptr=0x55557f95d650) = 50
[pid   585] set_robust_list(0x55557f95d660, 24) = 0
[pid   585] chdir("./48")               = 0
[pid   585] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   585] setpgid(0, 0)               = 0
[pid   585] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   585] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   585] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   585] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   585] write(3, "1000", 4)         = 4
[pid   585] close(3)                    = 0
[pid   585] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   585] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   585] write(1, "executing program\n", 18) = 18
[pid   585] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   585] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   585] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   585] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   585] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   585] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   585] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   585] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   585] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   585] memfd_create("syzkaller", 0) = 5
[pid   585] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   585] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   585] munmap(0x7f024f46f000, 138412032) = 0
[pid   585] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   585] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   585] close(5)                    = 0
[pid   585] close(6)                    = 0
[pid   585] mkdir("./file0", 0777)      = 0
[pid   585] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   585] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   585] chdir("./file0")            = 0
[pid   585] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   585] ioctl(6, LOOP_CLR_FD)       = 0
[pid   585] close(6)                    = 0
[pid   585] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   585] write(6, "#! ./file1\n", 11) = 11
[pid   585] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   585] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   585] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=50, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   33.297608][  T585] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   33.324904][  T585] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./48/file0")         = 0
[pid   344] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./48/binderfs")     = 0
[pid   344] umount2("./48/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./48/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./48/cgroup.net")   = 0
[pid   344] umount2("./48/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./48/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./48/cgroup.cpu")   = 0
[pid   344] umount2("./48/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./48/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./48/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./48")               = 0
[pid   344] mkdir("./49", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 590 attached
, child_tidptr=0x55557f95d650) = 51
[pid   590] set_robust_list(0x55557f95d660, 24) = 0
[pid   590] chdir("./49")               = 0
[pid   590] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   590] setpgid(0, 0)               = 0
[pid   590] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   590] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   590] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   590] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   590] write(3, "1000", 4)         = 4
[pid   590] close(3)                    = 0
[pid   590] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   590] symlink("/dev/binderfs", "./binderfs") = 0
[pid   590] write(1, "executing program\n", 18executing program
) = 18
[pid   590] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   590] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   590] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   590] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   590] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   590] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   590] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   590] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   590] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   590] memfd_create("syzkaller", 0) = 5
[pid   590] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   590] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   590] munmap(0x7f024f46f000, 138412032) = 0
[pid   590] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   590] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   590] close(5)                    = 0
[pid   590] close(6)                    = 0
[pid   590] mkdir("./file0", 0777)      = 0
[pid   590] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   590] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   590] chdir("./file0")            = 0
[pid   590] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   590] ioctl(6, LOOP_CLR_FD)       = 0
[pid   590] close(6)                    = 0
[pid   590] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   590] write(6, "#! ./file1\n", 11) = 11
[pid   590] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   590] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   590] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=51, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   33.497840][  T590] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   33.528331][  T591] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-590: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./49/file0")         = 0
[pid   344] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./49/binderfs")     = 0
[pid   344] umount2("./49/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./49/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./49/cgroup.net")   = 0
[pid   344] umount2("./49/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./49/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./49/cgroup.cpu")   = 0
[pid   344] umount2("./49/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./49/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./49/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./49")               = 0
[pid   344] mkdir("./50", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 52
./strace-static-x86_64: Process 595 attached
[pid   595] set_robust_list(0x55557f95d660, 24) = 0
[pid   595] chdir("./50")               = 0
[pid   595] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   595] setpgid(0, 0)               = 0
[pid   595] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   595] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   595] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   595] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   595] write(3, "1000", 4)         = 4
[pid   595] close(3)                    = 0
[pid   595] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   595] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   595] write(1, "executing program\n", 18) = 18
[pid   595] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   595] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   595] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   595] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   595] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   595] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   595] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   595] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   595] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   595] memfd_create("syzkaller", 0) = 5
[pid   595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   595] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   595] munmap(0x7f024f46f000, 138412032) = 0
[pid   595] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   595] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   595] close(5)                    = 0
[pid   595] close(6)                    = 0
[pid   595] mkdir("./file0", 0777)      = 0
[pid   595] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   595] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   595] chdir("./file0")            = 0
[pid   595] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   595] ioctl(6, LOOP_CLR_FD)       = 0
[pid   595] close(6)                    = 0
[pid   595] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   595] write(6, "#! ./file1\n", 11) = 11
[pid   595] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   595] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   595] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=52, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   33.667749][  T595] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./50/file0")         = 0
[pid   344] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./50/binderfs")     = 0
[pid   344] umount2("./50/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./50/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./50/cgroup.net")   = 0
[pid   344] umount2("./50/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./50/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./50/cgroup.cpu")   = 0
[pid   344] umount2("./50/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./50/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./50/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./50")               = 0
[   33.708909][  T596] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-595: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] mkdir("./51", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 600 attached
 <unfinished ...>
[pid   600] set_robust_list(0x55557f95d660, 24) = 0
[pid   600] chdir("./51")               = 0
[pid   600] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   600] setpgid(0, 0)               = 0
[pid   600] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 53
[pid   600] <... symlink resumed>)      = 0
[pid   600] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   600] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   600] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   600] write(3, "1000", 4)         = 4
[pid   600] close(3)                    = 0
[pid   600] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   600] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   600] write(1, "executing program\n", 18) = 18
[pid   600] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   600] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   600] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   600] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   600] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   600] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   600] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   600] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   600] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   600] memfd_create("syzkaller", 0) = 5
[pid   600] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   600] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   600] munmap(0x7f024f46f000, 138412032) = 0
[pid   600] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   600] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   600] close(5)                    = 0
[pid   600] close(6)                    = 0
[pid   600] mkdir("./file0", 0777)      = 0
[pid   600] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   600] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   600] chdir("./file0")            = 0
[pid   600] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   600] ioctl(6, LOOP_CLR_FD)       = 0
[pid   600] close(6)                    = 0
[pid   600] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   600] write(6, "#! ./file1\n", 11) = 11
[pid   600] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   600] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   600] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=53, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   33.837543][  T600] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   33.878975][  T601] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-600: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./51/file0")         = 0
[pid   344] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./51/binderfs")     = 0
[pid   344] umount2("./51/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./51/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./51/cgroup.net")   = 0
[pid   344] umount2("./51/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./51/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./51/cgroup.cpu")   = 0
[pid   344] umount2("./51/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./51/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./51/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./51")               = 0
[pid   344] mkdir("./52", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 605 attached
 <unfinished ...>
[pid   605] set_robust_list(0x55557f95d660, 24) = 0
[pid   605] chdir("./52" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 54
[pid   605] <... chdir resumed>)        = 0
[pid   605] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   605] setpgid(0, 0)               = 0
[pid   605] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   605] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   605] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   605] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program
) = 3
[pid   605] write(3, "1000", 4)         = 4
[pid   605] close(3)                    = 0
[pid   605] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   605] symlink("/dev/binderfs", "./binderfs") = 0
[pid   605] write(1, "executing program\n", 18) = 18
[pid   605] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   605] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   605] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   605] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   605] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   605] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   605] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   605] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   605] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   605] memfd_create("syzkaller", 0) = 5
[pid   605] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   605] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   605] munmap(0x7f024f46f000, 138412032) = 0
[pid   605] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   605] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   605] close(5)                    = 0
[pid   605] close(6)                    = 0
[pid   605] mkdir("./file0", 0777)      = 0
[pid   605] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   605] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   605] chdir("./file0")            = 0
[pid   605] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   605] ioctl(6, LOOP_CLR_FD)       = 0
[pid   605] close(6)                    = 0
[pid   605] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   605] write(6, "#! ./file1\n", 11) = 11
[pid   605] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   605] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   605] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=54, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   34.047541][  T605] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.074623][  T605] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./52/file0")         = 0
[pid   344] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./52/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./52/binderfs")     = 0
[pid   344] umount2("./52/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./52/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./52/cgroup.net")   = 0
[pid   344] umount2("./52/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./52/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./52/cgroup.cpu")   = 0
[pid   344] umount2("./52/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./52/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./52/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./52")               = 0
[pid   344] mkdir("./53", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 610 attached
 <unfinished ...>
[pid   610] set_robust_list(0x55557f95d660, 24) = 0
[pid   610] chdir("./53" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 55
[pid   610] <... chdir resumed>)        = 0
[pid   610] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   610] setpgid(0, 0)               = 0
[pid   610] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   610] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   610] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   610] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   610] write(3, "1000", 4)         = 4
[pid   610] close(3)                    = 0
[pid   610] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   610] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   610] write(1, "executing program\n", 18) = 18
[pid   610] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   610] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   610] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   610] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   610] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   610] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   610] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   610] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   610] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   610] memfd_create("syzkaller", 0) = 5
[pid   610] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   610] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   610] munmap(0x7f024f46f000, 138412032) = 0
[pid   610] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   610] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   610] close(5)                    = 0
[pid   610] close(6)                    = 0
[pid   610] mkdir("./file0", 0777)      = 0
[pid   610] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   610] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   610] chdir("./file0")            = 0
[pid   610] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   610] ioctl(6, LOOP_CLR_FD)       = 0
[pid   610] close(6)                    = 0
[pid   610] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   610] write(6, "#! ./file1\n", 11) = 11
[pid   610] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   610] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   610] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=55, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   34.250888][  T610] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.281063][  T611] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-610: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./53/file0")         = 0
[pid   344] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./53/binderfs")     = 0
[pid   344] umount2("./53/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./53/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./53/cgroup.net")   = 0
[pid   344] umount2("./53/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./53/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./53/cgroup.cpu")   = 0
[pid   344] umount2("./53/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./53/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./53/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./53")               = 0
[pid   344] mkdir("./54", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 615 attached
 <unfinished ...>
[pid   615] set_robust_list(0x55557f95d660, 24) = 0
[pid   615] chdir("./54" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 56
[pid   615] <... chdir resumed>)        = 0
[pid   615] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   615] setpgid(0, 0)               = 0
[pid   615] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   615] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   615] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   615] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   615] write(3, "1000", 4)         = 4
[pid   615] close(3)                    = 0
[pid   615] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   615] symlink("/dev/binderfs", "./binderfs") = 0
[pid   615] write(1, "executing program\n", 18executing program
) = 18
[pid   615] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   615] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   615] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   615] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   615] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   615] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   615] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   615] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   615] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   615] memfd_create("syzkaller", 0) = 5
[pid   615] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   615] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   615] munmap(0x7f024f46f000, 138412032) = 0
[pid   615] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   615] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   615] close(5)                    = 0
[pid   615] close(6)                    = 0
[pid   615] mkdir("./file0", 0777)      = 0
[pid   615] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   615] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   615] chdir("./file0")            = 0
[pid   615] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   615] ioctl(6, LOOP_CLR_FD)       = 0
[pid   615] close(6)                    = 0
[pid   615] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   615] write(6, "#! ./file1\n", 11) = 11
[pid   615] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   615] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   615] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=56, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   34.407689][  T615] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.437552][  T616] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-615: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./54/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./54/file0")         = 0
[pid   344] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./54/binderfs")     = 0
[pid   344] umount2("./54/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./54/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./54/cgroup.net")   = 0
[pid   344] umount2("./54/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./54/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./54/cgroup.cpu")   = 0
[pid   344] umount2("./54/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./54/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./54/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./54")               = 0
[pid   344] mkdir("./55", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 620 attached
 <unfinished ...>
[pid   620] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 57
[pid   620] <... set_robust_list resumed>) = 0
[pid   620] chdir("./55")               = 0
[pid   620] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   620] setpgid(0, 0)               = 0
[pid   620] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   620] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   620] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   620] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   620] write(3, "1000", 4)         = 4
[pid   620] close(3)                    = 0
[pid   620] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   620] symlink("/dev/binderfs", "./binderfs") = 0
[pid   620] write(1, "executing program\n", 18executing program
) = 18
[pid   620] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   620] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   620] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   620] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   620] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   620] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   620] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   620] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   620] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   620] memfd_create("syzkaller", 0) = 5
[pid   620] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   620] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   620] munmap(0x7f024f46f000, 138412032) = 0
[pid   620] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   620] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   620] close(5)                    = 0
[pid   620] close(6)                    = 0
[pid   620] mkdir("./file0", 0777)      = 0
[pid   620] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   620] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   620] chdir("./file0")            = 0
[pid   620] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   620] ioctl(6, LOOP_CLR_FD)       = 0
[pid   620] close(6)                    = 0
[pid   620] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   620] write(6, "#! ./file1\n", 11) = 11
[pid   620] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   620] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   620] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=57, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   34.567721][  T620] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.597708][  T621] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-620: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./55/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./55/file0")         = 0
[pid   344] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./55/binderfs")     = 0
[pid   344] umount2("./55/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./55/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./55/cgroup.net")   = 0
[pid   344] umount2("./55/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./55/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./55/cgroup.cpu")   = 0
[pid   344] umount2("./55/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./55/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./55/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./55")               = 0
[pid   344] mkdir("./56", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 625 attached
, child_tidptr=0x55557f95d650) = 58
[pid   625] set_robust_list(0x55557f95d660, 24) = 0
[pid   625] chdir("./56")               = 0
[pid   625] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   625] setpgid(0, 0)               = 0
[pid   625] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   625] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   625] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   625] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   625] write(3, "1000", 4)         = 4
[pid   625] close(3)                    = 0
[pid   625] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid   625] symlink("/dev/binderfs", "./binderfs") = 0
[pid   625] write(1, "executing program\n", 18) = 18
[pid   625] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   625] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   625] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   625] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   625] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   625] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   625] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   625] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   625] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   625] memfd_create("syzkaller", 0) = 5
[pid   625] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   625] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   625] munmap(0x7f024f46f000, 138412032) = 0
[pid   625] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   625] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   625] close(5)                    = 0
[pid   625] close(6)                    = 0
[pid   625] mkdir("./file0", 0777)      = 0
[pid   625] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   625] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   625] chdir("./file0")            = 0
[pid   625] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   625] ioctl(6, LOOP_CLR_FD)       = 0
[pid   625] close(6)                    = 0
[pid   625] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   625] write(6, "#! ./file1\n", 11) = 11
[pid   625] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   625] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   625] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=58, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   34.737656][  T625] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.768587][  T626] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-625: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./56/file0")         = 0
[pid   344] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./56/binderfs")     = 0
[pid   344] umount2("./56/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./56/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./56/cgroup.net")   = 0
[pid   344] umount2("./56/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./56/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./56/cgroup.cpu")   = 0
[pid   344] umount2("./56/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./56/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./56/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./56")               = 0
[pid   344] mkdir("./57", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 630 attached
 <unfinished ...>
[pid   630] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 59
[pid   630] <... set_robust_list resumed>) = 0
[pid   630] chdir("./57")               = 0
[pid   630] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   630] setpgid(0, 0)               = 0
[pid   630] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   630] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   630] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   630] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   630] write(3, "1000", 4)         = 4
[pid   630] close(3)                    = 0
[pid   630] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   630] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   630] write(1, "executing program\n", 18) = 18
[pid   630] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   630] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   630] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   630] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   630] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   630] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   630] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   630] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   630] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   630] memfd_create("syzkaller", 0) = 5
[pid   630] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   630] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   630] munmap(0x7f024f46f000, 138412032) = 0
[pid   630] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   630] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   630] close(5)                    = 0
[pid   630] close(6)                    = 0
[pid   630] mkdir("./file0", 0777)      = 0
[pid   630] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   630] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   630] chdir("./file0")            = 0
[pid   630] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   630] ioctl(6, LOOP_CLR_FD)       = 0
[pid   630] close(6)                    = 0
[pid   630] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   630] write(6, "#! ./file1\n", 11) = 11
[pid   630] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   630] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   630] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=59, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./57/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./57/file0")         = 0
[pid   344] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./57/binderfs")     = 0
[pid   344] umount2("./57/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./57/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./57/cgroup.net")   = 0
[pid   344] umount2("./57/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./57/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./57/cgroup.cpu")   = 0
[pid   344] umount2("./57/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./57/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./57/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./57")               = 0
[pid   344] mkdir("./58", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[   34.953223][  T630] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   34.980877][  T630] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 635 attached
 <unfinished ...>
[pid   635] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 60
[pid   635] <... set_robust_list resumed>) = 0
[pid   635] chdir("./58")               = 0
[pid   635] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   635] setpgid(0, 0)               = 0
[pid   635] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   635] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   635] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   635] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   635] write(3, "1000", 4)         = 4
[pid   635] close(3)                    = 0
[pid   635] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   635] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   635] write(1, "executing program\n", 18) = 18
[pid   635] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   635] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   635] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   635] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   635] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   635] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   635] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   635] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   635] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   635] memfd_create("syzkaller", 0) = 5
[pid   635] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   635] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   635] munmap(0x7f024f46f000, 138412032) = 0
[pid   635] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   635] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   635] close(5)                    = 0
[pid   635] close(6)                    = 0
[pid   635] mkdir("./file0", 0777)      = 0
[pid   635] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   635] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   635] chdir("./file0")            = 0
[pid   635] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   635] ioctl(6, LOOP_CLR_FD)       = 0
[pid   635] close(6)                    = 0
[pid   635] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   635] write(6, "#! ./file1\n", 11) = 11
[pid   635] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   635] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   635] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=60, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./58/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./58/file0")         = 0
[pid   344] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./58/binderfs")     = 0
[pid   344] umount2("./58/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./58/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./58/cgroup.net")   = 0
[pid   344] umount2("./58/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./58/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./58/cgroup.cpu")   = 0
[pid   344] umount2("./58/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./58/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./58/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./58")               = 0
[pid   344] mkdir("./59", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 640 attached
 <unfinished ...>
[pid   640] set_robust_list(0x55557f95d660, 24) = 0
[pid   640] chdir("./59" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 61
[pid   640] <... chdir resumed>)        = 0
[pid   640] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   640] setpgid(0, 0)               = 0
[pid   640] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   640] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   640] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   640] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   640] write(3, "1000", 4)         = 4
[pid   640] close(3)                    = 0
[pid   640] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   640] symlink("/dev/binderfs", "./binderfs") = 0
[pid   640] write(1, "executing program\n", 18executing program
) = 18
[pid   640] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[   35.101167][  T635] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.131096][  T636] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-635: bg 0: block 234: padding at end of block bitmap is not set
[pid   640] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   640] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   640] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   640] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   640] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   640] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   640] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   640] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   640] memfd_create("syzkaller", 0) = 5
[pid   640] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   640] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   640] munmap(0x7f024f46f000, 138412032) = 0
[pid   640] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   640] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   640] close(5)                    = 0
[pid   640] close(6)                    = 0
[pid   640] mkdir("./file0", 0777)      = 0
[pid   640] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   640] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   640] chdir("./file0")            = 0
[pid   640] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   640] ioctl(6, LOOP_CLR_FD)       = 0
[pid   640] close(6)                    = 0
[pid   640] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   640] write(6, "#! ./file1\n", 11) = 11
[pid   640] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   640] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   640] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=61, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   35.237745][  T640] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.267708][  T641] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-640: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./59/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./59/file0")         = 0
[pid   344] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./59/binderfs")     = 0
[pid   344] umount2("./59/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./59/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./59/cgroup.net")   = 0
[pid   344] umount2("./59/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./59/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./59/cgroup.cpu")   = 0
[pid   344] umount2("./59/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./59/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./59/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./59")               = 0
[pid   344] mkdir("./60", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 645 attached
, child_tidptr=0x55557f95d650) = 62
[pid   645] set_robust_list(0x55557f95d660, 24) = 0
[pid   645] chdir("./60")               = 0
[pid   645] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   645] setpgid(0, 0)               = 0
[pid   645] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   645] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   645] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   645] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   645] write(3, "1000", 4)         = 4
[pid   645] close(3)                    = 0
[pid   645] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   645] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   645] write(1, "executing program\n", 18) = 18
[pid   645] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   645] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   645] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   645] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   645] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   645] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   645] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   645] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   645] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   645] memfd_create("syzkaller", 0) = 5
[pid   645] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   645] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   645] munmap(0x7f024f46f000, 138412032) = 0
[pid   645] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   645] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   645] close(5)                    = 0
[pid   645] close(6)                    = 0
[pid   645] mkdir("./file0", 0777)      = 0
[pid   645] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   645] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   645] chdir("./file0")            = 0
[pid   645] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   645] ioctl(6, LOOP_CLR_FD)       = 0
[pid   645] close(6)                    = 0
[pid   645] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   645] write(6, "#! ./file1\n", 11) = 11
[pid   645] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   645] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   645] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=62, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   35.404483][  T645] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.435100][  T646] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-645: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./60/file0")         = 0
[pid   344] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./60/binderfs")     = 0
[pid   344] umount2("./60/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./60/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./60/cgroup.net")   = 0
[pid   344] umount2("./60/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./60/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./60/cgroup.cpu")   = 0
[pid   344] umount2("./60/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./60/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./60/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./60")               = 0
[pid   344] mkdir("./61", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 650 attached
, child_tidptr=0x55557f95d650) = 63
[pid   650] set_robust_list(0x55557f95d660, 24) = 0
[pid   650] chdir("./61")               = 0
[pid   650] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   650] setpgid(0, 0)               = 0
[pid   650] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   650] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   650] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   650] write(3, "1000", 4)         = 4
[pid   650] close(3)                    = 0
[pid   650] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   650] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   650] write(1, "executing program\n", 18) = 18
