xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:32 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:32 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', 0x0, 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:32 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:32 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:32 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:32 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', 0x0, 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1637.116052][   T27] audit: type=1326 audit(1584028172.552:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5051 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1637.180388][ T5043] FAT-fs (loop4): bogus number of reserved sectors
15:49:32 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)

15:49:32 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1637.248438][ T5043] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1637.310514][   T27] audit: type=1326 audit(1584028172.742:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5027 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:32 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1637.431986][ T5129] blk_update_request: I/O error, dev loop2, sector 264064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[ 1637.573325][ T2632] blk_update_request: I/O error, dev loop2, sector 264064 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1637.586461][ T2632] Buffer I/O error on dev loop2, logical block 33008, async page read
15:49:33 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:33 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:33 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:33 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1638.056081][   T27] audit: type=1326 audit(1584028173.492:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5460 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1638.114164][   T27] audit: type=1326 audit(1584028173.532:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5428 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:33 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)

15:49:33 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1638.525361][ T5513] FAT-fs (loop4): bogus number of reserved sectors
[ 1638.647567][ T5513] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:34 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:34 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1639.505731][   T27] kauditd_printk_skb: 1 callbacks suppressed
[ 1639.505744][   T27] audit: type=1326 audit(1584028174.942:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5598 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1639.589783][ T5813] FAT-fs (loop4): bogus number of reserved sectors
[ 1639.598530][ T5813] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:35 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:35 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1639.933249][   T27] audit: type=1326 audit(1584028175.222:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5776 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:35 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)

15:49:35 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:35 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:35 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1640.603241][   T27] audit: type=1326 audit(1584028176.032:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6134 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1640.627841][ T6141] FAT-fs (loop4): bogus number of reserved sectors
[ 1640.634836][ T6141] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1640.696825][   T27] audit: type=1326 audit(1584028176.132:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6139 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1640.896234][   T27] audit: type=1326 audit(1584028176.332:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6140 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1640.969803][ T6228] FAT-fs (loop1): invalid media value (0x00)
[ 1640.995982][ T6228] FAT-fs (loop1): Can't find a valid FAT filesystem
15:49:36 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:37 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1641.750376][ T6379] FAT-fs (loop4): bogus number of reserved sectors
[ 1641.758278][ T6379] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1641.867571][ T6374] FAT-fs (loop1): invalid media value (0x00)
[ 1641.911121][   T27] audit: type=1326 audit(1584028177.342:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6372 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1641.973471][ T6374] FAT-fs (loop1): Can't find a valid FAT filesystem
15:49:37 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:37 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1642.361709][   T27] audit: type=1326 audit(1584028177.782:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=6490 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1642.415262][ T6702] FAT-fs (loop1): invalid media value (0x00)
[ 1642.477802][ T6702] FAT-fs (loop1): Can't find a valid FAT filesystem
15:49:38 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:38 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:38 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:38 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1643.080394][   T27] audit: type=1326 audit(1584028178.512:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7016 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1643.313407][ T7048] FAT-fs (loop4): bogus number of reserved sectors
[ 1643.388010][ T7048] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1643.412471][   T27] audit: type=1326 audit(1584028178.842:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7172 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1643.435646][   T27] audit: type=1326 audit(1584028178.872:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7034 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:40 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:40 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:40 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:40 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:40 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:40 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1645.164527][   T27] audit: type=1326 audit(1584028180.602:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7254 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1645.336348][ T7260] FAT-fs (loop4): bogus number of reserved sectors
15:49:40 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1645.432092][   T27] audit: type=1326 audit(1584028180.652:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7252 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1645.454684][   T27] audit: type=1326 audit(1584028180.792:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7253 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1645.461936][ T7260] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1645.536975][   T27] audit: type=1326 audit(1584028180.972:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7251 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:41 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:41 executing program 1:
r0 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7ffffffffffa, 0x6d1a4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x22, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0xfffffffffffffff8, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x9000000)

15:49:41 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:41 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1646.184514][   T27] audit: type=1326 audit(1584028181.622:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7596 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1646.349262][   T27] audit: type=1326 audit(1584028181.782:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7589 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1646.450795][ T7622] FAT-fs (loop4): bogus number of reserved sectors
[ 1646.512567][ T7622] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1646.628745][   T27] audit: type=1326 audit(1584028182.062:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7597 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:43 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:43 executing program 1:
r0 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7ffffffffffa, 0x6d1a4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x22, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0xfffffffffffffff8, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x9000000)

15:49:43 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:43 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:43 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:43 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1648.222308][   T27] audit: type=1326 audit(1584028183.652:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7828 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1648.228387][ T7831] FAT-fs (loop3): bogus number of reserved sectors
[ 1648.310838][ T7834] FAT-fs (loop4): bogus number of reserved sectors
[ 1648.353915][ T7834] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:43 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1648.386406][   T27] audit: type=1326 audit(1584028183.812:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=7824 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1648.414901][ T7831] FAT-fs (loop3): Can't find a valid FAT filesystem
15:49:44 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1648.788282][   T27] audit: type=1326 audit(1584028184.222:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8154 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1648.862067][ T8159] FAT-fs (loop3): bogus number of reserved sectors
[ 1648.872491][ T8159] FAT-fs (loop3): Can't find a valid FAT filesystem
15:49:44 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:44 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:44 executing program 1:
r0 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7ffffffffffa, 0x6d1a4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x22, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0xfffffffffffffff8, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x9000000)

[ 1649.274640][ T8372] FAT-fs (loop4): bogus number of reserved sectors
[ 1649.299754][ T8372] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:46 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:46 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:46 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:46 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:46 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:46 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1651.213769][ T8599] FAT-fs (loop3): bogus number of reserved sectors
[ 1651.220500][ T8599] FAT-fs (loop3): Can't find a valid FAT filesystem
15:49:46 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1651.383934][ T8600] FAT-fs (loop4): bogus number of reserved sectors
[ 1651.393478][   T27] kauditd_printk_skb: 2 callbacks suppressed
[ 1651.393498][   T27] audit: type=1326 audit(1584028186.822:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8597 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1651.479141][ T8600] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:47 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:47 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1651.654169][   T27] audit: type=1326 audit(1584028186.872:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8598 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:47 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1651.839394][   T27] audit: type=1326 audit(1584028187.172:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=8928 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:47 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:47 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:47 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:47 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1652.321103][ T9149] FAT-fs (loop4): bogus number of reserved sectors
