last executing test programs:

38.527119872s ago: executing program 3 (id=4420):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000740), 0x40900, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x4, 0x1000, &(0x7f000000e000/0x1000)=nil})

38.372335832s ago: executing program 3 (id=4424):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301)
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_iso={0x0, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1, 0x3, 0x0, 0x0, [{0xfffffffd, 0x80000001, 0x3}]})

38.371885762s ago: executing program 3 (id=4427):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000002280)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75c, &(0x7f0000004c00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xc042, 0x0)
write$P9_RXATTRCREATE(r0, &(0x7f0000000400)={0x7}, 0x2000)
openat(0xffffffffffffff9c, 0x0, 0x103041, 0x1ae)
stat(0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
sendfile(r1, r1, 0x0, 0xfffe80)

38.284157141s ago: executing program 3 (id=4429):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{}]}, 0x1, 0x453, &(0x7f0000001040)="$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")
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
chown(&(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x0)

38.163989501s ago: executing program 3 (id=4431):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)

38.087208991s ago: executing program 3 (id=4433):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000), 0x4)

38.006757831s ago: executing program 32 (id=4433):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000fcb000), 0x4)

36.292325667s ago: executing program 1 (id=4462):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})
close(r0)

36.165958846s ago: executing program 1 (id=4466):
setreuid(0xee01, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(r0, 0x2, 0x0, 0x0)

35.326627264s ago: executing program 1 (id=4476):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
write(0xffffffffffffffff, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f", 0xbc)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000180)={{0x2, 0x0, @empty}, {0x20000010304, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2c}}, 0x4, {0x2, 0x4e20, @multicast1=0xe000cc02}})

35.206953494s ago: executing program 1 (id=4480):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000000)={[{@nobarrier}]}, 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=")
r0 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x130)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x4200, 0x1)
write$9p(r0, &(0x7f0000001400)="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", 0x200)
sendfile(r0, r1, 0x0, 0x7ffff000)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x63d014, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000003a40)={0x2, 0x0, @ioapic={0xdddd0000, 0x6, 0x4f3f, 0x7, 0x0, [{0x3, 0x97, 0x8, '\x00', 0x1}, {0x5, 0x4, 0x7a}, {0xf6, 0x80, 0x6, '\x00', 0x6}, {0x3, 0x3, 0xc1, '\x00', 0xfb}, {0x9, 0x2, 0x1}, {0x1, 0x4, 0xc5, '\x00', 0x6}, {0x3, 0x8, 0x40, '\x00', 0xff}, {0x1, 0xa3, 0x7, '\x00', 0x5}, {0x7, 0x7, 0x2, '\x00', 0x7}, {0x3, 0x35, 0xf8, '\x00', 0xf9}, {0x2, 0x81, 0x7f, '\x00', 0x2}, {0x0, 0x2, 0x1, '\x00', 0x5}, {0x7, 0x8, 0x33, '\x00', 0x1}, {0x1, 0x25, 0x45, '\x00', 0x10}, {0x5, 0x6, 0x8, '\x00', 0x40}, {0x31, 0x8, 0x7f, '\x00', 0x6}, {0x80, 0x3, 0x0, '\x00', 0x9}, {0x9, 0x26, 0x7, '\x00', 0xd0}, {0xee, 0x5, 0x18, '\x00', 0x9}, {0x80, 0x94, 0x9, '\x00', 0x4}, {0xf, 0xe, 0x5, '\x00', 0x4}, {0x3, 0x3, 0x2, '\x00', 0x1}, {0x7, 0xf0, 0x2, '\x00', 0x5}, {0x1, 0x10, 0xe, '\x00', 0x1}]}})
sendmmsg(0xffffffffffffffff, &(0x7f00000082c0)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000340)="cd250734027dd34dab894ccb4aa3d1c52ade29637da3e61b7ca10377275bb018fbe1ec026cd633003d77e239284d05ed99b85ba0a8f69a5abad052b6763107459f74c612fcde8613fbc7f0598189c9fae8f9589eba235a6d5a9a40674738b98181bbe8baed90fb1c4d7b324653d401004de9f1508cc0e4b5989399925aa61ce5ef7c0b3032ae0838c384eca20ac4e74191d984fac41ba23e8c66abb9d61a9f07e43a8d44b1275e33c788c6e306d6228d494e5e1cf2354454582c77e4c871f43680feecbbebe130c33f222dacf13cfe7e4d8ff1a2c16b81e27117abc84d", 0xdd}, {0x0}], 0x2}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x2b0}}, {{&(0x7f0000003dc0)=@ll={0x11, 0x1b, 0x0, 0x1, 0x4, 0x6, @multicast}, 0x80, &(0x7f0000004f00), 0x0, &(0x7f0000004f40)=[{0x10, 0x29, 0x8}], 0x10}}], 0x3, 0x0)

34.795456873s ago: executing program 1 (id=4482):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x80000)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x44, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xeb, 0x3, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xfffc}, {0xd, 0x24, 0xf, 0x1, 0x9, 0xffff}}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x0, 0x81}}], {{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x0, 0xfd}}}}}]}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0x550c, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x20000848, &(0x7f00000003c0)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX, @ANYBLOB="00646d61736b3d303030303030303030303030303135322c696f636861720300000069736f383835392d312c6769643d00000000000000", @ANYRESHEX, @ANYRESHEX, @ANYBLOB="1e1456b97f43020078423fad8569494e28e58bd88d6b502cfe943956d9f8efde4f8659ce67cc37b7e1d988638175e2db1b654dccc1a203850b09873b0184822257d4c12aaf0b5efe2105301b585b58256d90fffa59ece5882178fb533b8ed99c4c2c6d1ba6d7f5dac0cad0eaeee76479fb488f67037b1b2a880c53fe952d632ba034c8d2758f1bd92565024144b0862cb3639c534e323806be01dd7a6252a5999b81aa1f34d13acf872bbbfc5bb3bd8b2cfe4db9838e94", @ANYRESOCT], 0x81, 0x14f5, &(0x7f0000001580)="$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")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)

34.680260183s ago: executing program 1 (id=4483):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x10000001, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
syz_usb_connect$cdc_ecm(0x2, 0x55, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x43, 0x1, 0x1, 0x6, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xff, 0x2, 0x2, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x6, 0x800}, [@mdlm_detail={0x4, 0x24, 0x13, 0x1}, @mdlm_detail={0x4, 0x24, 0x13, 0x3}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0xcd}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x7}}}}}]}}]}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xc, 0xb}}}, 0x24}}, 0x20000040)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)

34.674462713s ago: executing program 33 (id=4483):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x10000001, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
syz_usb_connect$cdc_ecm(0x2, 0x55, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x43, 0x1, 0x1, 0x6, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xff, 0x2, 0x2, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x6, 0x800}, [@mdlm_detail={0x4, 0x24, 0x13, 0x1}, @mdlm_detail={0x4, 0x24, 0x13, 0x3}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0xcd}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x7}}}}}]}}]}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xc, 0xb}}}, 0x24}}, 0x20000040)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)

32.651909818s ago: executing program 5 (id=4508):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x40, r1, 0x1, 0x70bd29, 0x1, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @deauth={{{0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x6}, @device_b, @device_a, @initial, {0x6}, @value=@ver_80211n={0x0, 0x4c1, 0x1, 0x1, 0x0, 0x1, 0x1}}, 0x32, @void}}]}, 0x40}}, 0x0)

32.600370628s ago: executing program 5 (id=4509):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000f810"], 0x48)
syz_io_uring_setup(0xb4e, &(0x7f0000000240)={0x0, 0xf92c, 0x10100, 0x12000000}, &(0x7f0000000100), &(0x7f0000000140))

32.600214028s ago: executing program 5 (id=4510):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@grpquota}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")
r0 = open(&(0x7f0000000380)='./file1\x00', 0x109042, 0x0)
pwrite64(r0, &(0x7f0000000000)="e3", 0x1, 0xffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x10)
fallocate(r1, 0x10, 0xfff, 0x3)

