./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2120342913
<...>
Warning: Permanently added '10.128.0.88' (ED25519) to the list of known hosts.
execve("./syz-executor2120342913", ["./syz-executor2120342913"], 0x7ffd40e98360 /* 10 vars */) = 0
brk(NULL) = 0x55555eb95000
brk(0x55555eb95d00) = 0x55555eb95d00
arch_prctl(ARCH_SET_FS, 0x55555eb95380) = 0
set_tid_address(0x55555eb95650) = 5831
set_robust_list(0x55555eb95660, 24) = 0
rseq(0x55555eb95ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2120342913", 4096) = 28
getrandom("\x21\xc1\x3d\x83\x0d\x92\xa9\xbc", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x55555eb95d00
brk(0x55555ebb6d00) = 0x55555ebb6d00
brk(0x55555ebb7000) = 0x55555ebb7000
mprotect(0x7fb9d738e000, 16384, PROT_READ) = 0
mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000
mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000
mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000
mkdir("./syzkaller.dJcONx", 0700) = 0
chmod("./syzkaller.dJcONx", 0777) = 0
chdir("./syzkaller.dJcONx") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5832 attached
, child_tidptr=0x55555eb95650) = 5832
[pid 5832] set_robust_list(0x55555eb95660, 24) = 0
[pid 5832] chdir("./0") = 0
[pid 5832] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5832] setpgid(0, 0) = 0
[pid 5832] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5832] write(3, "1000", 4) = 4
[pid 5832] close(3) = 0
[pid 5832] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5832] write(1, "executing program\n", 18executing program
) = 18
[pid 5832] memfd_create("syzkaller", 0) = 3
[pid 5832] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5832] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5832] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5832] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5832] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5832] close(3) = 0
[pid 5832] close(4) = 0
[pid 5832] mkdir("./file0", 0777) = 0
[ 79.552811][ T5832] loop0: detected capacity change from 0 to 32768
[ 79.590081][ T5832] (syz-executor212,5832,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 79.607021][ T5832] (syz-executor212,5832,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 79.631328][ T5832] JBD2: Ignoring recovery information on journal
[pid 5832] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5832] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5832] chdir("./file0") = 0
[pid 5832] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5832] exit_group(0) = ?
[pid 5832] +++ exited with 0 +++
[ 79.661125][ T5832] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 79.679495][ T1148] ocfs2: Finishing quota recovery on device (7,0) for slot 0
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5832, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=21 /* 0.21 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs") = 0
[ 79.890529][ T5831]
[ 79.892906][ T5831] ======================================================
[ 79.899940][ T5831] WARNING: possible circular locking dependency detected
[ 79.906969][ T5831] 6.14.0-rc7-syzkaller-00067-g76b6905c11fd #0 Not tainted
[ 79.914087][ T5831] ------------------------------------------------------
[ 79.921111][ T5831] syz-executor212/5831 is trying to acquire lock:
[ 79.927520][ T5831] ffff88814830f148 ((wq_completion)ocfs2_wq){+.+.}-{0:0}, at: touch_wq_lockdep_map+0xb1/0x170
[ 79.937910][ T5831]
[ 79.937910][ T5831] but task is already holding lock:
[ 79.945263][ T5831] ffff888034c3e0e0 (&type->s_umount_key#43){++++}-{4:4}, at: deactivate_super+0xb5/0xf0
[ 79.955020][ T5831]
[ 79.955020][ T5831] which lock already depends on the new lock.