[ 1652.374201][ T9149] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1652.379338][   T27] audit: type=1326 audit(1584028187.812:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9147 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:47 executing program 3:
r0 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7ffffffffffa, 0x6d1a4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x22, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0xfffffffffffffff8, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x9000000)

[ 1652.543199][   T27] audit: type=1326 audit(1584028187.812:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9148 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:48 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200))
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:48 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:48 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1653.500019][   T27] audit: type=1326 audit(1584028188.932:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9589 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:49 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:49 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:49 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200))
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:49 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:49 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:49 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1654.686591][   T27] audit: type=1326 audit(1584028190.122:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9611 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1654.716940][ T9620] FAT-fs (loop4): bogus number of reserved sectors
[ 1654.889378][ T9620] FAT-fs (loop4): Can't find a valid FAT filesystem
15:49:50 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1654.961613][   T27] audit: type=1326 audit(1584028190.322:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=9608 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:50 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:50 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200))
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:50 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:50 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:50 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1655.655403][T10226] FAT-fs (loop4): bogus number of reserved sectors
[ 1655.675755][T10226] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1655.698330][   T27] audit: type=1326 audit(1584028191.132:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10221 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1655.878755][   T27] audit: type=1326 audit(1584028191.312:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10225 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:53 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:53 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1657.737610][T10460] FAT-fs (loop4): bogus number of reserved sectors
[ 1657.803424][T10460] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1657.897175][   T27] audit: type=1326 audit(1584028193.332:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10455 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:53 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1658.126962][   T27] audit: type=1326 audit(1584028193.372:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10457 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1658.506050][   T27] audit: type=1326 audit(1584028193.942:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10802 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:54 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1658.719010][   T27] audit: type=1326 audit(1584028194.012:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10805 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1659.009290][   T27] audit: type=1326 audit(1584028194.442:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=10849 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:54 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1659.303616][   T27] audit: type=1326 audit(1584028194.732:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11029 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:56 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:56 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1660.985724][T11163] FAT-fs (loop3): bogus number of reserved sectors
[ 1660.997611][T11164] FAT-fs (loop4): bogus number of reserved sectors
[ 1661.046430][T11163] FAT-fs (loop3): Can't find a valid FAT filesystem
[ 1661.090474][T11164] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1661.097332][   T27] audit: type=1326 audit(1584028196.532:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11154 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1661.224790][   T27] audit: type=1326 audit(1584028196.532:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11151 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:56 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:56 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1661.601498][T11487] FAT-fs (loop3): bogus number of reserved sectors
[ 1661.633292][T11487] FAT-fs (loop3): Can't find a valid FAT filesystem
15:49:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:57 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:57 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1662.061099][T11806] FAT-fs (loop4): bogus number of reserved sectors
[ 1662.069638][T11806] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1662.180956][   T27] audit: type=1326 audit(1584028197.612:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11779 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1662.263494][   T27] audit: type=1326 audit(1584028197.692:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11793 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1662.414220][T11810] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1662.423007][T11810] FAT-fs (loop2): Filesystem has been set read-only
[ 1662.491614][T11810] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1662.871055][T11779] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:49:59 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:49:59 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:59 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:59 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:59 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:49:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1664.035639][T11939] FAT-fs (loop3): bogus number of reserved sectors
[ 1664.042319][T11939] FAT-fs (loop3): Can't find a valid FAT filesystem
[ 1664.105009][   T27] audit: type=1326 audit(1584028199.542:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11934 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1664.167137][T11938] FAT-fs (loop4): invalid media value (0x00)
[ 1664.173184][T11938] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1664.236671][   T27] audit: type=1326 audit(1584028199.662:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=11932 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:49:59 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:00 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:00 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:00 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:00 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:00 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1665.135988][T12366] FAT-fs (loop4): invalid media value (0x00)
[ 1665.208876][   T27] audit: type=1326 audit(1584028200.642:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12288 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1665.310491][T12366] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1665.386728][   T27] audit: type=1326 audit(1584028200.702:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12599 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1665.466690][T12606] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1665.477224][T12606] FAT-fs (loop2): Filesystem has been set read-only
[ 1665.485981][T12606] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1665.566446][   T27] audit: type=1326 audit(1584028200.742:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12603 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1665.985567][T12599] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:02 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:02 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:02 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:02 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:02 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:02 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1667.308294][   T27] audit: type=1326 audit(1584028202.742:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12724 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:02 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1667.373964][T12730] FAT-fs (loop4): invalid media value (0x00)
[ 1667.397954][T12730] FAT-fs (loop4): Can't find a valid FAT filesystem
15:50:02 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1667.453799][   T27] audit: type=1326 audit(1584028202.842:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12723 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:03 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:03 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1668.055606][T13001] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1668.116085][T13001] FAT-fs (loop2): Filesystem has been set read-only
[ 1668.131448][T13204] FAT-fs (loop4): invalid media value (0x00)
15:50:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1668.162733][T13204] FAT-fs (loop4): Can't find a valid FAT filesystem
15:50:03 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1668.228691][   T27] audit: type=1326 audit(1584028203.662:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13203 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1668.689617][   T27] audit: type=1326 audit(1584028204.122:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13387 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1668.825199][T13401] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1668.839163][T13401] FAT-fs (loop2): Filesystem has been set read-only
[ 1668.848586][T13401] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1669.402218][    T0] NOHZ: local_softirq_pending 08
15:50:05 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:05 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:05 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:05 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:05 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1670.261498][   T27] audit: type=1326 audit(1584028205.692:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13503 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1670.323939][   T27] audit: type=1326 audit(1584028205.762:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13505 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1670.502562][T13509] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1670.531277][T13517] FAT-fs (loop4): invalid media value (0x00)
[ 1670.631572][T13509] FAT-fs (loop2): Filesystem has been set read-only
[ 1670.663831][T13517] FAT-fs (loop4): Can't find a valid FAT filesystem