[pid   650] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   650] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   650] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   650] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   650] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   650] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   650] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   650] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   650] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   650] memfd_create("syzkaller", 0) = 5
[pid   650] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   650] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   650] munmap(0x7f024f46f000, 138412032) = 0
[pid   650] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   650] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   650] close(5)                    = 0
[pid   650] close(6)                    = 0
[pid   650] mkdir("./file0", 0777)      = 0
[pid   650] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   650] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   650] chdir("./file0")            = 0
[pid   650] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   650] ioctl(6, LOOP_CLR_FD)       = 0
[pid   650] close(6)                    = 0
[pid   650] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   650] write(6, "#! ./file1\n", 11) = 11
[pid   650] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   650] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   650] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=63, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   35.567598][  T650] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.599248][  T651] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-650: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./61/file0")         = 0
[pid   344] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./61/binderfs")     = 0
[pid   344] umount2("./61/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./61/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./61/cgroup.net")   = 0
[pid   344] umount2("./61/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./61/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./61/cgroup.cpu")   = 0
[pid   344] umount2("./61/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./61/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./61/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./61")               = 0
[pid   344] mkdir("./62", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 655 attached
 <unfinished ...>
[pid   655] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 64
[pid   655] <... set_robust_list resumed>) = 0
[pid   655] chdir("./62")               = 0
[pid   655] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   655] setpgid(0, 0)               = 0
[pid   655] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   655] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   655] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   655] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   655] write(3, "1000", 4)         = 4
[pid   655] close(3)                    = 0
[pid   655] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   655] symlink("/dev/binderfs", "./binderfs") = 0
[pid   655] write(1, "executing program\n", 18executing program
) = 18
[pid   655] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   655] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   655] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   655] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   655] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   655] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   655] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   655] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   655] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   655] memfd_create("syzkaller", 0) = 5
[pid   655] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   655] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   655] munmap(0x7f024f46f000, 138412032) = 0
[pid   655] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   655] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   655] close(5)                    = 0
[pid   655] close(6)                    = 0
[pid   655] mkdir("./file0", 0777)      = 0
[pid   655] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   655] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   655] chdir("./file0")            = 0
[pid   655] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   655] ioctl(6, LOOP_CLR_FD)       = 0
[pid   655] close(6)                    = 0
[pid   655] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   655] write(6, "#! ./file1\n", 11) = 11
[pid   655] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   655] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   655] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=64, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   35.767641][  T655] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.798510][  T656] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-655: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./62/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./62/file0")         = 0
[pid   344] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./62/binderfs")     = 0
[pid   344] umount2("./62/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./62/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./62/cgroup.net")   = 0
[pid   344] umount2("./62/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./62/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./62/cgroup.cpu")   = 0
[pid   344] umount2("./62/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./62/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./62/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./62")               = 0
[pid   344] mkdir("./63", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 660 attached
 <unfinished ...>
[pid   660] set_robust_list(0x55557f95d660, 24) = 0
[pid   660] chdir("./63")               = 0
[pid   660] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   660] setpgid(0, 0)               = 0
[pid   660] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 65
[pid   660] <... symlink resumed>)      = 0
[pid   660] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   660] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   660] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   660] write(3, "1000", 4)         = 4
[pid   660] close(3)                    = 0
[pid   660] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   660] symlink("/dev/binderfs", "./binderfs") = 0
[pid   660] write(1, "executing program\n", 18executing program
) = 18
[pid   660] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   660] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   660] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   660] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   660] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   660] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   660] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   660] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   660] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   660] memfd_create("syzkaller", 0) = 5
[pid   660] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   660] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   660] munmap(0x7f024f46f000, 138412032) = 0
[pid   660] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   660] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   660] close(5)                    = 0
[pid   660] close(6)                    = 0
[pid   660] mkdir("./file0", 0777)      = 0
[pid   660] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   660] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   660] chdir("./file0")            = 0
[pid   660] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   660] ioctl(6, LOOP_CLR_FD)       = 0
[pid   660] close(6)                    = 0
[pid   660] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   660] write(6, "#! ./file1\n", 11) = 11
[pid   660] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   660] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   660] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=65, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   35.937708][  T660] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   35.965700][  T660] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./63/file0")         = 0
[pid   344] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./63/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./63/binderfs")     = 0
[pid   344] umount2("./63/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./63/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./63/cgroup.net")   = 0
[pid   344] umount2("./63/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./63/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./63/cgroup.cpu")   = 0
[pid   344] umount2("./63/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./63/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./63/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./63")               = 0
[pid   344] mkdir("./64", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 66
./strace-static-x86_64: Process 665 attached
[pid   665] set_robust_list(0x55557f95d660, 24) = 0
[pid   665] chdir("./64")               = 0
[pid   665] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   665] setpgid(0, 0)               = 0
[pid   665] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   665] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   665] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   665] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   665] write(3, "1000", 4)         = 4
[pid   665] close(3)                    = 0
[pid   665] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   665] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   665] write(1, "executing program\n", 18) = 18
[pid   665] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   665] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   665] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   665] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   665] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   665] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   665] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   665] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   665] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   665] memfd_create("syzkaller", 0) = 5
[pid   665] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   665] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   665] munmap(0x7f024f46f000, 138412032) = 0
[pid   665] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   665] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   665] close(5)                    = 0
[pid   665] close(6)                    = 0
[pid   665] mkdir("./file0", 0777)      = 0
[pid   665] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   665] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   665] chdir("./file0")            = 0
[pid   665] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   665] ioctl(6, LOOP_CLR_FD)       = 0
[pid   665] close(6)                    = 0
[pid   665] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   665] write(6, "#! ./file1\n", 11) = 11
[pid   665] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   665] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   665] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=66, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   36.127651][  T665] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   36.158228][  T666] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-665: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./64/file0")         = 0
[pid   344] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./64/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./64/binderfs")     = 0
[pid   344] umount2("./64/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./64/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./64/cgroup.net")   = 0
[pid   344] umount2("./64/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./64/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./64/cgroup.cpu")   = 0
[pid   344] umount2("./64/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./64/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./64/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./64")               = 0
[pid   344] mkdir("./65", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 67
./strace-static-x86_64: Process 670 attached
[pid   670] set_robust_list(0x55557f95d660, 24) = 0
[pid   670] chdir("./65")               = 0
[pid   670] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   670] setpgid(0, 0)               = 0
[pid   670] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   670] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   670] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   670] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   670] write(3, "1000", 4)         = 4
[pid   670] close(3)                    = 0
[pid   670] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   670] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   670] write(1, "executing program\n", 18) = 18
[pid   670] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   670] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   670] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   670] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   670] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   670] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   670] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   670] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   670] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   670] memfd_create("syzkaller", 0) = 5
[pid   670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   670] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   670] munmap(0x7f024f46f000, 138412032) = 0
[pid   670] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   670] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   670] close(5)                    = 0
[pid   670] close(6)                    = 0
[pid   670] mkdir("./file0", 0777)      = 0
[pid   670] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   670] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   670] chdir("./file0")            = 0
[pid   670] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   670] ioctl(6, LOOP_CLR_FD)       = 0
[pid   670] close(6)                    = 0
[pid   670] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   670] write(6, "#! ./file1\n", 11) = 11
[pid   670] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   670] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   670] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=67, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   36.297578][  T670] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   36.328781][  T671] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-670: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./65/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./65/file0")         = 0
[pid   344] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./65/binderfs")     = 0
[pid   344] umount2("./65/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./65/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./65/cgroup.net")   = 0
[pid   344] umount2("./65/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./65/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./65/cgroup.cpu")   = 0
[pid   344] umount2("./65/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./65/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./65/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./65")               = 0
[pid   344] mkdir("./66", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 68
./strace-static-x86_64: Process 675 attached
[pid   675] set_robust_list(0x55557f95d660, 24) = 0
[pid   675] chdir("./66")               = 0
[pid   675] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   675] setpgid(0, 0)               = 0
[pid   675] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   675] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   675] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   675] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   675] write(3, "1000", 4)         = 4
[pid   675] close(3)                    = 0
[pid   675] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   675] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   675] write(1, "executing program\n", 18) = 18
[pid   675] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   675] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   675] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   675] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   675] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   675] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   675] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   675] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   675] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   675] memfd_create("syzkaller", 0) = 5
[pid   675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   675] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   675] munmap(0x7f024f46f000, 138412032) = 0
[pid   675] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   675] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   675] close(5)                    = 0
[pid   675] close(6)                    = 0
[pid   675] mkdir("./file0", 0777)      = 0
[pid   675] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   675] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   675] chdir("./file0")            = 0
[pid   675] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   675] ioctl(6, LOOP_CLR_FD)       = 0
[pid   675] close(6)                    = 0
[pid   675] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   675] write(6, "#! ./file1\n", 11) = 11
[pid   675] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   675] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   675] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=68, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   36.477634][  T675] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   36.508038][  T676] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-675: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./66/file0")         = 0
[pid   344] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./66/binderfs")     = 0
[pid   344] umount2("./66/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./66/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./66/cgroup.net")   = 0
[pid   344] umount2("./66/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./66/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./66/cgroup.cpu")   = 0
[pid   344] umount2("./66/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./66/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./66/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./66")               = 0
[pid   344] mkdir("./67", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 680 attached
 <unfinished ...>
[pid   680] set_robust_list(0x55557f95d660, 24) = 0
[pid   680] chdir("./67")               = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 69
[pid   680] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   680] setpgid(0, 0)               = 0
[pid   680] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   680] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   680] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   680] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   680] write(3, "1000", 4)         = 4
[pid   680] close(3)                    = 0
[pid   680] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   680] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   680] write(1, "executing program\n", 18) = 18
[pid   680] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   680] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   680] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   680] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   680] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   680] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   680] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   680] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   680] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   680] memfd_create("syzkaller", 0) = 5
[pid   680] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   680] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   680] munmap(0x7f024f46f000, 138412032) = 0
[pid   680] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   680] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   680] close(5)                    = 0
[pid   680] close(6)                    = 0
[pid   680] mkdir("./file0", 0777)      = 0
[pid   680] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   680] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   680] chdir("./file0")            = 0
[pid   680] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   680] ioctl(6, LOOP_CLR_FD)       = 0
[pid   680] close(6)                    = 0
[pid   680] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   680] write(6, "#! ./file1\n", 11) = 11
[pid   680] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   680] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   680] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=69, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   36.787620][  T680] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   36.831394][  T681] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-680: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./67/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./67/file0")         = 0
[pid   344] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./67/binderfs")     = 0
[pid   344] umount2("./67/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./67/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./67/cgroup.net")   = 0
[pid   344] umount2("./67/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./67/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./67/cgroup.cpu")   = 0
[pid   344] umount2("./67/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./67/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./67/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./67")               = 0
[pid   344] mkdir("./68", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FDexecuting program
)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 70
./strace-static-x86_64: Process 685 attached
[pid   685] set_robust_list(0x55557f95d660, 24) = 0
[pid   685] chdir("./68")               = 0
[pid   685] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   685] setpgid(0, 0)               = 0
[pid   685] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   685] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   685] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   685] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   685] write(3, "1000", 4)         = 4
[pid   685] close(3)                    = 0
[pid   685] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   685] symlink("/dev/binderfs", "./binderfs") = 0
[pid   685] write(1, "executing program\n", 18) = 18
[pid   685] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   685] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   685] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   685] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   685] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   685] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   685] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   685] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   685] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   685] memfd_create("syzkaller", 0) = 5
[pid   685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   685] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   685] munmap(0x7f024f46f000, 138412032) = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   685] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   685] close(5)                    = 0
[pid   685] close(6)                    = 0
[pid   685] mkdir("./file0", 0777)      = 0
[pid   685] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   685] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   685] chdir("./file0")            = 0
[pid   685] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   685] ioctl(6, LOOP_CLR_FD)       = 0
[pid   685] close(6)                    = 0
[pid   685] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   685] write(6, "#! ./file1\n", 11) = 11
[pid   685] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   685] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   685] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=70, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./68/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./68/file0")         = 0
[pid   344] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./68/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./68/binderfs")     = 0
[pid   344] umount2("./68/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./68/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./68/cgroup.net")   = 0
[pid   344] umount2("./68/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./68/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./68/cgroup.cpu")   = 0
[pid   344] umount2("./68/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./68/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./68/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./68")               = 0
[pid   344] mkdir("./69", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[   37.004692][  T685] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.032526][  T685] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 71
./strace-static-x86_64: Process 690 attached
[pid   690] set_robust_list(0x55557f95d660, 24) = 0
[pid   690] chdir("./69")               = 0
[pid   690] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   690] setpgid(0, 0)               = 0
[pid   690] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   690] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   690] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   690] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   690] write(3, "1000", 4)         = 4
[pid   690] close(3)                    = 0
[pid   690] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   690] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   690] write(1, "executing program\n", 18) = 18
[pid   690] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   690] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   690] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   690] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   690] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   690] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   690] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   690] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   690] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   690] memfd_create("syzkaller", 0) = 5
[pid   690] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   690] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   690] munmap(0x7f024f46f000, 138412032) = 0
[pid   690] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   690] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   690] close(5)                    = 0
[pid   690] close(6)                    = 0
[pid   690] mkdir("./file0", 0777)      = 0
[pid   690] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   690] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   690] chdir("./file0")            = 0
[pid   690] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   690] ioctl(6, LOOP_CLR_FD)       = 0
[pid   690] close(6)                    = 0
[pid   690] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   690] write(6, "#! ./file1\n", 11) = 11
[pid   690] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   690] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   690] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=71, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   37.151341][  T690] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.181252][  T691] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-690: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./69/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./69/file0")         = 0
[pid   344] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./69/binderfs")     = 0
[pid   344] umount2("./69/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./69/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./69/cgroup.net")   = 0
[pid   344] umount2("./69/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./69/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./69/cgroup.cpu")   = 0
[pid   344] umount2("./69/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./69/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./69/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./69")               = 0
[pid   344] mkdir("./70", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 695 attached
 <unfinished ...>
[pid   695] set_robust_list(0x55557f95d660, 24) = 0
[pid   695] chdir("./70" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 72
[pid   695] <... chdir resumed>)        = 0
[pid   695] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   695] setpgid(0, 0)               = 0
[pid   695] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   695] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   695] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   695] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   695] write(3, "1000", 4)         = 4
[pid   695] close(3)                    = 0
[pid   695] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   695] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   695] write(1, "executing program\n", 18) = 18
[pid   695] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   695] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   695] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   695] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   695] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   695] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   695] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   695] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   695] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   695] memfd_create("syzkaller", 0) = 5
[pid   695] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   695] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   695] munmap(0x7f024f46f000, 138412032) = 0
[pid   695] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   695] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   695] close(5)                    = 0
[pid   695] close(6)                    = 0
[pid   695] mkdir("./file0", 0777)      = 0
[pid   695] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   695] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   695] chdir("./file0")            = 0
[pid   695] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   695] ioctl(6, LOOP_CLR_FD)       = 0
[pid   695] close(6)                    = 0
[pid   695] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   695] write(6, "#! ./file1\n", 11) = 11
[pid   695] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   695] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   695] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=72, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   37.317803][  T695] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.347995][  T696] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-695: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./70/file0")         = 0
[pid   344] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./70/binderfs")     = 0
[pid   344] umount2("./70/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./70/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./70/cgroup.net")   = 0
[pid   344] umount2("./70/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./70/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./70/cgroup.cpu")   = 0
[pid   344] umount2("./70/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./70/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./70/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./70")               = 0
[pid   344] mkdir("./71", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 73
./strace-static-x86_64: Process 700 attached
[pid   700] set_robust_list(0x55557f95d660, 24) = 0
[pid   700] chdir("./71")               = 0
[pid   700] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   700] setpgid(0, 0)               = 0
[pid   700] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   700] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   700] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   700] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   700] write(3, "1000", 4)         = 4
[pid   700] close(3)                    = 0
[pid   700] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   700] symlink("/dev/binderfs", "./binderfs") = 0
[pid   700] write(1, "executing program\n", 18executing program
) = 18
[pid   700] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   700] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   700] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   700] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   700] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   700] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   700] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   700] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   700] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   700] memfd_create("syzkaller", 0) = 5
[pid   700] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   700] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   700] munmap(0x7f024f46f000, 138412032) = 0
[pid   700] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   700] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   700] close(5)                    = 0
[pid   700] close(6)                    = 0
[pid   700] mkdir("./file0", 0777)      = 0
[pid   700] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   700] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   700] chdir("./file0")            = 0
[pid   700] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   700] ioctl(6, LOOP_CLR_FD)       = 0
[pid   700] close(6)                    = 0
[pid   700] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   700] write(6, "#! ./file1\n", 11) = 11
[pid   700] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   700] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   700] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=73, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   37.472473][  T700] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.503414][  T701] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-700: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./71/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./71/file0")         = 0
[pid   344] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./71/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./71/binderfs")     = 0
[pid   344] umount2("./71/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./71/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./71/cgroup.net")   = 0
[pid   344] umount2("./71/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./71/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./71/cgroup.cpu")   = 0
[pid   344] umount2("./71/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./71/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./71/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./71")               = 0
[pid   344] mkdir("./72", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 705 attached
 <unfinished ...>
[pid   705] set_robust_list(0x55557f95d660, 24) = 0
[pid   705] chdir("./72")               = 0
[pid   705] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   705] setpgid(0, 0 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 74
[pid   705] <... setpgid resumed>)      = 0
[pid   705] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   705] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   705] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   705] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   705] write(3, "1000", 4)         = 4
[pid   705] close(3)                    = 0
[pid   705] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   705] symlink("/dev/binderfs", "./binderfs") = 0
[pid   705] write(1, "executing program\n", 18executing program
) = 18
[pid   705] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   705] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   705] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   705] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   705] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   705] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   705] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   705] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   705] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   705] memfd_create("syzkaller", 0) = 5
[pid   705] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   705] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   705] munmap(0x7f024f46f000, 138412032) = 0
[pid   705] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   705] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   705] close(5)                    = 0
[pid   705] close(6)                    = 0
[pid   705] mkdir("./file0", 0777)      = 0
[pid   705] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   705] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   705] chdir("./file0")            = 0
[pid   705] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   705] ioctl(6, LOOP_CLR_FD)       = 0
[pid   705] close(6)                    = 0
[pid   705] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   705] write(6, "#! ./file1\n", 11) = 11
[pid   705] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   705] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   705] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=74, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   37.697589][  T705] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.728431][  T706] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-705: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./72/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./72/file0")         = 0
[pid   344] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./72/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./72/binderfs")     = 0
[pid   344] umount2("./72/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./72/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./72/cgroup.net")   = 0
[pid   344] umount2("./72/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./72/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./72/cgroup.cpu")   = 0
[pid   344] umount2("./72/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./72/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./72/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./72")               = 0
[pid   344] mkdir("./73", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 710 attached
, child_tidptr=0x55557f95d650) = 75
[pid   710] set_robust_list(0x55557f95d660, 24) = 0
[pid   710] chdir("./73")               = 0
[pid   710] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   710] setpgid(0, 0)               = 0
[pid   710] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   710] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   710] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   710] write(3, "1000", 4)         = 4
[pid   710] close(3)                    = 0
[pid   710] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   710] symlink("/dev/binderfs", "./binderfs") = 0
[pid   710] write(1, "executing program\n", 18executing program
) = 18
[pid   710] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   710] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   710] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   710] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   710] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   710] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   710] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   710] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   710] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   710] memfd_create("syzkaller", 0) = 5
[pid   710] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   710] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   710] munmap(0x7f024f46f000, 138412032) = 0
[pid   710] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   710] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   710] close(5)                    = 0
[pid   710] close(6)                    = 0
[pid   710] mkdir("./file0", 0777)      = 0
[pid   710] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   710] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   710] chdir("./file0")            = 0
[pid   710] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   710] ioctl(6, LOOP_CLR_FD)       = 0
[pid   710] close(6)                    = 0
[pid   710] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   710] write(6, "#! ./file1\n", 11) = 11
[pid   710] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   710] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   710] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=75, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=4} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   37.867756][  T710] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   37.898577][  T711] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-710: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./73/file0")         = 0
[pid   344] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./73/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./73/binderfs")     = 0
[pid   344] umount2("./73/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./73/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./73/cgroup.net")   = 0
[pid   344] umount2("./73/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./73/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./73/cgroup.cpu")   = 0
[pid   344] umount2("./73/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./73/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./73/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./73")               = 0
[pid   344] mkdir("./74", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 76
./strace-static-x86_64: Process 715 attached
[pid   715] set_robust_list(0x55557f95d660, 24) = 0
[pid   715] chdir("./74")               = 0
[pid   715] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   715] setpgid(0, 0)               = 0
[pid   715] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   715] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   715] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   715] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   715] write(3, "1000", 4)         = 4
[pid   715] close(3)                    = 0
[pid   715] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   715] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   715] write(1, "executing program\n", 18) = 18
[pid   715] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   715] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   715] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   715] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   715] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   715] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   715] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   715] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   715] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   715] memfd_create("syzkaller", 0) = 5