[ 79.955020][ T5831]
[ 79.965423][ T5831]
[ 79.965423][ T5831] the existing dependency chain (in reverse order) is:
[ 79.974430][ T5831]
[ 79.974430][ T5831] -> #2 (&type->s_umount_key#43){++++}-{4:4}:
[ 79.982696][ T5831] lock_acquire+0x1ed/0x550
[ 79.987728][ T5831] down_read+0xb1/0xa40
[ 79.992407][ T5831] ocfs2_finish_quota_recovery+0x15c/0x22a0
[ 79.998840][ T5831] ocfs2_complete_recovery+0x17c1/0x25c0
[ 80.005016][ T5831] process_scheduled_works+0xabe/0x18e0
[ 80.011097][ T5831] worker_thread+0x870/0xd30
[ 80.016216][ T5831] kthread+0x7a9/0x920
[ 80.020825][ T5831] ret_from_fork+0x4b/0x80
[ 80.025763][ T5831] ret_from_fork_asm+0x1a/0x30
[ 80.031048][ T5831]
[ 80.031048][ T5831] -> #1 ((work_completion)(&journal->j_recovery_work)){+.+.}-{0:0}:
[ 80.041218][ T5831] lock_acquire+0x1ed/0x550
[ 80.046355][ T5831] process_scheduled_works+0x9e4/0x18e0
[ 80.052447][ T5831] worker_thread+0x870/0xd30
[ 80.057593][ T5831] kthread+0x7a9/0x920
[ 80.062212][ T5831] ret_from_fork+0x4b/0x80
[ 80.067179][ T5831] ret_from_fork_asm+0x1a/0x30
[ 80.072493][ T5831]
[ 80.072493][ T5831] -> #0 ((wq_completion)ocfs2_wq){+.+.}-{0:0}:
[ 80.080847][ T5831] validate_chain+0x18ef/0x5920
[ 80.086232][ T5831] __lock_acquire+0x1397/0x2100
[ 80.091631][ T5831] lock_acquire+0x1ed/0x550
[ 80.096693][ T5831] touch_wq_lockdep_map+0xc7/0x170
[ 80.102347][ T5831] __flush_workqueue+0x14a/0x1280
[ 80.107903][ T5831] ocfs2_shutdown_local_alloc+0x109/0xa90
[ 80.114148][ T5831] ocfs2_dismount_volume+0x202/0x910
[ 80.119958][ T5831] generic_shutdown_super+0x139/0x2d0
[ 80.125854][ T5831] kill_block_super+0x44/0x90
[ 80.131055][ T5831] deactivate_locked_super+0xc4/0x130
[ 80.136951][ T5831] cleanup_mnt+0x41f/0x4b0
[ 80.141910][ T5831] task_work_run+0x24f/0x310
[ 80.147023][ T5831] ptrace_notify+0x2d9/0x380
[ 80.152202][ T5831] syscall_exit_work+0xc7/0x1d0
[ 80.157597][ T5831] syscall_exit_to_user_mode+0x24a/0x340
[ 80.163759][ T5831] do_syscall_64+0x100/0x230
[ 80.168891][ T5831] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 80.175306][ T5831]
[ 80.175306][ T5831] other info that might help us debug this:
[ 80.175306][ T5831]
[ 80.185553][ T5831] Chain exists of:
[ 80.185553][ T5831] (wq_completion)ocfs2_wq --> (work_completion)(&journal->j_recovery_work) --> &type->s_umount_key#43
[ 80.185553][ T5831]
[ 80.202515][ T5831] Possible unsafe locking scenario:
[ 80.202515][ T5831]
[ 80.209963][ T5831] CPU0 CPU1
[ 80.215328][ T5831] ---- ----
[ 80.220702][ T5831] lock(&type->s_umount_key#43);
[ 80.225734][ T5831] lock((work_completion)(&journal->j_recovery_work));
[ 80.235189][ T5831] lock(&type->s_umount_key#43);
[ 80.242922][ T5831] lock((wq_completion)ocfs2_wq);
[ 80.248040][ T5831]
[ 80.248040][ T5831] *** DEADLOCK ***
[ 80.248040][ T5831]
[ 80.256178][ T5831] 1 lock held by syz-executor212/5831:
[ 80.261632][ T5831] #0: ffff888034c3e0e0 (&type->s_umount_key#43){++++}-{4:4}, at: deactivate_super+0xb5/0xf0
[ 80.271831][ T5831]
[ 80.271831][ T5831] stack backtrace:
[ 80.277752][ T5831] CPU: 1 UID: 0 PID: 5831 Comm: syz-executor212 Not tainted 6.14.0-rc7-syzkaller-00067-g76b6905c11fd #0
[ 80.277771][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 80.277783][ T5831] Call Trace:
[ 80.277790][ T5831]
[ 80.277797][ T5831] dump_stack_lvl+0x241/0x360
[ 80.277817][ T5831] ? __pfx_dump_stack_lvl+0x10/0x10
[ 80.277831][ T5831] ? __pfx__printk+0x10/0x10
[ 80.277857][ T5831] print_circular_bug+0x13a/0x1b0
[ 80.277874][ T5831] check_noncircular+0x36a/0x4a0
[ 80.277889][ T5831] ? __lock_acquire+0x1397/0x2100
[ 80.277910][ T5831] ? __pfx_check_noncircular+0x10/0x10
[ 80.277925][ T5831] ? lockdep_lock+0x123/0x2b0
[ 80.277944][ T5831] ? mark_lock+0x9a/0x360
[ 80.277974][ T5831] validate_chain+0x18ef/0x5920
[ 80.277996][ T5831] ? __pfx_validate_chain+0x10/0x10
[ 80.278019][ T5831] ? debug_object_assert_init+0x2dd/0x4b0
[ 80.278041][ T5831] ? do_raw_spin_lock+0x14f/0x370
[ 80.278058][ T5831] ? __pfx_lock_release+0x10/0x10
[ 80.278079][ T5831] ? mark_lock+0x9a/0x360
[ 80.278101][ T5831] __lock_acquire+0x1397/0x2100
[ 80.278123][ T5831] ? kfree+0x196/0x430
[ 80.278145][ T5831] ? ocfs2_dismount_volume+0x1bd/0x910
[ 80.278169][ T5831] lock_acquire+0x1ed/0x550
[ 80.278188][ T5831] ? touch_wq_lockdep_map+0xb1/0x170
[ 80.278214][ T5831] ? __pfx_lock_acquire+0x10/0x10