32.520125188s ago: executing program 5 (id=4511):
syz_mount_image$f2fs(&(0x7f0000000240), &(0x7f0000000180)='./file0\x00', 0x1000000, &(0x7f0000000480)=ANY=[@ANYRES16=0x0, @ANYRESDEC=0x0, @ANYRES16=0x0, @ANYBLOB="3354cbe5ffc26fc99d0e320dda2f086bdefb393a9f97abd2d6c83b147a8950f80830b801a1469c0dfffde5e356cd9660276147826266dff693fce3db255a5cd8d8dd18fcdf56be9df60350b47dec9aa1abe91c925f2f50d821d1c5285470336e033b9e969c426e3a63568c86361ed11e04c2235ab341b5fdcac1a97924e445c3fbf5f9f882ad748dd4486bd4f78b9ea0400f04e5d65b102e9f69fca21a88118ab59e66479365d57e1b8315a58e64cb62cdb1f9eb5a65f8283b5177dbf58ed4aadb109ab5e5fbb4e8a39404", @ANYRES16, @ANYRES32, @ANYRES64, @ANYRES8=0x0, @ANYBLOB="1fbb839f80ac42712cf840158e87fa040835e9023c77ba719182f49e8afc7eea0448ceaf5bfbe39ccffc08bb6e1999a87028faeba25a26fc8b397a7e493486ac3f2d2fff911fe0d3bbab7d99da075f5aa573a9f2fac56dd5c80873cd3b14382e440e716e351e9f07ed7129ef1c0c1018d6b8f89809adec0bea26af76e80b2be8d97ab97601fec37ebe38219278d1ce06127a84e8940339215e1429179c3384f1e288ee7428adbd810ad2455e747fc006533fd1f0bf4532626e726a3f58db1d33d55bf42bf0e67f3e63df05a4b9b4f7a42d03e80581f59df8c2940e5de72df47e8b11e04f3c23c6af01e91bf230e1e42b98a21a62885b805a72a9"], 0x1, 0x10673, &(0x7f00000318c0)="$eJzs3M9vFOUbAPBnKaXAly8Sww+jBychJm3iNmwpRKJRVIiaAMFfBy/qtrtsFrqd2i6lctGDJh78N7gZLx78C7z4f5gY40UTb5qamXlb2ypIYWkpfj7J9pl595ln3nfTH/vspBPAf9ah7Ldfa3Ew9kXsHoqIAxHFdtTWJp2twhMR8XRE7FrzqKXx1YE9EbE/Ig4WxSOGUk7x1NcfffvH4s0LX9x6/qf3z9z6pbY9Kwa2w0sb9p+JiN5ctX2jV8W8U8Wraby52C1jb3IxxeqJ3rW0n1fxRnuqrHCjuZLXLOPJTpWfz11fKOKVmeZ0ETvdK+X43Gx1woXFzkqd8oCrzflyv9WeKmN3IS9j52Y1r6UUby70qzqtVO/jsnz0+yuxGm8vtav1zF0r4/RsP41XdfNWe6mIiymm08V0PtMq5zG1qZd6R7nQnb2+lC225xe6+Wx2arzx3HjjdL0xn7fa/fZkvdlrnZ7MRjszRVq93272znbyvDPTHp/Oe2PZaGd6ut5oZKPn2lPd5mzWaIyfHD9RPzWWtp7NXrv0bjbTykaL+Ep39nq/O7OQXcnns+qIsWxi/OSZsex4I3v74uXs8lvnz1+8/M4H59679PLFN15NSSvTGim/J/rtyWx04sTERL1xoj7RGLvf9Rd/I3fG+lenNcD1w33xThJg09b0/7Gx/1/9tar/BwZM/7++/x9Z1/8Pp1dJ/7/S//aeqvK3uv+Nwfa/++51/Y9Q/z+86SPgdtI7yeNPbvdEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYaj8Mf/N6uXGo2v9fGv9/Gno8Io5FZEcj4kjEnohY3mioHP7L4Yiope2/JS8vLw9vmMN3tapwccxIeuyPiLPp8ftjD/pVAAAAgEfXV99/9nnEULFZfnnxzulvDm3NtNga6UObvYOqV37ks/s2T278zOdfHS6LLd33rCpHVkoOxNFiQYd+HlC1YxGx68CHd8h4YUBnqnyaftxXw941oVaFXQM9IwAA8FBY3wncrnsDAABg5/tyuyfAwN3V1dbamsx0LXikCumC4L51ewAAAMDDYfmTTSTXHuBEAAAAgMG61//VLfv/u7z/X6T7//3j/fzW3v/vR/f/AwAAgIdKdf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP5k535ylQbiOID/oNaH/yIx/DmCV2BlWLLgEB7BpQfQ27jjCMaEcA7ceQQDhmFcgI0hdgo+8vkkfTOdvn77A1bTgQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdOl7vVp82Xz63DZn93XfSplXAwAAADTZ1qtF6gyP+y/y+Ks89CYiphExiYhxRDTN3at4epI5iohe7jf9f31Ww7eIlHA45yFvzyNinrefr7t+FwAAAOB+bdazZUR16KY/725dEK28/cux+Z9D+abNoNTl0y2fJ6XSRinsY6G08e/IIiYRUQ9/FEqbRkT/5ftCaRepcnPy2aed3rHpX7MaAADgOqqTptjsDQAAgP/Oh1sXwHWcL/Sm9dr8Xfy8FvyQD+3SD/KfNZ8HAAAAPB69WxcAAAAAdC7N/z3/DwAAAO7b8fl/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdGlbrxab9WzZNme3v9ygYeyfLtpvWzUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAv9uclhWEYCKJg5x/dSeRkObxpsMELr71xFQgeMwghAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgWm7ryX2LR+OX5Nlp49XxTPLuqvHpqvHtujF6YSb/wxf2xjkfAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYGF/7k4gBIIgDPad/zkt5h+WNGgMIlTBwscM87AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwGb/75f/E1DiTzJ02lo5HkrWrxtZVY+9B4+jBePs3AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABc7cCAAAAAAAOT/2ghVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVV2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrADBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYn3vbhIEwjsOvL4kSt8kI6a0EZqChQjACHxKSJc/AACxEQ0VrsQisABKcazpT8DzN/1dccS8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACv6fLwxVtEFJG6TJHGm5/Te0R8RNq27ejzlsXufGy+7jnbHyY5v2P6W0ZEGUUf5wAA9K7qNsdqXS//8v7nHeQd5q3mTb145qcBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgyr79tERXhQEAf+avmotq46I2QYFuahr7N8JsAyOINi5aDjqJNJaMBioS2DcI+gLta+W2z+AycFFQtAjEhUkEbYqZuaNXm1d93xfvHd75/eB4n3uOc+55XAjPnHMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeCxnhzE7jAsR8VL5Ku45OT9YHXU9vTieO704jhcujuc++bG8lZ6zN0UlIj7d6LTfzDCXcfPVjfvtvf3PWp1Ou/uAwVSGz8osqEbEjaGffh/kOSYrzCGY5Nyn817GTESMGIrSk02Y9X8mAACedZWk9er6XytHy72+QjPi3++u1//zqTjurv/77e/vv/4g/ax0/V/PLMOx8cvzjxio7Wxu1bb39l/f2Gytt9fbn9eXlt5+p/Heu4v1Wv+7ktqkf2MCAADA06omLV3/F5v/3/9/bhhXBtf71P9ffvjxy72+6eSzpfvU/9UHS3VsXW365b0SAACAyfbiK3/9WRjRX6hWY7e1s9OtD35e3i/utlaiu5jDUu+2cv12KmnFVF+pmfWiAAAAgDycHRZmI+JoeL+WXEee/1+4+lx6///nb8sfpecsRcRMsv//xuoXnbVMMhl/WbyfnHeOAAAA5Gsmaenz/5X++f/y5e8UI2Lh1UE87D05P+if67/t/P/8az/8kX5W+vz/W9mlmJPi7aONwd+jf21ElBuZLQwAAIAJNJ20Xv3/WyWWu/988361OYlv4QMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8x479ozQQRHEAnmSyWomCYGPjCUQ7q4CF4D1EQfAIXsE7eAXxHluKltaSQixsZWZndAlapNkV/T54/F7In33Zat8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArGZx/NXHEMKk9NOSj6/XZymfljJ5eWt3UoXe9/je5GjsCQAAAPgPYqnkubk/TTmd5/2/qZ9JO//tRtfXfX55769Zd/9Uu/Hh/fNCW9110o9eXF6dHwz2D3+/zZ/fuutilu98PnuJ9RBme9Hk+zm5aduTtdyuDzQwALCy/Zqlqc9DKQ/HHAyAv2yv/2JWKvT2/zgfZS4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAQX0EAAD//xwyYa0=")
truncate(&(0x7f0000000000)='./file1\x00', 0x8800000)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180)='./file0/file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
setxattr$incfs_size(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x2)

31.739201346s ago: executing program 5 (id=4514):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@newtaction={0x14, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}}, 0x14}}, 0x0)

31.512297665s ago: executing program 5 (id=4516):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x10042, 0x0)

31.512215845s ago: executing program 34 (id=4516):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r0, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x10042, 0x0)

4.656744401s ago: executing program 7 (id=5878):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xf, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r2, 0x0, r4, 0x0, 0x88000cc, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r5}, &(0x7f0000000000), &(0x7f00000005c0)=r6}, 0x20)
fcntl$setpipe(r3, 0x407, 0x100004)
write$eventfd(r3, &(0x7f0000000240), 0xffffff14)

3.700242489s ago: executing program 7 (id=5901):
mknod(0x0, 0x10, 0x0)

3.700023409s ago: executing program 7 (id=5902):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0xffff, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x5}, 0xe)

3.442906798s ago: executing program 7 (id=5903):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000400001000000000000100c410000004c0014fffffff062726f6164636173742d6c696e6b0000001109784adcb4daaf00"/90], 0x68}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0)

1.012636482s ago: executing program 2 (id=5994):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000380)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000200)='asymmetric\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

986.096232ms ago: executing program 6 (id=5999):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000007000000ff0f000007"], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000680)=ANY=[@ANYBLOB="300000002c000100000000000000000008000000", @ANYRES32=r0, @ANYBLOB="18000180140000000000fe"], 0x30}], 0x1, 0x0, 0x0, 0x20000004}, 0x0)

892.966762ms ago: executing program 6 (id=6002):
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='attr/exec\x00')
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

892.669902ms ago: executing program 2 (id=6003):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
listen(r0, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x23, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='kmem_cache_free\x00', r2}, 0x18)
syz_emit_ethernet(0x4a, &(0x7f0000000500)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9646", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x7}}}}}}}, 0x0)

892.353712ms ago: executing program 2 (id=6005):
r0 = io_uring_setup(0x6196, &(0x7f00000004c0)={0x0, 0xbcd3, 0x80, 0x3, 0x245})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0xca02})
preadv(r1, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/124, 0x3}], 0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

849.775842ms ago: executing program 6 (id=6009):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="3400000013000500000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000014001a80100004800c00098008"], 0x34}}, 0x0)

807.526942ms ago: executing program 6 (id=6013):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c"], 0x44}}, 0x0)
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x20, 0x19, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x4010010)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507"], 0x48}, 0x1, 0x100000000000000}, 0x0)

803.351842ms ago: executing program 6 (id=6016):
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000003c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0b00000005000000e2361db823"], 0x20)

748.151582ms ago: executing program 6 (id=6018):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r4, 0x1}, 0x14}}, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000300)='uid_map\x00')
writev(r5, 0x0, 0x0)
ioctl$BLKTRACESETUP(r5, 0xc0401273, &(0x7f0000000180)={'\x00', 0x400, 0x1, 0xfff, 0x8000, 0x7, r0})
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r6, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r7 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@dev={0xfe, 0x80, '\x00', 0x19}, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1}, {0x81, 0x2}, 0x2000000, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000}}, 0xe8)
sendmmsg(r7, &(0x7f0000000480), 0x2e9, 0x0)

747.468412ms ago: executing program 4 (id=6021):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
mount(&(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000040)='./file2\x00', 0x2041c3, &(0x7f0000000400)=ANY=[@ANYRESOCT, @ANYRESDEC, @ANYRESOCT=r0, @ANYBLOB="458e41598c10c8b6bc82d3ec9c8f966aea38fe0d8dfaeb2003394c41fa40363689199af02a353fe8120b117c04e41988a2b0b3486bdc0d552aea49d2f5c3be77750c40f85d9a10897458e3c4f310d9568bb100f57df81df8209a3ef8647a512d873653f5cf88fe90352b03007520fc5ae3d0156a", @ANYBLOB="4de70f99b601995d582f9b5a3da7b4ad874d8c5c2d43cc5cc542ff548063ca314336b02bed281331e333424954c30c99efccab9a2840a5ff123a29a8fdd83e461ca1e64ab7cf38f61b342da5e3", @ANYRES16=r0, @ANYRESDEC, @ANYRES32=r3, @ANYRESHEX=r0, @ANYRES16=r0, @ANYRES16=r0, @ANYRESOCT=r0, @ANYRES64=r0, @ANYRES8=r3, @ANYRES16=r3, @ANYRES8=r0, @ANYRES16=r3], 0x1, 0x1207, &(0x7f0000002dc0)="$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")
r4 = open(&(0x7f0000000040)='./bus\x00', 0x44842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)='$', 0x3fec00}], 0x2, 0x1400, 0x0, 0x3)

647.233462ms ago: executing program 2 (id=6022):
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f0000000280)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x1, 0x4fa, &(0x7f0000000dc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x84042, 0x0)
unlink(&(0x7f00000001c0)='./file1\x00')
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

566.536401ms ago: executing program 4 (id=6023):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000280)=[{0x200000000006, 0xff, 0xfd, 0x7ffc0002}]})
socket$unix(0x1, 0x1, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
ioctl$PPPIOCSACTIVE(r0, 0x40107446, 0x0)
pread64(r0, 0x0, 0x0, 0x0)
iopl(0x3)

495.649181ms ago: executing program 4 (id=6024):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')

486.580421ms ago: executing program 7 (id=6026):
ioperm(0x0, 0x2, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000006c0)='./file0\x00', 0x19f, &(0x7f0000000100), 0x80, 0x550, &(0x7f0000000700)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