[pid   715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   715] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   715] munmap(0x7f024f46f000, 138412032) = 0
[pid   715] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   715] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   715] close(5)                    = 0
[pid   715] close(6)                    = 0
[pid   715] mkdir("./file0", 0777)      = 0
[pid   715] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   715] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   715] chdir("./file0")            = 0
[pid   715] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   715] ioctl(6, LOOP_CLR_FD)       = 0
[pid   715] close(6)                    = 0
[pid   715] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   715] write(6, "#! ./file1\n", 11) = 11
[pid   715] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   715] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   715] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=76, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   38.043196][  T715] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.072938][  T716] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-715: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./74/file0")         = 0
[pid   344] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./74/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./74/binderfs")     = 0
[pid   344] umount2("./74/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./74/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./74/cgroup.net")   = 0
[pid   344] umount2("./74/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./74/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./74/cgroup.cpu")   = 0
[pid   344] umount2("./74/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./74/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./74/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./74")               = 0
[pid   344] mkdir("./75", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 720 attached
 <unfinished ...>
[pid   720] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 77
[pid   720] <... set_robust_list resumed>) = 0
[pid   720] chdir("./75")               = 0
[pid   720] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   720] setpgid(0, 0)               = 0
[pid   720] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   720] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   720] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   720] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   720] write(3, "1000", 4)         = 4
[pid   720] close(3)                    = 0
[pid   720] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   720] symlink("/dev/binderfs", "./binderfs") = 0
[pid   720] write(1, "executing program\n", 18executing program
) = 18
[pid   720] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   720] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   720] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   720] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   720] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   720] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   720] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   720] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   720] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   720] memfd_create("syzkaller", 0) = 5
[pid   720] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   720] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   720] munmap(0x7f024f46f000, 138412032) = 0
[pid   720] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   720] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   720] close(5)                    = 0
[pid   720] close(6)                    = 0
[pid   720] mkdir("./file0", 0777)      = 0
[pid   720] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   720] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   720] chdir("./file0")            = 0
[pid   720] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   720] ioctl(6, LOOP_CLR_FD)       = 0
[pid   720] close(6)                    = 0
[pid   720] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   720] write(6, "#! ./file1\n", 11) = 11
[pid   720] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   720] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   720] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=77, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   38.247590][  T720] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.278152][  T721] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-720: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./75/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./75/file0")         = 0
[pid   344] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./75/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./75/binderfs")     = 0
[pid   344] umount2("./75/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./75/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./75/cgroup.net")   = 0
[pid   344] umount2("./75/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./75/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./75/cgroup.cpu")   = 0
[pid   344] umount2("./75/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./75/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./75/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./75")               = 0
[pid   344] mkdir("./76", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 725 attached
 <unfinished ...>
[pid   725] set_robust_list(0x55557f95d660, 24) = 0
[pid   725] chdir("./76" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 78
[pid   725] <... chdir resumed>)        = 0
[pid   725] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   725] setpgid(0, 0)               = 0
[pid   725] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   725] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   725] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   725] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   725] write(3, "1000", 4)         = 4
[pid   725] close(3)                    = 0
[pid   725] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   725] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   725] write(1, "executing program\n", 18) = 18
[pid   725] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   725] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   725] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   725] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   725] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   725] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   725] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   725] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   725] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   725] memfd_create("syzkaller", 0) = 5
[pid   725] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   725] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   725] munmap(0x7f024f46f000, 138412032) = 0
[pid   725] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   725] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   725] close(5)                    = 0
[pid   725] close(6)                    = 0
[pid   725] mkdir("./file0", 0777)      = 0
[pid   725] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   725] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   725] chdir("./file0")            = 0
[pid   725] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   725] ioctl(6, LOOP_CLR_FD)       = 0
[pid   725] close(6)                    = 0
[pid   725] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   725] write(6, "#! ./file1\n", 11) = 11
[pid   725] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   725] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   725] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=78, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   38.447638][  T725] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.478043][  T726] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-725: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./76/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./76/file0")         = 0
[pid   344] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./76/binderfs")     = 0
[pid   344] umount2("./76/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./76/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./76/cgroup.net")   = 0
[pid   344] umount2("./76/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./76/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./76/cgroup.cpu")   = 0
[pid   344] umount2("./76/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./76/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./76/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./76")               = 0
[pid   344] mkdir("./77", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 730 attached
, child_tidptr=0x55557f95d650) = 79
[pid   730] set_robust_list(0x55557f95d660, 24) = 0
[pid   730] chdir("./77")               = 0
[pid   730] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   730] setpgid(0, 0)               = 0
[pid   730] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   730] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   730] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   730] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   730] write(3, "1000", 4)         = 4
[pid   730] close(3)                    = 0
[pid   730] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   730] symlink("/dev/binderfs", "./binderfs") = 0
[pid   730] write(1, "executing program\n", 18executing program
) = 18
[pid   730] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   730] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   730] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   730] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   730] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   730] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   730] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   730] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   730] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   730] memfd_create("syzkaller", 0) = 5
[pid   730] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   730] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   730] munmap(0x7f024f46f000, 138412032) = 0
[pid   730] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   730] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   730] close(5)                    = 0
[pid   730] close(6)                    = 0
[pid   730] mkdir("./file0", 0777)      = 0
[pid   730] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   730] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   730] chdir("./file0")            = 0
[pid   730] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   730] ioctl(6, LOOP_CLR_FD)       = 0
[pid   730] close(6)                    = 0
[pid   730] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   730] write(6, "#! ./file1\n", 11) = 11
[pid   730] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   730] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   730] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=79, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   38.617593][  T730] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.649249][  T731] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-730: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./77/file0")         = 0
[pid   344] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./77/binderfs")     = 0
[pid   344] umount2("./77/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./77/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./77/cgroup.net")   = 0
[pid   344] umount2("./77/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./77/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./77/cgroup.cpu")   = 0
[pid   344] umount2("./77/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./77/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./77/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./77")               = 0
[pid   344] mkdir("./78", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 735 attached
, child_tidptr=0x55557f95d650) = 80
[pid   735] set_robust_list(0x55557f95d660, 24) = 0
[pid   735] chdir("./78")               = 0
[pid   735] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   735] setpgid(0, 0)               = 0
[pid   735] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   735] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   735] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   735] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   735] write(3, "1000", 4)         = 4
[pid   735] close(3)                    = 0
[pid   735] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   735] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   735] write(1, "executing program\n", 18) = 18
[pid   735] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   735] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   735] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   735] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   735] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   735] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   735] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   735] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   735] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   735] memfd_create("syzkaller", 0) = 5
[pid   735] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   735] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   735] munmap(0x7f024f46f000, 138412032) = 0
[pid   735] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   735] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   735] close(5)                    = 0
[pid   735] close(6)                    = 0
[pid   735] mkdir("./file0", 0777)      = 0
[pid   735] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   735] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   735] chdir("./file0")            = 0
[pid   735] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   735] ioctl(6, LOOP_CLR_FD)       = 0
[pid   735] close(6)                    = 0
[pid   735] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   735] write(6, "#! ./file1\n", 11) = 11
[pid   735] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   735] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   735] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=80, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./78/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./78/file0")         = 0
[pid   344] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./78/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./78/binderfs")     = 0
[pid   344] umount2("./78/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./78/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./78/cgroup.net")   = 0
[pid   344] umount2("./78/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./78/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./78/cgroup.cpu")   = 0
[pid   344] umount2("./78/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./78/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./78/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./78")               = 0
[pid   344] mkdir("./79", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
, child_tidptr=0x55557f95d650) = 81
./strace-static-x86_64: Process 740 attached
[pid   740] set_robust_list(0x55557f95d660, 24) = 0
[pid   740] chdir("./79")               = 0
[pid   740] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   740] setpgid(0, 0)               = 0
[pid   740] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   740] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   740] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   740] write(3, "1000", 4)         = 4
[pid   740] close(3)                    = 0
[pid   740] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   740] symlink("/dev/binderfs", "./binderfs") = 0
[pid   740] write(1, "executing program\n", 18) = 18
[pid   740] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   740] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   740] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   740] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   740] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   740] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   740] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   740] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   740] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   740] memfd_create("syzkaller", 0) = 5
[pid   740] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   740] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   740] munmap(0x7f024f46f000, 138412032) = 0
[pid   740] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   740] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   740] close(5)                    = 0
[pid   740] close(6)                    = 0
[pid   740] mkdir("./file0", 0777)      = 0
[   38.807723][  T735] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.834841][  T735] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   740] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   740] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   740] chdir("./file0")            = 0
[pid   740] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   740] ioctl(6, LOOP_CLR_FD)       = 0
[pid   740] close(6)                    = 0
[pid   740] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   740] write(6, "#! ./file1\n", 11) = 11
[pid   740] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   740] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   740] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=81, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   38.917661][  T740] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   38.945990][  T740] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./79/file0")         = 0
[pid   344] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./79/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./79/binderfs")     = 0
[pid   344] umount2("./79/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./79/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./79/cgroup.net")   = 0
[pid   344] umount2("./79/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./79/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./79/cgroup.cpu")   = 0
[pid   344] umount2("./79/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./79/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./79/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./79")               = 0
[pid   344] mkdir("./80", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 745 attached
 <unfinished ...>
[pid   745] set_robust_list(0x55557f95d660, 24) = 0
[pid   745] chdir("./80")               = 0
[pid   745] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 82
[pid   745] <... prctl resumed>)        = 0
[pid   745] setpgid(0, 0)               = 0
[pid   745] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   745] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   745] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   745] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   745] write(3, "1000", 4)         = 4
[pid   745] close(3)                    = 0
[pid   745] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   745] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   745] write(1, "executing program\n", 18) = 18
[pid   745] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   745] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   745] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   745] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   745] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   745] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   745] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   745] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   745] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   745] memfd_create("syzkaller", 0) = 5
[pid   745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   745] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   745] munmap(0x7f024f46f000, 138412032) = 0
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   745] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   745] close(5)                    = 0
[pid   745] close(6)                    = 0
[pid   745] mkdir("./file0", 0777)      = 0
[pid   745] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   745] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   745] chdir("./file0")            = 0
[pid   745] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   745] ioctl(6, LOOP_CLR_FD)       = 0
[pid   745] close(6)                    = 0
[pid   745] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   745] write(6, "#! ./file1\n", 11) = 11
[pid   745] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   745] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   745] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=82, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./80/file0")         = 0
[pid   344] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./80/binderfs")     = 0
[pid   344] umount2("./80/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./80/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./80/cgroup.net")   = 0
[pid   344] umount2("./80/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./80/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./80/cgroup.cpu")   = 0
[pid   344] umount2("./80/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./80/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./80/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./80")               = 0
[pid   344] mkdir("./81", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 750 attached
 <unfinished ...>
[pid   750] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 83
[pid   750] <... set_robust_list resumed>) = 0
[pid   750] chdir("./81")               = 0
[pid   750] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   750] setpgid(0, 0)               = 0
[pid   750] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   750] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   750] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   750] write(3, "1000", 4)         = 4
[pid   750] close(3)                    = 0
[pid   750] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   750] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   750] write(1, "executing program\n", 18) = 18
[pid   750] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   750] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   750] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   750] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   750] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   750] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   750] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   750] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   750] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   750] memfd_create("syzkaller", 0) = 5
[pid   750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[   39.127728][  T745] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   39.157609][  T746] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-745: bg 0: block 234: padding at end of block bitmap is not set
[pid   750] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   750] munmap(0x7f024f46f000, 138412032) = 0
[pid   750] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   750] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   750] close(5)                    = 0
[pid   750] close(6)                    = 0
[pid   750] mkdir("./file0", 0777)      = 0
[pid   750] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   750] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   750] chdir("./file0")            = 0
[pid   750] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   750] ioctl(6, LOOP_CLR_FD)       = 0
[pid   750] close(6)                    = 0
[pid   750] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   750] write(6, "#! ./file1\n", 11) = 11
[pid   750] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   750] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   750] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=83, si_uid=0, si_status=SIGBUS, si_utime=1, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   39.257628][  T750] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./81/file0")         = 0
[pid   344] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./81/binderfs")     = 0
[pid   344] umount2("./81/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./81/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./81/cgroup.net")   = 0
[pid   344] umount2("./81/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./81/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./81/cgroup.cpu")   = 0
[pid   344] umount2("./81/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./81/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   39.297220][  T751] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-750: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] unlink("./81/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./81")               = 0
[pid   344] mkdir("./82", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 755 attached
 <unfinished ...>
[pid   755] set_robust_list(0x55557f95d660, 24) = 0
[pid   755] chdir("./82")               = 0
[pid   755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   755] setpgid(0, 0)               = 0
[pid   755] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 84
[pid   755] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   755] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   755] write(3, "1000", 4)         = 4
[pid   755] close(3)                    = 0
[pid   755] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   755] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   755] write(1, "executing program\n", 18) = 18
[pid   755] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   755] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   755] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   755] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   755] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   755] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   755] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   755] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   755] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   755] memfd_create("syzkaller", 0) = 5
[pid   755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   755] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   755] munmap(0x7f024f46f000, 138412032) = 0
[pid   755] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   755] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   755] close(5)                    = 0
[pid   755] close(6)                    = 0
[pid   755] mkdir("./file0", 0777)      = 0
[pid   755] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   755] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   755] chdir("./file0")            = 0
[pid   755] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   755] ioctl(6, LOOP_CLR_FD)       = 0
[pid   755] close(6)                    = 0
[pid   755] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   755] write(6, "#! ./file1\n", 11) = 11
[pid   755] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   755] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   755] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=84, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   39.537633][  T755] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./82/file0")         = 0
[pid   344] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./82/binderfs")     = 0
[pid   344] umount2("./82/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./82/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./82/cgroup.net")   = 0
[pid   344] umount2("./82/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./82/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./82/cgroup.cpu")   = 0
[pid   344] umount2("./82/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./82/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./82/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./82")               = 0
[pid   344] mkdir("./83", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FDexecuting program
)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 85
./strace-static-x86_64: Process 760 attached
[pid   760] set_robust_list(0x55557f95d660, 24) = 0
[pid   760] chdir("./83")               = 0
[pid   760] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   760] setpgid(0, 0)               = 0
[pid   760] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   760] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   760] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   760] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   760] write(3, "1000", 4)         = 4
[pid   760] close(3)                    = 0
[pid   760] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   760] symlink("/dev/binderfs", "./binderfs") = 0
[pid   760] write(1, "executing program\n", 18) = 18
[pid   760] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   760] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   760] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   760] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   760] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   760] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   760] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   760] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   760] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   760] memfd_create("syzkaller", 0) = 5
[pid   760] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   760] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   760] munmap(0x7f024f46f000, 138412032) = 0
[pid   760] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   760] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   760] close(5)                    = 0
[   39.579125][  T756] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-755: bg 0: block 234: padding at end of block bitmap is not set
[pid   760] close(6)                    = 0
[pid   760] mkdir("./file0", 0777)      = 0
[pid   760] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   760] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   760] chdir("./file0")            = 0
[pid   760] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   760] ioctl(6, LOOP_CLR_FD)       = 0
[pid   760] close(6)                    = 0
[pid   760] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   760] write(6, "#! ./file1\n", 11) = 11
[pid   760] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   760] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   760] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=85, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   39.737851][  T760] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   39.777662][  T760] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./83/file0")         = 0
[pid   344] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./83/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./83/binderfs")     = 0
[pid   344] umount2("./83/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./83/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./83/cgroup.net")   = 0
[pid   344] umount2("./83/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./83/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./83/cgroup.cpu")   = 0
[pid   344] umount2("./83/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./83/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./83/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./83")               = 0
[pid   344] mkdir("./84", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FDexecuting program
)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 86
./strace-static-x86_64: Process 766 attached
[pid   766] set_robust_list(0x55557f95d660, 24) = 0
[pid   766] chdir("./84")               = 0
[pid   766] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   766] setpgid(0, 0)               = 0
[pid   766] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   766] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   766] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   766] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   766] write(3, "1000", 4)         = 4
[pid   766] close(3)                    = 0
[pid   766] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   766] symlink("/dev/binderfs", "./binderfs") = 0
[pid   766] write(1, "executing program\n", 18) = 18
[pid   766] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   766] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   766] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   766] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   766] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   766] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   766] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   766] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   766] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   766] memfd_create("syzkaller", 0) = 5
[pid   766] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   766] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   766] munmap(0x7f024f46f000, 138412032) = 0
[pid   766] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   766] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   766] close(5)                    = 0
[pid   766] close(6)                    = 0
[pid   766] mkdir("./file0", 0777)      = 0
[pid   766] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   766] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   766] chdir("./file0")            = 0
[pid   766] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   766] ioctl(6, LOOP_CLR_FD)       = 0
[pid   766] close(6)                    = 0
[pid   766] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   766] write(6, "#! ./file1\n", 11) = 11
[pid   766] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   766] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   766] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=86, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   39.997156][  T766] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   40.027957][  T767] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-766: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./84/file0")         = 0
[pid   344] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./84/binderfs")     = 0
[pid   344] umount2("./84/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./84/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./84/cgroup.net")   = 0
[pid   344] umount2("./84/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./84/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./84/cgroup.cpu")   = 0
[pid   344] umount2("./84/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./84/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./84/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./84")               = 0
[pid   344] mkdir("./85", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
./strace-static-x86_64: Process 771 attached
 <unfinished ...>
[pid   771] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 87
[pid   771] <... set_robust_list resumed>) = 0
[pid   771] chdir("./85")               = 0
[pid   771] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   771] setpgid(0, 0)               = 0
[pid   771] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   771] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   771] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   771] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   771] write(3, "1000", 4)         = 4
[pid   771] close(3)                    = 0
[pid   771] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   771] symlink("/dev/binderfs", "./binderfs") = 0
[pid   771] write(1, "executing program\n", 18) = 18
[pid   771] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   771] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   771] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   771] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   771] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   771] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   771] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   771] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   771] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   771] memfd_create("syzkaller", 0) = 5
[pid   771] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   771] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   771] munmap(0x7f024f46f000, 138412032) = 0
[pid   771] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   771] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   771] close(5)                    = 0
[pid   771] close(6)                    = 0
[pid   771] mkdir("./file0", 0777)      = 0
[pid   771] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   771] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   771] chdir("./file0")            = 0
[pid   771] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   771] ioctl(6, LOOP_CLR_FD)       = 0
[pid   771] close(6)                    = 0
[pid   771] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   771] write(6, "#! ./file1\n", 11) = 11
[pid   771] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   771] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   771] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=87, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   40.197677][  T771] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   40.229261][  T772] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-771: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./85/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./85/file0")         = 0
[pid   344] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./85/binderfs")     = 0
[pid   344] umount2("./85/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./85/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./85/cgroup.net")   = 0
[pid   344] umount2("./85/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./85/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./85/cgroup.cpu")   = 0
[pid   344] umount2("./85/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./85/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./85/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./85")               = 0
[pid   344] mkdir("./86", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 776 attached
, child_tidptr=0x55557f95d650) = 88
[pid   776] set_robust_list(0x55557f95d660, 24) = 0
[pid   776] chdir("./86")               = 0
[pid   776] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   776] setpgid(0, 0)               = 0
[pid   776] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   776] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   776] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   776] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   776] write(3, "1000", 4)         = 4
[pid   776] close(3)                    = 0
[pid   776] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   776] symlink("/dev/binderfs", "./binderfs") = 0
[pid   776] write(1, "executing program\n", 18executing program
) = 18
[pid   776] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   776] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   776] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   776] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   776] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   776] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   776] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   776] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   776] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   776] memfd_create("syzkaller", 0) = 5
[pid   776] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   776] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   776] munmap(0x7f024f46f000, 138412032) = 0
[pid   776] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   776] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   776] close(5)                    = 0
[pid   776] close(6)                    = 0
[pid   776] mkdir("./file0", 0777)      = 0
[pid   776] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   776] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   776] chdir("./file0")            = 0
[pid   776] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   776] ioctl(6, LOOP_CLR_FD)       = 0
[pid   776] close(6)                    = 0
[pid   776] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   776] write(6, "#! ./file1\n", 11) = 11
[pid   776] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   776] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   776] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=88, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   40.407598][  T776] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   40.438397][  T777] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-776: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./86/file0")         = 0
[pid   344] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./86/binderfs")     = 0
[pid   344] umount2("./86/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./86/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./86/cgroup.net")   = 0
[pid   344] umount2("./86/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./86/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./86/cgroup.cpu")   = 0
[pid   344] umount2("./86/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./86/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./86/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./86")               = 0
[pid   344] mkdir("./87", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 781 attached
, child_tidptr=0x55557f95d650) = 89
[pid   781] set_robust_list(0x55557f95d660, 24) = 0
[pid   781] chdir("./87")               = 0
[pid   781] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   781] setpgid(0, 0)               = 0
[pid   781] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   781] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   781] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   781] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   781] write(3, "1000", 4)         = 4
[pid   781] close(3)                    = 0
[pid   781] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   781] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   781] write(1, "executing program\n", 18) = 18
[pid   781] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   781] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   781] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   781] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   781] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   781] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   781] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   781] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   781] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   781] memfd_create("syzkaller", 0) = 5
[pid   781] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   781] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   781] munmap(0x7f024f46f000, 138412032) = 0
[pid   781] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   781] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   781] close(5)                    = 0
[pid   781] close(6)                    = 0
[pid   781] mkdir("./file0", 0777)      = 0
[pid   781] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   781] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   781] chdir("./file0")            = 0