15:50:06 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:06 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1670.675010][   T27] audit: type=1326 audit(1584028206.092:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13506 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1670.687748][T13509] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:06 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:06 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1671.169936][   T27] audit: type=1326 audit(1584028206.602:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13746 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:06 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1671.231024][   T27] audit: type=1326 audit(1584028206.632:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13743 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1671.547215][   T27] audit: type=1326 audit(1584028206.982:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13761 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:07 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1671.707682][T13913] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1671.719041][T13913] FAT-fs (loop2): Filesystem has been set read-only
[ 1671.731381][T14019] FAT-fs (loop4): invalid media value (0x00)
[ 1671.738368][T13913] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:07 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1671.759529][   T27] audit: type=1326 audit(1584028207.192:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=13925 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1671.762174][T13913] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1671.797144][T14019] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1671.886036][T13913] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:07 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1672.188195][T13761] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:07 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:07 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:07 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:07 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1672.573992][T14406] FAT-fs (loop4): invalid media value (0x00)
[ 1672.580187][T14406] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1672.603519][   T27] audit: type=1326 audit(1584028208.032:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14298 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1672.672855][   T27] audit: type=1326 audit(1584028208.102:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14404 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:09 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:09 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:09 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:09 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1674.033154][T14641] FAT-fs (loop4): invalid media value (0x00)
[ 1674.039815][T14641] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1674.086662][   T27] audit: type=1326 audit(1584028209.522:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=14640 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:09 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:10 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:10 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:10 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:10 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1675.230482][T15291] FAT-fs (loop4): invalid media value (0x00)
[ 1675.238426][T15291] FAT-fs (loop4): Can't find a valid FAT filesystem
[ 1675.321024][   T27] kauditd_printk_skb: 2 callbacks suppressed
[ 1675.321036][   T27] audit: type=1326 audit(1584028210.752:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15204 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1675.367519][   T27] audit: type=1326 audit(1584028210.802:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15264 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:12 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17b9"], 0x0, 0xe5}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:12 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:12 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:12 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:12 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:12 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1677.134057][   T27] audit: type=1326 audit(1584028212.572:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15418 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1677.175146][   T27] audit: type=1326 audit(1584028212.602:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15421 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:20 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:20 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:20 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1685.325167][   T27] audit: type=1326 audit(1584028220.762:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15741 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1685.606648][   T27] audit: type=1326 audit(1584028221.042:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=15753 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:21 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:21 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:21 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r2 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1686.237483][   T27] audit: type=1326 audit(1584028221.672:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16074 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:21 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1686.572642][   T27] audit: type=1326 audit(1584028221.672:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16077 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:28 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:28 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:28 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1693.484000][   T27] audit: type=1326 audit(1584028221.972:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16181 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:29 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1693.706099][   T27] audit: type=1326 audit(1584028229.142:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16195 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1693.809731][T16074] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1693.921249][T16074] FAT-fs (loop2): Filesystem has been set read-only
15:50:29 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:29 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:29 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:29 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1694.209492][   T27] audit: type=1326 audit(1584028229.642:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16471 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1694.396501][   T27] audit: type=1326 audit(1584028229.832:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16515 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:30 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:30 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:30 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:30 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1695.265551][   T27] audit: type=1326 audit(1584028230.702:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16661 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1695.334046][   T27] audit: type=1326 audit(1584028230.732:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16744 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1695.400039][   T27] audit: type=1326 audit(1584028230.742:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16709 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1695.440826][T16750] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000f00)
[ 1695.448996][T16750] FAT-fs (loop2): Filesystem has been set read-only
[ 1695.457305][T16750] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1695.672097][   T27] audit: type=1326 audit(1584028231.102:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16793 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1695.756755][   T27] audit: type=1326 audit(1584028231.192:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=16781 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:31 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1696.046758][T16744] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:32 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:32 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1696.877971][   T27] audit: type=1326 audit(1584028232.312:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=17082 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:32 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:32 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:33 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:33 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:33 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:33 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', 0x0, 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1698.675829][T17626] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1698.683760][T17626] FAT-fs (loop2): Filesystem has been set read-only
15:50:35 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:35 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:35 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:35 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:35 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:35 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', 0x0, 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1699.894128][   T27] kauditd_printk_skb: 3 callbacks suppressed
[ 1699.894141][   T27] audit: type=1326 audit(1584028235.332:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=17966 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:35 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', 0x0, 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1700.376299][   T27] audit: type=1326 audit(1584028235.362:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=17965 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:35 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:35 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:36 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:36 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1700.590783][   T27] audit: type=1326 audit(1584028235.392:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=17968 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:36 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1701.016967][T18406] FAT-fs (loop5): bogus number of reserved sectors
[ 1701.045525][T18406] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1701.079759][   T27] audit: type=1326 audit(1584028236.512:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=18412 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1701.339587][   T27] audit: type=1326 audit(1584028236.552:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=18410 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:38 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:38 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:38 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:38 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:38 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1702.956760][T18753] FAT-fs (loop5): bogus number of reserved sectors
[ 1702.963336][T18753] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1702.999643][   T27] audit: type=1326 audit(1584028238.432:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=18742 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1703.087677][   T27] audit: type=1326 audit(1584028238.442:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=18743 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:39 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:39 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:39 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:39 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:39 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:39 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1704.281596][T19192] FAT-fs (loop5): bogus number of reserved sectors