483.693271ms ago: executing program 2 (id=6027):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000340)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010100000000000000000200f2970900010073797a300000000048000000030a01010000000000000000020000000900010073797a30000000000900030073797a3200000000080007006e617400140004800800014000000000080002400000000014000000020a050000000000000000000000000014000000110001"], 0xa4}}, 0x0)

432.204241ms ago: executing program 4 (id=6028):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000002c0)={[{@noblock_validity}, {@noquota}, {@block_validity}, {@norecovery}, {@dioread_nolock}, {@orlov}, {@noquota}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x570, &(0x7f0000000680)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r0)

379.13676ms ago: executing program 2 (id=6031):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000002c0)={[{@mb_optimize_scan}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
creat(&(0x7f0000000140)='./file2\x00', 0x1ad)
unlink(&(0x7f0000000180)='./file1\x00')

141.8715ms ago: executing program 0 (id=6034):
r0 = socket(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}]}, 0x88}}, 0x20000000)

88.21463ms ago: executing program 0 (id=6035):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r1}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)

88.03083ms ago: executing program 4 (id=6036):
r0 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCX_GETX(r0, 0x4018920a, 0x0)
r2 = dup3(r0, r1, 0x0)
preadv(r2, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/49, 0x31}], 0x1, 0xfffff4ae, 0x8001)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000001600)=""/4102, 0x1006}], 0x1, 0x18, 0x2)

87.91026ms ago: executing program 0 (id=6037):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000c40)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x3ff, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

87.79357ms ago: executing program 0 (id=6038):
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001000000", @ANYRES32], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000300)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
r5 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r5, &(0x7f0000000000)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
syz_emit_ethernet(0x22, &(0x7f00000000c0)={@multicast, @link_local, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x1, 0x1, 0x14, 0x64, 0x0, 0x0, 0xc, 0x0, @empty, @broadcast}}}}}, 0x0)

51.31784ms ago: executing program 0 (id=6039):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000213c0000001e0a05010000000000000000070000070900020073797a31000000000900010073797a30"], 0xc0}}, 0x0)

46.26389ms ago: executing program 7 (id=6040):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001800)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00_g/\r\xd2\x06\xc5\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x87B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xa3\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xa, 0x4, 0xc, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff850000000400000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000580)='\xa3\x04\x00', &(0x7f00000003c0)="c5", 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='kfree\x00', &(0x7f0000000180)='\xfa.-\x00', 0x0)
close(r0)

235.78µs ago: executing program 4 (id=6041):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x100}, 0x0)
syz_usb_connect$uac1(0x3, 0x71, &(0x7f0000000700)=ANY=[], 0x0)

0s ago: executing program 0 (id=6042):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa3b, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r0}, 0x18)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x14860000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, 0x0}, 0x58)

kernel console output (not intermixed with test programs):