[ 80.278233][ T5831] ? __asan_memset+0x23/0x50
[ 80.278250][ T5831] ? lockdep_init_map_type+0xa1/0x910
[ 80.278271][ T5831] ? __pfx_lockdep_init_map_type+0x10/0x10
[ 80.278290][ T5831] ? __lock_acquire+0x1397/0x2100
[ 80.278313][ T5831] ? touch_wq_lockdep_map+0xb1/0x170
[ 80.278332][ T5831] touch_wq_lockdep_map+0xc7/0x170
[ 80.278351][ T5831] ? touch_wq_lockdep_map+0xb1/0x170
[ 80.278371][ T5831] __flush_workqueue+0x14a/0x1280
[ 80.278391][ T5831] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 80.278415][ T5831] ? __pfx___flush_workqueue+0x10/0x10
[ 80.278439][ T5831] ? mark_lock+0x9a/0x360
[ 80.278461][ T5831] ocfs2_shutdown_local_alloc+0x109/0xa90
[ 80.278484][ T5831] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 80.278506][ T5831] ? __pfx_ocfs2_shutdown_local_alloc+0x10/0x10
[ 80.278528][ T5831] ? lockdep_hardirqs_on+0x99/0x150
[ 80.278550][ T5831] ? enable_work+0x2e3/0x360
[ 80.278570][ T5831] ? __pfx_enable_work+0x10/0x10
[ 80.278590][ T5831] ? _atomic_dec_and_lock+0x9a/0x130
[ 80.278613][ T5831] ? iput+0x3be/0xa50
[ 80.278630][ T5831] ocfs2_dismount_volume+0x202/0x910
[ 80.278652][ T5831] ? __pfx_ocfs2_dismount_volume+0x10/0x10
[ 80.278673][ T5831] ? __pfx_evict_inodes+0x10/0x10
[ 80.278689][ T5831] ? __pfx_ocfs2_put_super+0x10/0x10
[ 80.278711][ T5831] generic_shutdown_super+0x139/0x2d0
[ 80.278730][ T5831] kill_block_super+0x44/0x90
[ 80.278750][ T5831] deactivate_locked_super+0xc4/0x130
[ 80.278768][ T5831] cleanup_mnt+0x41f/0x4b0
[ 80.278786][ T5831] ? lockdep_hardirqs_on+0x99/0x150
[ 80.278807][ T5831] task_work_run+0x24f/0x310
[ 80.278822][ T5831] ? __pfx_task_work_run+0x10/0x10
[ 80.278836][ T5831] ? path_umount+0x211/0xf80
[ 80.278858][ T5831] ptrace_notify+0x2d9/0x380
[ 80.278872][ T5831] ? __x64_sys_umount+0x123/0x170
[ 80.278893][ T5831] ? user_path_at+0x44/0x60
[ 80.278911][ T5831] ? __pfx_ptrace_notify+0x10/0x10
[ 80.278924][ T5831] ? kmem_cache_free+0x195/0x410
[ 80.278941][ T5831] ? __x64_sys_umount+0x123/0x170
[ 80.278973][ T5831] syscall_exit_work+0xc7/0x1d0
[ 80.278997][ T5831] syscall_exit_to_user_mode+0x24a/0x340
[ 80.279021][ T5831] do_syscall_64+0x100/0x230
[ 80.279043][ T5831] ? clear_bhb_loop+0x35/0x90
[ 80.279066][ T5831] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 80.279092][ T5831] RIP: 0033:0x7fb9d7317487
[ 80.279108][ T5831] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[ 80.279120][ T5831] RSP: 002b:00007ffc19f4a6f8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 80.279136][ T5831] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb9d7317487
[ 80.279146][ T5831] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc19f4a7b0
[ 80.279155][ T5831] RBP: 00007ffc19f4a7b0 R08: 0000000000000000 R09: 0000000000000000
[ 80.279163][ T5831] R10: 00000000ffffffff R11: 0000000000000202 R12: 00007ffc19f4b820
umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
[ 80.279173][ T5831] R13: 000055555eb966c0 R14: 0000000000000001 R15: 431bde82d7b634db
[ 80.279188][ T5831]
[ 80.704056][ T5831] ocfs2: Unmounting device (7,0) on (node local)
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5836 attached
[pid 5836] set_robust_list(0x55555eb95660, 24) = 0
[pid 5836] chdir("./1") = 0
[pid 5836] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5836] setpgid(0, 0) = 0
[pid 5836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5836] write(3, "1000", 4) = 4
[pid 5836] close(3) = 0
[pid 5836] symlink("/dev/binderfs", "./binderfs"
[pid 5831] <... clone resumed>, child_tidptr=0x55555eb95650) = 5836
[pid 5836] <... symlink resumed>) = 0
executing program
[pid 5836] write(1, "executing program\n", 18) = 18
[pid 5836] memfd_create("syzkaller", 0) = 3
[pid 5836] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5836] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5836] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5836] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5836] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5836] close(3) = 0
[pid 5836] close(4) = 0
[pid 5836] mkdir("./file0", 0777) = 0
[ 81.004933][ T5836] loop0: detected capacity change from 0 to 32768
[ 81.028213][ T5836] (syz-executor212,5836,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[pid 5836] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5836] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5836] chdir("./file0") = 0
