./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2776258664 <...> Warning: Permanently added '10.128.0.140' (ED25519) to the list of known hosts. execve("./syz-executor2776258664", ["./syz-executor2776258664"], 0x7ffd7597b490 /* 10 vars */) = 0 brk(NULL) = 0x55555618c000 brk(0x55555618cd00) = 0x55555618cd00 arch_prctl(ARCH_SET_FS, 0x55555618c380) = 0 set_tid_address(0x55555618c650) = 5826 set_robust_list(0x55555618c660, 24) = 0 rseq(0x55555618cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2776258664", 4096) = 28 getrandom("\xb6\x11\x80\x23\xdc\x09\x43\xc8", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555618cd00 brk(0x5555561add00) = 0x5555561add00 brk(0x5555561ae000) = 0x5555561ae000 mprotect(0x7f85247b6000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555618c650) = 5827 ./strace-static-x86_64: Process 5827 attached [pid 5827] set_robust_list(0x55555618c660, 24 [pid 5826] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC [pid 5827] <... set_robust_list resumed>) = 0 [pid 5826] <... openat resumed>) = 3 [pid 5826] write(3, "10000000000", 11) = 11 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "20", 2) = 2 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "1", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "0", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "0", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "1", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "100", 3) = 3 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "0", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "0", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "7 4 1 3", 7) = 7 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "1", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "1", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "0", 1) = 1 [pid 5826] close(3) = 0 [pid 5826] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 [pid 5826] write(3, "5827", 4) = 4 [pid 5826] close(3) = 0 [pid 5826] kill(5827, SIGKILL) = 0 [pid 5827] +++ killed by SIGKILL +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5827, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5830 attached , child_tidptr=0x55555618c650) = 5830 [pid 5830] set_robust_list(0x55555618c660, 24) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5830] mkdir("./syzkaller.ovlKFQ", 0700./strace-static-x86_64: Process 5831 attached [pid 5826] <... clone resumed>, child_tidptr=0x55555618c650) = 5831 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5830] <... mkdir resumed>) = 0 [pid 5831] set_robust_list(0x55555618c660, 24) = 0 [pid 5830] chmod("./syzkaller.ovlKFQ", 0777./strace-static-x86_64: Process 5832 attached [pid 5831] mkdir("./syzkaller.9vyx0S", 0700 [pid 5826] <... clone resumed>, child_tidptr=0x55555618c650) = 5832 [pid 5832] set_robust_list(0x55555618c660, 24 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5832] <... set_robust_list resumed>) = 0 [pid 5831] <... mkdir resumed>) = 0 [pid 5830] <... chmod resumed>) = 0 [pid 5830] chdir("./syzkaller.ovlKFQ"./strace-static-x86_64: Process 5833 attached [pid 5831] chmod("./syzkaller.9vyx0S", 0777 [pid 5826] <... clone resumed>, child_tidptr=0x55555618c650) = 5833 [pid 5831] <... chmod resumed>) = 0 [pid 5830] <... chdir resumed>) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5833] set_robust_list(0x55555618c660, 24 [pid 5832] mkdir("./syzkaller.IBrNV8", 0700 [pid 5831] chdir("./syzkaller.9vyx0S" [pid 5830] mkdir("./0", 0777 [pid 5833] <... set_robust_list resumed>) = 0 [pid 5830] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5834 attached [pid 5833] mkdir("./syzkaller.Yw4wLz", 0700 [pid 5832] <... mkdir resumed>) = 0 [pid 5831] <... chdir resumed>) = 0 [pid 5826] <... clone resumed>, child_tidptr=0x55555618c650) = 5834 [pid 5834] set_robust_list(0x55555618c660, 24) = 0 [pid 5832] chmod("./syzkaller.IBrNV8", 0777 [pid 5831] mkdir("./0", 0777 [pid 5830] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5832] <... chmod resumed>) = 0 [pid 5830] <... openat resumed>) = 3 [pid 5832] chdir("./syzkaller.IBrNV8") = 0 [pid 5831] <... mkdir resumed>) = 0 [pid 5832] mkdir("./0", 0777 [pid 5830] ioctl(3, LOOP_CLR_FD [pid 5833] <... mkdir resumed>) = 0 [pid 5834] mkdir("./syzkaller.eiQ1ua", 0700 [pid 5832] <... mkdir resumed>) = 0 [pid 5830] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5830] close(3) = 