nly 12
[ 1062.741129][T16661] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1062.746683][T16675] loop2: detected capacity change from 0 to 2048
[ 1062.766268][T16661] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1062.811422][T16675] ext4: Unknown parameter 'dont_appraise'
[ 1062.825529][T16661] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1062.832617][T16661] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1062.859123][T16659] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1062.866003][T16659] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1064.389326][T16686] loop2: detected capacity change from 0 to 40427
[ 1064.417755][T16686] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1064.425705][T16686] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1064.469732][T16686] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1064.552708][T16686] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1064.564031][T16686] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1064.580722][T16704] overlayfs: unrecognized mount option "/" or missing value
[ 1064.914663][T16710] loop1: detected capacity change from 0 to 2048
[ 1065.002257][T16710] ext4: Unknown parameter 'dont_appraise'
[ 1065.026326][T16713] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1065.036049][T16713] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1065.294828][T16707] loop3: detected capacity change from 0 to 40427
[ 1065.324048][T16707] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1065.328383][T16719] loop2: detected capacity change from 0 to 2048
[ 1065.340373][T16707] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1065.366431][T16719] ext4: Unknown parameter 'dont_appraise'
[ 1065.467057][T16707] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1065.531471][T16707] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1065.538442][T16707] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1065.587570][T16726] loop2: detected capacity change from 0 to 8192
[ 1065.602502][T16726] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1066.635885][T16737] loop1: detected capacity change from 0 to 8192
[ 1066.677893][T16737] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1066.869756][T16747] loop3: detected capacity change from 0 to 2048
[ 1066.894383][T16747] ext4: Unknown parameter 'dont_appraise'
[ 1067.182125][T16756] loop1: detected capacity change from 0 to 2048
[ 1067.201452][T16756] ext4: Unknown parameter 'dont_appraise'
[ 1067.387080][T16758] loop3: detected capacity change from 0 to 16
[ 1067.750757][T16758] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1067.775392][T16758] syz.3.4181: attempt to access beyond end of device
[ 1067.775392][T16758] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1067.838217][T16765] syz.3.4181: attempt to access beyond end of device
[ 1067.838217][T16765] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1068.026855][T16772] loop2: detected capacity change from 0 to 16
[ 1068.061854][T16772] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1068.100148][T16772] syz.2.4183: attempt to access beyond end of device
[ 1068.100148][T16772] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1068.155863][T16769] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4185'.
[ 1068.158420][T16775] syz.2.4183: attempt to access beyond end of device
[ 1068.158420][T16775] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1068.175380][T16769] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4185'.
[ 1068.196394][T16769] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4185'.
[ 1068.213443][T16771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4186'.
[ 1068.228794][T16771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4186'.
[ 1068.245225][T16769] loop1: detected capacity change from 0 to 4096
[ 1068.251648][T16771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4186'.
[ 1068.276344][T16769] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1068.371859][T16779] loop3: detected capacity change from 0 to 128
[ 1068.394179][T16779] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1068.415837][  T294] EXT4-fs (loop1): unmounting filesystem.
[ 1068.547493][T16787] loop1: detected capacity change from 0 to 2048
[ 1068.579350][T16787] ext4: Unknown parameter 'dont_appraise'
[ 1068.762658][    T8] tipc: Left network mode
[ 1068.783103][T16794] loop2: detected capacity change from 0 to 256
[ 1068.795441][T16788] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4190'.
[ 1068.807712][T16794] FAT-fs (loop2): Unrecognized mount option "errors=remounT��ԙ:����gt-ro" or missing value
[ 1068.823071][T16788] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4190'.
[ 1068.832381][T16788] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4190'.
[ 1068.846373][   T28] kauditd_printk_skb: 1969 callbacks suppressed
[ 1068.846387][   T28] audit: type=1400 audit(1068.875:449048): avc:  denied  { mounton } for  pid=16796 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 1068.918162][T16797] loop1: detected capacity change from 0 to 2048
[ 1068.932386][T16797] ext4: Unknown parameter 'dont_appraise'
[ 1069.082111][T16796] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.089197][T16796] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.094508][T16807] loop1: detected capacity change from 0 to 2048
[ 1069.106230][T16796] device bridge_slave_0 entered promiscuous mode
[ 1069.122870][T16807] ext4: Unknown parameter 'dont_appraise'
[ 1069.136805][T16796] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.144069][T16796] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.153275][T16796] device bridge_slave_1 entered promiscuous mode
[ 1069.398301][    T8] device bridge_slave_1 left promiscuous mode
[ 1069.404879][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.433672][    T8] device bridge_slave_0 left promiscuous mode
[ 1069.442004][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1069.453337][    T8] device dummy0 left promiscuous mode
[ 1069.458673][    T8] device veth1_macvtap left promiscuous mode
[ 1069.465071][    T8] device veth0_vlan left promiscuous mode
[ 1069.582703][T16816] loop3: detected capacity change from 0 to 2048
[ 1069.584404][T16817] overlayfs: unrecognized mount option "/" or missing value
[ 1069.604034][T16816] ext4: Unknown parameter 'dont_appraise'
[ 1069.891380][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1069.895327][T16823] loop3: detected capacity change from 0 to 2048
[ 1069.900193][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1069.907818][T16820] loop2: detected capacity change from 0 to 40427
[ 1069.929370][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1069.931504][T16823] ext4: Unknown parameter 'dont_appraise'
[ 1069.947026][T16820] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1069.956113][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1069.956988][T16820] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1069.970870][T12325] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1069.978790][T12325] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1069.994609][T16820] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1070.002540][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1070.020706][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1070.038942][T12325] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1070.045816][T12325] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1070.066488][T16820] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1070.067125][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1070.073473][T16820] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1070.092230][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1070.100430][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1070.117601][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1070.130637][T16830] loop3: detected capacity change from 0 to 2048
[ 1070.146723][T16830] ext4: Unknown parameter 'dont_appraise'
[ 1070.163351][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1070.177166][T16796] device veth0_vlan entered promiscuous mode
[ 1070.191369][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1070.201594][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1070.267723][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1070.290905][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1070.319860][T16796] device veth1_macvtap entered promiscuous mode
[ 1070.343980][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1070.359307][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1070.376937][T16838] loop2: detected capacity change from 0 to 8192
[ 1070.394533][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1070.407369][T16838] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1070.418141][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1070.553375][T16834] loop1: detected capacity change from 0 to 40427
[ 1070.588938][T16834] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1070.597458][T16834] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1070.608110][T16834] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1070.656426][T16834] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1070.664113][T16834] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1070.707510][T16836] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4204'.
[ 1070.802921][T16836] loop3: detected capacity change from 0 to 4096
[ 1071.067107][    T8] tipc: Disabling bearer <udp:syz2>
[ 1071.072565][    T8] tipc: Left network mode
[ 1071.138633][T16836] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1071.372032][  T291] EXT4-fs (loop3): unmounting filesystem.
[ 1071.402409][T16860] loop4: detected capacity change from 0 to 16
[ 1071.430499][T16854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1071.437529][T16854] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1071.479809][T16854] device bridge_slave_0 entered promiscuous mode
[ 1071.486780][T16854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1071.493831][T16860] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1071.505409][T16860] syz.4.4191: attempt to access beyond end of device
[ 1071.505409][T16860] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1071.521934][T16854] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1071.549366][T16860] syz.4.4191: attempt to access beyond end of device
[ 1071.549366][T16860] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1071.562877][T16854] device bridge_slave_1 entered promiscuous mode
[ 1071.730665][T16854] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1071.737546][T16854] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1071.744668][T16854] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1071.751437][T16854] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1071.832994][T16859] loop1: detected capacity change from 0 to 40427
[ 1071.840440][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1071.860421][T16694] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1071.862979][T16859] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1071.875060][T16694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1071.900982][T16859] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1071.911741][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1071.929262][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1071.941809][T16863] loop3: detected capacity change from 0 to 40427
[ 1071.948343][T16694] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1071.955209][T16694] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1071.969560][T16863] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1071.977400][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1071.985789][T16863] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1071.994649][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1071.994762][T16859] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1072.003925][T16694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1072.015476][T16694] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1072.024660][T16863] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1072.050544][    T8] device bridge_slave_1 left promiscuous mode
[ 1072.056925][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1072.079160][    T8] device bridge_slave_0 left promiscuous mode
[ 1072.085411][T16863] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1072.092408][T16863] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1072.095306][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1072.146782][T16866] loop2: detected capacity change from 0 to 40427
[ 1072.153294][    T8] device dummy0 left promiscuous mode
[ 1072.158700][    T8] device veth1_macvtap left promiscuous mode
[ 1072.164794][T16866] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1072.165260][    T8] device veth0_vlan left promiscuous mode
[ 1072.173153][T16866] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1072.186967][T16859] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1072.195182][T16859] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1072.270242][T16877] loop4: detected capacity change from 0 to 8192
[ 1072.305635][T16877] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1072.321575][T16866] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1072.363727][T16866] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1072.729560][T16866] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1072.751486][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1072.990236][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1073.003185][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1073.032879][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1073.121831][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1073.141364][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1073.451477][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1073.498940][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1073.516599][T16854] device veth0_vlan entered promiscuous mode
[ 1073.523649][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1073.533067][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1073.546967][T16854] device veth1_macvtap entered promiscuous mode
[ 1073.554473][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1073.569440][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1073.604689][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1073.626088][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1073.634371][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1073.642839][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1073.655353][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1100.149772][T16928] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1100.158478][T16928] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1100.196396][ T2035] tipc: Disabling bearer <udp:syz2>
[ 1100.202001][ T2035] tipc: Left network mode
[ 1100.241997][ T2035] device ip6gretap0 left promiscuous mode
[ 1100.418769][T16926] loop3: detected capacity change from 0 to 40427
[ 1100.429833][T16926] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1100.437503][T16926] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1100.454148][T16931] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.461327][T16931] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1100.468966][T16931] device bridge_slave_0 entered promiscuous mode
[ 1100.475810][T16931] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.482784][T16931] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1100.490166][T16931] device bridge_slave_1 entered promiscuous mode
[ 1100.497003][T16926] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1100.542960][T16943] loop4: detected capacity change from 0 to 16
[ 1100.567194][T16943] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1100.599115][T16926] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1100.613474][T16943] syz.4.4214: attempt to access beyond end of device
[ 1100.613474][T16943] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1100.615639][T16926] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1100.630866][T16931] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.640527][T16931] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1100.647753][T16931] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.654576][T16931] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1100.682662][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1100.691081][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1100.698323][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1100.714487][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1100.728460][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.731377][T16945] syz.4.4214: attempt to access beyond end of device
[ 1100.731377][T16945] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1100.735360][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1100.755519][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1100.764149][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.771057][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1100.947024][T16947] overlayfs: unrecognized mount option "/" or missing value
[ 1101.191785][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1101.204010][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1101.522879][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1101.536389][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1101.566323][T16931] device veth0_vlan entered promiscuous mode