[pid 5836] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5836] exit_group(0) = ?
[pid 5836] +++ exited with 0 +++
[ 81.043744][ T5836] (syz-executor212,5836,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 81.064264][ T5836] JBD2: Ignoring recovery information on journal
[ 81.082903][ T5836] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 81.094234][ T53] ocfs2: Finishing quota recovery on device (7,0) for slot 0
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5836, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=13 /* 0.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./1/binderfs") = 0
umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
[ 81.237707][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5839 attached
[pid 5839] set_robust_list(0x55555eb95660, 24
[pid 5831] <... clone resumed>, child_tidptr=0x55555eb95650) = 5839
[pid 5839] <... set_robust_list resumed>) = 0
[pid 5839] chdir("./2") = 0
[pid 5839] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5839] setpgid(0, 0) = 0
[pid 5839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5839] write(3, "1000", 4) = 4
[pid 5839] close(3) = 0
[pid 5839] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5839] write(1, "executing program\n", 18executing program
) = 18
[pid 5839] memfd_create("syzkaller", 0) = 3
[pid 5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5839] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5839] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5839] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5839] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5839] close(3) = 0
[pid 5839] close(4) = 0
[pid 5839] mkdir("./file0", 0777) = 0
[ 81.573256][ T5839] loop0: detected capacity change from 0 to 32768
[ 81.614967][ T5839] (syz-executor212,5839,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 81.629384][ T5839] (syz-executor212,5839,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 81.648671][ T5839] JBD2: Ignoring recovery information on journal
[pid 5839] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5839] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5839] chdir("./file0") = 0
[pid 5839] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5839] exit_group(0) = ?
[pid 5839] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5839, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=9 /* 0.09 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[ 81.667363][ T5839] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 81.678743][ T53] ocfs2: Finishing quota recovery on device (7,0) for slot 0
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./2/binderfs") = 0
umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[ 81.820772][ T5831] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5842 attached
, child_tidptr=0x55555eb95650) = 5842
[pid 5842] set_robust_list(0x55555eb95660, 24) = 0
[pid 5842] chdir("./3") = 0
[pid 5842] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5842] setpgid(0, 0) = 0
[pid 5842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5842] write(3, "1000", 4) = 4
[pid 5842] close(3) = 0
[pid 5842] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5842] write(1, "executing program\n", 18) = 18
[pid 5842] memfd_create("syzkaller", 0) = 3
[pid 5842] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5842] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5842] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5842] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5842] close(3) = 0
[pid 5842] close(4) = 0
[pid 5842] mkdir("./file0", 0777) = 0
[ 82.319656][ T5842] loop0: detected capacity change from 0 to 32768
[ 82.364079][ T5842] (syz-executor212,5842,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 82.378469][ T5842] (syz-executor212,5842,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 82.397870][ T5842] JBD2: Ignoring recovery information on journal
[pid 5842] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5842] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5842] chdir("./file0") = 0
[pid 5842] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5842] exit_group(0) = ?