[pid   781] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   781] ioctl(6, LOOP_CLR_FD)       = 0
[pid   781] close(6)                    = 0
[pid   781] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   781] write(6, "#! ./file1\n", 11) = 11
[pid   781] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   781] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   781] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=89, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   40.577644][  T781] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   40.608204][  T782] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-781: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./87/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./87/file0")         = 0
[pid   344] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./87/binderfs")     = 0
[pid   344] umount2("./87/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./87/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./87/cgroup.net")   = 0
[pid   344] umount2("./87/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./87/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./87/cgroup.cpu")   = 0
[pid   344] umount2("./87/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./87/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./87/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./87")               = 0
[pid   344] mkdir("./88", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 90
./strace-static-x86_64: Process 786 attached
[pid   786] set_robust_list(0x55557f95d660, 24) = 0
[pid   786] chdir("./88")               = 0
[pid   786] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   786] setpgid(0, 0)               = 0
[pid   786] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   786] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   786] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   786] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   786] write(3, "1000", 4)         = 4
[pid   786] close(3)                    = 0
[pid   786] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   786] symlink("/dev/binderfs", "./binderfs") = 0
[pid   786] write(1, "executing program\n", 18executing program
) = 18
[pid   786] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   786] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   786] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   786] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   786] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   786] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   786] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   786] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   786] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   786] memfd_create("syzkaller", 0) = 5
[pid   786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   786] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   786] munmap(0x7f024f46f000, 138412032) = 0
[pid   786] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   786] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   786] close(5)                    = 0
[pid   786] close(6)                    = 0
[pid   786] mkdir("./file0", 0777)      = 0
[pid   786] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   786] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   786] chdir("./file0")            = 0
[pid   786] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   786] ioctl(6, LOOP_CLR_FD)       = 0
[pid   786] close(6)                    = 0
[pid   786] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   786] write(6, "#! ./file1\n", 11) = 11
[pid   786] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   786] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   786] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=90, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./88/file0")         = 0
[pid   344] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./88/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./88/binderfs")     = 0
[pid   344] umount2("./88/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./88/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./88/cgroup.net")   = 0
[pid   344] umount2("./88/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./88/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./88/cgroup.cpu")   = 0
[pid   344] umount2("./88/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./88/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./88/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./88")               = 0
[pid   344] mkdir("./89", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 91
./strace-static-x86_64: Process 791 attached
[pid   791] set_robust_list(0x55557f95d660, 24) = 0
[pid   791] chdir("./89")               = 0
[pid   791] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   791] setpgid(0, 0)               = 0
[pid   791] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   791] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   791] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   791] write(3, "1000", 4)         = 4
[pid   791] close(3)                    = 0
[pid   791] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   791] symlink("/dev/binderfs", "./binderfs") = 0
[pid   791] write(1, "executing program\n", 18executing program
) = 18
[pid   791] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   791] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   791] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   791] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   791] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   791] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   791] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   791] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   791] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   791] memfd_create("syzkaller", 0) = 5
[pid   791] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[   40.807230][  T786] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   40.832853][  T786] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   791] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   791] munmap(0x7f024f46f000, 138412032) = 0
[pid   791] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   791] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   791] close(5)                    = 0
[pid   791] close(6)                    = 0
[pid   791] mkdir("./file0", 0777)      = 0
[pid   791] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   791] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   791] chdir("./file0")            = 0
[pid   791] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   791] ioctl(6, LOOP_CLR_FD)       = 0
[pid   791] close(6)                    = 0
[pid   791] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   791] write(6, "#! ./file1\n", 11) = 11
[pid   791] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   791] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   791] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=91, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   40.997732][  T791] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.041479][  T792] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-791: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./89/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./89/file0")         = 0
[pid   344] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./89/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./89/binderfs")     = 0
[pid   344] umount2("./89/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./89/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./89/cgroup.net")   = 0
[pid   344] umount2("./89/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./89/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./89/cgroup.cpu")   = 0
[pid   344] umount2("./89/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./89/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./89/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./89")               = 0
[pid   344] mkdir("./90", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 796 attached
 <unfinished ...>
[pid   796] set_robust_list(0x55557f95d660, 24) = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 92
[pid   796] chdir("./90")               = 0
[pid   796] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   796] setpgid(0, 0)               = 0
[pid   796] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   796] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   796] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   796] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   796] write(3, "1000", 4)         = 4
[pid   796] close(3)                    = 0
[pid   796] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   796] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   796] write(1, "executing program\n", 18) = 18
[pid   796] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   796] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   796] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   796] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   796] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   796] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   796] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   796] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   796] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   796] memfd_create("syzkaller", 0) = 5
[pid   796] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   796] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   796] munmap(0x7f024f46f000, 138412032) = 0
[pid   796] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   796] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   796] close(5)                    = 0
[pid   796] close(6)                    = 0
[pid   796] mkdir("./file0", 0777)      = 0
[pid   796] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   796] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   796] chdir("./file0")            = 0
[pid   796] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   796] ioctl(6, LOOP_CLR_FD)       = 0
[pid   796] close(6)                    = 0
[pid   796] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   796] write(6, "#! ./file1\n", 11) = 11
[pid   796] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   796] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   796] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=92, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   41.207742][  T796] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.237893][  T797] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-796: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./90/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./90/file0")         = 0
[pid   344] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./90/binderfs")     = 0
[pid   344] umount2("./90/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./90/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./90/cgroup.net")   = 0
[pid   344] umount2("./90/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./90/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./90/cgroup.cpu")   = 0
[pid   344] umount2("./90/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./90/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./90/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./90")               = 0
[pid   344] mkdir("./91", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 801 attached
 <unfinished ...>
[pid   801] set_robust_list(0x55557f95d660, 24) = 0
[pid   801] chdir("./91" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 93
[pid   801] <... chdir resumed>)        = 0
[pid   801] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   801] setpgid(0, 0)               = 0
[pid   801] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   801] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   801] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   801] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   801] write(3, "1000", 4)         = 4
[pid   801] close(3)                    = 0
[pid   801] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   801] symlink("/dev/binderfs", "./binderfs") = 0
[pid   801] write(1, "executing program\n", 18executing program
) = 18
[pid   801] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   801] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   801] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   801] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   801] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   801] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   801] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   801] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   801] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   801] memfd_create("syzkaller", 0) = 5
[pid   801] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   801] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   801] munmap(0x7f024f46f000, 138412032) = 0
[pid   801] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   801] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   801] close(5)                    = 0
[pid   801] close(6)                    = 0
[pid   801] mkdir("./file0", 0777)      = 0
[pid   801] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   801] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   801] chdir("./file0")            = 0
[pid   801] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   801] ioctl(6, LOOP_CLR_FD)       = 0
[pid   801] close(6)                    = 0
[pid   801] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   801] write(6, "#! ./file1\n", 11) = 11
[pid   801] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   801] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   801] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=93, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=4} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   41.407412][  T801] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.438008][  T802] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-801: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./91/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./91/file0")         = 0
[pid   344] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./91/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./91/binderfs")     = 0
[pid   344] umount2("./91/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./91/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./91/cgroup.net")   = 0
[pid   344] umount2("./91/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./91/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./91/cgroup.cpu")   = 0
[pid   344] umount2("./91/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./91/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./91/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./91")               = 0
[pid   344] mkdir("./92", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 806 attached
 <unfinished ...>
[pid   806] set_robust_list(0x55557f95d660, 24) = 0
[pid   806] chdir("./92" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 94
[pid   806] <... chdir resumed>)        = 0
[pid   806] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   806] setpgid(0, 0)               = 0
[pid   806] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   806] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   806] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   806] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   806] write(3, "1000", 4)         = 4
[pid   806] close(3)                    = 0
[pid   806] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   806] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   806] write(1, "executing program\n", 18) = 18
[pid   806] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   806] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   806] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   806] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   806] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   806] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   806] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   806] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   806] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   806] memfd_create("syzkaller", 0) = 5
[pid   806] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   806] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   806] munmap(0x7f024f46f000, 138412032) = 0
[pid   806] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   806] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   806] close(5)                    = 0
[pid   806] close(6)                    = 0
[pid   806] mkdir("./file0", 0777)      = 0
[pid   806] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   806] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   806] chdir("./file0")            = 0
[pid   806] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   806] ioctl(6, LOOP_CLR_FD)       = 0
[pid   806] close(6)                    = 0
[pid   806] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   806] write(6, "#! ./file1\n", 11) = 11
[pid   806] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   806] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   806] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=94, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   41.567619][  T806] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.598072][  T807] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-806: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./92/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./92/file0")         = 0
[pid   344] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./92/binderfs")     = 0
[pid   344] umount2("./92/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./92/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./92/cgroup.net")   = 0
[pid   344] umount2("./92/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./92/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./92/cgroup.cpu")   = 0
[pid   344] umount2("./92/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./92/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./92/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./92")               = 0
[pid   344] mkdir("./93", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 811 attached
 <unfinished ...>
[pid   811] set_robust_list(0x55557f95d660, 24) = 0
[pid   811] chdir("./93" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 95
[pid   811] <... chdir resumed>)        = 0
[pid   811] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   811] setpgid(0, 0)               = 0
[pid   811] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   811] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   811] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   811] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   811] write(3, "1000", 4)         = 4
[pid   811] close(3)                    = 0
[pid   811] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   811] symlink("/dev/binderfs", "./binderfs") = 0
[pid   811] write(1, "executing program\n", 18executing program
) = 18
[pid   811] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   811] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   811] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   811] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   811] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   811] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   811] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   811] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   811] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   811] memfd_create("syzkaller", 0) = 5
[pid   811] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   811] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   811] munmap(0x7f024f46f000, 138412032) = 0
[pid   811] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   811] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   811] close(5)                    = 0
[pid   811] close(6)                    = 0
[pid   811] mkdir("./file0", 0777)      = 0
[pid   811] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   811] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   811] chdir("./file0")            = 0
[pid   811] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   811] ioctl(6, LOOP_CLR_FD)       = 0
[pid   811] close(6)                    = 0
[pid   811] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   811] write(6, "#! ./file1\n", 11) = 11
[pid   811] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   811] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   811] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=95, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   41.770952][  T811] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.801021][  T812] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-811: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./93/file0")         = 0
[pid   344] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./93/binderfs")     = 0
[pid   344] umount2("./93/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./93/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./93/cgroup.net")   = 0
[pid   344] umount2("./93/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./93/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./93/cgroup.cpu")   = 0
[pid   344] umount2("./93/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./93/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./93/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./93")               = 0
[pid   344] mkdir("./94", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 816 attached
 <unfinished ...>
[pid   816] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 96
[pid   816] <... set_robust_list resumed>) = 0
[pid   816] chdir("./94")               = 0
[pid   816] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   816] setpgid(0, 0)               = 0
[pid   816] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   816] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   816] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   816] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   816] write(3, "1000", 4)         = 4
[pid   816] close(3)                    = 0
[pid   816] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   816] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   816] write(1, "executing program\n", 18) = 18
[pid   816] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   816] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   816] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   816] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   816] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   816] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   816] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   816] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   816] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   816] memfd_create("syzkaller", 0) = 5
[pid   816] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   816] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   816] munmap(0x7f024f46f000, 138412032) = 0
[pid   816] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   816] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   816] close(5)                    = 0
[pid   816] close(6)                    = 0
[pid   816] mkdir("./file0", 0777)      = 0
[pid   816] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   816] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   816] chdir("./file0")            = 0
[pid   816] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   816] ioctl(6, LOOP_CLR_FD)       = 0
[pid   816] close(6)                    = 0
[pid   816] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   816] write(6, "#! ./file1\n", 11) = 11
[pid   816] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   816] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   816] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=96, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   41.957672][  T816] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   41.988294][  T817] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-816: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./94/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./94/file0")         = 0
[pid   344] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./94/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./94/binderfs")     = 0
[pid   344] umount2("./94/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./94/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./94/cgroup.net")   = 0
[pid   344] umount2("./94/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./94/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./94/cgroup.cpu")   = 0
[pid   344] umount2("./94/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./94/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./94/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./94")               = 0
[pid   344] mkdir("./95", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 821 attached
 <unfinished ...>
[pid   821] set_robust_list(0x55557f95d660, 24) = 0
[pid   821] chdir("./95" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 97
[pid   821] <... chdir resumed>)        = 0
[pid   821] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   821] setpgid(0, 0)               = 0
[pid   821] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   821] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   821] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   821] write(3, "1000", 4)         = 4
[pid   821] close(3)                    = 0
[pid   821] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   821] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   821] write(1, "executing program\n", 18) = 18
[pid   821] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   821] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   821] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   821] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   821] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   821] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   821] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   821] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   821] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   821] memfd_create("syzkaller", 0) = 5
[pid   821] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   821] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   821] munmap(0x7f024f46f000, 138412032) = 0
[pid   821] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   821] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   821] close(5)                    = 0
[pid   821] close(6)                    = 0
[pid   821] mkdir("./file0", 0777)      = 0
[pid   821] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   821] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   821] chdir("./file0")            = 0
[pid   821] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   821] ioctl(6, LOOP_CLR_FD)       = 0
[pid   821] close(6)                    = 0
[pid   821] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   821] write(6, "#! ./file1\n", 11) = 11
[pid   821] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   821] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   821] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=97, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   42.127635][  T821] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   42.158117][  T822] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-821: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./95/file0")         = 0
[pid   344] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./95/binderfs")     = 0
[pid   344] umount2("./95/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./95/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./95/cgroup.net")   = 0
[pid   344] umount2("./95/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./95/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./95/cgroup.cpu")   = 0
[pid   344] umount2("./95/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./95/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./95/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./95")               = 0
[pid   344] mkdir("./96", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 826 attached
, child_tidptr=0x55557f95d650) = 98
[pid   826] set_robust_list(0x55557f95d660, 24) = 0
[pid   826] chdir("./96")               = 0
[pid   826] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   826] setpgid(0, 0)               = 0
[pid   826] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   826] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   826] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   826] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   826] write(3, "1000", 4)         = 4
[pid   826] close(3)                    = 0
[pid   826] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   826] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   826] write(1, "executing program\n", 18) = 18
[pid   826] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   826] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   826] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   826] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   826] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   826] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   826] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   826] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   826] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   826] memfd_create("syzkaller", 0) = 5
[pid   826] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   826] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   826] munmap(0x7f024f46f000, 138412032) = 0
[pid   826] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   826] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   826] close(5)                    = 0
[pid   826] close(6)                    = 0
[pid   826] mkdir("./file0", 0777)      = 0
[pid   826] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   826] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   826] chdir("./file0")            = 0
[pid   826] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   826] ioctl(6, LOOP_CLR_FD)       = 0
[pid   826] close(6)                    = 0
[pid   826] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   826] write(6, "#! ./file1\n", 11) = 11
[pid   826] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   826] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   826] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=98, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   42.407516][  T826] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   42.434921][  T826] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./96/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./96/file0")         = 0
[pid   344] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./96/binderfs")     = 0
[pid   344] umount2("./96/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./96/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./96/cgroup.net")   = 0
[pid   344] umount2("./96/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./96/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./96/cgroup.cpu")   = 0
[pid   344] umount2("./96/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./96/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./96/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./96")               = 0
[pid   344] mkdir("./97", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 831 attached
 <unfinished ...>
[pid   831] set_robust_list(0x55557f95d660, 24) = 0
[pid   831] chdir("./97")               = 0
[pid   831] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 99
[pid   831] <... prctl resumed>)        = 0
[pid   831] setpgid(0, 0)               = 0
[pid   831] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   831] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   831] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   831] write(3, "1000", 4)         = 4
[pid   831] close(3)                    = 0
[pid   831] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   831] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   831] write(1, "executing program\n", 18) = 18
[pid   831] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   831] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   831] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   831] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   831] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   831] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   831] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   831] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   831] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   831] memfd_create("syzkaller", 0) = 5
[pid   831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   831] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   831] munmap(0x7f024f46f000, 138412032) = 0
[pid   831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   831] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   831] close(5)                    = 0
[pid   831] close(6)                    = 0
[pid   831] mkdir("./file0", 0777)      = 0
[pid   831] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   831] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   831] chdir("./file0")            = 0
[pid   831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   831] ioctl(6, LOOP_CLR_FD)       = 0
[pid   831] close(6)                    = 0
[pid   831] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   831] write(6, "#! ./file1\n", 11) = 11
[pid   831] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   831] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   831] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=99, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./97", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   42.607680][  T831] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   42.638223][  T832] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-831: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./97/file0")         = 0
[pid   344] umount2("./97/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./97/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./97/binderfs")     = 0
[pid   344] umount2("./97/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./97/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./97/cgroup.net")   = 0
[pid   344] umount2("./97/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./97/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./97/cgroup.cpu")   = 0
[pid   344] umount2("./97/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./97/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./97/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./97")               = 0
[pid   344] mkdir("./98", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 836 attached
 <unfinished ...>
[pid   836] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 100
[pid   836] <... set_robust_list resumed>) = 0
[pid   836] chdir("./98")               = 0
[pid   836] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   836] setpgid(0, 0)               = 0
[pid   836] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   836] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   836] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   836] write(3, "1000", 4)         = 4
[pid   836] close(3)                    = 0
[pid   836] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   836] symlink("/dev/binderfs", "./binderfs") = 0
[pid   836] write(1, "executing program\n", 18executing program
) = 18
[pid   836] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   836] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   836] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   836] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   836] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   836] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   836] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   836] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   836] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   836] memfd_create("syzkaller", 0) = 5
[pid   836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   836] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   836] munmap(0x7f024f46f000, 138412032) = 0
[pid   836] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   836] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   836] close(5)                    = 0
[pid   836] close(6)                    = 0
[pid   836] mkdir("./file0", 0777)      = 0
[pid   836] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   836] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   836] chdir("./file0")            = 0
[pid   836] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   836] ioctl(6, LOOP_CLR_FD)       = 0
[pid   836] close(6)                    = 0
[pid   836] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   836] write(6, "#! ./file1\n", 11) = 11
[pid   836] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   836] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   836] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=100, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./98", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./98", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   42.767665][  T836] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   42.798424][  T837] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-836: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./98/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./98/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./98/file0")         = 0
[pid   344] umount2("./98/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./98/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./98/binderfs")     = 0
[pid   344] umount2("./98/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./98/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./98/cgroup.net")   = 0
[pid   344] umount2("./98/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./98/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./98/cgroup.cpu")   = 0
[pid   344] umount2("./98/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./98/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./98/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./98")               = 0
[pid   344] mkdir("./99", 0777)         = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 841 attached
 <unfinished ...>
[pid   841] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 101
[pid   841] <... set_robust_list resumed>) = 0
[pid   841] chdir("./99")               = 0
[pid   841] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   841] setpgid(0, 0)               = 0
[pid   841] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   841] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   841] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   841] write(3, "1000", 4)         = 4
[pid   841] close(3)                    = 0
[pid   841] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   841] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   841] write(1, "executing program\n", 18) = 18
[pid   841] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   841] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   841] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   841] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   841] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   841] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   841] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   841] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   841] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   841] memfd_create("syzkaller", 0) = 5
[pid   841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   841] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   841] munmap(0x7f024f46f000, 138412032) = 0
[pid   841] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   841] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   841] close(5)                    = 0
[pid   841] close(6)                    = 0
[pid   841] mkdir("./file0", 0777)      = 0
[pid   841] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   841] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   841] chdir("./file0")            = 0
[pid   841] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   841] ioctl(6, LOOP_CLR_FD)       = 0
[pid   841] close(6)                    = 0
[pid   841] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   841] write(6, "#! ./file1\n", 11) = 11
[pid   841] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   841] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   841] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=101, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./99", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./99", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   42.927570][  T841] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   42.955608][  T841] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./99/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./99/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./99/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./99/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./99/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./99/file0")         = 0
[pid   344] umount2("./99/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./99/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./99/binderfs")     = 0
[pid   344] umount2("./99/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./99/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./99/cgroup.net")   = 0
[pid   344] umount2("./99/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./99/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./99/cgroup.cpu")   = 0
[pid   344] umount2("./99/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./99/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./99/cgroup")       = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./99")               = 0
[pid   344] mkdir("./100", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 846 attached
 <unfinished ...>
[pid   846] set_robust_list(0x55557f95d660, 24) = 0
[pid   846] chdir("./100")              = 0
[pid   846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   846] setpgid(0, 0)               = 0
[pid   846] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 102
[pid   846] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   846] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   846] write(3, "1000", 4)         = 4
[pid   846] close(3)                    = 0
[pid   846] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   846] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   846] write(1, "executing program\n", 18) = 18
[pid   846] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   846] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   846] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   846] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   846] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   846] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   846] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   846] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   846] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   846] memfd_create("syzkaller", 0) = 5
[pid   846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   846] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   846] munmap(0x7f024f46f000, 138412032) = 0
[pid   846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   846] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   846] close(5)                    = 0
[pid   846] close(6)                    = 0
[pid   846] mkdir("./file0", 0777)      = 0