[ 1101.582866][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1101.603177][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1101.617753][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1101.625381][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1101.638050][ T2035] device bridge_slave_1 left promiscuous mode
[ 1101.644211][ T2035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1101.652645][ T2035] device bridge_slave_0 left promiscuous mode
[ 1101.658701][ T2035] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1101.667473][ T2035] device veth1_macvtap left promiscuous mode
[ 1101.673735][ T2035] device veth0_vlan left promiscuous mode
[ 1101.778674][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1101.786854][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1101.795823][T16931] device veth1_macvtap entered promiscuous mode
[ 1101.804940][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1101.812935][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1101.821274][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1101.831928][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1101.840283][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1101.865011][T16966] loop1: detected capacity change from 0 to 128
[ 1101.871522][T16966] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1102.032752][ T3930] bridge0: port 3(syz_tun) entered disabled state
[ 1102.040834][ T3930] device syz_tun left promiscuous mode
[ 1102.046136][ T3930] bridge0: port 3(syz_tun) entered disabled state
[ 1102.110519][ T2035] tipc: Left network mode
[ 1102.142051][T16969] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1102.149265][T16969] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1102.156514][T16969] device bridge_slave_0 entered promiscuous mode
[ 1102.167677][T16969] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1102.174595][T16969] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1102.181758][T16969] device bridge_slave_1 entered promiscuous mode
[ 1102.244709][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1102.252215][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1102.263172][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1102.271506][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1102.279722][T16694] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1102.286604][T16694] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1102.294067][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1102.304609][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1102.313080][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1102.321187][T16694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1102.328051][T16694] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1102.342782][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1102.352113][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1102.366277][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1102.378395][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1102.386467][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1102.394142][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1102.402583][T16969] device veth0_vlan entered promiscuous mode
[ 1102.415252][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1102.424722][T16969] device veth1_macvtap entered promiscuous mode
[ 1102.434926][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1102.445368][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1102.539912][T16976] loop4: detected capacity change from 0 to 8192
[ 1102.550034][T16976] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1102.679807][ T2035] device bridge_slave_1 left promiscuous mode
[ 1102.689199][ T2035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1102.709991][ T2035] device veth1_macvtap left promiscuous mode
[ 1102.736653][ T2035] device veth0_vlan left promiscuous mode
[ 1102.807621][T16978] loop2: detected capacity change from 0 to 40427
[ 1102.825707][T16978] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1102.868897][T16978] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1102.908770][T16986] loop3: detected capacity change from 0 to 16
[ 1102.920801][T16990] overlayfs: unrecognized mount option "/" or missing value
[ 1102.937905][T16978] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1102.962930][T16986] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1103.007719][T16986] syz.3.4221: attempt to access beyond end of device
[ 1103.007719][T16986] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1103.071418][T16994] syz.3.4221: attempt to access beyond end of device
[ 1103.071418][T16994] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1103.086393][T16978] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1103.095488][T16978] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1103.186378][T16985] loop1: detected capacity change from 0 to 40427
[ 1103.201745][T16985] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1103.225768][T16985] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1103.248563][T16985] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1103.314484][T16985] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1103.338915][T16985] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1103.949524][T17004] loop1: detected capacity change from 0 to 40427
[ 1103.976793][T17004] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1103.997848][T17004] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1104.062785][T17004] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1104.112693][T17004] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1104.120072][T17004] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1104.226904][T17016] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1104.233962][T17016] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1104.241780][T17016] device bridge_slave_0 entered promiscuous mode
[ 1104.249358][T17016] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1104.268051][T17016] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1104.279888][T17016] device bridge_slave_1 entered promiscuous mode
[ 1104.365423][T17016] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1104.372360][T17016] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1104.405538][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1104.414349][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1104.422628][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1104.434002][T16694] bridge0: port 3(gretap1) entered disabled state
[ 1104.442698][T16694] device gretap1 left promiscuous mode
[ 1104.469080][T16694] bridge0: port 3(gretap1) entered disabled state
[ 1104.489398][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1104.500101][ T1962] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1104.516557][ T1962] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1104.523450][ T1962] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1104.558015][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1104.570395][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1104.577308][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1104.606299][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1104.629517][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1104.652419][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1104.674827][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1104.685155][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1104.697066][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1104.709648][T16694] device bridge_slave_1 left promiscuous mode
[ 1104.716825][T16694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1104.725384][T16694] device bridge_slave_0 left promiscuous mode
[ 1104.731546][T16694] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1104.740437][T16694] device veth1_macvtap left promiscuous mode
[ 1104.753828][T17029] loop1: detected capacity change from 0 to 2048
[ 1104.760213][T16694] device veth0_vlan left promiscuous mode
[ 1104.775501][T17029] ext4: Unknown parameter 'dont_appraise'
[ 1104.851246][T17016] device veth0_vlan entered promiscuous mode
[ 1104.870325][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1104.901102][T17016] device veth1_macvtap entered promiscuous mode
[ 1104.915788][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1104.934575][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1105.008548][T17034] __nla_validate_parse: 2 callbacks suppressed
[ 1105.008571][T17034] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4233'.
[ 1105.042793][T17043] loop3: detected capacity change from 0 to 2048
[ 1105.049954][T17034] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4233'.
[ 1105.066096][T17043] ext4: Unknown parameter 'dont_appraise'
[ 1105.072314][T17034] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4233'.
[ 1105.095789][T17034] loop4: detected capacity change from 0 to 4096
[ 1105.128729][T17034] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1105.166535][T17037] loop1: detected capacity change from 0 to 40427
[ 1105.209825][T17037] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1105.218737][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1105.226466][T17037] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1105.279940][T17037] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1105.329141][T17037] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1105.336023][T17037] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1105.489417][T17065] loop2: detected capacity change from 0 to 16
[ 1105.511201][T17065] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1105.519684][T17065] syz.2.4237: attempt to access beyond end of device
[ 1105.519684][T17065] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1105.606844][T17065] syz.2.4237: attempt to access beyond end of device
[ 1105.606844][T17065] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1105.832588][T17067] loop3: detected capacity change from 0 to 16
[ 1105.897668][T17067] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1105.980644][T17067] syz.3.4238: attempt to access beyond end of device
[ 1105.980644][T17067] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1106.127329][T17067] syz.3.4238: attempt to access beyond end of device
[ 1106.127329][T17067] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1106.780059][T17074] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4243'.
[ 1106.789567][T17074] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4243'.
[ 1106.801637][T17084] loop2: detected capacity change from 0 to 8192
[ 1106.816903][T17074] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4243'.
[ 1106.826916][T17084] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1106.877401][T17081] loop4: detected capacity change from 0 to 4096
[ 1106.892489][T17085] loop1: detected capacity change from 0 to 16
[ 1106.943392][T17081] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1106.966650][T17085] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1107.032540][T17085] syz.1.4241: attempt to access beyond end of device
[ 1107.032540][T17085] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1107.046778][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1107.067321][T17088] loop3: detected capacity change from 0 to 8192
[ 1107.113963][T17088] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1107.171748][T17094] syz.1.4241: attempt to access beyond end of device
[ 1107.171748][T17094] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1107.351088][T17093] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4247'.
[ 1107.364764][T17093] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4247'.
[ 1107.374280][T17093] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4247'.
[ 1107.417283][T17093] loop4: detected capacity change from 0 to 4096
[ 1107.451897][T17093] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1107.526493][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1107.641969][T17105] loop4: detected capacity change from 0 to 2048
[ 1107.655991][T17105] ext4: Unknown parameter 'dont_appraise'
[ 1107.884606][T17107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4250'.
[ 1107.898769][T17111] loop2: detected capacity change from 0 to 8192
[ 1107.913243][T17111] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1107.937185][T17107] loop1: detected capacity change from 0 to 4096
[ 1108.018151][T17107] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1108.028999][T17109] loop4: detected capacity change from 0 to 40427
[ 1108.058982][T17109] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1108.074955][T17109] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1108.169783][T17109] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1108.178006][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1108.279468][T17109] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1108.290933][T17109] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1108.505046][T17126] loop3: detected capacity change from 0 to 40427
[ 1108.518398][T17126] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1108.538004][T17126] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1108.569720][T17126] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1108.596249][T17136] loop1: detected capacity change from 0 to 16
[ 1108.654271][T17136] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1108.669163][T17126] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1108.676045][T17126] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1108.712736][T17136] syz.1.4254: attempt to access beyond end of device
[ 1108.712736][T17136] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1108.789059][T17138] syz.1.4254: attempt to access beyond end of device
[ 1108.789059][T17138] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1108.818630][T17132] loop4: detected capacity change from 0 to 40427
[ 1108.862934][T17132] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1108.877361][T17132] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1108.902143][T17132] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1109.255175][T17132] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1109.282830][T17132] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1109.788683][T17153] loop1: detected capacity change from 0 to 2048
[ 1109.817364][T17153] ext4: Unknown parameter 'dont_appraise'
[ 1109.897641][T17159] loop2: detected capacity change from 0 to 2048
[ 1109.929882][T17159] ext4: Unknown parameter 'dont_appraise'
[ 1110.248084][T17169] loop4: detected capacity change from 0 to 2048
[ 1110.260722][T17169] ext4: Unknown parameter 'dont_appraise'
[ 1110.341513][T17171] __nla_validate_parse: 5 callbacks suppressed
[ 1110.341536][T17171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4265'.
[ 1110.356798][T17168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4264'.
[ 1110.366209][T17171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4265'.
[ 1110.375655][T17168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4264'.
[ 1110.384778][T17171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4265'.
[ 1110.393784][T17168] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4264'.
[ 1110.434833][T17168] loop2: detected capacity change from 0 to 4096
[ 1110.461061][T17168] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1110.496829][T17175] loop4: detected capacity change from 0 to 40427
[ 1110.509028][T17175] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1110.519142][T17175] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1110.529247][T17175] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1110.546711][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1110.578004][T17175] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1110.585037][T17175] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1110.671248][T17186] loop2: detected capacity change from 0 to 2048
[ 1110.677691][T17186] ext4: Unknown parameter 'dont_appraise'
[ 1110.965955][T17191] loop3: detected capacity change from 0 to 2048
[ 1110.972630][T17191] ext4: Unknown parameter 'dont_appraise'
[ 1111.020384][T16957] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1111.075685][T17197] loop2: detected capacity change from 0 to 2048
[ 1111.082257][T17195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4270'.
[ 1111.101330][T17197] ext4: Unknown parameter 'dont_appraise'
[ 1111.111478][T17195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4270'.
[ 1111.120714][T17200] overlayfs: unrecognized mount option "/" or missing value
[ 1111.127990][T17195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4270'.
[ 1111.182469][T17195] loop1: detected capacity change from 0 to 4096
[ 1111.247289][T17198] loop3: detected capacity change from 0 to 40427
[ 1111.254073][T17198] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1111.263745][T17195] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1111.298914][T17198] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1111.319836][T17198] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1111.389283][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1111.418271][T17210] loop4: detected capacity change from 0 to 2048
[ 1111.436512][T17210] ext4: Unknown parameter 'dont_appraise'
[ 1111.465532][T17198] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1111.475058][T17198] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1111.567890][T17204] loop2: detected capacity change from 0 to 40427