[ 1704.293871][T19192] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1704.383095][   T27] audit: type=1326 audit(1584028239.812:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=19182 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1704.606011][   T27] audit: type=1326 audit(1584028239.882:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=19193 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1705.087830][T19227] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1705.095901][T19227] FAT-fs (loop2): Filesystem has been set read-only
15:50:41 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:41 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1706.024351][T19523] FAT-fs (loop5): bogus number of reserved sectors
[ 1706.037156][T19523] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1706.046824][   T27] audit: type=1326 audit(1584028241.482:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=19508 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1706.077867][   T27] audit: type=1326 audit(1584028241.512:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=19510 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1706.158513][T19529] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1706.167500][T19529] FAT-fs (loop2): Filesystem has been set read-only
[ 1706.177509][T19529] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1706.189048][T19529] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1706.199671][T19529] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:41 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:41 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1706.646302][T19842] FAT-fs (loop5): bogus number of reserved sectors
[ 1706.683343][T19842] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1706.710817][T19508] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
15:50:42 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:42 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:42 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1707.034111][   T27] audit: type=1326 audit(1584028242.472:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20138 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1707.072415][T20161] FAT-fs (loop5): bogus number of reserved sectors
[ 1707.188999][   T27] audit: type=1326 audit(1584028242.602:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20164 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1707.215396][T20161] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1707.769237][T20169] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1707.777208][T20169] FAT-fs (loop2): Filesystem has been set read-only
15:50:44 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:44 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:44 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:44 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:44 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1709.245419][T20296] FAT-fs (loop5): bogus number of reserved sectors
15:50:44 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1709.308723][   T27] audit: type=1326 audit(1584028244.742:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20289 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1709.314947][T20296] FAT-fs (loop5): Can't find a valid FAT filesystem
15:50:44 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1709.527353][   T27] audit: type=1326 audit(1584028244.812:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20286 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:45 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x0, &(0x7f0000000140), 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:45 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1709.832897][   T27] audit: type=1326 audit(1584028245.262:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20622 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:45 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:45 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:45 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1710.357632][T20758] FAT-fs (loop5): bogus number of reserved sectors
[ 1710.365151][T20758] FAT-fs (loop5): Can't find a valid FAT filesystem
15:50:45 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1710.541697][   T27] audit: type=1326 audit(1584028245.972:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20735 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1710.819428][   T27] audit: type=1326 audit(1584028246.252:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20734 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:46 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:46 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:46 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:46 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1711.451264][   T27] audit: type=1326 audit(1584028246.882:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21062 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1711.475287][   T27] audit: type=1326 audit(1584028246.892:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21166 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1711.587017][   T27] audit: type=1326 audit(1584028247.022:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21176 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:54 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:54 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:54 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:54 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{0x0}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1718.972039][   T27] audit: type=1326 audit(1584028254.402:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21227 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:54 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:54 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1719.226916][T21263] FAT-fs (loop5): bogus number of reserved sectors
[ 1719.233506][T21263] FAT-fs (loop5): Can't find a valid FAT filesystem
15:50:54 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1719.501294][   T27] audit: type=1326 audit(1584028254.932:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21431 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:55 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1719.701083][   T27] audit: type=1326 audit(1584028255.012:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21470 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1720.060822][T21626] FAT-fs (loop5): bogus number of reserved sectors
[ 1720.145403][T21626] FAT-fs (loop5): Can't find a valid FAT filesystem
15:50:55 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:55 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:55 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:55 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1720.738901][T21843] FAT-fs (loop5): bogus number of reserved sectors
[ 1720.763188][T21843] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1720.883549][   T27] audit: type=1326 audit(1584028256.312:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21890 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1720.921902][   T27] audit: type=1326 audit(1584028256.312:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=21847 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:57 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:50:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1721.969124][   T27] audit: type=1326 audit(1584028257.402:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22074 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1722.016303][T22085] FAT-fs (loop5): bogus number of reserved sectors
[ 1722.097699][T22140] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1722.107965][T22140] FAT-fs (loop4): Filesystem has been set read-only
[ 1722.111772][T22085] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1722.117073][T22140] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1722.131722][T22140] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1722.147008][T22140] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1722.155856][   T27] audit: type=1326 audit(1584028257.592:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22078 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:50:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:57 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1722.651511][T22074] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:50:58 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:50:58 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1722.839846][T22434] FAT-fs (loop5): bogus number of reserved sectors
[ 1722.903766][   T27] audit: type=1326 audit(1584028258.332:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22407 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1722.909625][T22434] FAT-fs (loop5): Can't find a valid FAT filesystem
15:50:58 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1723.048033][   T27] audit: type=1326 audit(1584028258.482:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22493 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:06 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:06 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:06 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:06 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1730.866460][   T27] audit: type=1326 audit(1584028266.302:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22674 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1730.903153][T22704] FAT-fs (loop5): bogus number of reserved sectors
[ 1730.910231][T22704] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1730.921132][   T27] audit: type=1326 audit(1584028266.342:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22669 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:06 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:06 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:06 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e666174", 0xb}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:07 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1731.800351][T22904] FAT-fs (loop5): bogus number of reserved sectors
[ 1731.820162][T22904] FAT-fs (loop5): Can't find a valid FAT filesystem
15:51:07 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1732.117635][   T27] audit: type=1326 audit(1584028267.552:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22912 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1732.150662][T22911] FAT-fs (loop1): invalid media value (0x00)
[ 1732.202005][   T27] audit: type=1326 audit(1584028267.552:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=22910 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1732.270466][T23119] FAT-fs (loop5): invalid media value (0x00)
[ 1732.276925][T23119] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1732.289690][T22911] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1732.505228][T22936] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1732.587191][T22936] FAT-fs (loop4): Filesystem has been set read-only