[pid 5842] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5842, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[ 82.417771][ T5842] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 82.429138][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./3/binderfs") = 0
umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[ 82.530476][ T5831] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./3/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./3") = 0
mkdir("./4", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5845 attached
, child_tidptr=0x55555eb95650) = 5845
[pid 5845] set_robust_list(0x55555eb95660, 24) = 0
[pid 5845] chdir("./4") = 0
[pid 5845] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5845] setpgid(0, 0) = 0
[pid 5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5845] write(3, "1000", 4) = 4
[pid 5845] close(3) = 0
[pid 5845] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5845] write(1, "executing program\n", 18) = 18
[pid 5845] memfd_create("syzkaller", 0) = 3
[pid 5845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5845] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5845] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5845] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5845] close(3) = 0
[pid 5845] close(4) = 0
[pid 5845] mkdir("./file0", 0777) = 0
[ 83.020544][ T5845] loop0: detected capacity change from 0 to 32768
[ 83.052407][ T5845] (syz-executor212,5845,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 83.066525][ T5845] (syz-executor212,5845,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 83.085084][ T5845] JBD2: Ignoring recovery information on journal
[ 83.106148][ T5845] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5845] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5845] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5845] chdir("./file0") = 0
[pid 5845] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5845] exit_group(0) = ?
[pid 5845] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5845, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 83.118119][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./4/binderfs") = 0
umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[ 83.289972][ T5831] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./4/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./4") = 0
mkdir("./5", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5848 attached
, child_tidptr=0x55555eb95650) = 5848
[pid 5848] set_robust_list(0x55555eb95660, 24) = 0
[pid 5848] chdir("./5") = 0
[pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5848] setpgid(0, 0) = 0
[pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5848] write(3, "1000", 4) = 4
[pid 5848] close(3) = 0
[pid 5848] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5848] write(1, "executing program\n", 18) = 18
[pid 5848] memfd_create("syzkaller", 0) = 3
[pid 5848] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5848] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5848] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5848] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5848] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5848] close(3) = 0
[pid 5848] close(4) = 0
[pid 5848] mkdir("./file0", 0777) = 0
[ 83.774324][ T5848] loop0: detected capacity change from 0 to 32768
[ 83.806599][ T5848] (syz-executor212,5848,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 83.827106][ T5848] (syz-executor212,5848,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 83.845776][ T5848] JBD2: Ignoring recovery information on journal
[ 83.864316][ T5848] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5848] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5848] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5848] chdir("./file0") = 0
[pid 5848] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5848] exit_group(0) = ?
[pid 5848] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5848, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 83.875880][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./5/binderfs") = 0
umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[ 84.018881][ T5831] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./5/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./5") = 0
mkdir("./6", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5851 attached
, child_tidptr=0x55555eb95650) = 5851
[pid 5851] set_robust_list(0x55555eb95660, 24) = 0
[pid 5851] chdir("./6") = 0
[pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5851] setpgid(0, 0) = 0
[pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5851] write(3, "1000", 4) = 4
[pid 5851] close(3) = 0
[pid 5851] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5851] write(1, "executing program\n", 18) = 18
[pid 5851] memfd_create("syzkaller", 0) = 3
[pid 5851] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5851] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5851] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5851] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5851] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5851] close(3) = 0
[pid 5851] close(4) = 0
[pid 5851] mkdir("./file0", 0777) = 0
[ 84.494420][ T5851] loop0: detected capacity change from 0 to 32768
[ 84.516933][ T5851] (syz-executor212,5851,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[pid 5851] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5851] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5851] chdir("./file0") = 0
[pid 5851] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5851] exit_group(0) = ?