[ 1111.677450][T17204] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1111.708887][T17204] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1112.059085][T17217] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4275'.
[ 1112.075593][T17204] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1112.139864][T17215] loop4: detected capacity change from 0 to 4096
[ 1112.162390][T17212] loop1: detected capacity change from 0 to 4096
[ 1112.180036][T17215] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1112.192475][T17212] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1112.208918][T17204] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1112.218782][T17204] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1112.423431][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1112.430492][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1113.041752][T17233] loop3: detected capacity change from 0 to 4096
[ 1113.154554][T17233] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1113.244034][T17016] EXT4-fs (loop3): unmounting filesystem.
[ 1113.296422][T17251] loop3: detected capacity change from 0 to 8192
[ 1113.312635][T17252] loop2: detected capacity change from 0 to 2048
[ 1113.324804][T17252] ext4: Unknown parameter 'dont_appraise'
[ 1113.331472][T17251] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1113.371748][T16938] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1113.448790][T17259] loop4: detected capacity change from 0 to 16
[ 1113.475837][T17259] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1113.512597][T17259] syz.4.4280: attempt to access beyond end of device
[ 1113.512597][T17259] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1113.562620][T17259] syz.4.4280: attempt to access beyond end of device
[ 1113.562620][T17259] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1113.665001][T17255] loop1: detected capacity change from 0 to 40427
[ 1113.682352][T17255] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1113.694311][T17255] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1113.716936][T17257] loop2: detected capacity change from 0 to 40427
[ 1113.723738][T17257] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1113.732749][T17255] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1113.743303][T17257] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1113.777584][T17257] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1113.797699][T17255] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1113.806877][T17255] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1113.844180][T17257] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1113.851218][T17257] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1115.970172][T17286] loop2: detected capacity change from 0 to 2048
[ 1116.009724][T17286] ext4: Unknown parameter 'dont_appraise'
[ 1116.038609][T17281] loop3: detected capacity change from 0 to 40427
[ 1116.054790][T17281] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1116.081447][T17281] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1116.083489][T17279] loop1: detected capacity change from 0 to 40427
[ 1116.100504][T17293] loop4: detected capacity change from 0 to 2048
[ 1116.106931][T17293] ext4: Unknown parameter 'dont_appraise'
[ 1116.113823][T17279] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1116.121689][T17279] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1116.137802][T17281] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1116.159304][T16957] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1116.185050][T17279] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1116.256050][T17281] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1116.271190][T17281] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1116.287932][T17279] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1116.297808][T17279] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1116.480591][T17306] loop2: detected capacity change from 0 to 16
[ 1116.741428][T17306] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1116.790254][T17306] syz.2.4292: attempt to access beyond end of device
[ 1116.790254][T17306] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1116.839029][T17300] loop4: detected capacity change from 0 to 40427
[ 1116.856505][T17306] syz.2.4292: attempt to access beyond end of device
[ 1116.856505][T17306] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1116.891808][T17300] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1116.910836][T17300] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1117.255103][T17315] loop3: detected capacity change from 0 to 128
[ 1117.261595][T17315] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1117.276449][T17300] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1117.373839][T17300] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1117.391745][T17300] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1117.588418][T17322] loop1: detected capacity change from 0 to 40427
[ 1117.619380][T17322] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1117.637812][T17322] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1117.717518][T17322] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1117.805574][T17334] overlayfs: unrecognized mount option "/" or missing value
[ 1117.824795][T17322] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1117.834237][T17322] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1117.871600][T17336] loop4: detected capacity change from 0 to 2048
[ 1117.876624][T17327] loop2: detected capacity change from 0 to 40427
[ 1117.884886][T17336] ext4: Unknown parameter 'dont_appraise'
[ 1117.890772][T17327] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1117.898596][T17327] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1117.957165][T17327] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1117.967813][T17338] loop4: detected capacity change from 0 to 8192
[ 1117.977867][T17338] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1118.067190][T17327] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1118.089081][T17327] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1118.856803][T17354] loop1: detected capacity change from 0 to 128
[ 1118.863395][T17354] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1119.035029][   T28] audit: type=1400 audit(1119.065:449049): avc:  denied  { accept } for  pid=17364 comm="syz.0.4307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1119.072629][T17370] loop2: detected capacity change from 0 to 2048
[ 1119.082986][T17370] ext4: Unknown parameter 'dont_appraise'
[ 1119.095452][   T28] audit: type=1400 audit(1119.125:449050): avc:  denied  { read } for  pid=17364 comm="syz.0.4307" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1119.174966][T17384] loop2: detected capacity change from 0 to 128
[ 1119.187493][   T28] audit: type=1400 audit(1119.195:449051): avc:  denied  { remount } for  pid=17381 comm="syz.0.4315" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 1119.191076][T17389] loop3: detected capacity change from 0 to 16
[ 1119.215192][T17387] loop4: detected capacity change from 0 to 256
[ 1119.236244][T17387] exfat: Deprecated parameter 'utf8'
[ 1119.245072][T17384] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1119.258127][T17387] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012ba3, chksum : 0xa334b03e, utbl_chksum : 0xe619d30d)
[ 1119.270363][T17389] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1119.295501][T17397] netlink: 'syz.0.4320': attribute type 32 has an invalid length.
[ 1119.311770][   T28] audit: type=1400 audit(1119.345:449052): avc:  denied  { create } for  pid=17383 comm="syz.2.4314" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[ 1119.359714][T17389] syz.3.4301: attempt to access beyond end of device
[ 1119.359714][T17389] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1119.377991][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1119.434999][T17389] syz.3.4301: attempt to access beyond end of device
[ 1119.434999][T17389] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[ 1119.435285][   T28] audit: type=1400 audit(1119.425:449053): avc:  denied  { setattr } for  pid=17385 comm="syz.4.4317" name="file0" dev="loop4" ino=1048911 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 1119.468631][T17407] loop2: detected capacity change from 0 to 128
[ 1119.524494][   T28] audit: type=1400 audit(1119.555:449054): avc:  denied  { remount } for  pid=17406 comm="syz.2.4325" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[ 1119.736479][T17441] __nla_validate_parse: 8 callbacks suppressed
[ 1119.736499][T17441] netlink: 3696 bytes leftover after parsing attributes in process `syz.0.4341'.
[ 1119.838521][   T28] audit: type=1400 audit(1119.865:449055): avc:  denied  { bind } for  pid=17444 comm="syz.0.4343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[ 1120.310092][   T28] audit: type=1400 audit(1120.345:449056): avc:  denied  { bind } for  pid=17485 comm="syz.1.4362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 1120.356761][T17465] loop4: detected capacity change from 0 to 40427
[ 1120.387616][T17465] F2FS-fs (loop4): fault_injection options not supported
[ 1120.409365][T17465] F2FS-fs (loop4): invalid crc value
[ 1120.428173][T17465] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1120.466476][T17480] loop3: detected capacity change from 0 to 40427
[ 1120.488968][    T6] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 1120.492132][T17420] loop2: detected capacity change from 0 to 131072
[ 1120.496771][T17480] F2FS-fs (loop3): fault_type options not supported
[ 1120.516433][T17420] F2FS-fs (loop2): invalid crc value
[ 1120.525900][T17480] F2FS-fs (loop3): invalid crc value
[ 1120.530208][T17465] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1120.532494][T17480] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1120.555256][T17465] syz.4.4351: attempt to access beyond end of device
[ 1120.555256][T17465] loop4: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[ 1120.569976][T17420] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 1120.570811][T17465] syz.4.4351: attempt to access beyond end of device
[ 1120.570811][T17465] loop4: rw=2049, sector=45096, nr_sectors = 120 limit=40427
[ 1120.590481][T17480] F2FS-fs (loop3): Start checkpoint disabled!
[ 1120.603271][T16796] syz-executor: attempt to access beyond end of device
[ 1120.603271][T16796] loop4: rw=2049, sector=45216, nr_sectors = 8 limit=40427
[ 1120.616905][T17480] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 1120.624401][T17420] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b
[ 1120.688942][    T6] usb 1-1: Using ep0 maxpacket: 8
[ 1120.695132][    T6] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[ 1120.715722][    T6] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1120.725656][    T6] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1120.735623][    T6] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1120.759015][    T6] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1120.767886][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1120.780905][T12325] kworker/u4:1: attempt to access beyond end of device
[ 1120.780905][T12325] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1120.899122][T17514] loop2: detected capacity change from 0 to 128
[ 1120.973204][T17522] loop4: detected capacity change from 0 to 256
[ 1121.015158][T17528] loop2: detected capacity change from 0 to 1024
[ 1121.019769][T17526] loop3: detected capacity change from 0 to 8192
[ 1121.040182][T17528] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1121.074735][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1121.101510][T17539] loop4: detected capacity change from 0 to 256
[ 1121.116186][T17540] loop2: detected capacity change from 0 to 1024
[ 1121.126917][T17539] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1121.156663][T17540] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1121.230991][T17550] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4383'.
[ 1121.297332][T17558] support for the xor transformation has been removed.
[ 1121.345845][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1121.363955][T17564] loop1: detected capacity change from 0 to 1024
[ 1121.380137][T17566] loop2: detected capacity change from 0 to 512
[ 1121.387336][T17566] EXT4-fs: Ignoring removed bh option
[ 1121.396580][T17566] ext4: Unknown parameter 'nouser_xattr'
[ 1121.402677][T17564] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[ 1121.412928][T17564] EXT4-fs error (device loop1): ext4_get_journal_inode:5721: inode #32: comm syz.1.4389: iget: special inode unallocated
[ 1121.431341][T17564] EXT4-fs (loop1): no journal found
[ 1121.437300][T17564] EXT4-fs (loop1): can't get journal size
[ 1121.444073][T17564] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1121.455488][T17564] EXT4-fs error (device loop1): ext4_lookup:1850: inode #2: comm syz.1.4389: bad inode number: 12
[ 1121.477859][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1121.508081][T17571] loop1: detected capacity change from 0 to 512
[ 1121.520131][T17571] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1121.534199][   T28] audit: type=1400 audit(1121.565:449057): avc:  denied  { ioctl } for  pid=17570 comm="syz.1.4392" path="/32/file0/file1" dev="loop1" ino=15 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1121.559363][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1121.582521][T17574] loop1: detected capacity change from 0 to 512
[ 1121.600513][T17574] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1121.611266][T17574] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.4393: corrupted xattr block 33
[ 1121.623254][T17574] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[ 1121.632150][T17574] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.4393: corrupted xattr block 33
[ 1121.644371][T17574] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[ 1121.653533][T17574] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.4393: corrupted xattr block 33
[ 1121.665609][T17574] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[ 1121.682460][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1121.718884][   T39] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 1121.858680][T17590] loop1: detected capacity change from 0 to 512
[ 1121.897822][T17590] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1121.913989][   T39] usb 3-1: Using ep0 maxpacket: 32
[ 1121.923412][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1121.957655][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1121.965500][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1121.975535][   T39] usb 3-1: New USB device found, idVendor=046d, idProduct=4101, bcdDevice= 0.00
[ 1121.989901][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1122.008600][   T39] usb 3-1: config 0 descriptor??
[ 1122.027441][T17599] loop3: detected capacity change from 0 to 128
[ 1122.038358][   T28] audit: type=1400 audit(1122.065:449058): avc:  denied  { map } for  pid=17598 comm="syz.3.4401" path="/17/file1/bus" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 1122.048490][T17016] FAT-fs (loop3): error, invalid access to FAT (entry 0x0002b005)
[ 1122.069845][T17016] FAT-fs (loop3): Filesystem has been set read-only
[ 1122.083177][T17601] loop1: detected capacity change from 0 to 1024
[ 1122.110922][T17601] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1122.129188][T17601] EXT4-fs error (device loop1): ext4_get_first_dir_block:3605: inode #11: comm syz.1.4403: directory missing '..'
[ 1122.149767][T17613] loop4: detected capacity change from 0 to 512
[ 1122.156656][T17613] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1122.163476][T17613] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1122.165458][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1122.183640][T17613] EXT4-fs (loop4): 1 truncate cleaned up
[ 1122.204885][T17613] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1122.235021][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1122.243031][T17624] device veth3 entered promiscuous mode
[ 1122.300598][T17628] loop4: detected capacity change from 0 to 4096
[ 1122.309060][T17634] loop1: detected capacity change from 0 to 16
[ 1122.314710][T17637] loop3: detected capacity change from 0 to 512
[ 1122.321645][T17637] EXT4-fs: Ignoring removed orlov option
[ 1122.327496][T17637] EXT4-fs: Ignoring removed i_version option
[ 1122.333965][T17634] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1122.334618][T17628] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1122.348555][T17634] erofs: (device loop1): z_erofs_readahead: readahead error at page 3 @ nid 89
[ 1122.360452][T17634] erofs: (device loop1): z_erofs_readahead: readahead error at page 2 @ nid 89
[ 1122.360906][T17637] EXT4-fs (loop3): 1 truncate cleaned up
[ 1122.369584][T17634] erofs: (device loop1): z_erofs_readahead: readahead error at page 1 @ nid 89
[ 1122.375110][T17637] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1122.406789][T17634] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117]
[ 1122.412406][T17637] EXT4-fs (loop3): shut down requested (2)
[ 1122.415510][T17634] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117]
[ 1122.422206][   T39] hid-generic 0003:046D:4101.0005: unbalanced collection at end of report description
[ 1122.429452][T17639] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-117]