[ 1732.645661][T22936] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1732.686652][T22936] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1732.726897][T22936] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:08 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:08 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1732.756652][T22936] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:08 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1733.181747][   T27] audit: type=1326 audit(1584028268.612:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23342 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1733.275841][   T27] audit: type=1326 audit(1584028268.642:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23343 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1733.302470][   T27] audit: type=1326 audit(1584028268.732:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23344 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1733.528089][T23356] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1733.583426][T23356] FAT-fs (loop4): Filesystem has been set read-only
[ 1733.639582][T23356] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:09 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:09 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:09 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:09 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, 0x0, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1733.938138][T23355] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1733.946075][T23355] FAT-fs (loop2): Filesystem has been set read-only
[ 1733.975116][T23344] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1734.012945][T23468] FAT-fs (loop5): invalid media value (0x00)
[ 1734.019620][T23468] FAT-fs (loop5): Can't find a valid FAT filesystem
15:51:09 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1734.229922][T23466] FAT-fs (loop1): invalid media value (0x00)
15:51:09 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:09 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1734.272246][T23466] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1734.409440][   T27] audit: type=1326 audit(1584028269.842:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23766 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:09 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01", 0x11}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1734.560494][   T27] audit: type=1326 audit(1584028269.992:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23772 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1734.602404][T23801] FAT-fs (loop1): invalid media value (0x00)
[ 1734.614005][T23801] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1734.814104][T23806] FAT-fs (loop5): invalid media value (0x00)
[ 1734.832996][   T27] audit: type=1326 audit(1584028270.262:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=23799 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1734.869528][T23806] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1735.091844][T23797] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1735.100344][T23797] FAT-fs (loop2): Filesystem has been set read-only
15:51:10 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, 0x0, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:10 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:10 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:12 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed00000000000000000000000200"/115], 0x0, 0x73}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:12 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:12 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:12 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:12 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, 0x0, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:12 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1737.207840][T24249] FAT-fs (loop5): invalid media value (0x00)
[ 1737.214078][T24249] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1737.238693][   T27] kauditd_printk_skb: 2 callbacks suppressed
[ 1737.238706][   T27] audit: type=1326 audit(1584028272.672:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24246 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1737.421465][   T27] audit: type=1326 audit(1584028272.852:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24248 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:12 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1737.600336][T24571] FAT-fs (loop5): invalid media value (0x00)
[ 1737.606672][T24571] FAT-fs (loop5): Can't find a valid FAT filesystem
15:51:13 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:13 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1737.750074][   T27] audit: type=1326 audit(1584028272.932:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24245 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:13 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270", 0x14}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1738.007973][   T27] audit: type=1326 audit(1584028273.132:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24549 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1738.106748][T24701] FAT-fs (loop5): invalid media value (0x00)
[ 1738.121551][T24701] FAT-fs (loop5): Can't find a valid FAT filesystem
15:51:13 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:13 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1738.217299][   T27] audit: type=1326 audit(1584028273.512:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24687 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1738.447926][   T27] audit: type=1326 audit(1584028273.602:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24691 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1738.700438][   T27] audit: type=1326 audit(1584028274.132:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24980 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1738.746355][   T27] audit: type=1326 audit(1584028274.182:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=24997 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1738.954216][T25025] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1738.962865][T25025] FAT-fs (loop2): Filesystem has been set read-only
[ 1739.028365][T25025] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1739.042449][T25025] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1739.059842][T25025] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1739.404587][T25022] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1739.405238][T24997] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1739.412548][T25022] FAT-fs (loop4): Filesystem has been set read-only
15:51:15 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed00000000000000000000000200"/115], 0x0, 0x73}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:15 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:15 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:15 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:15 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:15 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1740.327142][T25036] FAT-fs (loop5): invalid media value (0x00)
[ 1740.333191][T25036] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1740.381295][   T27] audit: type=1326 audit(1584028275.812:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25032 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1740.413580][   T27] audit: type=1326 audit(1584028275.812:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25033 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:16 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:16 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:16 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1740.948182][T25373] FAT-fs (loop5): invalid media value (0x00)
[ 1740.957854][T25373] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1741.087510][T25241] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1741.101090][T25241] FAT-fs (loop2): Filesystem has been set read-only
15:51:16 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270ff", 0x15}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:16 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:16 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1741.371619][T25484] FAT-fs (loop5): invalid media value (0x00)
[ 1741.423262][T25484] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1741.813127][T25810] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1741.865329][T25810] FAT-fs (loop2): Filesystem has been set read-only
[ 1741.875932][T25810] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1741.952933][T25810] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1742.009174][T25810] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1742.207874][T25496] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1742.371503][T25792] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1742.379479][T25792] FAT-fs (loop4): Filesystem has been set read-only
15:51:18 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed00000000000000000000000200"/115], 0x0, 0x73}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:18 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:18 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:18 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:18 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:18 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1743.682371][   T27] kauditd_printk_skb: 3 callbacks suppressed
[ 1743.682385][   T27] audit: type=1326 audit(1584028279.112:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25824 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:19 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1744.003151][   T27] audit: type=1326 audit(1584028279.202:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25828 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:19 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:19 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:19 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1744.861525][   T27] audit: type=1326 audit(1584028280.292:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=26456 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1745.006542][   T27] audit: type=1326 audit(1584028280.382:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=26414 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1745.519552][T26620] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1745.527906][T26620] FAT-fs (loop2): Filesystem has been set read-only
15:51:21 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000"], 0x0, 0xac}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:21 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:21 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:21 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:21 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1746.779276][   T27] audit: type=1326 audit(1584028282.212:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=26632 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1746.837859][   T27] audit: type=1326 audit(1584028282.252:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=26631 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1746.880006][   T27] audit: type=1326 audit(1584028282.252:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=26635 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:22 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:22 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:22 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x0, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:22 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:22 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:23 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1747.756900][   T27] audit: type=1326 audit(1584028283.192:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27303 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1747.811006][   T27] audit: type=1326 audit(1584028283.242:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27307 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1748.460489][T27305] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1748.468425][T27305] FAT-fs (loop2): Filesystem has been set read-only