[pid   846] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   846] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   846] chdir("./file0")            = 0
[pid   846] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   846] ioctl(6, LOOP_CLR_FD)       = 0
[pid   846] close(6)                    = 0
[pid   846] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   846] write(6, "#! ./file1\n", 11) = 11
[pid   846] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   846] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   846] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=102, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./100", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./100", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./100/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./100/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./100/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./100/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./100/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./100/file0")        = 0
[pid   344] umount2("./100/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./100/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./100/binderfs")    = 0
[pid   344] umount2("./100/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./100/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./100/cgroup.net")  = 0
[pid   344] umount2("./100/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./100/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./100/cgroup.cpu")  = 0
[pid   344] umount2("./100/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./100/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./100/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./100")              = 0
[pid   344] mkdir("./101", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 851 attached
 <unfinished ...>
[pid   851] set_robust_list(0x55557f95d660, 24) = 0
[pid   851] chdir("./101" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 103
[pid   851] <... chdir resumed>)        = 0
[pid   851] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   851] setpgid(0, 0)               = 0
[pid   851] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   851] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   851] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   851] write(3, "1000", 4)         = 4
[pid   851] close(3)                    = 0
[pid   851] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   851] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   851] write(1, "executing program\n", 18) = 18
[pid   851] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   851] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   851] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   851] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   851] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   851] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   851] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   851] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   851] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   851] memfd_create("syzkaller", 0) = 5
[   43.134326][  T846] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   43.164401][  T847] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-846: bg 0: block 234: padding at end of block bitmap is not set
[pid   851] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   851] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   851] munmap(0x7f024f46f000, 138412032) = 0
[pid   851] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   851] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   851] close(5)                    = 0
[pid   851] close(6)                    = 0
[pid   851] mkdir("./file0", 0777)      = 0
[pid   851] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   851] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   851] chdir("./file0")            = 0
[pid   851] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   851] ioctl(6, LOOP_CLR_FD)       = 0
[pid   851] close(6)                    = 0
[pid   851] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   851] write(6, "#! ./file1\n", 11) = 11
[pid   851] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   851] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   851] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=103, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./101", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./101", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   43.267666][  T851] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   43.298380][  T852] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-851: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./101/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./101/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./101/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./101/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./101/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./101/file0")        = 0
[pid   344] umount2("./101/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./101/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./101/binderfs")    = 0
[pid   344] umount2("./101/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./101/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./101/cgroup.net")  = 0
[pid   344] umount2("./101/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./101/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./101/cgroup.cpu")  = 0
[pid   344] umount2("./101/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./101/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./101/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./101")              = 0
[pid   344] mkdir("./102", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 856 attached
 <unfinished ...>
[pid   856] set_robust_list(0x55557f95d660, 24) = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 104
[pid   856] chdir("./102")              = 0
[pid   856] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   856] setpgid(0, 0)               = 0
[pid   856] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   856] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   856] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   856] write(3, "1000", 4)         = 4
[pid   856] close(3)                    = 0
[pid   856] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   856] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   856] write(1, "executing program\n", 18) = 18
[pid   856] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   856] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   856] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   856] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   856] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   856] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   856] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   856] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   856] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   856] memfd_create("syzkaller", 0) = 5
[pid   856] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   856] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   856] munmap(0x7f024f46f000, 138412032) = 0
[pid   856] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   856] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   856] close(5)                    = 0
[pid   856] close(6)                    = 0
[pid   856] mkdir("./file0", 0777)      = 0
[pid   856] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   856] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   856] chdir("./file0")            = 0
[pid   856] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   856] ioctl(6, LOOP_CLR_FD)       = 0
[pid   856] close(6)                    = 0
[pid   856] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   856] write(6, "#! ./file1\n", 11) = 11
[pid   856] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   856] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   856] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=104, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./102", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./102", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   43.597748][  T856] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   43.639351][  T857] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-856: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./102/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./102/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./102/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./102/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./102/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./102/file0")        = 0
[pid   344] umount2("./102/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./102/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./102/binderfs")    = 0
[pid   344] umount2("./102/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./102/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./102/cgroup.net")  = 0
[pid   344] umount2("./102/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./102/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./102/cgroup.cpu")  = 0
[pid   344] umount2("./102/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./102/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./102/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./102")              = 0
[pid   344] mkdir("./103", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 861 attached
 <unfinished ...>
[pid   861] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 105
[pid   861] <... set_robust_list resumed>) = 0
[pid   861] chdir("./103")              = 0
[pid   861] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   861] setpgid(0, 0)               = 0
[pid   861] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   861] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   861] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   861] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   861] write(3, "1000", 4)         = 4
[pid   861] close(3)                    = 0
[pid   861] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   861] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   861] write(1, "executing program\n", 18) = 18
[pid   861] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   861] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   861] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   861] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   861] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   861] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   861] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   861] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   861] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   861] memfd_create("syzkaller", 0) = 5
[pid   861] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   861] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   861] munmap(0x7f024f46f000, 138412032) = 0
[pid   861] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   861] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   861] close(5)                    = 0
[pid   861] close(6)                    = 0
[pid   861] mkdir("./file0", 0777)      = 0
[pid   861] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   861] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   861] chdir("./file0")            = 0
[pid   861] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   861] ioctl(6, LOOP_CLR_FD)       = 0
[pid   861] close(6)                    = 0
[pid   861] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   861] write(6, "#! ./file1\n", 11) = 11
[pid   861] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   861] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   861] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=105, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./103", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./103", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   43.807627][  T861] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   43.837622][  T862] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-861: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./103/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./103/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./103/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./103/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./103/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./103/file0")        = 0
[pid   344] umount2("./103/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./103/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./103/binderfs")    = 0
[pid   344] umount2("./103/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./103/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./103/cgroup.net")  = 0
[pid   344] umount2("./103/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./103/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./103/cgroup.cpu")  = 0
[pid   344] umount2("./103/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./103/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./103/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./103")              = 0
[pid   344] mkdir("./104", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 866 attached
, child_tidptr=0x55557f95d650) = 106
[pid   866] set_robust_list(0x55557f95d660, 24) = 0
[pid   866] chdir("./104")              = 0
[pid   866] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   866] setpgid(0, 0)               = 0
[pid   866] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   866] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   866] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   866] write(3, "1000", 4)         = 4
[pid   866] close(3)                    = 0
[pid   866] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   866] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   866] write(1, "executing program\n", 18) = 18
[pid   866] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   866] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   866] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   866] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   866] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   866] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   866] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   866] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   866] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   866] memfd_create("syzkaller", 0) = 5
[pid   866] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   866] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   866] munmap(0x7f024f46f000, 138412032) = 0
[pid   866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   866] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   866] close(5)                    = 0
[pid   866] close(6)                    = 0
[pid   866] mkdir("./file0", 0777)      = 0
[pid   866] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   866] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   866] chdir("./file0")            = 0
[pid   866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   866] ioctl(6, LOOP_CLR_FD)       = 0
[pid   866] close(6)                    = 0
[pid   866] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   866] write(6, "#! ./file1\n", 11) = 11
[pid   866] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   866] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   866] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=106, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./104", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./104", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   44.117762][  T866] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   44.161357][  T867] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-866: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./104/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./104/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./104/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./104/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./104/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./104/file0")        = 0
[pid   344] umount2("./104/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./104/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./104/binderfs")    = 0
[pid   344] umount2("./104/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./104/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./104/cgroup.net")  = 0
[pid   344] umount2("./104/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./104/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./104/cgroup.cpu")  = 0
[pid   344] umount2("./104/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./104/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./104/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./104")              = 0
[pid   344] mkdir("./105", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 871 attached
, child_tidptr=0x55557f95d650) = 107
[pid   871] set_robust_list(0x55557f95d660, 24) = 0
[pid   871] chdir("./105")              = 0
[pid   871] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   871] setpgid(0, 0)               = 0
[pid   871] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   871] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   871] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   871] write(3, "1000", 4)         = 4
[pid   871] close(3)                    = 0
[pid   871] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   871] symlink("/dev/binderfs", "./binderfs") = 0
[pid   871] write(1, "executing program\n", 18executing program
) = 18
[pid   871] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   871] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   871] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   871] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   871] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   871] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   871] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   871] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   871] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   871] memfd_create("syzkaller", 0) = 5
[pid   871] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   871] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   871] munmap(0x7f024f46f000, 138412032) = 0
[pid   871] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   871] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   871] close(5)                    = 0
[pid   871] close(6)                    = 0
[pid   871] mkdir("./file0", 0777)      = 0
[pid   871] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   871] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   871] chdir("./file0")            = 0
[pid   871] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   871] ioctl(6, LOOP_CLR_FD)       = 0
[pid   871] close(6)                    = 0
[pid   871] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   871] write(6, "#! ./file1\n", 11) = 11
[pid   871] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   871] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   871] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=107, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./105", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./105", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   44.327579][  T871] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   44.356997][  T872] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-871: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./105/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./105/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./105/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./105/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./105/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./105/file0")        = 0
[pid   344] umount2("./105/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./105/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./105/binderfs")    = 0
[pid   344] umount2("./105/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./105/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./105/cgroup.net")  = 0
[pid   344] umount2("./105/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./105/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./105/cgroup.cpu")  = 0
[pid   344] umount2("./105/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./105/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./105/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./105")              = 0
[pid   344] mkdir("./106", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 876 attached
 <unfinished ...>
[pid   876] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 108
[pid   876] <... set_robust_list resumed>) = 0
[pid   876] chdir("./106")              = 0
[pid   876] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   876] setpgid(0, 0)               = 0
[pid   876] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   876] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   876] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   876] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   876] write(3, "1000", 4)         = 4
[pid   876] close(3)                    = 0
[pid   876] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   876] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   876] write(1, "executing program\n", 18) = 18
[pid   876] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   876] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   876] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   876] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   876] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   876] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   876] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   876] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   876] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   876] memfd_create("syzkaller", 0) = 5
[pid   876] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   876] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   876] munmap(0x7f024f46f000, 138412032) = 0
[pid   876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   876] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   876] close(5)                    = 0
[pid   876] close(6)                    = 0
[pid   876] mkdir("./file0", 0777)      = 0
[pid   876] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   876] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   876] chdir("./file0")            = 0
[pid   876] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   876] ioctl(6, LOOP_CLR_FD)       = 0
[pid   876] close(6)                    = 0
[pid   876] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   876] write(6, "#! ./file1\n", 11) = 11
[pid   876] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   876] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   876] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=108, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./106", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./106", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   44.537648][  T876] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   44.568310][  T877] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-876: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./106/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./106/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./106/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./106/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./106/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./106/file0")        = 0
[pid   344] umount2("./106/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./106/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./106/binderfs")    = 0
[pid   344] umount2("./106/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./106/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./106/cgroup.net")  = 0
[pid   344] umount2("./106/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./106/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./106/cgroup.cpu")  = 0
[pid   344] umount2("./106/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./106/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./106/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./106")              = 0
[pid   344] mkdir("./107", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 881 attached
, child_tidptr=0x55557f95d650) = 109
[pid   881] set_robust_list(0x55557f95d660, 24) = 0
[pid   881] chdir("./107")              = 0
[pid   881] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   881] setpgid(0, 0)               = 0
[pid   881] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   881] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   881] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   881] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   881] write(3, "1000", 4)         = 4
[pid   881] close(3)                    = 0
[pid   881] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   881] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   881] write(1, "executing program\n", 18) = 18
[pid   881] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   881] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   881] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   881] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   881] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   881] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   881] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   881] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   881] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   881] memfd_create("syzkaller", 0) = 5
[pid   881] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   881] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   881] munmap(0x7f024f46f000, 138412032) = 0
[pid   881] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   881] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   881] close(5)                    = 0
[pid   881] close(6)                    = 0
[pid   881] mkdir("./file0", 0777)      = 0
[pid   881] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   881] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   881] chdir("./file0")            = 0
[pid   881] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   881] ioctl(6, LOOP_CLR_FD)       = 0
[pid   881] close(6)                    = 0
[pid   881] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   881] write(6, "#! ./file1\n", 11) = 11
[pid   881] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   881] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   881] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=109, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./107", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./107", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   44.697875][  T881] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   44.727740][  T882] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-881: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./107/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./107/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./107/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./107/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./107/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./107/file0")        = 0
[pid   344] umount2("./107/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./107/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./107/binderfs")    = 0
[pid   344] umount2("./107/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./107/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./107/cgroup.net")  = 0
[pid   344] umount2("./107/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./107/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./107/cgroup.cpu")  = 0
[pid   344] umount2("./107/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./107/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./107/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./107")              = 0
[pid   344] mkdir("./108", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 886 attached
, child_tidptr=0x55557f95d650) = 110
[pid   886] set_robust_list(0x55557f95d660, 24) = 0
[pid   886] chdir("./108")              = 0
[pid   886] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   886] setpgid(0, 0)               = 0
[pid   886] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   886] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   886] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   886] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   886] write(3, "1000", 4)         = 4
[pid   886] close(3)                    = 0
[pid   886] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   886] symlink("/dev/binderfs", "./binderfs") = 0
[pid   886] write(1, "executing program\n", 18) = 18
executing program
[pid   886] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   886] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   886] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   886] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   886] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   886] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   886] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   886] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   886] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   886] memfd_create("syzkaller", 0) = 5
[pid   886] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   886] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   886] munmap(0x7f024f46f000, 138412032) = 0
[pid   886] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   886] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   886] close(5)                    = 0
[pid   886] close(6)                    = 0
[pid   886] mkdir("./file0", 0777)      = 0
[pid   886] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   886] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   886] chdir("./file0")            = 0
[pid   886] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   886] ioctl(6, LOOP_CLR_FD)       = 0
[pid   886] close(6)                    = 0
[pid   886] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   886] write(6, "#! ./file1\n", 11) = 11
[pid   886] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   886] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   886] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=110, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./108", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./108", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   44.987794][  T886] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./108/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./108/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./108/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   45.029176][  T887] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-886: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./108/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./108/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./108/file0")        = 0
[pid   344] umount2("./108/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./108/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./108/binderfs")    = 0
[pid   344] umount2("./108/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./108/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./108/cgroup.net")  = 0
[pid   344] umount2("./108/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./108/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./108/cgroup.cpu")  = 0
[pid   344] umount2("./108/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./108/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./108/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./108")              = 0
[pid   344] mkdir("./109", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 891 attached
 <unfinished ...>
[pid   891] set_robust_list(0x55557f95d660, 24) = 0
[pid   891] chdir("./109")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 111
[pid   891] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   891] setpgid(0, 0)               = 0
[pid   891] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   891] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   891] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   891] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   891] write(3, "1000", 4)         = 4
[pid   891] close(3)                    = 0
[pid   891] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   891] symlink("/dev/binderfs", "./binderfs") = 0
[pid   891] write(1, "executing program\n", 18executing program
) = 18
[pid   891] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   891] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   891] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   891] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   891] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   891] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   891] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   891] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   891] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   891] memfd_create("syzkaller", 0) = 5
[pid   891] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   891] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   891] munmap(0x7f024f46f000, 138412032) = 0
[pid   891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   891] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   891] close(5)                    = 0
[pid   891] close(6)                    = 0
[pid   891] mkdir("./file0", 0777)      = 0
[pid   891] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   891] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   891] chdir("./file0")            = 0
[pid   891] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   891] ioctl(6, LOOP_CLR_FD)       = 0
[pid   891] close(6)                    = 0
[pid   891] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   891] write(6, "#! ./file1\n", 11) = 11
[pid   891] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   891] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   891] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=111, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./109", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./109", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   45.170372][  T891] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   45.199754][  T891] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./109/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./109/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./109/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./109/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./109/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./109/file0")        = 0
[pid   344] umount2("./109/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./109/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./109/binderfs")    = 0
[pid   344] umount2("./109/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./109/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./109/cgroup.net")  = 0
[pid   344] umount2("./109/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./109/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./109/cgroup.cpu")  = 0
[pid   344] umount2("./109/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./109/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./109/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./109")              = 0
[pid   344] mkdir("./110", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 896 attached
 <unfinished ...>
[pid   896] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 112
[pid   896] <... set_robust_list resumed>) = 0
[pid   896] chdir("./110")              = 0
[pid   896] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   896] setpgid(0, 0)               = 0
[pid   896] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   896] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   896] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   896] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   896] write(3, "1000", 4)         = 4
[pid   896] close(3)                    = 0
[pid   896] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   896] symlink("/dev/binderfs", "./binderfs") = 0
[pid   896] write(1, "executing program\n", 18executing program
) = 18
[pid   896] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   896] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   896] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   896] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   896] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   896] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   896] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   896] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   896] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   896] memfd_create("syzkaller", 0) = 5
[pid   896] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   896] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   896] munmap(0x7f024f46f000, 138412032) = 0
[pid   896] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   896] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   896] close(5)                    = 0
[pid   896] close(6)                    = 0
[pid   896] mkdir("./file0", 0777)      = 0
[pid   896] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   896] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   896] chdir("./file0")            = 0
[pid   896] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   896] ioctl(6, LOOP_CLR_FD)       = 0
[pid   896] close(6)                    = 0
[pid   896] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   896] write(6, "#! ./file1\n", 11) = 11
[pid   896] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   896] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   896] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=112, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./110", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./110", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   45.337750][  T896] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   45.368282][  T897] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-896: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./110/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./110/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./110/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./110/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./110/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./110/file0")        = 0
[pid   344] umount2("./110/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./110/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./110/binderfs")    = 0
[pid   344] umount2("./110/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./110/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./110/cgroup.net")  = 0
[pid   344] umount2("./110/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./110/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./110/cgroup.cpu")  = 0
[pid   344] umount2("./110/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./110/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./110/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./110")              = 0
[pid   344] mkdir("./111", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 901 attached
 <unfinished ...>
[pid   901] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 113
[pid   901] <... set_robust_list resumed>) = 0
[pid   901] chdir("./111")              = 0
[pid   901] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   901] setpgid(0, 0)               = 0
[pid   901] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   901] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   901] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   901] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   901] write(3, "1000", 4)         = 4
[pid   901] close(3)                    = 0
[pid   901] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   901] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   901] write(1, "executing program\n", 18) = 18
[pid   901] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   901] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   901] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   901] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   901] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   901] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   901] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   901] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   901] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   901] memfd_create("syzkaller", 0) = 5
[pid   901] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   901] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   901] munmap(0x7f024f46f000, 138412032) = 0
[pid   901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   901] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   901] close(5)                    = 0
[pid   901] close(6)                    = 0
[pid   901] mkdir("./file0", 0777)      = 0
[pid   901] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   901] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   901] chdir("./file0")            = 0
[pid   901] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   901] ioctl(6, LOOP_CLR_FD)       = 0
[pid   901] close(6)                    = 0
[pid   901] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   901] write(6, "#! ./file1\n", 11) = 11
[pid   901] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   901] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   901] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=113, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./111", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./111", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   45.507652][  T901] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   45.538473][  T902] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-901: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./111/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./111/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./111/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./111/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./111/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./111/file0")        = 0
[pid   344] umount2("./111/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./111/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./111/binderfs")    = 0
[pid   344] umount2("./111/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./111/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./111/cgroup.net")  = 0
[pid   344] umount2("./111/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./111/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./111/cgroup.cpu")  = 0
[pid   344] umount2("./111/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./111/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./111/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./111")              = 0
[pid   344] mkdir("./112", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 906 attached
 <unfinished ...>
[pid   906] set_robust_list(0x55557f95d660, 24) = 0
[pid   906] chdir("./112" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 114
[pid   906] <... chdir resumed>)        = 0
[pid   906] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   906] setpgid(0, 0)               = 0