0 [pid 5830] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5836 attached ./strace-static-x86_64: Process 5835 attached [pid 5834] <... mkdir resumed>) = 0 [pid 5833] chmod("./syzkaller.Yw4wLz", 0777 [pid 5832] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5831] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5826] <... clone resumed>, child_tidptr=0x55555618c650) = 5835 [pid 5835] set_robust_list(0x55555618c660, 24 [pid 5833] <... chmod resumed>) = 0 [pid 5832] <... openat resumed>) = 3 [pid 5831] <... openat resumed>) = 3 [pid 5836] set_robust_list(0x55555618c660, 24 [pid 5835] <... set_robust_list resumed>) = 0 [pid 5834] chmod("./syzkaller.eiQ1ua", 0777 [pid 5833] chdir("./syzkaller.Yw4wLz" [pid 5832] ioctl(3, LOOP_CLR_FD [pid 5830] <... clone resumed>, child_tidptr=0x55555618c650) = 5836 [pid 5834] <... chmod resumed>) = 0 [pid 5833] <... chdir resumed>) = 0 [pid 5834] chdir("./syzkaller.eiQ1ua") = 0 [pid 5834] mkdir("./0", 0777 [pid 5832] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5835] mkdir("./syzkaller.hD4jkA", 0700 [pid 5834] <... mkdir resumed>) = 0 [pid 5833] mkdir("./0", 0777 [pid 5834] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5836] <... set_robust_list resumed>) = 0 [pid 5834] <... openat resumed>) = 3 [pid 5832] close(3 [pid 5831] ioctl(3, LOOP_CLR_FD [pid 5834] ioctl(3, LOOP_CLR_FD [pid 5836] chdir("./0" [pid 5835] <... mkdir resumed>) = 0 [pid 5833] <... mkdir resumed>) = 0 [pid 5832] <... close resumed>) = 0 [pid 5831] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5836] <... chdir resumed>) = 0 [pid 5832] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5834] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5834] close(3./strace-static-x86_64: Process 5838 attached [pid 5836] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5835] chmod("./syzkaller.hD4jkA", 0777 [pid 5833] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5831] close(3 [pid 5838] set_robust_list(0x55555618c660, 24 [pid 5836] <... prctl resumed>) = 0 [pid 5834] <... close resumed>) = 0 [pid 5832] <... clone resumed>, child_tidptr=0x55555618c650) = 5838 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5836] setpgid(0, 0 [pid 5834] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5838] chdir("./0" [pid 5836] <... setpgid resumed>) = 0 [pid 5836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5838] <... chdir resumed>) = 0 [pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5838] setpgid(0, 0 [pid 5836] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 5839 attached [pid 5838] <... setpgid resumed>) = 0 [pid 5835] <... chmod resumed>) = 0 [pid 5833] <... openat resumed>) = 3 [pid 5831] <... close resumed>) = 0 [pid 5839] set_robust_list(0x55555618c660, 24 [pid 5834] <... clone resumed>, child_tidptr=0x55555618c650) = 5839 [pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5836] close(3 [pid 5835] chdir("./syzkaller.hD4jkA" [pid 5839] <... set_robust_list resumed>) = 0 [pid 5833] ioctl(3, LOOP_CLR_FD [pid 5831] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5839] chdir("./0" [pid 5836] <... close resumed>) = 0 [pid 5835] <... chdir resumed>) = 0 [pid 5833] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5838] <... openat resumed>) = 3 [pid 5835] mkdir("./0", 0777 [pid 5838] write(3, "1000", 4 [pid 5836] symlink("/dev/binderfs", "./binderfs" [pid 5833] close(3 [pid 5838] <... write resumed>) = 4 [pid 5836] <... symlink resumed>) = 0 [pid 5835] <... mkdir resumed>) = 0 [pid 5833] <... close resumed>) = 0 [pid 5838] close(3) = 0 ./strace-static-x86_64: Process 5840 attached [pid 5838] symlink("/dev/binderfs", "./binderfs" [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5839] <... chdir resumed>) = 0 [pid 5838] <... symlink resumed>) = 0 executing program [pid 5836] write(1, "executing program\n", 18 [pid 5831] <... clone resumed>, child_tidptr=0x55555618c650) = 5840 [pid 5836] <... write resumed>) = 18 [pid 5835] openat(AT_FDCWD, "/dev/loop5", O_RDWRexecuting program ./strace-static-x86_64: Process 5841 attached [pid 5840] set_robust_list(0x55555618c660, 24 [pid 5839] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5836] memfd_create("syzkaller", 0 [pid 5835] <... openat resumed>) = 3 [pid 5839] <... prctl resumed>) = 0 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5840] chdir("./0" [pid 