[ 1122.444178][   T39] hid-generic: probe of 0003:046D:4101.0005 failed with error -22
[ 1122.457382][T17016] EXT4-fs (loop3): unmounting filesystem.
[ 1122.498194][T17644] loop1: detected capacity change from 0 to 2048
[ 1122.511428][T17644] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1122.522360][T17644] EXT4-fs (loop1): shut down requested (2)
[ 1122.529005][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1122.535207][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1122.574063][T17650] loop4: detected capacity change from 0 to 2048
[ 1122.580772][T17650] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1122.598626][T17650] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1122.623956][T17660] loop3: detected capacity change from 0 to 2048
[ 1122.625530][   T39] usb 3-1: USB disconnect, device number 6
[ 1122.640218][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1122.669433][T17660] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1122.691725][T17016] EXT4-fs (loop3): unmounting filesystem.
[ 1122.733537][T17670] loop3: detected capacity change from 0 to 512
[ 1122.752838][T17670] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1122.775964][T17016] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 1280 (level 0)
[ 1122.789921][T17016] EXT4-fs error (device loop3): ext4_lookup:1858: inode #14: comm syz-executor: unexpected EA_INODE flag
[ 1122.801512][T17016] EXT4-fs error (device loop3): ext4_lookup:1858: inode #14: comm syz-executor: unexpected EA_INODE flag
[ 1122.828242][T17673] loop4: detected capacity change from 0 to 256
[ 1122.842924][T17673] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[ 1122.872673][T17673] exFAT-fs (loop4): hint_cluster is invalid (17)
[ 1122.881690][T17016] EXT4-fs (loop3): unmounting filesystem.
[ 1122.899328][T17673] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff)
[ 1122.914864][T17673] exFAT-fs (loop4): Filesystem has been set read-only
[ 1123.076358][T17684] loop4: detected capacity change from 0 to 128
[ 1123.104792][T17684] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1123.129803][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1123.145224][T17685] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.222891][T17685] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1123.235091][   T24] usb 1-1: USB disconnect, device number 4
[ 1123.251547][T17685] device bridge_slave_0 entered promiscuous mode
[ 1123.283782][T17685] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.296433][T17685] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1123.330142][T17685] device bridge_slave_1 entered promiscuous mode
[ 1123.662161][    T8] device bridge_slave_1 left promiscuous mode
[ 1123.670717][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1123.690802][T17703] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1123.697033][    T8] device bridge_slave_0 left promiscuous mode
[ 1123.714719][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1123.734599][    T8] device veth1_macvtap left promiscuous mode
[ 1123.751810][    T8] device veth0_vlan left promiscuous mode
[ 1124.024402][T17697] loop4: detected capacity change from 0 to 40427
[ 1124.053815][T17697] F2FS-fs (loop4): fault_injection options not supported
[ 1124.064389][T17697] F2FS-fs (loop4): invalid crc value
[ 1124.070581][T17697] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1124.097075][T17714] loop1: detected capacity change from 0 to 128
[ 1124.118679][T17697] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1124.193807][T16796] syz-executor: attempt to access beyond end of device
[ 1124.193807][T16796] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1124.215246][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1124.226192][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1124.235004][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1124.243419][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1124.251517][T12325] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1124.258366][T12325] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1124.266092][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1124.293655][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1124.306682][T17728] loop2: detected capacity change from 0 to 1024
[ 1124.319473][T12325] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1124.326327][T12325] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1124.334276][T17728] EXT4-fs: Ignoring removed nobh option
[ 1124.345019][T17728] EXT4-fs: Ignoring removed bh option
[ 1124.357486][T17728] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1124.379757][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1124.409237][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1124.416793][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1124.424808][T17728] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1124.435529][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1124.454811][T17728] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3841: comm syz.2.4452: Allocating blocks 497-513 which overlap fs metadata
[ 1124.469752][T17728] EXT4-fs (loop2): pa ffff8881117a0888: logic 256, phys. 385, len 8
[ 1124.473038][T17685] device veth0_vlan entered promiscuous mode
[ 1124.477594][T17728] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1
[ 1124.484362][T17741] loop4: detected capacity change from 0 to 256
[ 1124.509349][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1124.517082][T17741] exfat: Unknown parameter 'k�o�L6�}�6�Heep_last_dots'
[ 1124.519685][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1124.532696][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1124.543621][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1124.551388][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1124.579251][T16957] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1124.593026][T17685] device veth1_macvtap entered promiscuous mode
[ 1124.610961][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1124.632380][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1124.656592][   T28] kauditd_printk_skb: 7 callbacks suppressed
[ 1124.656608][   T28] audit: type=1400 audit(1124.685:449066): avc:  denied  { compute_member } for  pid=17752 comm="syz.2.4461" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1124.662841][T17754] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4463'.
[ 1124.695035][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1124.714131][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1124.730464][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1124.740037][T17757] device pim6reg1 entered promiscuous mode
[ 1124.768780][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1124.788387][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1125.053737][T17780] loop4: detected capacity change from 0 to 256
[ 1125.066927][T17780] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1125.094504][T17780] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1125.198956][ T1444] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1125.268458][T17784] loop4: detected capacity change from 0 to 512
[ 1125.311481][T17784] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[ 1125.333068][T17784] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1125.367492][   T28] audit: type=1400 audit(1125.395:449067): avc:  denied  { remount } for  pid=17783 comm="syz.4.4471" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1125.388929][ T1444] usb 6-1: Using ep0 maxpacket: 8
[ 1125.393893][T17784] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[ 1125.401667][ T1444] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1125.422310][ T1444] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[ 1125.441975][ T1444] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1125.461728][ T1444] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1125.488944][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1125.494774][ T1444] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[ 1125.511691][ T1444] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1125.519867][ T1444] usb 6-1: SerialNumber: syz
[ 1125.540484][T17777] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1125.557263][ T1444] cdc_ether: probe of 6-1:1.0 failed with error -22
[ 1125.566687][ T1444] usb-storage 6-1:1.0: USB Mass Storage device detected
[ 1125.575829][ T1444] usb-storage 6-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[ 1125.583745][ T1444] scsi host1: usb-storage 6-1:1.0
[ 1125.694390][T17804] xt_hashlimit: size too large, truncated to 1048576
[ 1125.755745][T17812] loop1: detected capacity change from 0 to 512
[ 1125.777502][T17812] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.4480: casefold flag without casefold feature
[ 1125.797103][T17812] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.4480: couldn't read orphan inode 15 (err -117)
[ 1125.814432][T17812] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1125.919053][T17812] EXT4-fs error (device loop1): __ext4_get_inode_loc:4508: comm syz.1.4480: Invalid inode table block 5 in block_group 0
[ 1125.951756][T17812] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1125.971221][T17812] EXT4-fs error (device loop1): ext4_dirty_inode:6091: inode #18: comm syz.1.4480: mark_inode_dirty error
[ 1125.993813][T17812] EXT4-fs error (device loop1): __ext4_get_inode_loc:4508: comm syz.1.4480: Invalid inode table block 5 in block_group 0
[ 1126.020712][T17812] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1126.038810][T17812] EXT4-fs error (device loop1): ext4_dirty_inode:6091: inode #18: comm syz.1.4480: mark_inode_dirty error
[ 1126.057792][T17812] EXT4-fs error (device loop1): ext4_get_group_desc:277: comm syz.1.4480: block_group >= groups_count - block_group = 4294503412, groups_count = 1
[ 1126.073284][T17812] EXT4-fs error (device loop1): __ext4_get_inode_loc:4508: comm syz.1.4480: Invalid inode table block 5 in block_group 0
[ 1126.099805][T17812] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1126.116774][T17812] EXT4-fs error (device loop1): ext4_dirty_inode:6091: inode #18: comm syz.1.4480: mark_inode_dirty error
[ 1126.170690][T16931] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -117 reading directory block
[ 1126.200426][T16931] EXT4-fs (loop1): unmounting filesystem.
[ 1126.517399][T17825] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1126.536653][T17825] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1126.549143][T17825] device bridge_slave_0 entered promiscuous mode
[ 1126.559866][T17825] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1126.566886][T17825] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1126.574666][T17825] device bridge_slave_1 entered promiscuous mode
[ 1126.764002][T17825] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1126.770933][T17825] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1126.778111][T17825] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1126.785012][T17825] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1126.808911][T17795] usb 6-1: reset high-speed USB device number 2 using dummy_hcd
[ 1126.817241][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1126.825286][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1126.833811][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1126.858035][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1126.890531][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1126.913732][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1126.922432][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1126.931905][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1126.940242][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1126.948781][T17825] device veth0_vlan entered promiscuous mode
[ 1126.958640][ T1962] device bridge_slave_1 left promiscuous mode
[ 1126.964652][ T1444] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1126.979438][ T1962] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1126.991625][ T1962] device bridge_slave_0 left promiscuous mode
[ 1126.997717][ T1962] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1127.007909][ T1962] device veth1_macvtap left promiscuous mode
[ 1127.013981][ T1962] device veth0_vlan left promiscuous mode
[ 1127.154200][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1127.158891][ T1444] usb 5-1: Using ep0 maxpacket: 32
[ 1127.167158][T17856] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4498'.
[ 1127.168119][ T1444] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1127.179858][T17825] device veth1_macvtap entered promiscuous mode
[ 1127.193070][ T1444] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1127.202963][ T1444] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1127.211966][ T1444] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1127.223190][T17860] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4500'.
[ 1127.237247][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1127.245387][ T1444] usb 5-1: config 0 descriptor??
[ 1127.249271][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1127.368085][T17868] Disabled LAPIC found during irq injection
[ 1127.597517][T17878] netlink: 80 bytes leftover after parsing attributes in process `syz.6.4493'.
[ 1127.663867][ T1444] savu 0003:1E7D:2D5A.0006: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[ 1127.699740][T14220] usb 6-1: USB disconnect, device number 2
[ 1127.788895][ T1381] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 1127.971124][    T6] usb 5-1: USB disconnect, device number 3
[ 1127.978955][ T1381] usb 1-1: Using ep0 maxpacket: 8
[ 1127.985818][ T1381] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1128.020298][ T1381] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1128.038894][ T1381] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1128.059094][ T1381] usb 1-1: config 0 descriptor??
[ 1128.353116][T17892] loop5: detected capacity change from 0 to 512
[ 1128.360067][T17892] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1128.370992][T17892] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1128.385074][T17892] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[ 1128.399770][T17892] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 1 with error 28
[ 1128.411978][T17892] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1128.411978][T17892] 
[ 1128.421652][T17892] EXT4-fs (loop5): Total free blocks count 0
[ 1128.427543][T17892] EXT4-fs (loop5): Free/Dirty block details
[ 1128.433451][T17892] EXT4-fs (loop5): free_blocks=39626
[ 1128.438576][T17892] EXT4-fs (loop5): dirty_blocks=1
[ 1128.443614][T17892] EXT4-fs (loop5): Block reservation details
[ 1128.449459][T17892] EXT4-fs (loop5): i_reserved_data_blocks=1
[ 1128.460506][T17685] EXT4-fs (loop5): unmounting filesystem.
[ 1128.508944][    T6] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[ 1128.688878][    T6] usb 3-1: Using ep0 maxpacket: 32
[ 1128.695059][    T6] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1128.702628][    T6] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1128.710843][    T6] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1128.718155][    T6] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1128.726610][    T6] usb 3-1: New USB device found, idVendor=0b95, idProduct=2791, bcdDevice= d.2d
[ 1128.735838][    T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1128.744025][    T6] usb 3-1: Product: syz
[ 1128.748180][    T6] usb 3-1: Manufacturer: syz
[ 1128.752922][    T6] usb 3-1: SerialNumber: syz
[ 1128.780866][T17898] loop5: detected capacity change from 0 to 131072
[ 1128.787924][T17898] F2FS-fs (loop5): Invalid log sectorsize (67108873)
[ 1128.794637][T17898] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1128.803375][T17898] F2FS-fs (loop5): invalid crc value
[ 1128.810395][T17898] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1128.843231][T17898] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1128.850196][T17898] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[ 1128.930127][   T28] audit: type=1400 audit(1128.935:449068): avc:  denied  { rename } for  pid=17897 comm="syz.5.4511" name="file1" dev="loop5" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1129.075487][   T28] audit: type=1400 audit(1128.955:449069): avc:  denied  { write } for  pid=17897 comm="syz.5.4511" name="file0" dev="overlay" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1129.174552][T17685] F2FS-fs (loop5): f2fs_remove_inode_page: inconsistent i_blocks, ino:7, iblocks:10232
[ 1129.177367][    T6] aqc111: probe of 3-1:1.0 failed with error -22
[ 1129.184233][   T28] audit: type=1400 audit(1128.955:449070): avc:  denied  { setattr } for  pid=17897 comm="syz.5.4511" name="file0" dev="overlay" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1129.184285][   T28] audit: type=1400 audit(1128.955:449071): avc:  denied  { open } for  pid=17897 comm="syz.5.4511" path=2F202864656C6574656429 dev="loop5" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1129.244540][   T28] audit: type=1400 audit(1128.965:449072): avc:  denied  { link } for  pid=17897 comm="syz.5.4511" name="#17" dev="loop5" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 1129.258364][T14220] usb 3-1: USB disconnect, device number 7
[ 1129.526386][T17915] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1129.533307][T17915] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1129.540741][T17915] device bridge_slave_0 entered promiscuous mode