15:51:25 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000"], 0x0, 0xac}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:25 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:25 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:25 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:25 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:25 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1749.974876][   T27] audit: type=1326 audit(1584028285.412:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27435 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:25 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r0, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r0, r0, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1750.072584][   T27] audit: type=1326 audit(1584028285.432:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27434 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:26 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:26 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:26 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:26 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1750.778351][   T27] audit: type=1326 audit(1584028286.212:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27770 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1750.807905][   T27] audit: type=1326 audit(1584028286.242:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27772 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:26 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1751.779895][   T27] audit: type=1326 audit(1584028287.212:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27886 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1751.893825][   T27] audit: type=1326 audit(1584028287.292:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=27887 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:28 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000"], 0x0, 0xac}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:28 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:28 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:28 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:28 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:28 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1753.049942][   T27] audit: type=1326 audit(1584028288.482:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28108 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1753.399994][   T27] audit: type=1326 audit(1584028288.622:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28107 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:29 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:29 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:29 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])

15:51:29 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:29 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1754.299592][   T27] audit: type=1326 audit(1584028289.732:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28441 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1754.394994][   T27] audit: type=1326 audit(1584028289.772:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28442 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:29 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1754.949463][T28708] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1754.957393][T28708] FAT-fs (loop2): Filesystem has been set read-only
15:51:31 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d32"], 0x0, 0xc9}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:31 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:31 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])

15:51:31 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:31 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:31 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1756.323227][   T27] audit: type=1326 audit(1584028291.752:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28881 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1756.445140][   T27] audit: type=1326 audit(1584028291.882:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=28877 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:32 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:32 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(0x0, 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:32 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])

15:51:32 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:32 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1756.993983][T29073] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1757.001909][T29073] FAT-fs (loop2): Filesystem has been set read-only
[ 1757.387369][   T27] audit: type=1326 audit(1584028292.822:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=29242 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1757.469945][   T27] audit: type=1326 audit(1584028292.842:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=29243 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:32 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1757.695499][   T27] audit: type=1326 audit(1584028293.132:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=29256 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:34 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:34 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d32"], 0x0, 0xc9}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:34 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:34 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:34 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:34 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1759.385768][   T27] audit: type=1326 audit(1584028294.822:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=29662 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:35 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:35 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1759.876102][   T27] audit: type=1326 audit(1584028294.822:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=29659 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:35 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:35 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:35 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:36 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:36 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1760.573190][   T27] audit: type=1326 audit(1584028296.002:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30053 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1760.762446][   T27] audit: type=1326 audit(1584028296.192:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30145 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1761.308333][T30318] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1761.316333][T30318] FAT-fs (loop2): Filesystem has been set read-only
15:51:37 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d32"], 0x0, 0xc9}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:37 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:37 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:37 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:37 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:37 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1762.581939][   T27] audit: type=1326 audit(1584028298.012:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30549 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:38 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:38 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:38 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1762.853277][   T27] audit: type=1326 audit(1584028298.012:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30553 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:38 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:38 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1763.469766][   T27] audit: type=1326 audit(1584028298.902:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30897 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:39 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1763.840723][   T27] audit: type=1326 audit(1584028299.272:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30936 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1764.231953][   T27] audit: type=1326 audit(1584028299.272:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=30928 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1764.499995][T31177] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1764.508030][T31177] FAT-fs (loop2): Filesystem has been set read-only
15:51:40 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7"], 0x0, 0xd7}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:40 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:40 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:40 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:40 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:40 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1765.442429][   T27] audit: type=1326 audit(1584028300.872:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31334 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1765.722042][   T27] audit: type=1326 audit(1584028300.942:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31335 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:41 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1766.188311][   T27] audit: type=1326 audit(1584028301.152:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31332 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1766.342165][   T27] audit: type=1326 audit(1584028301.182:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31336 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:41 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:41 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:41 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:41 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:42 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1766.672653][   T27] audit: type=1326 audit(1584028302.102:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31568 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:44 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7"], 0x0, 0xd7}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:44 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x0}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:44 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1768.806056][   T27] kauditd_printk_skb: 1 callbacks suppressed
[ 1768.806069][   T27] audit: type=1326 audit(1584028304.242:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31810 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:44 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1768.995788][   T27] audit: type=1326 audit(1584028304.322:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31809 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1769.128801][   T27] audit: type=1326 audit(1584028304.562:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=31946 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:44 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:44 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1769.873021][   T27] audit: type=1326 audit(1584028305.302:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=32463 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1770.038096][   T27] audit: type=1326 audit(1584028305.472:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=32448 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:47 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:47 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7"], 0x0, 0xd7}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:47 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:47 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:47 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:47 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1771.834068][   T27] audit: type=1326 audit(1584028307.272:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=32499 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:47 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1772.081500][   T27] audit: type=1326 audit(1584028307.512:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=32501 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:47 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:47 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:48 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:48 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1772.667963][   T27] audit: type=1326 audit(1584028308.102:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=385 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:48 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:48 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1772.903807][   T27] audit: type=1326 audit(1584028308.332:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=497 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1773.195811][   T27] audit: type=1326 audit(1584028308.632:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=583 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1773.341868][  T690] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[ 1773.351260][  T690] FAT-fs (loop4): Filesystem has been set read-only