5839] setpgid(0, 0 [pid 5838] write(1, "executing program\n", 18 [pid 5839] <... setpgid resumed>) = 0 [pid 5841] set_robust_list(0x55555618c660, 24 [pid 5840] <... chdir resumed>) = 0 [pid 5841] <... set_robust_list resumed>) = 0 [pid 5839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5838] <... write resumed>) = 18 [pid 5836] <... memfd_create resumed>) = 3 [pid 5835] ioctl(3, LOOP_CLR_FD [pid 5833] <... clone resumed>, child_tidptr=0x55555618c650) = 5841 [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5839] <... openat resumed>) = 3 [pid 5841] chdir("./0" [pid 5840] <... prctl resumed>) = 0 [pid 5839] write(3, "1000", 4 [pid 5838] memfd_create("syzkaller", 0 [pid 5835] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5840] setpgid(0, 0 [pid 5836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5840] <... setpgid resumed>) = 0 [pid 5836] <... mmap resumed>) = 0x7f851c200000 [pid 5841] <... chdir resumed>) = 0 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5839] <... write resumed>) = 4 [pid 5835] close(3 [pid 5841] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5839] close(3 [pid 5841] <... prctl resumed>) = 0 [pid 5841] setpgid(0, 0 [pid 5840] <... openat resumed>) = 3 [pid 5839] <... close resumed>) = 0 [pid 5835] <... close resumed>) = 0 [pid 5835] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5842 attached [pid 5841] <... setpgid resumed>) = 0 [pid 5840] write(3, "1000", 4 [pid 5839] symlink("/dev/binderfs", "./binderfs" [pid 5838] <... memfd_create resumed>) = 3 [pid 5840] <... write resumed>) = 4 [pid 5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5840] close(3 [pid 5838] <... mmap resumed>) = 0x7f851c200000 [pid 5841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] <... close resumed>) = 0 [pid 5839] <... symlink resumed>) = 0 [pid 5842] set_robust_list(0x55555618c660, 24 [pid 5840] symlink("/dev/binderfs", "./binderfs" [pid 5841] <... openat resumed>) = 3 executing program executing program [pid 5841] write(3, "1000", 4 [pid 5839] write(1, "executing program\n", 18 [pid 5841] <... write resumed>) = 4 [pid 5839] <... write resumed>) = 18 [pid 5841] close(3 [pid 5842] <... set_robust_list resumed>) = 0 [pid 5841] <... close resumed>) = 0 [pid 5840] <... symlink resumed>) = 0 [pid 5835] <... clone resumed>, child_tidptr=0x55555618c650) = 5842 [pid 5842] chdir("./0" [pid 5840] write(1, "executing program\n", 18) = 18 [pid 5840] memfd_create("syzkaller", 0 [pid 5842] <... chdir resumed>) = 0 [pid 5842] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5842] setpgid(0, 0) = 0 [pid 5842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5840] <... memfd_create resumed>) = 3 [pid 5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f851c200000 [pid 5842] write(3, "1000", 4) = 4 [pid 5842] close(3) = 0 [pid 5842] symlink("/dev/binderfs", "./binderfs" [pid 5839] memfd_create("syzkaller", 0 [pid 5842] <... symlink resumed>) = 0 [pid 5839] <... memfd_create resumed>) = 3 [pid 5842] write(1, "executing program\n", 18executing program executing program [pid 5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5842] <... write resumed>) = 18 [pid 5841] symlink("/dev/binderfs", "./binderfs" [pid 5839] <... mmap resumed>) = 0x7f851c200000 [pid 5842] memfd_create("syzkaller", 0 [pid 5841] <... symlink resumed>) = 0 [pid 5841] write(1, "executing program\n", 18) = 18 [pid 5841] memfd_create("syzkaller", 0 [pid 5842] <... memfd_create resumed>) = 3 [pid 5841] <... memfd_create resumed>) = 3 [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f851c200000 [pid 5842] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f851c200000 [pid 5839] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5836] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5840] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5838] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5842] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5839] <... write resumed>) = 16777216 [pid 5839] munmap(0x7f851c200000, 138412032 [pid 5841] <... write resumed>) = 16777216 [pid 5841] munmap(0x7f851c200000, 138412032 [pid 5840] <... write resumed>) = 16777216 [pid 5838] <... write resumed>) = 16777216 [ 91.205411][ T43] cfg80211: failed to load regulatory.db [pid 5840] munmap(0x7f851c200000, 138412032 [pid 5838] munmap(0x7f851c200000, 138412032 [pid 