[ 84.531226][ T5851] (syz-executor212,5851,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 84.550455][ T5851] JBD2: Ignoring recovery information on journal
[ 84.568909][ T5851] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 84.580425][ T53] ocfs2: Finishing quota recovery on device (7,0) for slot 0
[pid 5851] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5851, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=15 /* 0.15 s */} ---
umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./6/binderfs") = 0
umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./6/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./6") = 0
mkdir("./7", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
[ 84.758349][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5854 attached
, child_tidptr=0x55555eb95650) = 5854
[pid 5854] set_robust_list(0x55555eb95660, 24) = 0
[pid 5854] chdir("./7") = 0
[pid 5854] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5854] setpgid(0, 0) = 0
[pid 5854] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5854] write(3, "1000", 4) = 4
[pid 5854] close(3) = 0
[pid 5854] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5854] write(1, "executing program\n", 18executing program
) = 18
[pid 5854] memfd_create("syzkaller", 0) = 3
[pid 5854] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5854] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5854] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5854] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5854] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5854] close(3) = 0
[pid 5854] close(4) = 0
[pid 5854] mkdir("./file0", 0777) = 0
[ 85.055920][ T5854] loop0: detected capacity change from 0 to 32768
[ 85.088735][ T5854] (syz-executor212,5854,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 85.103134][ T5854] (syz-executor212,5854,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 85.121888][ T5854] JBD2: Ignoring recovery information on journal
[ 85.142097][ T5854] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5854] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5854] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5854] chdir("./file0") = 0
[pid 5854] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5854] exit_group(0) = ?
[pid 5854] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5854, si_uid=0, si_status=0, si_utime=0, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./7/binderfs") = 0
[ 85.153683][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./7/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./7") = 0
mkdir("./8", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
[ 85.181907][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5857 attached
, child_tidptr=0x55555eb95650) = 5857
[pid 5857] set_robust_list(0x55555eb95660, 24) = 0
[pid 5857] chdir("./8") = 0
[pid 5857] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5857] setpgid(0, 0) = 0
[pid 5857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5857] write(3, "1000", 4) = 4
[pid 5857] close(3) = 0
[pid 5857] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5857] write(1, "executing program\n", 18) = 18
[pid 5857] memfd_create("syzkaller", 0) = 3
[pid 5857] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5857] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5857] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5857] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5857] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5857] close(3) = 0
[pid 5857] close(4) = 0
[pid 5857] mkdir("./file0", 0777) = 0
[ 85.466574][ T5857] loop0: detected capacity change from 0 to 32768
[ 85.516775][ T5857] (syz-executor212,5857,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 85.530952][ T5857] (syz-executor212,5857,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 85.550374][ T5857] JBD2: Ignoring recovery information on journal
[pid 5857] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5857] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5857] chdir("./file0") = 0
[pid 5857] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5857] exit_group(0) = ?
[pid 5857] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5857, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=12 /* 0.12 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[ 85.569112][ T5857] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 85.580477][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./8/binderfs") = 0
umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./8/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./8") = 0
[ 85.697259][ T5831] ocfs2: Unmounting device (7,0) on (node local)
mkdir("./9", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5860 attached
[pid 5860] set_robust_list(0x55555eb95660, 24
[pid 5831] <... clone resumed>, child_tidptr=0x55555eb95650) = 5860
[pid 5860] <... set_robust_list resumed>) = 0
[pid 5860] chdir("./9") = 0
[pid 5860] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5860] setpgid(0, 0) = 0
[pid 5860] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5860] write(3, "1000", 4) = 4
[pid 5860] close(3) = 0
[pid 5860] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5860] write(1, "executing program\n", 18) = 18
[pid 5860] memfd_create("syzkaller", 0) = 3
[pid 5860] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5860] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5860] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5860] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5860] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5860] close(3) = 0
[pid 5860] close(4) = 0
[pid 5860] mkdir("./file0", 0777) = 0
[ 86.045728][ T5860] loop0: detected capacity change from 0 to 32768
[ 86.086363][ T5860] (syz-executor212,5860,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 86.100659][ T5860] (syz-executor212,5860,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 86.120717][ T5860] JBD2: Ignoring recovery information on journal
[pid 5860] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5860] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5860] chdir("./file0") = 0
[pid 5860] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5860] exit_group(0) = ?