[ 1773.393008][  T690] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1773.436611][  T690] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1773.462909][  T690] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1773.883510][  T583] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:50 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad"], 0x0, 0xde}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:50 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1774.962469][   T27] audit: type=1326 audit(1584028310.392:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=801 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1775.332945][   T27] audit: type=1326 audit(1584028310.762:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=803 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:50 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:50 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1775.722860][  T814] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1775.790263][   T27] audit: type=1326 audit(1584028311.222:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1146 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1775.834346][  T814] FAT-fs (loop4): Filesystem has been set read-only
15:51:51 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:51 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1775.958103][   T27] audit: type=1326 audit(1584028311.262:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1135 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1776.258265][   T27] audit: type=1326 audit(1584028311.692:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1251 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:51 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1776.399213][   T27] audit: type=1326 audit(1584028311.832:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1311 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:53 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad"], 0x0, 0xde}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:53 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:53 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:53 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:53 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1778.228611][   T27] audit: type=1326 audit(1584028313.662:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1492 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1778.430683][   T27] audit: type=1326 audit(1584028313.862:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1496 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:54 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:54 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:54 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1778.996468][   T27] audit: type=1326 audit(1584028314.432:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=1839 comm="syz-executor.5" exe="/root/syz-executor.5" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:54 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e"], 0x2d)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1779.376721][   T27] audit: type=1326 audit(1584028314.812:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2088 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:55 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, 0x0, 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1779.726055][ T2187] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1779.736912][ T2187] FAT-fs (loop4): Filesystem has been set read-only
[ 1779.751927][ T2187] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:56 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad"], 0x0, 0xde}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:56 executing program 3:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:56 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:56 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:56 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e"], 0x2d)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:56 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1781.326173][   T27] kauditd_printk_skb: 2 callbacks suppressed
[ 1781.326186][   T27] audit: type=1326 audit(1584028316.762:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2209 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1781.492966][   T27] audit: type=1326 audit(1584028316.852:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2207 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:51:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:57 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, 0x0, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:57 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e"], 0x2d)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1782.309094][   T27] audit: type=1326 audit(1584028317.742:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2860 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1782.464635][   T27] audit: type=1326 audit(1584028317.902:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2867 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1782.665179][ T2873] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1782.673176][ T2873] FAT-fs (loop4): Filesystem has been set read-only
[ 1782.681831][ T2873] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:51:59 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:51:59 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:59 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:59 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:59 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:51:59 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1784.344069][   T27] audit: type=1326 audit(1584028319.782:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2996 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1784.502124][   T27] audit: type=1326 audit(1584028319.932:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=2999 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:00 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:00 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:00 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:00 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:00 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:00 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1785.449457][   T27] audit: type=1326 audit(1584028320.882:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3666 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:02 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:52:02 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:02 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:02 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:02 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:02 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1787.631279][   T27] audit: type=1326 audit(1584028323.062:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3991 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1787.710074][   T27] audit: type=1326 audit(1584028323.062:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=3990 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:03 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB], 0x0)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:03 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:03 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:03 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:03 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB='\x00'], 0x1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:04 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1788.675645][   T27] audit: type=1326 audit(1584028324.112:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4452 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1789.095685][   T27] audit: type=1326 audit(1584028324.412:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4556 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1789.297618][ T4568] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1789.305624][ T4568] FAT-fs (loop2): Filesystem has been set read-only
15:52:05 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:52:05 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:05 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:05 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba"], 0x85)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:05 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:52:05 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795"], 0x17)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:06 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d9986"], 0x0, 0xe2}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1790.681960][   T27] audit: type=1326 audit(1584028326.112:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4692 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1790.799331][   T27] audit: type=1326 audit(1584028326.232:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4689 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1790.907699][ T4738] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
[ 1790.916345][ T4738] FAT-fs (loop4): Filesystem has been set read-only
[ 1790.923935][ T4738] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000500)
15:52:06 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2}, 0x0)
pipe(&(0x7f0000000200))
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:06 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:06 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1791.268121][   T27] audit: type=1326 audit(1584028326.702:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=4923 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:06 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795"], 0x17)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:07 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba"], 0x85)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1792.022008][   T27] audit: type=1326 audit(1584028327.452:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5243 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1792.157475][   T27] audit: type=1326 audit(1584028327.592:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5250 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1792.795297][ T5251] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000500)
[ 1792.803168][ T5251] FAT-fs (loop2): Filesystem has been set read-only
15:52:09 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17"], 0x0, 0xe4}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