5836] <... write resumed>) = 16777216 [pid 5836] munmap(0x7f851c200000, 138412032 [pid 5842] <... write resumed>) = 16777216 [pid 5842] munmap(0x7f851c200000, 138412032 [pid 5839] <... munmap resumed>) = 0 [pid 5839] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5839] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5839] close(3) = 0 [pid 5839] close(4) = 0 [pid 5839] mkdir("./file0", 0777) = 0 [pid 5839] mount("/dev/loop4", "./file0", "gfs2", 0, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5841] <... munmap resumed>) = 0 [ 91.322324][ T5839] loop4: detected capacity change from 0 to 32768 [pid 5841] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5841] ioctl(4, LOOP_SET_FD, 3 [pid 5836] <... munmap resumed>) = 0 [pid 5836] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5836] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5841] <... ioctl resumed>) = 0 [pid 5841] close(3 [pid 5840] <... munmap resumed>) = 0 [pid 5842] <... munmap resumed>) = 0 [ 91.381337][ T5841] loop3: detected capacity change from 0 to 32768 [ 91.381754][ T5839] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 91.409591][ T5839] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 91.422318][ T5836] loop0: detected capacity change from 0 to 32768 [pid 5841] <... close resumed>) = 0 [pid 5836] close(3 [pid 5841] close(4 [pid 5840] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5841] <... close resumed>) = 0 [pid 5841] mkdir("./file0", 0777 [pid 5840] <... openat resumed>) = 4 [pid 5842] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5841] <... mkdir resumed>) = 0 [pid 5840] ioctl(4, LOOP_SET_FD, 3 [pid 5836] <... close resumed>) = 0 [pid 5842] <... openat resumed>) = 4 [pid 5841] mount("/dev/loop3", "./file0", "gfs2", 0, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5836] close(4) = 0 [pid 5836] mkdir("./file0", 0777) = 0 [ 91.468184][ T5839] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 91.476830][ T5840] loop1: detected capacity change from 0 to 32768 [pid 5836] mount("/dev/loop0", "./file0", "gfs2", 0, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5838] <... munmap resumed>) = 0 [pid 5842] ioctl(4, LOOP_SET_FD, 3 [pid 5840] <... ioctl resumed>) = 0 [pid 5838] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [ 91.510976][ T5841] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.518392][ T5841] CPU: 1 UID: 0 PID: 5841 Comm: syz-executor277 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 91.518422][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 91.518437][ T5841] Call Trace: [ 91.518446][ T5841] [ 91.518455][ T5841] dump_stack_lvl+0x189/0x250 [ 91.518519][ T5841] ? kernfs_path_from_node+0x2c/0x260 [pid 5838] ioctl(4, LOOP_SET_FD, 3 [pid 5840] close(3) = 0 [pid 5842] <... ioctl resumed>) = 0 [pid 5840] close(4 [pid 5842] close(3 [pid 5840] <... close resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5840] mkdir("./file0", 0777 [pid 5842] close(4 [pid 5840] <... mkdir resumed>) = 0 [pid 5842] <... close resumed>) = 0 [pid 5840] mount("/dev/loop1", "./file0", "gfs2", 0, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [ 91.518568][ T5841] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.518606][ T5841] ? __pfx__printk+0x10/0x10 [ 91.518635][ T5841] ? kernfs_path_from_node+0x2c/0x260 [ 91.518672][ T5841] ? kernfs_path_from_node+0x2c/0x260 [ 91.518708][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.518736][ T5841] ? kernfs_path_from_node+0x22c/0x260 [ 91.518772][ T5841] ? kernfs_path_from_node+0x2c/0x260 [ 91.518814][ T5841] sysfs_create_dir_ns+0x259/0x280 [ 91.518854][ T5841] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [pid 5842] mkdir("./file0", 0777) = 0 [ 91.518897][ T5841] ? do_raw_spin_unlock+0x122/0x240 [ 91.518942][ T5841] kobject_add_internal+0x59f/0xb40 [ 91.518988][ T5841] kobject_init_and_add+0x125/0x190 [ 91.519023][ T5841] ? __pfx_kobject_init_and_add+0x10/0x10 [ 91.519053][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519080][ T5841] ? __raw_spin_lock_init+0x45/0x100 [ 91.519119][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519147][ T5841] ? __init_swait_queue_head+0xa9/0x150 [ 91.519191][ T5841] gfs2_sys_fs_add+0x237/0x470 [ 91.519222][ T5841] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 91.519256][ T5841] ? is_dynamic_key+0xd6/0x1c0 [ 91.519283][ T5841] ? __pfx_alloc_workqueue+0x10/0x10 [ 91.519339][ T5841] gfs2_fill_super+0x1348/0x2010 [ 91.519392][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.519424][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519455][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519479][ T5841] ? sb_set_blocksize+0x104/0x180 [ 91.519515][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519545][ T5841] ? setup_bdev_super+0x4c1/0x5b0 [ 91.519577][ T5841] get_tree_bdev_flags+0x40e/0x4d0 [ 91.519603][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.519636][ T5841] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 91.519667][ T5841] ? rcu_is_watching+0x15/0xb0 [ 91.519707][ T5841] gfs2_get_tree+0x51/0x1e0 [ 91.519744][ T5841] vfs_get_tree+0x92/0x2b0 [ 91.519775][ T5841] do_new_mount+0x24a/0xa40 [ 91.519816][ T5841] __se_sys_mount+0x317/0x410 [ 91.519856][ T5841] ? __pfx___se_sys_mount+0x10/0x10 [ 91.519888][ T5841] ? rcu_is_watching+0x15/0xb0 [ 91.519922][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.519949][ T5841] ? __x64_sys_mount+0x20/0xc0 [ 91.519987][ T5841] do_syscall_64+0xfa/0x3b0 [ 91.520012][ T5841] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.520023][ T970] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 91.520036][ T5841] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.520059][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.520087][ T5841] ? exc_page_fault+0x9f/0xf0 [ 91.520111][ T5841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.520135][ T5841] RIP: 0033:0x7f852473181a [ 91.520156][ T5841] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 91.520175][ T5841] RSP: 002b:00007ffc4d703128 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 91.520199][ T5841] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f852473181a [ 91.520216][ T5841] RDX: 00002000000124c0 RSI: 0000200000000040 RDI: 00007ffc4d703180 [ 91.520234][ T5841] RBP: 0000000000000004 R08: 00007ffc4d7031c0 R09: 00000000000125e4 [ 91.520249][ T5841] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000001000000 [ 91.520264][ T5841] R13: 00007ffc4d7031c0 R14: 0000200000000040 R15: 0000000000000003 [ 91.520300][ T5841] [ 91.542363][ T5841] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 91.547653][ T5842] loop5: detected capacity change from 0 to 32768 [ 91.548532][ T5841] gfs2: fsid=syz:syz: error -17 adding sysfs files [pid 5842] mount("/dev/loop5", "./file0", "gfs2", 0, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5838] <... ioctl resumed>) = 0 [ 91.559452][ T5838] loop2: detected capacity change from 0 to 32768 [ 91.641523][ T5840] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.642729][ T970] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 91.648197][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz-executor277 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 91.648225][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 91.648239][ T5840] Call Trace: [ 91.648249][ T5840] [ 91.648259][ T5840] dump_stack_lvl+0x189/0x250 [ 91.648303][ T5840] ? kernfs_path_from_node+0x2c/0x260 [ 91.648343][ T5840] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.648382][ T5840] ? __pfx__printk+0x10/0x10 [ 91.648410][ T5840] ? kernfs_path_from_node+0x2c/0x260 [ 91.648446][ T5840] ? kernfs_path_from_node+0x2c/0x260 [ 91.648484][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.648512][ T5840] ? kernfs_path_from_node+0x22c/0x260 [ 91.648554][ T5840] ? kernfs_path_from_node+0x2c/0x260 [ 91.648594][ T5840] sysfs_create_dir_ns+0x259/0x280 [ 91.648634][ T5840] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 91.648673][ T5840] ? do_raw_spin_unlock+0x122/0x240 [ 91.648716][ T5840] kobject_add_internal+0x59f/0xb40 [ 91.648756][ T5840] kobject_init_and_add+0x125/0x190 [ 91.648792][ T5840] ? __pfx_kobject_init_and_add+0x10/0x10 [ 91.648821][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.648849][ T5840] ? __raw_spin_lock_init+0x45/0x100 [ 91.648887][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.648914][ T5840] ? __init_swait_queue_head+0xa9/0x150 [ 91.648956][ T5840] gfs2_sys_fs_add+0x237/0x470 [ 91.648986][ T5840] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 91.649021][ T5840] ? is_dynamic_key+0xd6/0x1c0 [ 91.649046][ T5840] ? __pfx_alloc_workqueue+0x10/0x10 [ 91.649102][ T5840] gfs2_fill_super+0x1348/0x2010 [ 91.649156][ T5840] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.649188][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.649222][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.649249][ T5840] ? sb_set_blocksize+0x104/0x180 [ 91.649284][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.649310][ T5840] ? setup_bdev_super+0x4c1/0x5b0 [ 91.649345][ T5840] get_tree_bdev_flags+0x40e/0x4d0 [ 91.649375][ T5840] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.649409][ T5840] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 91.649441][ T5840] ? rcu_is_watching+0x15/0xb0 [ 91.649480][ T5840] gfs2_get_tree+0x51/0x1e0 [ 91.649522][ T5840] vfs_get_tree+0x92/0x2b0 [ 91.649559][ T5840] do_new_mount+0x24a/0xa40 [ 91.649603][ T5840] __se_sys_mount+0x317/0x410 [ 91.649645][ T5840] ? __pfx___se_sys_mount+0x10/0x10 [ 91.649676][ T5840] ? rcu_is_watching+0x15/0xb0 [ 91.649713][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.649741][ T5840] ? __x64_sys_mount+0x20/0xc0 [ 91.649778][ T5840] do_syscall_64+0xfa/0x3b0 [ 91.649802][ T5840] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.649826][ T5840] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.649849][ T5840] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.649876][ T5840] ? exc_page_fault+0x9f/0xf0 [ 91.649902][ T5840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.649926][ T5840] RIP: 0033:0x7f852473181a [ 91.649946][ T5840] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 91.649966][ T5840] RSP: 002b:00007ffc4d703128 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 91.649990][ T5840] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f852473181a [ 91.650007][ T5840] RDX: 00002000000124c0 RSI: 0000200000000040 RDI: 00007ffc4d703180 [ 91.650024][ T5840] RBP: 0000000000000004 R08: 00007ffc4d7031c0 R09: 00000000000125e4 [ 91.650039][ T5840] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000001000000 [ 91.650054][ T5840] R13: 00007ffc4d7031c0 R14: 0000200000000040 R15: 0000000000000003 [ 91.650091][ T5840] [ 91.684232][ T5840] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 91.710375][ T5836] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.761292][ T5840] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 91.873930][ T5836] CPU: 0 UID: 0 PID: 5836 Comm: syz-executor277 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 91.873964][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 91.873978][ T5836] Call Trace: [ 91.873989][ T5836] [ 91.873999][ T5836] dump_stack_lvl+0x189/0x250 [ 91.874043][ T5836] ? kernfs_path_from_node+0x2c/0x260 [ 91.874086][ T5836] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.874124][ T5836] ? __pfx__printk+0x10/0x10 [ 91.874153][ T5836] ? kernfs_path_from_node+0x2c/0x260 [ 91.874188][ T5836] ? kernfs_path_from_node+0x2c/0x260 [ 91.874226][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.874254][ T5836] ? kernfs_path_from_node+0x22c/0x260 [ 91.874297][ T5836] ? kernfs_path_from_node+0x2c/0x260 [ 91.874337][ T5836] sysfs_create_dir_ns+0x259/0x280 [ 91.874377][ T5836] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 91.874416][ T5836] ? do_raw_spin_unlock+0x122/0x240 [ 91.874459][ T5836] kobject_add_internal+0x59f/0xb40 [ 91.874499][ T5836] kobject_init_and_add+0x125/0x190 [ 91.874535][ T5836] ? __pfx_kobject_init_and_add+0x10/0x10 [ 91.874564][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.874592][ T5836] ? __raw_spin_lock_init+0x45/0x100 [ 91.874629][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.874657][ T5836] ? __init_swait_queue_head+0xa9/0x150 [ 91.874698][ T5836] gfs2_sys_fs_add+0x237/0x470 [ 91.874729][ T5836] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 91.874763][ T5836] ? is_dynamic_key+0xd6/0x1c0 [ 91.874788][ T5836] ? __pfx_alloc_workqueue+0x10/0x10 [ 91.874843][ T5836] gfs2_fill_super+0x1348/0x2010 [ 91.874897][ T5836] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.874929][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.874962][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.874989][ T5836] ? sb_set_blocksize+0x104/0x180 [ 91.875024][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.875051][ T5836] ? setup_bdev_super+0x4c1/0x5b0 [ 91.875087][ T5836] get_tree_bdev_flags+0x40e/0x4d0 [ 91.875118][ T5836] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.875152][ T5836] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 91.875184][ T5836] ? rcu_is_watching+0x15/0xb0 [ 91.875222][ T5836] gfs2_get_tree+0x51/0x1e0 [ 91.875260][ T5836] vfs_get_tree+0x92/0x2b0 [ 91.875302][ T5836] do_new_mount+0x24a/0xa40 [ 91.875346][ T5836] __se_sys_mount+0x317/0x410 [ 91.875388][ T5836] ? __pfx___se_sys_mount+0x10/0x10 [ 91.875420][ T5836] ? rcu_is_watching+0x15/0xb0 [ 91.875456][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.875484][ T5836] ? __x64_sys_mount+0x20/0xc0 [ 91.875521][ T5836] do_syscall_64+0xfa/0x3b0 [ 91.875546][ T5836] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.875569][ T5836] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.875592][ T5836] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.875619][ T5836] ? exc_page_fault+0x9f/0xf0 [ 91.875645][ T5836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.875668][ T5836] RIP: 0033:0x7f852473181a [ 91.875689][ T5836] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 91.875708][ T5836] RSP: 002b:00007ffc4d703128 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 91.875732][ T5836] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f852473181a [ 91.875749][ T5836] RDX: 00002000000124c0 RSI: 0000200000000040 RDI: 00007ffc4d703180 [ 91.875766][ T5836] RBP: 0000000000000004 R08: 00007ffc4d7031c0 R09: 00000000000125e4 [ 91.875782][ T5836] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000001000000 [ 91.875796][ T5836] R13: 00007ffc4d7031c0 R14: 0000200000000040 R15: 0000000000000003 [ 91.875832][ T5836] [ 91.880203][ T5836] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 91.891124][ T5842] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.930788][ T5841] ================================================================== [ 92.693753][ T5841] BUG: KASAN: null-ptr-deref in gfs2_drop_inode+0x20c/0x3a0 [ 92.701038][ T5841] Read of size 8 at addr 00000000000000a8 by task syz-executor277/5841 [ 92.709263][ T5841] [ 92.711584][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor277 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 92.711612][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.711625][ T5841] Call Trace: [ 92.711635][ T5841] [ 92.711645][ T5841] dump_stack_lvl+0x189/0x250 [ 92.711684][ T5841] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.711720][ T5841] ? _raw_spin_lock_irqsave+0xb3/0xf0 [ 92.711756][ T5841] ? do_raw_spin_lock+0x121/0x290 [ 92.711793][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.711813][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.711840][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.711860][ T5841] kasan_report+0x118/0x150 [ 92.711891][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.711916][ T5841] kasan_check_range+0x2b0/0x2c0 [ 92.711947][ T5841] gfs2_drop_inode+0x20c/0x3a0 [ 92.711970][ T5841] iput+0x45d/0x9d0 [ 92.712006][ T5841] gfs2_fill_super+0x1418/0x2010 [ 92.712046][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.712076][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.712104][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.712129][ T5841] ? sb_set_blocksize+0x104/0x180 [ 92.712158][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.712183][ T5841] ? setup_bdev_super+0x4c1/0x5b0 [ 92.712212][ T5841] get_tree_bdev_flags+0x40e/0x4d0 [ 92.712239][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.712270][ T5841] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.712297][ T5841] ? rcu_is_watching+0x15/0xb0 [ 92.712329][ T5841] gfs2_get_tree+0x51/0x1e0 [ 92.712361][ T5841] vfs_get_tree+0x92/0x2b0 [ 92.712390][ T5841] do_new_mount+0x24a/0xa40 [ 92.712424][ T5841] __se_sys_mount+0x317/0x410 [ 92.712458][ T5841] ? __pfx___se_sys_mount+0x10/0x10 [ 92.712488][ T5841] ? rcu_is_watching+0x15/0xb0 [ 92.712518][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.712543][ T5841] ? __x64_sys_mount+0x20/0xc0 [ 92.712580][ T5841] do_syscall_64+0xfa/0x3b0 [ 92.712604][ T5841] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.712624][ T5841] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.712645][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.712670][ T5841] ? exc_page_fault+0x9f/0xf0 [ 92.712691][ T5841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.712713][ T5841] RIP: 0033:0x7f852473181a [ 92.712732][ T5841] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.712750][ T5841] RSP: 002b:00007ffc4d703128 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.712771][ T5841] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f852473181a [ 92.712787][ T5841] RDX: 00002000000124c0 RSI: 0000200000000040 RDI: 00007ffc4d703180 [ 92.712802][ T5841] RBP: 0000000000000004 R08: 00007ffc4d7031c0 R09: 00000000000125e4 [ 92.712816][ T5841] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000001000000 [ 92.712830][ T5841] R13: 00007ffc4d7031c0 R14: 0000200000000040 R15: 0000000000000003 [ 92.712854][ T5841] [ 92.712861][ T5841] ================================================================== [ 93.010566][ T5841] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 93.017768][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor277 Not tainted 6.15.0-syzkaller-09113-g8477ab143069 #0 PREEMPT(full) [ 93.029829][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 93.039875][ T5841] Call Trace: [ 93.043143][ T5841] [ 93.046068][ T5841] dump_stack_lvl+0x99/0x250 [ 93.050672][ T5841] ? __asan_memcpy+0x40/0x70 [ 93.055256][ T5841] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.060462][ T5841] ? __pfx__printk+0x10/0x10 [ 93.065050][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.070684][ T5841] panic+0x2db/0x790 [ 93.074585][ T5841] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.079779][ T5841] ? __pfx_panic+0x10/0x10 [ 93.084206][ T5841] ? _raw_spin_unlock_irqrestore+0xa8/0x110 [ 93.090107][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.095737][ T5841] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 93.101638][ T5841] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 93.107971][ T5841] ? do_raw_spin_lock+0x121/0x290 [ 93.113011][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 93.117941][ T5841] check_panic_on_warn+0x89/0xb0 [ 93.122876][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 93.127807][ T5841] end_report+0x78/0x160 [ 93.132054][ T5841] kasan_report+0x129/0x150 [ 93.136566][ T5841] ? gfs2_drop_inode+0x20c/0x3a0 [ 93.141501][ T5841] kasan_check_range+0x2b0/0x2c0 [ 93.146445][ T5841] gfs2_drop_inode+0x20c/0x3a0 [ 93.151203][ T5841] iput+0x45d/0x9d0 [ 93.155019][ T5841] gfs2_fill_super+0x1418/0x2010 [ 93.159968][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 93.165258][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.170891][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.176549][ T5841] ? sb_set_blocksize+0x104/0x180 [ 93.181614][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.187284][ T5841] ? setup_bdev_super+0x4c1/0x5b0 [ 93.192330][ T5841] get_tree_bdev_flags+0x40e/0x4d0 [ 93.197445][ T5841] ? __pfx_gfs2_fill_super+0x10/0x10 [ 93.202735][ T5841] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 93.208367][ T5841] ? rcu_is_watching+0x15/0xb0 [ 93.213137][ T5841] gfs2_get_tree+0x51/0x1e0 [ 93.217649][ T5841] vfs_get_tree+0x92/0x2b0 [ 93.222067][ T5841] do_new_mount+0x24a/0xa40 [ 93.226580][ T5841] __se_sys_mount+0x317/0x410 [ 93.231264][ T5841] ? __pfx___se_sys_mount+0x10/0x10 [ 93.236467][ T5841] ? rcu_is_watching+0x15/0xb0 [ 93.241234][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.246864][ T5841] ? __x64_sys_mount+0x20/0xc0 [ 93.251634][ T5841] do_syscall_64+0xfa/0x3b0 [ 93.256135][ T5841] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.261327][ T5841] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.267395][ T5841] ? srso_alias_return_thunk+0x5/0xfbef5 [ 93.273070][ T5841] ? exc_page_fault+0x9f/0xf0 [ 93.277745][ T5841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.283635][ T5841] RIP: 0033:0x7f852473181a [ 93.288044][ T5841] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.307669][ T5841] RSP: 002b:00007ffc4d703128 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 93.316092][ T5841] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f852473181a [ 93.324064][ T5841] RDX: 00002000000124c0 RSI: 0000200000000040 RDI: 00007ffc4d703180 [ 93.332034][ T5841] RBP: 0000000000000004 R08: 00007ffc4d7031c0 R09: 00000000000125e4 [ 93.339999][ T5841] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000001000000 [ 93.347983][ T5841] R13: 00007ffc4d7031c0 R14: 0000200000000040 R15: 0000000000000003 [ 93.355968][ T5841] [ 93.359174][ T5841] Kernel Offset: disabled [ 93.363497][ T5841] Rebooting in 86400 seconds..