[pid   906] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   906] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   906] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   906] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   906] write(3, "1000", 4)         = 4
[pid   906] close(3)                    = 0
[pid   906] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   906] symlink("/dev/binderfs", "./binderfs") = 0
[pid   906] write(1, "executing program\n", 18executing program
) = 18
[pid   906] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   906] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   906] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   906] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   906] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   906] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   906] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   906] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   906] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   906] memfd_create("syzkaller", 0) = 5
[pid   906] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   906] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   906] munmap(0x7f024f46f000, 138412032) = 0
[pid   906] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   906] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   906] close(5)                    = 0
[pid   906] close(6)                    = 0
[pid   906] mkdir("./file0", 0777)      = 0
[pid   906] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   906] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   906] chdir("./file0")            = 0
[pid   906] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   906] ioctl(6, LOOP_CLR_FD)       = 0
[pid   906] close(6)                    = 0
[pid   906] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   906] write(6, "#! ./file1\n", 11) = 11
[pid   906] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   906] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   906] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=114, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./112", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./112", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   45.737620][  T906] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[pid   344] umount2("./112/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./112/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./112/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./112/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./112/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./112/file0")        = 0
[pid   344] umount2("./112/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./112/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./112/binderfs")    = 0
[pid   344] umount2("./112/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./112/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./112/cgroup.net")  = 0
[pid   344] umount2("./112/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./112/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./112/cgroup.cpu")  = 0
[pid   344] umount2("./112/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./112/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./112/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./112")              = 0
[   45.779146][  T907] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-906: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] mkdir("./113", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 911 attached
, child_tidptr=0x55557f95d650) = 115
[pid   911] set_robust_list(0x55557f95d660, 24) = 0
[pid   911] chdir("./113")              = 0
[pid   911] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   911] setpgid(0, 0)               = 0
[pid   911] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   911] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   911] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   911] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   911] write(3, "1000", 4)         = 4
executing program
[pid   911] close(3)                    = 0
[pid   911] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   911] symlink("/dev/binderfs", "./binderfs") = 0
[pid   911] write(1, "executing program\n", 18) = 18
[pid   911] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   911] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   911] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   911] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   911] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   911] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   911] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   911] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   911] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   911] memfd_create("syzkaller", 0) = 5
[pid   911] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   911] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   911] munmap(0x7f024f46f000, 138412032) = 0
[pid   911] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   911] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   911] close(5)                    = 0
[pid   911] close(6)                    = 0
[pid   911] mkdir("./file0", 0777)      = 0
[pid   911] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   911] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   911] chdir("./file0")            = 0
[pid   911] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   911] ioctl(6, LOOP_CLR_FD)       = 0
[pid   911] close(6)                    = 0
[pid   911] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   911] write(6, "#! ./file1\n", 11) = 11
[pid   911] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   911] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   911] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=115, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./113", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./113", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./113/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./113/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./113/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./113/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./113/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./113/file0")        = 0
[pid   344] umount2("./113/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./113/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./113/binderfs")    = 0
[pid   344] umount2("./113/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./113/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./113/cgroup.net")  = 0
[pid   344] umount2("./113/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./113/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./113/cgroup.cpu")  = 0
[pid   344] umount2("./113/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./113/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   45.907670][  T911] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue
[   45.939147][  T912] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-911: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] unlink("./113/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./113")              = 0
[pid   344] mkdir("./114", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 916 attached
 <unfinished ...>
[pid   916] set_robust_list(0x55557f95d660, 24) = 0
[pid   916] chdir("./114" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 116
[pid   916] <... chdir resumed>)        = 0
[pid   916] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   916] setpgid(0, 0)               = 0
[pid   916] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   916] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   916] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   916] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   916] write(3, "1000", 4)         = 4
[pid   916] close(3)                    = 0
[pid   916] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   916] symlink("/dev/binderfs", "./binderfs") = 0
[pid   916] write(1, "executing program\n", 18executing program
) = 18
[pid   916] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   916] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   916] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   916] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   916] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   916] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   916] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   916] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   916] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   916] memfd_create("syzkaller", 0) = 5
[pid   916] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   916] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   916] munmap(0x7f024f46f000, 138412032) = 0
[pid   916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   916] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   916] close(5)                    = 0
[pid   916] close(6)                    = 0
[pid   916] mkdir("./file0", 0777)      = 0
[pid   916] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   916] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   916] chdir("./file0")            = 0
[pid   916] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   916] ioctl(6, LOOP_CLR_FD)       = 0
[pid   916] close(6)                    = 0
[pid   916] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   916] write(6, "#! ./file1\n", 11) = 11
[pid   916] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   916] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   916] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=116, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./114", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./114", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   46.076777][  T917] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-916: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./114/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./114/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./114/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./114/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./114/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./114/file0")        = 0
[pid   344] umount2("./114/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./114/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./114/binderfs")    = 0
[pid   344] umount2("./114/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./114/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./114/cgroup.net")  = 0
[pid   344] umount2("./114/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./114/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./114/cgroup.cpu")  = 0
[pid   344] umount2("./114/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./114/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./114/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./114")              = 0
[pid   344] mkdir("./115", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 921 attached
, child_tidptr=0x55557f95d650) = 117
[pid   921] set_robust_list(0x55557f95d660, 24) = 0
[pid   921] chdir("./115")              = 0
[pid   921] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   921] setpgid(0, 0)               = 0
[pid   921] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   921] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   921] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   921] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   921] write(3, "1000", 4)         = 4
[pid   921] close(3)                    = 0
[pid   921] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   921] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   921] write(1, "executing program\n", 18) = 18
[pid   921] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   921] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   921] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   921] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   921] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   921] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   921] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   921] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   921] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   921] memfd_create("syzkaller", 0) = 5
[pid   921] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   921] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   921] munmap(0x7f024f46f000, 138412032) = 0
[pid   921] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   921] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   921] close(5)                    = 0
[pid   921] close(6)                    = 0
[pid   921] mkdir("./file0", 0777)      = 0
[pid   921] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   921] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   921] chdir("./file0")            = 0
[pid   921] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   921] ioctl(6, LOOP_CLR_FD)       = 0
[pid   921] close(6)                    = 0
[pid   921] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   921] write(6, "#! ./file1\n", 11) = 11
[pid   921] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   921] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   921] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=117, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./115", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./115", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./115/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./115/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./115/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./115/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./115/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./115/file0")        = 0
[pid   344] umount2("./115/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./115/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./115/binderfs")    = 0
[pid   344] umount2("./115/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./115/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./115/cgroup.net")  = 0
[pid   344] umount2("./115/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[   46.257086][  T922] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-921: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] newfstatat(AT_FDCWD, "./115/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./115/cgroup.cpu")  = 0
[pid   344] umount2("./115/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./115/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./115/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./115")              = 0
[pid   344] mkdir("./116", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 926 attached
 <unfinished ...>
[pid   926] set_robust_list(0x55557f95d660, 24) = 0
[pid   926] chdir("./116")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 118
[pid   926] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   926] setpgid(0, 0)               = 0
[pid   926] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   926] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   926] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   926] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   926] write(3, "1000", 4)         = 4
[pid   926] close(3)                    = 0
[pid   926] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   926] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   926] write(1, "executing program\n", 18) = 18
[pid   926] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   926] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   926] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   926] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   926] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   926] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   926] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   926] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   926] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   926] memfd_create("syzkaller", 0) = 5
[pid   926] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   926] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   926] munmap(0x7f024f46f000, 138412032) = 0
[pid   926] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   926] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   926] close(5)                    = 0
[pid   926] close(6)                    = 0
[pid   926] mkdir("./file0", 0777)      = 0
[pid   926] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   926] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   926] chdir("./file0")            = 0
[pid   926] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   926] ioctl(6, LOOP_CLR_FD)       = 0
[pid   926] close(6)                    = 0
[pid   926] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   926] write(6, "#! ./file1\n", 11) = 11
[pid   926] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   926] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   926] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=118, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./116", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./116", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   46.396819][  T927] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-926: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./116/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./116/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./116/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./116/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./116/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./116/file0")        = 0
[pid   344] umount2("./116/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./116/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./116/binderfs")    = 0
[pid   344] umount2("./116/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./116/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./116/cgroup.net")  = 0
[pid   344] umount2("./116/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./116/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./116/cgroup.cpu")  = 0
[pid   344] umount2("./116/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./116/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./116/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./116")              = 0
[pid   344] mkdir("./117", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 931 attached
 <unfinished ...>
[pid   931] set_robust_list(0x55557f95d660, 24) = 0
[pid   931] chdir("./117" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 119
[pid   931] <... chdir resumed>)        = 0
[pid   931] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   931] setpgid(0, 0)               = 0
[pid   931] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   931] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   931] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   931] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   931] write(3, "1000", 4)         = 4
[pid   931] close(3)                    = 0
[pid   931] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   931] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   931] write(1, "executing program\n", 18) = 18
[pid   931] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   931] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   931] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   931] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   931] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   931] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   931] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   931] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   931] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   931] memfd_create("syzkaller", 0) = 5
[pid   931] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   931] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   931] munmap(0x7f024f46f000, 138412032) = 0
[pid   931] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   931] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   931] close(5)                    = 0
[pid   931] close(6)                    = 0
[pid   931] mkdir("./file0", 0777)      = 0
[pid   931] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   931] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   931] chdir("./file0")            = 0
[pid   931] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   931] ioctl(6, LOOP_CLR_FD)       = 0
[pid   931] close(6)                    = 0
[pid   931] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   931] write(6, "#! ./file1\n", 11) = 11
[pid   931] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   931] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   931] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=119, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./117", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./117", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   46.577187][  T932] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-931: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./117/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./117/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./117/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./117/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./117/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./117/file0")        = 0
[pid   344] umount2("./117/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./117/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./117/binderfs")    = 0
[pid   344] umount2("./117/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./117/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./117/cgroup.net")  = 0
[pid   344] umount2("./117/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./117/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./117/cgroup.cpu")  = 0
[pid   344] umount2("./117/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./117/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./117/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./117")              = 0
[pid   344] mkdir("./118", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 936 attached
, child_tidptr=0x55557f95d650) = 120
[pid   936] set_robust_list(0x55557f95d660, 24) = 0
[pid   936] chdir("./118")              = 0
[pid   936] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   936] setpgid(0, 0)               = 0
[pid   936] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   936] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   936] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   936] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   936] write(3, "1000", 4)         = 4
[pid   936] close(3)                    = 0
[pid   936] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   936] symlink("/dev/binderfs", "./binderfs") = 0
[pid   936] write(1, "executing program\n", 18executing program
) = 18
[pid   936] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   936] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   936] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   936] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   936] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   936] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   936] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   936] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   936] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   936] memfd_create("syzkaller", 0) = 5
[pid   936] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   936] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   936] munmap(0x7f024f46f000, 138412032) = 0
[pid   936] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   936] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   936] close(5)                    = 0
[pid   936] close(6)                    = 0
[pid   936] mkdir("./file0", 0777)      = 0
[pid   936] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   936] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   936] chdir("./file0")            = 0
[pid   936] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   936] ioctl(6, LOOP_CLR_FD)       = 0
[pid   936] close(6)                    = 0
[pid   936] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   936] write(6, "#! ./file1\n", 11) = 11
[pid   936] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   936] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   936] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=120, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./118", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./118", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   46.731733][  T937] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-936: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./118/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./118/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./118/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./118/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./118/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./118/file0")        = 0
[pid   344] umount2("./118/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./118/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./118/binderfs")    = 0
[pid   344] umount2("./118/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./118/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./118/cgroup.net")  = 0
[pid   344] umount2("./118/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./118/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./118/cgroup.cpu")  = 0
[pid   344] umount2("./118/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./118/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./118/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./118")              = 0
[pid   344] mkdir("./119", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 941 attached
 <unfinished ...>
[pid   941] set_robust_list(0x55557f95d660, 24) = 0
[pid   941] chdir("./119" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 121
[pid   941] <... chdir resumed>)        = 0
[pid   941] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   941] setpgid(0, 0)               = 0
[pid   941] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   941] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   941] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   941] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   941] write(3, "1000", 4)         = 4
[pid   941] close(3)                    = 0
[pid   941] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   941] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   941] write(1, "executing program\n", 18) = 18
[pid   941] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   941] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   941] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   941] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   941] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   941] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   941] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   941] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   941] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   941] memfd_create("syzkaller", 0) = 5
[pid   941] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   941] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   941] munmap(0x7f024f46f000, 138412032) = 0
[pid   941] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   941] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   941] close(5)                    = 0
[pid   941] close(6)                    = 0
[pid   941] mkdir("./file0", 0777)      = 0
[pid   941] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   941] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   941] chdir("./file0")            = 0
[pid   941] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   941] ioctl(6, LOOP_CLR_FD)       = 0
[pid   941] close(6)                    = 0
[pid   941] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   941] write(6, "#! ./file1\n", 11) = 11
[pid   941] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   941] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   941] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=121, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=3} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./119", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./119", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   46.893828][  T941] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./119/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./119/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./119/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./119/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./119/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./119/file0")        = 0
[pid   344] umount2("./119/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./119/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./119/binderfs")    = 0
[pid   344] umount2("./119/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./119/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./119/cgroup.net")  = 0
[pid   344] umount2("./119/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./119/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./119/cgroup.cpu")  = 0
[pid   344] umount2("./119/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./119/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./119/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./119")              = 0
[pid   344] mkdir("./120", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 946 attached
, child_tidptr=0x55557f95d650) = 122
[pid   946] set_robust_list(0x55557f95d660, 24) = 0
[pid   946] chdir("./120")              = 0
[pid   946] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   946] setpgid(0, 0)               = 0
[pid   946] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   946] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   946] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   946] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   946] write(3, "1000", 4)         = 4
[pid   946] close(3)                    = 0
[pid   946] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   946] symlink("/dev/binderfs", "./binderfs") = 0
[pid   946] write(1, "executing program\n", 18executing program
) = 18
[pid   946] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   946] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   946] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   946] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   946] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   946] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   946] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   946] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   946] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   946] memfd_create("syzkaller", 0) = 5
[pid   946] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   946] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   946] munmap(0x7f024f46f000, 138412032) = 0
[pid   946] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   946] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   946] close(5)                    = 0
[pid   946] close(6)                    = 0
[pid   946] mkdir("./file0", 0777)      = 0
[pid   946] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   946] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   946] chdir("./file0")            = 0
[pid   946] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   946] ioctl(6, LOOP_CLR_FD)       = 0
[pid   946] close(6)                    = 0
[pid   946] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   946] write(6, "#! ./file1\n", 11) = 11
[pid   946] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   946] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   946] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=122, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./120", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./120", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   47.054248][  T947] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-946: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./120/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./120/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./120/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./120/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./120/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./120/file0")        = 0
[pid   344] umount2("./120/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./120/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./120/binderfs")    = 0
[pid   344] umount2("./120/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./120/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./120/cgroup.net")  = 0
[pid   344] umount2("./120/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./120/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./120/cgroup.cpu")  = 0
[pid   344] umount2("./120/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./120/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./120/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./120")              = 0
[pid   344] mkdir("./121", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 951 attached
 <unfinished ...>
[pid   951] set_robust_list(0x55557f95d660, 24) = 0
[pid   951] chdir("./121")              = 0
[pid   951] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   951] setpgid(0, 0)               = 0
[pid   951] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 123
[pid   951] <... symlink resumed>)      = 0
[pid   951] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   951] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   951] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   951] write(3, "1000", 4)         = 4
[pid   951] close(3)                    = 0
[pid   951] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   951] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   951] write(1, "executing program\n", 18) = 18
[pid   951] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   951] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   951] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   951] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   951] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   951] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   951] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   951] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   951] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   951] memfd_create("syzkaller", 0) = 5
[pid   951] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   951] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   951] munmap(0x7f024f46f000, 138412032) = 0
[pid   951] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   951] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   951] close(5)                    = 0
[pid   951] close(6)                    = 0
[pid   951] mkdir("./file0", 0777)      = 0
[pid   951] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   951] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   951] chdir("./file0")            = 0
[pid   951] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   951] ioctl(6, LOOP_CLR_FD)       = 0
[pid   951] close(6)                    = 0
[pid   951] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   951] write(6, "#! ./file1\n", 11) = 11
[pid   951] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   951] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   951] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=123, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./121", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./121", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   47.217038][  T952] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-951: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./121/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./121/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./121/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./121/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./121/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./121/file0")        = 0
[pid   344] umount2("./121/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./121/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./121/binderfs")    = 0
[pid   344] umount2("./121/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./121/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./121/cgroup.net")  = 0
[pid   344] umount2("./121/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./121/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./121/cgroup.cpu")  = 0
[pid   344] umount2("./121/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./121/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./121/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./121")              = 0
[pid   344] mkdir("./122", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 956 attached
 <unfinished ...>
[pid   956] set_robust_list(0x55557f95d660, 24) = 0
[pid   956] chdir("./122")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 124
[pid   956] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   956] setpgid(0, 0)               = 0
[pid   956] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   956] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   956] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   956] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   956] write(3, "1000", 4)         = 4
[pid   956] close(3)                    = 0
[pid   956] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   956] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   956] write(1, "executing program\n", 18) = 18
[pid   956] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   956] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   956] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   956] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   956] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   956] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   956] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   956] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   956] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   956] memfd_create("syzkaller", 0) = 5
[pid   956] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   956] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   956] munmap(0x7f024f46f000, 138412032) = 0
[pid   956] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   956] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   956] close(5)                    = 0
[pid   956] close(6)                    = 0
[pid   956] mkdir("./file0", 0777)      = 0
[pid   956] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   956] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   956] chdir("./file0")            = 0
[pid   956] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   956] ioctl(6, LOOP_CLR_FD)       = 0
[pid   956] close(6)                    = 0
[pid   956] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   956] write(6, "#! ./file1\n", 11) = 11
[pid   956] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   956] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   956] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=124, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./122", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./122", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./122/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./122/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./122/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./122/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./122/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./122/file0")        = 0
[pid   344] umount2("./122/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./122/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./122/binderfs")    = 0
[pid   344] umount2("./122/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./122/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./122/cgroup.net")  = 0
[pid   344] umount2("./122/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./122/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./122/cgroup.cpu")  = 0
[pid   344] umount2("./122/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./122/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./122/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./122")              = 0
[pid   344] mkdir("./123", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 125
./strace-static-x86_64: Process 961 attached
[pid   961] set_robust_list(0x55557f95d660, 24) = 0
[pid   961] chdir("./123")              = 0
[pid   961] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   961] setpgid(0, 0)               = 0
[pid   961] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[   47.549108][  T957] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-956: bg 0: block 234: padding at end of block bitmap is not set
[pid   961] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   961] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   961] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   961] write(3, "1000", 4)         = 4
[pid   961] close(3)                    = 0
[pid   961] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   961] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid   961] write(1, "executing program\n", 18) = 18
[pid   961] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   961] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   961] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   961] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   961] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   961] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   961] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   961] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   961] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   961] memfd_create("syzkaller", 0) = 5
[pid   961] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   961] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   961] munmap(0x7f024f46f000, 138412032) = 0
[pid   961] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   961] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   961] close(5)                    = 0
[pid   961] close(6)                    = 0
[pid   961] mkdir("./file0", 0777)      = 0
[pid   961] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   961] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   961] chdir("./file0")            = 0
[pid   961] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   961] ioctl(6, LOOP_CLR_FD)       = 0
[pid   961] close(6)                    = 0
[pid   961] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   961] write(6, "#! ./file1\n", 11) = 11
[pid   961] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   961] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   961] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=125, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./123", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./123", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./123/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./123/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./123/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./123/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./123/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./123/file0")        = 0
[pid   344] umount2("./123/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./123/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./123/binderfs")    = 0
[pid   344] umount2("./123/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./123/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./123/cgroup.net")  = 0