[ 86.140003][ T5860] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 86.151523][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
[pid 5860] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5860, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=14 /* 0.14 s */} ---
umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./9/binderfs") = 0
umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[ 86.346497][ T5831] ocfs2: Unmounting device (7,0) on (node local)
openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./9/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./9") = 0
mkdir("./10", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5863 attached
, child_tidptr=0x55555eb95650) = 5863
[pid 5863] set_robust_list(0x55555eb95660, 24) = 0
[pid 5863] chdir("./10") = 0
[pid 5863] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5863] setpgid(0, 0) = 0
[pid 5863] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5863] write(3, "1000", 4) = 4
[pid 5863] close(3) = 0
[pid 5863] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5863] write(1, "executing program\n", 18) = 18
[pid 5863] memfd_create("syzkaller", 0) = 3
[pid 5863] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5863] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5863] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5863] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5863] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5863] close(3) = 0
[pid 5863] close(4) = 0
[pid 5863] mkdir("./file0", 0777) = 0
[ 86.767087][ T5863] loop0: detected capacity change from 0 to 32768
[ 86.815906][ T5863] (syz-executor212,5863,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 86.829982][ T5863] (syz-executor212,5863,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 86.849343][ T5863] JBD2: Ignoring recovery information on journal
[pid 5863] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5863] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5863] chdir("./file0") = 0
[pid 5863] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5863] exit_group(0) = ?
[pid 5863] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5863, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=10 /* 0.10 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[ 86.867010][ T5863] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 86.878402][ T79] ocfs2: Finishing quota recovery on device (7,0) for slot 0
openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./10/binderfs") = 0
umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
[ 87.037950][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(4) = 0
rmdir("./10/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./10") = 0
mkdir("./11", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5866 attached
, child_tidptr=0x55555eb95650) = 5866
[pid 5866] set_robust_list(0x55555eb95660, 24) = 0
[pid 5866] chdir("./11") = 0
[pid 5866] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5866] setpgid(0, 0) = 0
[pid 5866] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5866] write(3, "1000", 4) = 4
[pid 5866] close(3) = 0
[pid 5866] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5866] write(1, "executing program\n", 18) = 18
[pid 5866] memfd_create("syzkaller", 0) = 3
[pid 5866] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5866] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5866] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5866] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5866] close(3) = 0
[pid 5866] close(4) = 0
[pid 5866] mkdir("./file0", 0777) = 0
[ 87.457045][ T5866] loop0: detected capacity change from 0 to 32768
[ 87.491808][ T5866] (syz-executor212,5866,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 87.506124][ T5866] (syz-executor212,5866,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 87.524474][ T5866] JBD2: Ignoring recovery information on journal
[ 87.543770][ T5866] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5866] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5866] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5866] chdir("./file0") = 0
[pid 5866] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5866] exit_group(0) = ?
[pid 5866] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5866, si_uid=0, si_status=0, si_utime=0, si_stime=18 /* 0.18 s */} ---
[ 87.555407][ T53] ocfs2: Finishing quota recovery on device (7,0) for slot 0
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./11/binderfs") = 0
umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./11/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./11") = 0
mkdir("./12", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
[ 87.717999][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5869 attached
[pid 5869] set_robust_list(0x55555eb95660, 24
[pid 5831] <... clone resumed>, child_tidptr=0x55555eb95650) = 5869
[pid 5869] <... set_robust_list resumed>) = 0
[pid 5869] chdir("./12") = 0
[pid 5869] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5869] setpgid(0, 0) = 0
[pid 5869] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5869] write(3, "1000", 4) = 4
[pid 5869] close(3) = 0
[pid 5869] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5869] write(1, "executing program\n", 18) = 18
[pid 5869] memfd_create("syzkaller", 0) = 3
[pid 5869] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5869] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5869] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5869] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5869] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5869] close(3) = 0
[pid 5869] close(4) = 0
[pid 5869] mkdir("./file0", 0777) = 0
[ 88.047142][ T5869] loop0: detected capacity change from 0 to 32768
[ 88.079968][ T5869] (syz-executor212,5869,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 88.094119][ T5869] (syz-executor212,5869,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 88.112525][ T5869] JBD2: Ignoring recovery information on journal
[ 88.132337][ T5869] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5869] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5869] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5869] chdir("./file0") = 0
[pid 5869] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5869] exit_group(0) = ?