15:52:09 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(&(0x7f0000000200))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x41395527)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r5 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r5, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:09 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:09 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:09 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795"], 0x17)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:09 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba"], 0x85)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1793.810681][   T27] audit: type=1326 audit(1584028329.242:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5265 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1794.024294][   T27] audit: type=1326 audit(1584028329.302:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5267 comm="syz-executor.4" exe="/root/syz-executor.4" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba"], 0x85)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="0800000000000000000000000000000000000000000200000600000000000080ffffffff000002009d0b000000000000000000000000000000000000000000000000002d0e310a000000c6b63d0000000000000000000900000000000000f7ffffffffffffffff02000000000000006c0000000000000000000000000000041000000000000000000000000000006eca0000000000000000000000000000000000000000000000000008000000000000000000000000041000000000000000000000000000000500000000000000f7ffffffa3ffffffff00020000000000000000000000000000001f00000000000000220000000000000000000000000000944200000000000009000004000000000000"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1807.905272][   T27] audit: type=1326 audit(1584028329.392:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5271 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1807.978884][   T27] audit: type=1326 audit(1584028329.532:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5268 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:43 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0)
pipe(0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c04db68699169ae8a81077862fa2dbd1fd0fa4bf97c6b6"], 0xb1)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:43 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65ef3b9726b72d3999f59b85afa20c6e8e6bc42bc9f946007bac5f21a7f4a3af54c829892d9f13295ca580d9ba0329e6a514cb6eff98cea400746158b8b875637445c0"], 0x9b)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:43 executing program 0:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb01001800000000000000ec000000ec00000007fd4eb3e097000000000000000a000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ed0000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000006000004000000007527b5ee1d91a104d0fbaffd8542f9dd8a96e66be9e2269e3d608d3291f10883fdf03f6b2d5a12f90db7c2696d287f99ad669d99866e17"], 0x0, 0xe4}, 0x20)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000140)=""/71, 0x47}], 0x3, 0x0, 0x0, 0x0)
tkill(r0, 0x3c)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)

[ 1828.300947][   T27] audit: type=1326 audit(1584028363.732:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5575 comm="syz-executor.1" exe="/root/syz-executor.1" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
15:52:44 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r2 = getpid()
sched_setattr(r2, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
getegid()
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
memfd_create(0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed450fe2f2ea32a8944ae6a23e220ad9d351dfe3e72624dc453c4f06b405381bf8c7784a744eaf295764d3c9f91d5fe01d83d1347d06a30b65"], 0x59)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r3 = eventfd2(0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f00000012c0)=ANY=[@ANYBLOB="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"])
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

15:52:44 executing program 4:
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
getegid()
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_aout(r1, &(0x7f0000001480)=ANY=[@ANYBLOB="000637620003555e5689d91b59672a8a298a7dd8a16795e08348c14dadc3cab5ed45"], 0x22)
unlink(&(0x7f0000001e00)='./bus\x00')
sendfile(r1, r1, &(0x7f00000001c0), 0x8080fffffffe)
creat(&(0x7f0000000280)='./file0\x00', 0x0)
msgrcv(0x0, &(0x7f0000000380)={0x0, ""/251}, 0x103, 0x3, 0x1000)

[ 1828.717608][   T27] audit: type=1326 audit(1584028364.152:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=5585 comm="syz-executor.2" exe="/root/syz-executor.2" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f4ba code=0x0
[ 1933.793623][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1933.800641][    C1] 	(detected by 1, t=10502 jiffies, g=241837, q=44)
[ 1933.807250][    C1] rcu: All QSes seen, last rcu_preempt kthread activity 10502 (4295130505-4295120003), jiffies_till_next_fqs=1, root ->qsmask 0x0
[ 1933.820622][    C1] syz-executor.2  R  running task    26880  5649   9735 0x00004000
[ 1933.828549][    C1] Call Trace:
[ 1933.831848][    C1]  <IRQ>
[ 1933.834840][    C1]  sched_show_task.cold+0x2e2/0x343
[ 1933.840077][    C1]  ? can_nice.part.0+0x10/0x10
[ 1933.844949][    C1]  ? rcu_sched_clock_irq.cold+0x98/0xc55
[ 1933.850680][    C1]  ? _find_next_bit.constprop.0+0x1a3/0x200
[ 1933.856621][    C1]  rcu_sched_clock_irq.cold+0xb35/0xc55
[ 1933.862287][    C1]  update_process_times+0x25/0x60
[ 1933.867415][    C1]  tick_sched_handle+0x9b/0x180
[ 1933.872300][    C1]  tick_sched_timer+0x4e/0x140
[ 1933.877093][    C1]  __hrtimer_run_queues+0x32c/0xdd0
[ 1933.882324][    C1]  ? tick_sched_do_timer+0x1a0/0x1a0
[ 1933.887765][    C1]  ? hrtimer_init+0x320/0x320
[ 1933.892471][    C1]  ? ktime_get_update_offsets_now+0x2d6/0x450
[ 1933.898589][    C1]  hrtimer_interrupt+0x312/0x770
[ 1933.903653][    C1]  smp_apic_timer_interrupt+0x15b/0x600
[ 1933.909381][    C1]  apic_timer_interrupt+0xf/0x20
[ 1933.914336][    C1]  </IRQ>
[ 1933.917301][    C1] RIP: 0010:stack_trace_consume_entry+0xab/0x160
[ 1933.923645][    C1] Code: c0 03 38 d0 7c 08 84 d2 0f 85 90 00 00 00 8b 43 0c 85 c0 75 53 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 80 3c 02 00 <0f> 85 92 00 00 00 8d 45 01 89 43 10 48 8b 03 48 8d 2c e8 48 b8 00
[ 1933.943264][    C1] RSP: 0018:ffffc90017d3f568 EFLAGS: 00000246 ORIG_RAX: ffffffffffffff13
[ 1933.951704][    C1] RAX: dffffc0000000000 RBX: ffffc90017d3f638 RCX: 0000000000000000
[ 1933.959792][    C1] RDX: 1ffff92002fa7ec7 RSI: ffffffff81ae5cd1 RDI: ffffc90017d3f644
[ 1933.967783][    C1] RBP: 0000000000000002 R08: 0000000000000001 R09: 0000000000000001
[ 1933.975776][    C1] R10: 00000000000279bd R11: 000000000006e027 R12: ffffc90017d3f638
[ 1933.983875][    C1] R13: 0000000000000000 R14: ffff8880449aa440 R15: ffff88809dd226ff
[ 1933.991944][    C1]  ? __kmalloc+0x161/0x7a0
[ 1933.996449][    C1]  ? unwind_get_return_address+0x5a/0xa0
[ 1934.002111][    C1]  ? profile_setup.cold+0xc1/0xc1
[ 1934.007169][    C1]  arch_stack_walk+0x67/0xd0
[ 1934.011800][    C1]  ? __kmalloc+0x161/0x7a0
[ 1934.016247][    C1]  stack_trace_save+0x8c/0xc0
[ 1934.020953][    C1]  ? stack_trace_consume_entry+0x160/0x160
[ 1934.026784][    C1]  ? ktime_get_coarse_real_ts64+0x19b/0x280
[ 1934.032806][    C1]  save_stack+0x1b/0x80
[ 1934.036984][    C1]  ? save_stack+0x1b/0x80
[ 1934.041335][    C1]  ? __kasan_kmalloc.constprop.0+0xbf/0xd0
[ 1934.047169][    C1]  ? __kmalloc+0x14b/0x7a0
[ 1934.051694][    C1]  ? iter_file_splice_write+0x168/0xb00
[ 1934.057268][    C1]  ? direct_splice_actor+0x115/0x160
[ 1934.062702][    C1]  ? splice_direct_to_actor+0x38c/0x980
[ 1934.068278][    C1]  ? do_splice_direct+0x1a8/0x270
[ 1934.073325][    C1]  ? do_sendfile+0x549/0xc40
[ 1934.077944][    C1]  ? __x64_sys_sendfile64+0x149/0x210
[ 1934.083342][    C1]  ? do_syscall_64+0xf6/0x7d0
[ 1934.088045][    C1]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1934.094139][    C1]  ? mark_held_locks+0x9f/0xe0
[ 1934.098940][    C1]  ? __lock_acquire+0x14bd/0x3ca0
[ 1934.104004][    C1]  ? smp_apic_timer_interrupt+0x1b6/0x600
[ 1934.109752][    C1]  ? find_held_lock+0x2d/0x110
[ 1934.114544][    C1]  ? fs_reclaim_release+0xa/0x20
[ 1934.119519][    C1]  ? mark_lock+0xbc/0x1220
[ 1934.123984][    C1]  ? kasan_unpoison_shadow+0x30/0x40
[ 1934.129295][    C1]  __kasan_kmalloc.constprop.0+0xbf/0xd0
[ 1934.135070][    C1]  __kmalloc+0x161/0x7a0
[ 1934.139343][    C1]  ? iter_file_splice_write+0x168/0xb00
[ 1934.145004][    C1]  ? atime_needs_update+0x491/0x5f0
[ 1934.150245][    C1]  iter_file_splice_write+0x168/0xb00
[ 1934.155642][    C1]  ? atime_needs_update+0x5f0/0x5f0
[ 1934.160912][    C1]  ? page_cache_pipe_buf_release+0x280/0x280
[ 1934.166920][    C1]  ? add_to_pipe+0x3a0/0x3a0
[ 1934.171581][    C1]  ? page_cache_pipe_buf_release+0x280/0x280
[ 1934.177593][    C1]  direct_splice_actor+0x115/0x160
[ 1934.182738][    C1]  splice_direct_to_actor+0x38c/0x980
[ 1934.188153][    C1]  ? generic_pipe_buf_nosteal+0x10/0x10
[ 1934.193726][    C1]  ? do_splice_to+0x160/0x160
[ 1934.198495][    C1]  ? security_file_permission+0x8a/0x370
[ 1934.204173][    C1]  do_splice_direct+0x1a8/0x270
[ 1934.209047][    C1]  ? splice_direct_to_actor+0x980/0x980
[ 1934.214754][    C1]  ? __this_cpu_preempt_check+0x28/0x190
[ 1934.220454][    C1]  do_sendfile+0x549/0xc40
[ 1934.224915][    C1]  ? do_compat_pwritev64+0x1b0/0x1b0
[ 1934.230258][    C1]  ? copy_user_generic_unrolled+0x81/0xc0
[ 1934.236014][    C1]  __x64_sys_sendfile64+0x149/0x210
[ 1934.241243][    C1]  ? __ia32_sys_sendfile+0x220/0x220
[ 1934.246577][    C1]  ? do_syscall_64+0x4f/0x7d0
[ 1934.251295][    C1]  do_syscall_64+0xf6/0x7d0
[ 1934.255825][    C1]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[ 1934.261732][    C1] RIP: 0033:0x45c679
[ 1934.265683][    C1] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[ 1934.285307][    C1] RSP: 002b:00007f97ced29c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1934.293747][    C1] RAX: ffffffffffffffda RBX: 00007f97ced2a6d4 RCX: 000000000045c679
[ 1934.301744][    C1] RDX: 00000000200001c0 RSI: 0000000000000005 RDI: 0000000000000005
[ 1934.309734][    C1] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000
[ 1934.317723][    C1] R10: 00008080fffffffe R11: 0000000000000246 R12: 00000000ffffffff
[ 1934.325712][    C1] R13: 00000000000008d1 R14: 00000000004cb581 R15: 000000000076c04c
[ 1934.333744][    C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g241837 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1934.345031][    C1] rcu: RCU grace-period kthread stack dump:
[ 1934.350942][    C1] rcu_preempt     R  running task    29384    10      2 0x80004000
[ 1934.358865][    C1] Call Trace:
[ 1934.362210][    C1]  ? __schedule+0x934/0x1f90
[ 1934.366831][    C1]  ? __sched_text_start+0x8/0x8
[ 1934.371722][    C1]  ? _raw_spin_lock_irqsave+0x94/0xbf
[ 1934.377123][    C1]  ? debug_smp_processor_id+0x2f/0x185
[ 1934.382622][    C1]  schedule+0xd0/0x2a0
[ 1934.386733][    C1]  schedule_timeout+0x474/0xba0
[ 1934.391624][    C1]  ? lock_acquire+0x197/0x420
[ 1934.396338][    C1]  ? usleep_range+0x160/0x160
[ 1934.401050][    C1]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[ 1934.406889][    C1]  ? __next_timer_interrupt+0x190/0x190
[ 1934.412478][    C1]  ? swake_up_one+0x60/0x60
[ 1934.417072][    C1]  rcu_gp_kthread+0x9d9/0x17d0
[ 1934.421892][    C1]  ? lock_acquire+0x197/0x420
[ 1934.426608][    C1]  ? rcu_note_context_switch+0x18f0/0x18f0
[ 1934.432451][    C1]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[ 1934.438311][    C1]  ? lockdep_hardirqs_on+0x417/0x5d0
[ 1934.443629][    C1]  ? __kthread_parkme+0x10a/0x1c0
[ 1934.448694][    C1]  ? rcu_note_context_switch+0x18f0/0x18f0
[ 1934.454532][    C1]  kthread+0x357/0x430
[ 1934.458630][    C1]  ? kthread_mod_delayed_work+0x1a0/0x1a0
[ 1934.464390][    C1]  ret_from_fork+0x24/0x30
[ 1934.470134][    C1] sched: RT throttling activated