[pid   344] umount2("./123/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./123/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[   47.676988][  T962] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-961: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] unlink("./123/cgroup.cpu")  = 0
[pid   344] umount2("./123/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./123/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./123/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./123")              = 0
[pid   344] mkdir("./124", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 966 attached
 <unfinished ...>
[pid   966] set_robust_list(0x55557f95d660, 24) = 0
[pid   966] chdir("./124" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 126
[pid   966] <... chdir resumed>)        = 0
[pid   966] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   966] setpgid(0, 0)               = 0
[pid   966] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   966] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   966] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   966] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   966] write(3, "1000", 4)         = 4
[pid   966] close(3)                    = 0
[pid   966] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   966] symlink("/dev/binderfs", "./binderfs") = 0
[pid   966] write(1, "executing program\n", 18executing program
) = 18
[pid   966] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   966] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   966] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   966] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   966] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   966] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   966] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   966] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   966] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   966] memfd_create("syzkaller", 0) = 5
[pid   966] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   966] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   966] munmap(0x7f024f46f000, 138412032) = 0
[pid   966] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   966] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   966] close(5)                    = 0
[pid   966] close(6)                    = 0
[pid   966] mkdir("./file0", 0777)      = 0
[pid   966] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   966] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   966] chdir("./file0")            = 0
[pid   966] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   966] ioctl(6, LOOP_CLR_FD)       = 0
[pid   966] close(6)                    = 0
[pid   966] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   966] write(6, "#! ./file1\n", 11) = 11
[pid   966] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   966] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   966] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=126, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./124", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./124", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   47.848153][  T967] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-966: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./124/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./124/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./124/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./124/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./124/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./124/file0")        = 0
[pid   344] umount2("./124/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./124/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./124/binderfs")    = 0
[pid   344] umount2("./124/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./124/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./124/cgroup.net")  = 0
[pid   344] umount2("./124/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./124/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./124/cgroup.cpu")  = 0
[pid   344] umount2("./124/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./124/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./124/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./124")              = 0
[pid   344] mkdir("./125", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 971 attached
, child_tidptr=0x55557f95d650) = 127
[pid   971] set_robust_list(0x55557f95d660, 24) = 0
[pid   971] chdir("./125")              = 0
[pid   971] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   971] setpgid(0, 0)               = 0
[pid   971] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   971] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   971] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   971] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   971] write(3, "1000", 4)         = 4
[pid   971] close(3)                    = 0
[pid   971] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   971] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   971] write(1, "executing program\n", 18) = 18
[pid   971] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   971] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   971] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   971] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   971] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   971] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   971] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   971] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   971] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   971] memfd_create("syzkaller", 0) = 5
[pid   971] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   971] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   971] munmap(0x7f024f46f000, 138412032) = 0
[pid   971] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   971] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   971] close(5)                    = 0
[pid   971] close(6)                    = 0
[pid   971] mkdir("./file0", 0777)      = 0
[pid   971] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   971] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   971] chdir("./file0")            = 0
[pid   971] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   971] ioctl(6, LOOP_CLR_FD)       = 0
[pid   971] close(6)                    = 0
[pid   971] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   971] write(6, "#! ./file1\n", 11) = 11
[pid   971] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   971] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   971] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=127, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./125", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./125", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   48.017031][  T972] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-971: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./125/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./125/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./125/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./125/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./125/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./125/file0")        = 0
[pid   344] umount2("./125/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./125/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./125/binderfs")    = 0
[pid   344] umount2("./125/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./125/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./125/cgroup.net")  = 0
[pid   344] umount2("./125/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./125/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./125/cgroup.cpu")  = 0
[pid   344] umount2("./125/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./125/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./125/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./125")              = 0
[pid   344] mkdir("./126", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 976 attached
 <unfinished ...>
[pid   976] set_robust_list(0x55557f95d660, 24) = 0
[pid   976] chdir("./126")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 128
[pid   976] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   976] setpgid(0, 0)               = 0
[pid   976] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   976] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   976] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   976] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
executing program
[pid   976] write(3, "1000", 4)         = 4
[pid   976] close(3)                    = 0
[pid   976] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   976] symlink("/dev/binderfs", "./binderfs") = 0
[pid   976] write(1, "executing program\n", 18) = 18
[pid   976] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   976] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   976] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   976] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   976] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   976] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   976] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   976] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   976] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   976] memfd_create("syzkaller", 0) = 5
[pid   976] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   976] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   976] munmap(0x7f024f46f000, 138412032) = 0
[pid   976] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   976] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   976] close(5)                    = 0
[pid   976] close(6)                    = 0
[pid   976] mkdir("./file0", 0777)      = 0
[pid   976] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   976] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   976] chdir("./file0")            = 0
[pid   976] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   976] ioctl(6, LOOP_CLR_FD)       = 0
[pid   976] close(6)                    = 0
[pid   976] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   976] write(6, "#! ./file1\n", 11) = 11
[pid   976] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   976] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   976] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=128, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./126", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./126", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./126/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./126/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./126/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./126/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./126/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./126/file0")        = 0
[pid   344] umount2("./126/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./126/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./126/binderfs")    = 0
[pid   344] umount2("./126/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./126/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./126/cgroup.net")  = 0
[pid   344] umount2("./126/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./126/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./126/cgroup.cpu")  = 0
[pid   344] umount2("./126/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./126/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./126/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./126")              = 0
[pid   344] mkdir("./127", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 129
./strace-static-x86_64: Process 981 attached
[pid   981] set_robust_list(0x55557f95d660, 24) = 0
[pid   981] chdir("./127")              = 0
[pid   981] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   981] setpgid(0, 0)               = 0
[   48.216286][  T977] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-976: bg 0: block 234: padding at end of block bitmap is not set
[pid   981] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   981] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   981] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   981] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   981] write(3, "1000", 4)         = 4
[pid   981] close(3)                    = 0
[pid   981] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   981] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   981] write(1, "executing program\n", 18) = 18
[pid   981] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   981] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   981] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   981] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   981] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   981] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   981] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   981] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   981] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   981] memfd_create("syzkaller", 0) = 5
[pid   981] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   981] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   981] munmap(0x7f024f46f000, 138412032) = 0
[pid   981] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   981] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   981] close(5)                    = 0
[pid   981] close(6)                    = 0
[pid   981] mkdir("./file0", 0777)      = 0
[pid   981] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   981] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   981] chdir("./file0")            = 0
[pid   981] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   981] ioctl(6, LOOP_CLR_FD)       = 0
[pid   981] close(6)                    = 0
[pid   981] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   981] write(6, "#! ./file1\n", 11) = 11
[pid   981] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   981] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   981] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=129, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./127", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./127", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   48.356718][  T982] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-981: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./127/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./127/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./127/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./127/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./127/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./127/file0")        = 0
[pid   344] umount2("./127/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./127/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./127/binderfs")    = 0
[pid   344] umount2("./127/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./127/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./127/cgroup.net")  = 0
[pid   344] umount2("./127/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./127/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./127/cgroup.cpu")  = 0
[pid   344] umount2("./127/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./127/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./127/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./127")              = 0
[pid   344] mkdir("./128", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program
./strace-static-x86_64: Process 986 attached
 <unfinished ...>
[pid   986] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 130
[pid   986] <... set_robust_list resumed>) = 0
[pid   986] chdir("./128")              = 0
[pid   986] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   986] setpgid(0, 0)               = 0
[pid   986] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   986] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   986] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   986] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   986] write(3, "1000", 4)         = 4
[pid   986] close(3)                    = 0
[pid   986] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   986] symlink("/dev/binderfs", "./binderfs") = 0
[pid   986] write(1, "executing program\n", 18) = 18
[pid   986] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   986] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   986] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   986] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   986] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   986] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   986] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   986] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   986] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   986] memfd_create("syzkaller", 0) = 5
[pid   986] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   986] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   986] munmap(0x7f024f46f000, 138412032) = 0
[pid   986] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   986] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   986] close(5)                    = 0
[pid   986] close(6)                    = 0
[pid   986] mkdir("./file0", 0777)      = 0
[pid   986] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   986] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   986] chdir("./file0")            = 0
[pid   986] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   986] ioctl(6, LOOP_CLR_FD)       = 0
[pid   986] close(6)                    = 0
[pid   986] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   986] write(6, "#! ./file1\n", 11) = 11
[pid   986] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   986] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   986] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=130, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./128", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./128", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   48.559566][  T986] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./128/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./128/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./128/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./128/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./128/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./128/file0")        = 0
[pid   344] umount2("./128/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./128/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./128/binderfs")    = 0
[pid   344] umount2("./128/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./128/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./128/cgroup.net")  = 0
[pid   344] umount2("./128/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./128/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./128/cgroup.cpu")  = 0
[pid   344] umount2("./128/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./128/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./128/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./128")              = 0
[pid   344] mkdir("./129", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 991 attached
, child_tidptr=0x55557f95d650) = 131
[pid   991] set_robust_list(0x55557f95d660, 24) = 0
[pid   991] chdir("./129")              = 0
[pid   991] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   991] setpgid(0, 0)               = 0
[pid   991] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   991] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   991] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   991] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   991] write(3, "1000", 4)         = 4
[pid   991] close(3)                    = 0
[pid   991] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid   991] symlink("/dev/binderfs", "./binderfs") = 0
[pid   991] write(1, "executing program\n", 18) = 18
[pid   991] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   991] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   991] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   991] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   991] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   991] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   991] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   991] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   991] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   991] memfd_create("syzkaller", 0) = 5
[pid   991] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   991] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   991] munmap(0x7f024f46f000, 138412032) = 0
[pid   991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   991] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   991] close(5)                    = 0
[pid   991] close(6)                    = 0
[pid   991] mkdir("./file0", 0777)      = 0
[pid   991] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   991] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   991] chdir("./file0")            = 0
[pid   991] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   991] ioctl(6, LOOP_CLR_FD)       = 0
[pid   991] close(6)                    = 0
[pid   991] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   991] write(6, "#! ./file1\n", 11) = 11
[pid   991] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   991] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   991] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=131, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./129", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./129", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   48.727293][  T992] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-991: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./129/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./129/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./129/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./129/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./129/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./129/file0")        = 0
[pid   344] umount2("./129/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./129/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./129/binderfs")    = 0
[pid   344] umount2("./129/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./129/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./129/cgroup.net")  = 0
[pid   344] umount2("./129/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./129/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./129/cgroup.cpu")  = 0
[pid   344] umount2("./129/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./129/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./129/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./129")              = 0
[pid   344] mkdir("./130", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 996 attached
 <unfinished ...>
[pid   996] set_robust_list(0x55557f95d660, 24) = 0
[pid   996] chdir("./130")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 132
[pid   996] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   996] setpgid(0, 0)               = 0
[pid   996] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   996] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid   996] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid   996] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   996] write(3, "1000", 4)         = 4
[pid   996] close(3)                    = 0
[pid   996] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid   996] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   996] write(1, "executing program\n", 18) = 18
[pid   996] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid   996] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid   996] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid   996] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid   996] eventfd2(118, EFD_SEMAPHORE) = 4
[pid   996] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid   996] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid   996] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid   996] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid   996] memfd_create("syzkaller", 0) = 5
[pid   996] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid   996] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   996] munmap(0x7f024f46f000, 138412032) = 0
[pid   996] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   996] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid   996] close(5)                    = 0
[pid   996] close(6)                    = 0
[pid   996] mkdir("./file0", 0777)      = 0
[pid   996] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid   996] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid   996] chdir("./file0")            = 0
[pid   996] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid   996] ioctl(6, LOOP_CLR_FD)       = 0
[pid   996] close(6)                    = 0
[pid   996] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid   996] write(6, "#! ./file1\n", 11) = 11
[pid   996] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid   996] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid   996] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=132, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./130", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./130", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./130/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./130/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./130/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./130/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./130/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./130/file0")        = 0
[pid   344] umount2("./130/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./130/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./130/binderfs")    = 0
[pid   344] umount2("./130/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./130/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./130/cgroup.net")  = 0
[pid   344] umount2("./130/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./130/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./130/cgroup.cpu")  = 0
[pid   344] umount2("./130/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./130/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./130/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./130")              = 0
[pid   344] mkdir("./131", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 133
./strace-static-x86_64: Process 1001 attached
[pid  1001] set_robust_list(0x55557f95d660, 24) = 0
[pid  1001] chdir("./131")              = 0
[pid  1001] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1001] setpgid(0, 0)               = 0
[pid  1001] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1001] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1001] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1001] write(3, "1000", 4)         = 4
[pid  1001] close(3)                    = 0
[pid  1001] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1001] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1001] write(1, "executing program\n", 18) = 18
[pid  1001] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1001] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1001] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1001] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1001] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1001] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1001] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1001] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1001] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1001] memfd_create("syzkaller", 0) = 5
[pid  1001] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
executing program
[pid  1001] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1001] munmap(0x7f024f46f000, 138412032) = 0
[pid  1001] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1001] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1001] close(5)                    = 0
[   48.887396][  T997] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-996: bg 0: block 234: padding at end of block bitmap is not set
[pid  1001] close(6)                    = 0
[pid  1001] mkdir("./file0", 0777)      = 0
[pid  1001] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1001] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1001] chdir("./file0")            = 0
[pid  1001] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1001] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1001] close(6)                    = 0
[pid  1001] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1001] write(6, "#! ./file1\n", 11) = 11
[pid  1001] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1001] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1001] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=133, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./131", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./131", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   49.098394][ T1002] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1001: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./131/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./131/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./131/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./131/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./131/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./131/file0")        = 0
[pid   344] umount2("./131/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./131/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./131/binderfs")    = 0
[pid   344] umount2("./131/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./131/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./131/cgroup.net")  = 0
[pid   344] umount2("./131/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./131/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./131/cgroup.cpu")  = 0
[pid   344] umount2("./131/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./131/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./131/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./131")              = 0
[pid   344] mkdir("./132", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1006 attached
, child_tidptr=0x55557f95d650) = 134
[pid  1006] set_robust_list(0x55557f95d660, 24) = 0
[pid  1006] chdir("./132")              = 0
[pid  1006] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1006] setpgid(0, 0)               = 0
[pid  1006] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1006] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1006] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1006] write(3, "1000", 4)         = 4
[pid  1006] close(3)                    = 0
[pid  1006] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1006] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1006] write(1, "executing program\n", 18executing program
) = 18
[pid  1006] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1006] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1006] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1006] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1006] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1006] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1006] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1006] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1006] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1006] memfd_create("syzkaller", 0) = 5
[pid  1006] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1006] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1006] munmap(0x7f024f46f000, 138412032) = 0
[pid  1006] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1006] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1006] close(5)                    = 0
[pid  1006] close(6)                    = 0
[pid  1006] mkdir("./file0", 0777)      = 0
[pid  1006] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1006] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1006] chdir("./file0")            = 0
[pid  1006] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1006] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1006] close(6)                    = 0
[pid  1006] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1006] write(6, "#! ./file1\n", 11) = 11
[pid  1006] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1006] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1006] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=134, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./132", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./132", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   49.297829][ T1007] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1006: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./132/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./132/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./132/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./132/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./132/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./132/file0")        = 0
[pid   344] umount2("./132/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./132/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./132/binderfs")    = 0
[pid   344] umount2("./132/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./132/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./132/cgroup.net")  = 0
[pid   344] umount2("./132/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./132/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./132/cgroup.cpu")  = 0
[pid   344] umount2("./132/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./132/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./132/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./132")              = 0
[pid   344] mkdir("./133", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1011 attached
 <unfinished ...>
[pid  1011] set_robust_list(0x55557f95d660, 24) = 0
[pid  1011] chdir("./133")              = 0
[pid  1011] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1011] setpgid(0, 0)               = 0
[pid  1011] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 135
[pid  1011] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1011] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1011] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1011] write(3, "1000", 4)         = 4
[pid  1011] close(3)                    = 0
[pid  1011] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1011] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  1011] write(1, "executing program\n", 18) = 18
[pid  1011] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1011] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1011] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1011] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1011] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1011] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1011] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1011] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1011] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1011] memfd_create("syzkaller", 0) = 5
[pid  1011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1011] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1011] munmap(0x7f024f46f000, 138412032) = 0
[pid  1011] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1011] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1011] close(5)                    = 0
[pid  1011] close(6)                    = 0
[pid  1011] mkdir("./file0", 0777)      = 0
[pid  1011] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1011] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1011] chdir("./file0")            = 0
[pid  1011] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1011] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1011] close(6)                    = 0
[pid  1011] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1011] write(6, "#! ./file1\n", 11) = 11
[pid  1011] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1011] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1011] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=135, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./133", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./133", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./133/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./133/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./133/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./133/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./133/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./133/file0")        = 0
[pid   344] umount2("./133/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./133/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./133/binderfs")    = 0
[pid   344] umount2("./133/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./133/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./133/cgroup.net")  = 0
[pid   344] umount2("./133/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./133/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./133/cgroup.cpu")  = 0
[pid   344] umount2("./133/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./133/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./133/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./133")              = 0
[pid   344] mkdir("./134", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1016 attached
 <unfinished ...>
[pid  1016] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 136
[pid  1016] <... set_robust_list resumed>) = 0
[pid  1016] chdir("./134")              = 0
[pid  1016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1016] setpgid(0, 0)               = 0
[pid  1016] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1016] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1016] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1016] write(3, "1000", 4)         = 4
[pid  1016] close(3)                    = 0
[pid  1016] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1016] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  1016] write(1, "executing program\n", 18) = 18
[pid  1016] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1016] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1016] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1016] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1016] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1016] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1016] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1016] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1016] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1016] memfd_create("syzkaller", 0) = 5
[pid  1016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1016] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1016] munmap(0x7f024f46f000, 138412032) = 0
[pid  1016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[   49.638601][ T1012] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1011: bg 0: block 234: padding at end of block bitmap is not set
[pid  1016] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1016] close(5)                    = 0
[pid  1016] close(6)                    = 0
[pid  1016] mkdir("./file0", 0777)      = 0
[pid  1016] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1016] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1016] chdir("./file0")            = 0
[pid  1016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1016] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1016] close(6)                    = 0
[pid  1016] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1016] write(6, "#! ./file1\n", 11) = 11
[pid  1016] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1016] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1016] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=136, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./134", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./134", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./134/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./134/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./134/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./134/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./134/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./134/file0")        = 0
[pid   344] umount2("./134/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./134/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./134/binderfs")    = 0
[pid   344] umount2("./134/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./134/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./134/cgroup.net")  = 0
[pid   344] umount2("./134/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./134/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./134/cgroup.cpu")  = 0
[pid   344] umount2("./134/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./134/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./134/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[   49.749680][ T1017] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1016: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] rmdir("./134")              = 0
[pid   344] mkdir("./135", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1021 attached
 <unfinished ...>
[pid  1021] set_robust_list(0x55557f95d660, 24) = 0
[pid  1021] chdir("./135")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 137
[pid  1021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1021] setpgid(0, 0)               = 0
[pid  1021] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1021] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1021] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1021] write(3, "1000", 4)         = 4
[pid  1021] close(3)                    = 0
[pid  1021] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
executing program
[pid  1021] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1021] write(1, "executing program\n", 18) = 18
[pid  1021] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1021] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1021] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1021] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1021] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1021] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1021] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1021] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1021] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1021] memfd_create("syzkaller", 0) = 5
[pid  1021] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1021] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1021] munmap(0x7f024f46f000, 138412032) = 0
[pid  1021] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1021] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1021] close(5)                    = 0
[pid  1021] close(6)                    = 0
[pid  1021] mkdir("./file0", 0777)      = 0
[pid  1021] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1021] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1021] chdir("./file0")            = 0
[pid  1021] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1021] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1021] close(6)                    = 0
[pid  1021] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1021] write(6, "#! ./file1\n", 11) = 11
[pid  1021] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1021] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1021] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=137, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./135", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./135", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   50.008226][ T1022] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1021: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./135/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./135/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./135/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./135/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./135/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./135/file0")        = 0