[pid 5869] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5869, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./12/binderfs") = 0
[ 88.143756][ T1148] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./12/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./12") = 0
mkdir("./13", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
[ 88.191415][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5872 attached
, child_tidptr=0x55555eb95650) = 5872
[pid 5872] set_robust_list(0x55555eb95660, 24) = 0
[pid 5872] chdir("./13") = 0
[pid 5872] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5872] setpgid(0, 0) = 0
[pid 5872] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5872] write(3, "1000", 4) = 4
[pid 5872] close(3) = 0
[pid 5872] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5872] write(1, "executing program\n", 18executing program
) = 18
[pid 5872] memfd_create("syzkaller", 0) = 3
[pid 5872] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5872] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5872] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5872] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5872] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5872] close(3) = 0
[pid 5872] close(4) = 0
[pid 5872] mkdir("./file0", 0777) = 0
[ 88.500250][ T5872] loop0: detected capacity change from 0 to 32768
[ 88.532012][ T5872] (syz-executor212,5872,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 88.546835][ T5872] (syz-executor212,5872,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 88.575298][ T5872] JBD2: Ignoring recovery information on journal
[pid 5872] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5872] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5872] chdir("./file0") = 0
[pid 5872] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5872] exit_group(0) = ?
[pid 5872] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5872, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 88.594842][ T5872] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 88.605548][ T1148] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./13/binderfs") = 0
umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[ 88.771050][ T5831] ocfs2: Unmounting device (7,0) on (node local)
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./13/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./13") = 0
mkdir("./14", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555eb95650) = 5875
./strace-static-x86_64: Process 5875 attached
[pid 5875] set_robust_list(0x55555eb95660, 24) = 0
[pid 5875] chdir("./14") = 0
[pid 5875] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5875] setpgid(0, 0) = 0
[pid 5875] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5875] write(3, "1000", 4) = 4
[pid 5875] close(3) = 0
[pid 5875] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid 5875] write(1, "executing program\n", 18) = 18
[pid 5875] memfd_create("syzkaller", 0) = 3
[pid 5875] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5875] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5875] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5875] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5875] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5875] close(3) = 0
[pid 5875] close(4) = 0
[pid 5875] mkdir("./file0", 0777) = 0
[ 89.220374][ T5875] loop0: detected capacity change from 0 to 32768
[ 89.260525][ T5875] (syz-executor212,5875,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 89.274554][ T5875] (syz-executor212,5875,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 89.302941][ T5875] JBD2: Ignoring recovery information on journal
[pid 5875] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5875] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5875] chdir("./file0") = 0
[pid 5875] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5875] exit_group(0) = ?
[pid 5875] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5875, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=14 /* 0.14 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[ 89.321804][ T5875] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 89.333278][ T1148] ocfs2: Finishing quota recovery on device (7,0) for slot 0
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x55555eb966f0 /* 4 entries */, 32768) = 112
umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./14/binderfs") = 0
umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(4, 0x55555eb9e730 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555eb9e730 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./14/file0") = 0
getdents64(3, 0x55555eb966f0 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./14") = 0
mkdir("./15", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
[ 89.480449][ T5831] ocfs2: Unmounting device (7,0) on (node local)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5878 attached
, child_tidptr=0x55555eb95650) = 5878
[pid 5878] set_robust_list(0x55555eb95660, 24) = 0
[pid 5878] chdir("./15") = 0
[pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5878] setpgid(0, 0) = 0
[pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5878] write(3, "1000", 4) = 4
[pid 5878] close(3) = 0
[pid 5878] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5878] write(1, "executing program\n", 18executing program
) = 18
[pid 5878] memfd_create("syzkaller", 0) = 3
[pid 5878] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb9cee00000
[pid 5878] write(3, "\x02\x02\x02\x02\x02\x02\x02\x02\x74\x68\x69\x73\x20\x69\x73\x20\x61\x6e\x20\x6f\x63\x66\x73\x32\x20\x76\x6f\x6c\x75\x6d\x65\x00\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02"..., 16777216) = 16777216
[pid 5878] munmap(0x7fb9cee00000, 138412032) = 0
[pid 5878] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5878] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5878] close(3) = 0
[pid 5878] close(4) = 0
[pid 5878] mkdir("./file0", 0777) = 0
[ 89.774912][ T5878] loop0: detected capacity change from 0 to 32768
[ 89.808736][ T5878] (syz-executor212,5878,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 89.822832][ T5878] (syz-executor212,5878,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 89.841087][ T5878] JBD2: Ignoring recovery information on journal
[ 89.859621][ T5878] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[pid 5878] mount("/dev/loop0", "./file0", "ocfs2", MS_RELATIME, "usrquota,coherency=full,errors=continue,heartbeat=none,errors=continue,nointr,grpquota,") = 0
[pid 5878] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5878] chdir("./file0") = 0
[pid 5878] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5878] exit_group(0) = ?
[pid 5878] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5878, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=13 /* 0.13 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 89.870937][ T53] ocfs2: Finishing quota recovery on device (7,0) for slot 0
umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3