[pid   344] umount2("./135/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./135/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./135/binderfs")    = 0
[pid   344] umount2("./135/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./135/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./135/cgroup.net")  = 0
[pid   344] umount2("./135/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./135/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./135/cgroup.cpu")  = 0
[pid   344] umount2("./135/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./135/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./135/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./135")              = 0
[pid   344] mkdir("./136", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 138
./strace-static-x86_64: Process 1026 attached
[pid  1026] set_robust_list(0x55557f95d660, 24) = 0
[pid  1026] chdir("./136")              = 0
[pid  1026] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1026] setpgid(0, 0)               = 0
[pid  1026] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1026] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1026] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1026] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1026] write(3, "1000", 4)         = 4
[pid  1026] close(3)                    = 0
[pid  1026] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1026] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1026] write(1, "executing program\n", 18executing program
) = 18
[pid  1026] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1026] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1026] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1026] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1026] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1026] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1026] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1026] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1026] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1026] memfd_create("syzkaller", 0) = 5
[pid  1026] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1026] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1026] munmap(0x7f024f46f000, 138412032) = 0
[pid  1026] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1026] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1026] close(5)                    = 0
[pid  1026] close(6)                    = 0
[pid  1026] mkdir("./file0", 0777)      = 0
[pid  1026] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1026] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1026] chdir("./file0")            = 0
[pid  1026] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1026] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1026] close(6)                    = 0
[pid  1026] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1026] write(6, "#! ./file1\n", 11) = 11
[pid  1026] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1026] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1026] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=138, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./136", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./136", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./136/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./136/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./136/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./136/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./136/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./136/file0")        = 0
[pid   344] umount2("./136/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./136/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./136/binderfs")    = 0
[pid   344] umount2("./136/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./136/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./136/cgroup.net")  = 0
[pid   344] umount2("./136/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./136/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./136/cgroup.cpu")  = 0
[pid   344] umount2("./136/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./136/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./136/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./136")              = 0
[pid   344] mkdir("./137", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3executing program
)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557f95d650) = 139
./strace-static-x86_64: Process 1031 attached
[pid  1031] set_robust_list(0x55557f95d660, 24) = 0
[pid  1031] chdir("./137")              = 0
[pid  1031] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1031] setpgid(0, 0)               = 0
[pid  1031] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1031] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1031] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1031] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1031] write(3, "1000", 4)         = 4
[pid  1031] close(3)                    = 0
[pid  1031] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1031] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1031] write(1, "executing program\n", 18) = 18
[pid  1031] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1031] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1031] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1031] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1031] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1031] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1031] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1031] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1031] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1031] memfd_create("syzkaller", 0) = 5
[pid  1031] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1031] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1031] munmap(0x7f024f46f000, 138412032) = 0
[pid  1031] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1031] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1031] close(5)                    = 0
[   50.175769][ T1027] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1026: bg 0: block 234: padding at end of block bitmap is not set
[pid  1031] close(6)                    = 0
[pid  1031] mkdir("./file0", 0777)      = 0
[pid  1031] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1031] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1031] chdir("./file0")            = 0
[pid  1031] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1031] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1031] close(6)                    = 0
[pid  1031] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1031] write(6, "#! ./file1\n", 11) = 11
[pid  1031] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1031] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1031] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=139, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./137", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./137", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   50.331867][ T1031] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./137/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./137/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./137/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./137/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./137/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./137/file0")        = 0
[pid   344] umount2("./137/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./137/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./137/binderfs")    = 0
[pid   344] umount2("./137/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./137/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./137/cgroup.net")  = 0
[pid   344] umount2("./137/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./137/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./137/cgroup.cpu")  = 0
[pid   344] umount2("./137/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./137/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./137/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./137")              = 0
[pid   344] mkdir("./138", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1036 attached
, child_tidptr=0x55557f95d650) = 140
[pid  1036] set_robust_list(0x55557f95d660, 24) = 0
[pid  1036] chdir("./138")              = 0
[pid  1036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1036] setpgid(0, 0)               = 0
[pid  1036] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1036] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1036] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1036] write(3, "1000", 4)         = 4
[pid  1036] close(3)                    = 0
[pid  1036] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1036] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  1036] write(1, "executing program\n", 18) = 18
[pid  1036] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1036] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1036] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1036] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1036] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1036] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1036] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1036] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1036] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1036] memfd_create("syzkaller", 0) = 5
[pid  1036] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1036] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1036] munmap(0x7f024f46f000, 138412032) = 0
[pid  1036] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1036] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1036] close(5)                    = 0
[pid  1036] close(6)                    = 0
[pid  1036] mkdir("./file0", 0777)      = 0
[pid  1036] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1036] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1036] chdir("./file0")            = 0
[pid  1036] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1036] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1036] close(6)                    = 0
[pid  1036] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1036] write(6, "#! ./file1\n", 11) = 11
[pid  1036] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1036] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1036] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=140, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./138", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./138", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   50.495625][ T1036] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./138/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./138/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./138/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./138/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./138/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./138/file0")        = 0
[pid   344] umount2("./138/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./138/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./138/binderfs")    = 0
[pid   344] umount2("./138/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./138/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./138/cgroup.net")  = 0
[pid   344] umount2("./138/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./138/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./138/cgroup.cpu")  = 0
[pid   344] umount2("./138/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./138/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./138/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./138")              = 0
[pid   344] mkdir("./139", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1041 attached
 <unfinished ...>
[pid  1041] set_robust_list(0x55557f95d660, 24) = 0
[pid  1041] chdir("./139")              = 0
[pid  1041] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1041] setpgid(0, 0)               = 0
[pid  1041] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1041] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1041] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1041] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 141
[pid  1041] write(3, "1000", 4)         = 4
[pid  1041] close(3)                    = 0
[pid  1041] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1041] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  1041] write(1, "executing program\n", 18) = 18
[pid  1041] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1041] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1041] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1041] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1041] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1041] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1041] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1041] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1041] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1041] memfd_create("syzkaller", 0) = 5
[pid  1041] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1041] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1041] munmap(0x7f024f46f000, 138412032) = 0
[pid  1041] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1041] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1041] close(5)                    = 0
[pid  1041] close(6)                    = 0
[pid  1041] mkdir("./file0", 0777)      = 0
[pid  1041] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1041] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1041] chdir("./file0")            = 0
[pid  1041] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1041] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1041] close(6)                    = 0
[pid  1041] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1041] write(6, "#! ./file1\n", 11) = 11
[pid  1041] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1041] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1041] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=141, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./139", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./139", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   50.798022][ T1042] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1041: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./139/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./139/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./139/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./139/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./139/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./139/file0")        = 0
[pid   344] umount2("./139/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./139/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./139/binderfs")    = 0
[pid   344] umount2("./139/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./139/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./139/cgroup.net")  = 0
[pid   344] umount2("./139/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./139/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./139/cgroup.cpu")  = 0
[pid   344] umount2("./139/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./139/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./139/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./139")              = 0
[pid   344] mkdir("./140", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1046 attached
, child_tidptr=0x55557f95d650) = 142
[pid  1046] set_robust_list(0x55557f95d660, 24) = 0
[pid  1046] chdir("./140")              = 0
[pid  1046] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1046] setpgid(0, 0)               = 0
[pid  1046] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1046] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1046] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1046] write(3, "1000", 4)         = 4
[pid  1046] close(3)                    = 0
[pid  1046] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1046] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1046] write(1, "executing program\n", 18executing program
) = 18
[pid  1046] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1046] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1046] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1046] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1046] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1046] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1046] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1046] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1046] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1046] memfd_create("syzkaller", 0) = 5
[pid  1046] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1046] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1046] munmap(0x7f024f46f000, 138412032) = 0
[pid  1046] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1046] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1046] close(5)                    = 0
[pid  1046] close(6)                    = 0
[pid  1046] mkdir("./file0", 0777)      = 0
[pid  1046] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1046] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1046] chdir("./file0")            = 0
[pid  1046] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1046] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1046] close(6)                    = 0
[pid  1046] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1046] write(6, "#! ./file1\n", 11) = 11
[pid  1046] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1046] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1046] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=142, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./140", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./140", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   50.977206][ T1047] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1046: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./140/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./140/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./140/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./140/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./140/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./140/file0")        = 0
[pid   344] umount2("./140/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./140/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./140/binderfs")    = 0
[pid   344] umount2("./140/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./140/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./140/cgroup.net")  = 0
[pid   344] umount2("./140/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./140/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./140/cgroup.cpu")  = 0
[pid   344] umount2("./140/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./140/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./140/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./140")              = 0
[pid   344] mkdir("./141", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1051 attached
 <unfinished ...>
[pid  1051] set_robust_list(0x55557f95d660, 24) = 0
[pid  1051] chdir("./141")              = 0
[pid  1051] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1051] setpgid(0, 0)               = 0
[pid  1051] symlink("/syzcgroup/unified/syz0", "./cgroup" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 143
[pid  1051] <... symlink resumed>)      = 0
[pid  1051] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1051] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1051] write(3, "1000", 4)         = 4
[pid  1051] close(3)                    = 0
[pid  1051] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1051] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  1051] write(1, "executing program\n", 18) = 18
[pid  1051] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1051] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1051] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1051] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1051] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1051] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1051] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1051] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1051] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1051] memfd_create("syzkaller", 0) = 5
[pid  1051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1051] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1051] munmap(0x7f024f46f000, 138412032) = 0
[pid  1051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1051] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1051] close(5)                    = 0
[pid  1051] close(6)                    = 0
[pid  1051] mkdir("./file0", 0777)      = 0
[pid  1051] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1051] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1051] chdir("./file0")            = 0
[pid  1051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1051] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1051] close(6)                    = 0
[pid  1051] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1051] write(6, "#! ./file1\n", 11) = 11
[pid  1051] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1051] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1051] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=143, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./141", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./141", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   51.157676][ T1052] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1051: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./141/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./141/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./141/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./141/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./141/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./141/file0")        = 0
[pid   344] umount2("./141/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./141/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./141/binderfs")    = 0
[pid   344] umount2("./141/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./141/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./141/cgroup.net")  = 0
[pid   344] umount2("./141/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./141/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./141/cgroup.cpu")  = 0
[pid   344] umount2("./141/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./141/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./141/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./141")              = 0
[pid   344] mkdir("./142", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
executing program
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1056 attached
 <unfinished ...>
[pid  1056] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 144
[pid  1056] <... set_robust_list resumed>) = 0
[pid  1056] chdir("./142")              = 0
[pid  1056] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1056] setpgid(0, 0)               = 0
[pid  1056] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1056] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1056] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1056] write(3, "1000", 4)         = 4
[pid  1056] close(3)                    = 0
[pid  1056] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1056] symlink("/dev/binderfs", "./binderfs") = 0
[pid  1056] write(1, "executing program\n", 18) = 18
[pid  1056] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1056] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1056] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1056] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1056] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1056] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1056] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1056] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1056] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1056] memfd_create("syzkaller", 0) = 5
[pid  1056] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1056] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1056] munmap(0x7f024f46f000, 138412032) = 0
[pid  1056] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1056] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1056] close(5)                    = 0
[pid  1056] close(6)                    = 0
[pid  1056] mkdir("./file0", 0777)      = 0
[pid  1056] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1056] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1056] chdir("./file0")            = 0
[pid  1056] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1056] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1056] close(6)                    = 0
[pid  1056] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1056] write(6, "#! ./file1\n", 11) = 11
[pid  1056] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1056] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1056] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=144, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./142", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./142", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[pid   344] umount2("./142/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./142/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./142/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./142/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./142/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[   51.311976][ T1056] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm syz-executor284: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./142/file0")        = 0
[pid   344] umount2("./142/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./142/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./142/binderfs")    = 0
[pid   344] umount2("./142/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./142/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./142/cgroup.net")  = 0
[pid   344] umount2("./142/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./142/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./142/cgroup.cpu")  = 0
[pid   344] umount2("./142/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./142/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./142/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./142")              = 0
[pid   344] mkdir("./143", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1061 attached
 <unfinished ...>
[pid  1061] set_robust_list(0x55557f95d660, 24) = 0
[pid  1061] chdir("./143" <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 145
[pid  1061] <... chdir resumed>)        = 0
[pid  1061] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1061] setpgid(0, 0)               = 0
[pid  1061] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1061] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1061] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1061] write(3, "1000", 4)         = 4
[pid  1061] close(3)                    = 0
[pid  1061] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1061] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  1061] write(1, "executing program\n", 18) = 18
[pid  1061] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1061] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1061] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1061] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1061] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1061] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1061] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1061] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1061] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1061] memfd_create("syzkaller", 0) = 5
[pid  1061] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1061] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1061] munmap(0x7f024f46f000, 138412032) = 0
[pid  1061] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1061] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1061] close(5)                    = 0
[pid  1061] close(6)                    = 0
[pid  1061] mkdir("./file0", 0777)      = 0
[pid  1061] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1061] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1061] chdir("./file0")            = 0
[pid  1061] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1061] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1061] close(6)                    = 0
[pid  1061] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1061] write(6, "#! ./file1\n", 11) = 11
[pid  1061] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1061] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1061] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=145, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=1} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./143", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./143", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   51.456842][ T1062] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1061: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./143/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./143/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./143/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./143/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./143/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./143/file0")        = 0
[pid   344] umount2("./143/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./143/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./143/binderfs")    = 0
[pid   344] umount2("./143/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./143/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./143/cgroup.net")  = 0
[pid   344] umount2("./143/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./143/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./143/cgroup.cpu")  = 0
[pid   344] umount2("./143/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./143/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./143/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./143")              = 0
[pid   344] mkdir("./144", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1066 attached
 <unfinished ...>
[pid  1066] set_robust_list(0x55557f95d660, 24) = 0
[pid  1066] chdir("./144")              = 0
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 146
[pid  1066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1066] setpgid(0, 0)               = 0
[pid  1066] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1066] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1066] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1066] write(3, "1000", 4)         = 4
[pid  1066] close(3)                    = 0
[pid  1066] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1066] symlink("/dev/binderfs", "./binderfs"executing program
) = 0
[pid  1066] write(1, "executing program\n", 18) = 18
[pid  1066] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1066] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1066] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1066] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1066] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1066] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1066] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1066] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1066] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1066] memfd_create("syzkaller", 0) = 5
[pid  1066] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1066] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1066] munmap(0x7f024f46f000, 138412032) = 0
[pid  1066] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1066] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1066] close(5)                    = 0
[pid  1066] close(6)                    = 0
[pid  1066] mkdir("./file0", 0777)      = 0
[pid  1066] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1066] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1066] chdir("./file0")            = 0
[pid  1066] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1066] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1066] close(6)                    = 0
[pid  1066] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1066] write(6, "#! ./file1\n", 11) = 11
[pid  1066] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1066] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x200000000284} ---
[pid  1066] +++ killed by SIGBUS (core dumped) +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=146, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=0} ---
[pid   344] umount2("./144", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./144", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   51.594158][ T1067] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1066: bg 0: block 234: padding at end of block bitmap is not set
[pid   344] umount2("./144/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid   344] umount2("./144/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./144/file0", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] umount2("./144/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./144/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   344] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(4, 0x55557f966730 /* 2 entries */, 32768) = 48
[pid   344] getdents64(4, 0x55557f966730 /* 0 entries */, 32768) = 0
[pid   344] close(4)                    = 0
[pid   344] rmdir("./144/file0")        = 0
[pid   344] umount2("./144/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./144/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./144/binderfs")    = 0
[pid   344] umount2("./144/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./144/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./144/cgroup.net")  = 0
[pid   344] umount2("./144/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./144/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./144/cgroup.cpu")  = 0
[pid   344] umount2("./144/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] newfstatat(AT_FDCWD, "./144/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   344] unlink("./144/cgroup")      = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 0 entries */, 32768) = 0
[pid   344] close(3)                    = 0
[pid   344] rmdir("./144")              = 0
[pid   344] mkdir("./145", 0777)        = 0
[pid   344] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid   344] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   344] close(3)                    = 0
[pid   344] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 1071 attached
 <unfinished ...>
[pid  1071] set_robust_list(0x55557f95d660, 24 <unfinished ...>
[pid   344] <... clone resumed>, child_tidptr=0x55557f95d650) = 147
[pid  1071] <... set_robust_list resumed>) = 0
[pid  1071] chdir("./145")              = 0
[pid  1071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  1071] setpgid(0, 0)               = 0
[pid  1071] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  1071] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  1071] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  1071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  1071] write(3, "1000", 4)         = 4
[pid  1071] close(3)                    = 0
[pid  1071] read(200, 0x7ffefdd9fc30, 1000) = -1 EAGAIN (Resource temporarily unavailable)
[pid  1071] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  1071] write(1, "executing program\n", 18) = 18
[pid  1071] openat(AT_FDCWD, "/dev/vhost-vsock", O_RDWR) = 3
[pid  1071] ioctl(3, VHOST_SET_OWNER, 0) = 0
[pid  1071] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000300) = 0
[pid  1071] ioctl(3, VHOST_SET_MEM_TABLE, 0x200000003380) = 0
[pid  1071] eventfd2(118, EFD_SEMAPHORE) = 4
[pid  1071] ioctl(3, VHOST_SET_VRING_ERR, 0x2000000001c0) = 0
[pid  1071] ioctl(3, VHOST_SET_VRING_ADDR, 0x200000000240) = 0
[pid  1071] ioctl(3, VHOST_SET_VRING_KICK, 0x200000000000) = 0
[pid  1071] ioctl(3, VHOST_VSOCK_SET_RUNNING, 0x200000000140) = 0
[pid  1071] memfd_create("syzkaller", 0) = 5
[pid  1071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f024f46f000
[pid  1071] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  1071] munmap(0x7f024f46f000, 138412032) = 0
[pid  1071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1071] ioctl(6, LOOP_SET_FD, 5)    = 0
[pid  1071] close(5)                    = 0
[pid  1071] close(6)                    = 0
[pid  1071] mkdir("./file0", 0777)      = 0
[pid  1071] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_STRICTATIME|MS_LAZYTIME, "dioread_lock,auto_da_alloc,nojournal_checksum,grpquota,auto_da_alloc,noquota,data_err=abort,grpid,gr"...) = 0
[pid  1071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
[pid  1071] chdir("./file0")            = 0
[pid  1071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 6
[pid  1071] ioctl(6, LOOP_CLR_FD)       = 0
[pid  1071] close(6)                    = 0
[pid  1071] openat(AT_FDCWD, "hugetlb.2MB.usage_in_bytes", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 6
[pid  1071] write(6, "#! ./file1\n", 11) = 11
[pid  1071] mmap(0x200000000000, 11755520, PROT_READ|PROT_WRITE|PROT_SEM|PROT_GROWSUP|0x800000, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 6, 0) = 0x200000000000
[pid  1071] ioctl(-1, KVM_SET_IRQCHIP, 0x200000000280) = -1 EBADF (Bad file descriptor)
[pid  1071] close(3)                    = 0
[pid  1071] close(4)                    = 0
[pid  1071] close(5)                    = 0
[pid  1071] close(6)                    = 0
[pid  1071] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  1071] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  1071] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  1071] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  1071] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  1071] exit_group(0)               = ?
[pid  1071] +++ exited with 0 +++
[pid   344] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=147, si_uid=0, si_status=0, si_utime=0, si_stime=2} ---
[pid   344] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   344] umount2("./145", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   344] openat(AT_FDCWD, "./145", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   344] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid   344] getdents64(3, 0x55557f95e6f0 /* 7 entries */, 32768) = 208
[   51.888365][ T1072] EXT4-fs error (device loop0): ext4_validate_block_bitmap:418: comm vhost-1071: bg 0: block 234: padding at end of block bitmap is not set
[   51.919169][  T765] ------------[ cut here ]------------
[   51.924751][  T765] kernel BUG at fs/ext4/inode.c:2844!
[   51.930225][  T765] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   51.936317][  T765] CPU: 1 PID: 765 Comm: kworker/u4:3 Not tainted 5.4.292-syzkaller-00021-gcd8e74fa0fa3 #0
[   51.946487][  T765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   51.956535][  T765] Workqueue: writeback wb_workfn (flush-7:0)
[   51.963013][  T765] RIP: 0010:ext4_writepages+0x2f83/0x2fb0
[   51.968805][  T765] Code: 0f 94 c6 bf 02 00 00 00 e8 6a 29 a1 ff 84 db 75 2e e8 11 27 a1 ff 49 bc 00 00 00 00 00 fc ff df e9 47 f9 ff ff e8 fd 26 a1 ff <0f> 0b e8 f6 26 a1 ff 0f 0b e8 ef 26 a1 ff e8 ba ef 41 ff eb 9b e8
[   51.988693][  T765] RSP: 0018:ffff8881e1f271a0 EFLAGS: 00010293
[   51.994984][  T765] RAX: ffffffff81be57e3 RBX: 0000010410000000 RCX: ffff8881d9b88000
[   52.003033][  T765] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   52.010990][  T765] RBP: ffff8881e1f274f0 R08: dffffc0000000000 R09: ffffed103b1b21fa
[   52.018940][  T765] R10: ffffed103b1b21fa R11: 1ffff1103b1b21f9 R12: dffffc0000000000
[   52.026976][  T765] R13: ffff8881e1f27810 R14: 0000010000000000 R15: ffff8881d8d910a0
[   52.034925][  T765] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   52.043958][  T765] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.050820][  T765] CR2: 00007f02578fa3a8 CR3: 00000001de231000 CR4: 00000000003406a0
[   52.059168][  T765] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.067321][  T765] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.075537][  T765] Call Trace:
[   52.078841][  T765]  ? __kasan_check_read+0x11/0x20
[   52.083853][  T765]  ? __find_get_block+0xab4/0xe90
[   52.088856][  T765]  ? write_boundary_block+0x140/0x140
[   52.094204][  T765]  ? ext4_readpage+0x310/0x310
[   52.099033][  T765]  ? dd_has_work+0x153/0x180
[   52.103602][  T765]  ? __getblk_gfp+0x3b/0x760
[   52.108702][  T765]  ? debug_smp_processor_id+0x20/0x20
[   52.114139][  T765]  ? ext4_get_group_desc+0x249/0x2a0
[   52.119400][  T765]  ? debug_smp_processor_id+0x20/0x20
[   52.124842][  T765]  ? ext4_readpage+0x310/0x310
[   52.129775][  T765]  do_writepages+0x127/0x270
[   52.134357][  T765]  ? debug_smp_processor_id+0x20/0x20
[   52.139701][  T765]  ? __writepage+0x120/0x120
[   52.144265][  T765]  ? __kasan_check_write+0x14/0x20
[   52.149350][  T765]  ? _raw_spin_lock+0x8e/0xe0
[   52.154027][  T765]  ? __kasan_check_write+0x14/0x20
[   52.159198][  T765]  ? _raw_spin_lock+0x8e/0xe0
[   52.164072][  T765]  __writeback_single_inode+0xd9/0xc30
[   52.169506][  T765]  ? wbc_attach_and_unlock_inode+0x175/0x5b0
[   52.175460][  T765]  writeback_sb_inodes+0x94f/0x1700
[   52.180732][  T765]  ? _raw_spin_lock+0x8e/0xe0
[   52.185382][  T765]  ? queue_io+0x4e0/0x4e0
[   52.189690][  T765]  ? __kasan_check_read+0x11/0x20
[   52.194702][  T765]  wb_writeback+0x3e1/0xc20
[   52.199195][  T765]  ? wb_io_lists_depopulated+0x170/0x170
[   52.204800][  T765]  ? check_preemption_disabled+0x9b/0x300
[   52.210492][  T765]  ? debug_smp_processor_id+0x20/0x20
[   52.215861][  T765]  ? __kasan_check_write+0x14/0x20
[   52.220958][  T765]  ? check_preemption_disabled+0x9b/0x300
[   52.226777][  T765]  wb_workfn+0x375/0xf90
[   52.231132][  T765]  ? inode_wait_for_writeback+0x200/0x200
[   52.236929][  T765]  ? __kasan_check_read+0x11/0x20
[   52.242108][  T765]  ? switch_mm_irqs_off+0x37d/0x9b0
[   52.247371][  T765]  ? _raw_spin_unlock_irq+0x4e/0x70
[   52.252631][  T765]  ? finish_task_switch+0x12e/0x590
[   52.257805][  T765]  ? __schedule+0xa57/0x12a0
[   52.262454][  T765]  ? __kasan_check_read+0x11/0x20
[   52.267458][  T765]  ? read_word_at_a_time+0x12/0x20
[   52.272544][  T765]  ? strscpy+0x9b/0x290
[   52.276761][  T765]  process_one_work+0x73b/0xcc0
[   52.281602][  T765]  worker_thread+0xa5c/0x13b0
[   52.286261][  T765]  ? _raw_spin_lock_irqsave+0xb0/0x110
[   52.291815][  T765]  ? __kasan_check_read+0x11/0x20
[   52.296818][  T765]  kthread+0x31e/0x3a0
[   52.300944][  T765]  ? worker_clr_flags+0x190/0x190
[   52.305940][  T765]  ? kthread_blkcg+0xd0/0xd0
[   52.310515][  T765]  ret_from_fork+0x1f/0x30
[   52.314917][  T765] Modules linked in:
[   52.318904][  T765] ---[ end trace 019f10cb1b106120 ]---
[   52.324369][  T765] RIP: 0010:ext4_writepages+0x2f83/0x2fb0
[   52.330566][  T765] Code: 0f 94 c6 bf 02 00 00 00 e8 6a 29 a1 ff 84 db 75 2e e8 11 27 a1 ff 49 bc 00 00 00 00 00 fc ff df e9 47 f9 ff ff e8 fd 26 a1 ff <0f> 0b e8 f6 26 a1 ff 0f 0b e8 ef 26 a1 ff e8 ba ef 41 ff eb 9b e8
[   52.350302][  T765] RSP: 0018:ffff8881e1f271a0 EFLAGS: 00010293
[   52.356378][  T765] RAX: ffffffff81be57e3 RBX: 0000010410000000 RCX: ffff8881d9b88000
[   52.364350][  T765] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   52.372454][  T765] RBP: ffff8881e1f274f0 R08: dffffc0000000000 R09: ffffed103b1b21fa
[   52.381097][  T765] R10: ffffed103b1b21fa R11: 1ffff1103b1b21f9 R12: dffffc0000000000
[   52.389277][  T765] R13: ffff8881e1f27810 R14: 0000010000000000 R15: ffff8881d8d910a0
[   52.397422][  T765] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   52.406370][  T765] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.413054][  T765] CR2: 00007f02578fa3a8 CR3: 00000001de231000 CR4: 00000000003406a0
[   52.421231][  T765] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.429331][  T765] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.437327][  T765] Kernel panic - not syncing: Fatal exception
[   52.443837][  T765] Kernel Offset: disabled
[   52.448232][  T765] Rebooting in 86400 seconds..