[ 1129.547542][T17915] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1129.554573][T17915] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1129.561875][T17915] device bridge_slave_1 entered promiscuous mode
[ 1129.598906][    T6] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[ 1129.616301][T17915] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1129.623224][T17915] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1129.630301][T17915] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1129.637066][T17915] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1129.658209][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1129.665840][ T2035] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1129.673422][ T2035] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1129.706719][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1129.714815][ T2035] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1129.721707][ T2035] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1129.729105][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1129.737143][ T2035] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1129.744016][ T2035] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1129.766669][T17924] 9pnet_virtio: no channels available for device syz
[ 1129.774719][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1129.782357][    T6] usb 5-1: Using ep0 maxpacket: 16
[ 1129.783208][ T2035] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1129.788724][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1129.814839][T17928] loop6: detected capacity change from 0 to 512
[ 1129.822988][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1129.832674][    T6] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1129.845480][    T6] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1129.846689][T16694] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1129.857058][    T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1129.875143][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1129.883356][    T6] usb 5-1: config 0 descriptor??
[ 1129.883526][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1129.892023][T17928] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1129.904162][T12325] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1129.913508][T17915] device veth0_vlan entered promiscuous mode
[ 1129.944595][   T28] audit: type=1400 audit(1129.975:449073): avc:  denied  { ioctl } for  pid=17933 comm="syz.2.4524" path="socket:[62202]" dev="sockfs" ino=62202 ioctlcmd=0x89f3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1129.950789][T17915] device veth1_macvtap entered promiscuous mode
[ 1129.983578][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1129.992073][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1130.001042][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1130.018602][ T1962] device bridge_slave_1 left promiscuous mode
[ 1130.025164][ T1962] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1130.032801][ T1962] device bridge_slave_0 left promiscuous mode
[ 1130.033724][T17825] EXT4-fs (loop6): unmounting filesystem.
[ 1130.038917][ T1962] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1130.052989][ T1962] device veth1_macvtap left promiscuous mode
[ 1130.059482][ T1962] device veth0_vlan left promiscuous mode
[ 1130.291683][    T6] microsoft 0003:045E:07DA.0007: report is too long
[ 1130.300678][    T6] microsoft 0003:045E:07DA.0007: item 0 4 0 8 parsing failed
[ 1130.309578][    T6] microsoft 0003:045E:07DA.0007: parse failed
[ 1130.316918][    T6] microsoft: probe of 0003:045E:07DA.0007 failed with error -22
[ 1130.429468][ T1444] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1130.516510][ T1381] usb 5-1: USB disconnect, device number 4
[ 1130.531862][T13438] usb 1-1: USB disconnect, device number 5
[ 1130.546280][   T28] audit: type=1400 audit(1130.575:449074): avc:  denied  { create } for  pid=17965 comm="syz.6.4536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1130.609948][ T1444] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1130.637608][ T1444] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1130.649507][ T1444] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1130.658374][ T1444] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1130.669421][ T1444] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1130.987261][ T1444] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1130.996173][ T1444] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1131.003973][ T1444] usb 3-1: Product: syz
[ 1131.007931][ T1444] usb 3-1: Manufacturer: syz
[ 1131.016806][T17961] loop7: detected capacity change from 0 to 131072
[ 1131.023864][T17961] F2FS-fs (loop7): Insane cp_payload (20578304 >= 504)
[ 1131.031221][T17961] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[ 1131.032232][ T1444] cdc_wdm 3-1:1.0: skipping garbage
[ 1131.040733][T17961] F2FS-fs (loop7): invalid crc value
[ 1131.044620][ T1444] cdc_wdm 3-1:1.0: skipping garbage
[ 1131.051336][T17961] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1131.068386][ T1444] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[ 1131.088680][T17961] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0
[ 1131.095673][T17961] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1131.245027][T13438] usb 3-1: USB disconnect, device number 8
[ 1131.325585][   T28] audit: type=1326 audit(1131.355:449075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.329543][T17980] tipc: Started in network mode
[ 1131.348725][   T28] audit: type=1326 audit(1131.355:449076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.353647][T17980] tipc: Node identity ac14140f, cluster identity 4711
[ 1131.376665][   T28] audit: type=1326 audit(1131.355:449077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.394617][T17980] tipc: New replicast peer: 255.255.255.255
[ 1131.417335][T17980] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1131.439451][   T28] audit: type=1326 audit(1131.355:449078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.463270][   T28] audit: type=1326 audit(1131.355:449079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.468941][T14220] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1131.486514][   T28] audit: type=1326 audit(1131.355:449080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.520941][   T28] audit: type=1326 audit(1131.355:449081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.546757][   T28] audit: type=1326 audit(1131.355:449082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17979 comm="syz.4.4537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1131.598205][T17993] binder: BC_ATTEMPT_ACQUIRE not supported
[ 1131.604022][T17993] binder: 17992:17993 ioctl c0306201 20000640 returned -22
[ 1131.620958][T17996] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1131.627929][T17996] overlayfs: failed to set xattr on upper
[ 1131.718907][T14220] usb 8-1: Using ep0 maxpacket: 32
[ 1131.724936][T14220] usb 8-1: config 0 has no interfaces?
[ 1131.730391][T14220] usb 8-1: New USB device found, idVendor=1b96, idProduct=9f0a, bcdDevice= 0.15
[ 1131.739274][T14220] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1131.747873][T14220] usb 8-1: config 0 descriptor??
[ 1131.939030][T13438] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[ 1131.949099][  T396] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1131.956484][   T39] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1132.012904][T14220] usb 8-1: USB disconnect, device number 2
[ 1132.120000][T13438] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1132.130849][T13438] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1132.140361][T13438] usb 1-1: New USB device found, idVendor=056a, idProduct=0090, bcdDevice= 0.00
[ 1132.149187][T13438] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1132.157792][T13438] usb 1-1: config 0 descriptor??
[ 1132.158899][  T396] usb 5-1: Using ep0 maxpacket: 32
[ 1132.168654][   T39] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1132.177221][   T39] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1132.187870][   T39] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1132.196736][   T39] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1132.207567][   T39] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1132.219424][  T396] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[ 1132.228307][  T396] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1132.236218][  T396] usb 5-1: Product: syz
[ 1132.240163][  T396] usb 5-1: Manufacturer: syz
[ 1132.244595][   T39] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1132.253438][  T396] usb 5-1: SerialNumber: syz
[ 1132.258204][   T39] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1132.266482][  T396] usb 5-1: config 0 descriptor??
[ 1132.271343][   T39] usb 3-1: Product: syz
[ 1132.275254][   T39] usb 3-1: Manufacturer: syz
[ 1132.284435][   T39] cdc_wdm 3-1:1.0: skipping garbage
[ 1132.289531][   T39] cdc_wdm 3-1:1.0: skipping garbage
[ 1132.295141][   T39] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[ 1132.419156][T14220] tipc: Node number set to 2886997007
[ 1132.566293][T13438] wacom 0003:056A:0090.0008: unbalanced delimiter at end of report description
[ 1132.575801][T13438] wacom 0003:056A:0090.0008: parse failed
[ 1132.582037][T13438] wacom: probe of 0003:056A:0090.0008 failed with error -22
[ 1132.778777][  T396] usb 1-1: USB disconnect, device number 6
[ 1132.855522][T18012] loop2: detected capacity change from 0 to 8192
[ 1132.899358][T18012]  loop2: p1 p2[DM] p4
[ 1132.903363][T18012] loop2: p1 size 196608 extends beyond EOD, truncated
[ 1132.910666][T18012] loop2: p2 size 150994946 extends beyond EOD, truncated
[ 1132.917894][T18012] loop2: p4 start 25600 is beyond EOD, truncated
[ 1132.998901][T13438] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[ 1133.180003][T13438] usb 8-1: config 0 has an invalid interface number: 11 but max is 0
[ 1133.187959][T13438] usb 8-1: config 0 has no interface number 0
[ 1133.193857][T13438] usb 8-1: config 0 interface 11 has no altsetting 0
[ 1133.200352][T13438] usb 8-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 1133.209183][T13438] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.217713][T13438] usb 8-1: config 0 descriptor??
[ 1133.424424][ T1381] usb 8-1: USB disconnect, device number 3
[ 1133.558888][T13438] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1133.738904][T13438] usb 1-1: Using ep0 maxpacket: 16
[ 1133.744986][T13438] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1133.755731][T13438] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1133.765235][T13438] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1133.777845][T13438] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1133.786663][T13438] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.795037][T13438] usb 1-1: config 0 descriptor??
[ 1133.938685][T17964] usb 3-1: USB disconnect, device number 9
[ 1134.198905][ T1381] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1134.219853][T13438] microsoft 0003:045E:07DA.0009: No inputs registered, leaving
[ 1134.229852][T13438] microsoft 0003:045E:07DA.0009: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[ 1134.241170][T13438] microsoft 0003:045E:07DA.0009: no inputs found
[ 1134.247357][T13438] microsoft 0003:045E:07DA.0009: could not initialize ff, continuing anyway
[ 1134.400049][ T1381] usb 8-1: config 0 has an invalid interface number: 176 but max is 0
[ 1134.408136][ T1381] usb 8-1: config 0 has no interface number 0
[ 1134.429428][T14220] usb 1-1: USB disconnect, device number 7
[ 1134.436254][ T1381] usb 8-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice=5e.d2
[ 1134.445885][ T1381] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1134.454000][ T1381] usb 8-1: Product: syz
[ 1134.457984][ T1381] usb 8-1: Manufacturer: syz
[ 1134.462676][ T1381] usb 8-1: SerialNumber: syz
[ 1134.467752][ T1381] usb 8-1: config 0 descriptor??
[ 1134.628872][T13438] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1134.661686][T14220] usb 5-1: USB disconnect, device number 5
[ 1134.674721][T18017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1134.683236][T18017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1134.809908][T13438] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1134.820672][T13438] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1134.830220][T13438] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1134.839064][T13438] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1134.847822][T13438] usb 7-1: config 0 descriptor??
[ 1135.028937][T14220] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1135.092551][T18017] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1135.101350][T18017] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1135.109581][T13438] usbhid 7-1:0.0: can't add hid device: -71
[ 1135.115354][ T1381] (unnamed net_device) (uninitialized): Assigned a random MAC address: de:07:f3:60:90:af
[ 1135.125009][T13438] usbhid: probe of 7-1:0.0 failed with error -71
[ 1135.132636][ T1381] rtl8150 8-1:0.176: eth1: rtl8150 is detected
[ 1135.139866][T13438] usb 7-1: USB disconnect, device number 2
[ 1135.146651][ T1381] usb 8-1: USB disconnect, device number 4
[ 1135.168947][T17964] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[ 1135.200710][   T28] kauditd_printk_skb: 40 callbacks suppressed
[ 1135.200724][   T28] audit: type=1400 audit(1135.235:449123): avc:  denied  { read } for  pid=141 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[ 1135.229085][T14220] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1135.239741][T14220] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1135.250494][T14220] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1135.260050][T14220] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1135.274117][T14220] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1135.282988][T14220] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1135.290893][T14220] usb 5-1: Manufacturer: syz
[ 1135.295857][T14220] usb 5-1: config 0 descriptor??
[ 1135.308933][ T1444] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[ 1135.350126][T17964] usb 3-1: too many endpoints for config 1 interface 0 altsetting 253: 68, using maximum allowed: 30
[ 1135.361086][T17964] usb 3-1: config 1 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 68
[ 1135.373964][T17964] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1135.381820][T17964] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1135.390968][T17964] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1135.398780][T17964] usb 3-1: Product: syz
[ 1135.403027][T17964] usb 3-1: Manufacturer: syz
[ 1135.407443][T17964] usb 3-1: SerialNumber: syz
[ 1135.490273][ T1444] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1135.498205][ T1444] usb 1-1: not running at top speed; connect to a high speed hub
[ 1135.506712][ T1444] usb 1-1: config 129 has an invalid interface number: 28 but max is 0
[ 1135.514850][ T1444] usb 1-1: config 129 has no interface number 0
[ 1135.520913][ T1444] usb 1-1: config 129 interface 28 altsetting 250 has an invalid endpoint with address 0xFD, skipping
[ 1135.531646][ T1444] usb 1-1: config 129 interface 28 altsetting 250 endpoint 0x7 has invalid maxpacket 512, setting to 64
[ 1135.542801][ T1444] usb 1-1: config 129 interface 28 altsetting 250 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1135.555985][ T1444] usb 1-1: config 129 interface 28 has no altsetting 0
[ 1135.564308][ T1444] usb 1-1: New USB device found, idVendor=108c, idProduct=0159, bcdDevice=db.57
[ 1135.573265][ T1444] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1135.581068][ T1444] usb 1-1: Product: syz
[ 1135.585011][ T1444] usb 1-1: Manufacturer: syz
[ 1135.589455][ T1444] usb 1-1: SerialNumber: syz
[ 1135.595090][T18038] raw-gadget.5 gadget.0: fail, usb_ep_enable returned -22
[ 1135.707931][T14220] appleir 0003:05AC:8243.000A: unknown main item tag 0x0
[ 1135.715659][T14220] appleir 0003:05AC:8243.000A: No inputs registered, leaving
[ 1135.728557][T14220] appleir 0003:05AC:8243.000A: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[ 1135.806355][ T1444] usb 1-1: USB disconnect, device number 8
[ 1135.986193][   T28] audit: type=1400 audit(1135.995:449124): avc:  denied  { link } for  pid=18050 comm="syz.6.4564" name="#29b" dev="tmpfs" ino=133 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1136.017291][   T28] audit: type=1400 audit(1135.995:449125): avc:  denied  { rename } for  pid=18050 comm="syz.6.4564" name="#29c" dev="tmpfs" ino=133 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[ 1136.041197][   T28] audit: type=1400 audit(1136.045:449126): avc:  denied  { append } for  pid=18029 comm="syz.4.4555" name="hiddev0" dev="devtmpfs" ino=1618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[ 1136.079679][T14220] usb 5-1: USB disconnect, device number 6
[ 1136.094788][T17964] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[ 1136.321129][   T28] audit: type=1400 audit(1136.355:449127): avc:  denied  { audit_write } for  pid=18055 comm="syz.0.4565" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 1136.561091][   T28] audit: type=1400 audit(1136.595:449128): avc:  denied  { read write } for  pid=18067 comm="syz.7.4569" name="lp0" dev="devtmpfs" ino=1625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[ 1136.569504][T18061] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1136.599280][T18061] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1136.612562][   T28] audit: type=1400 audit(1136.595:449129): avc:  denied  { open } for  pid=18067 comm="syz.7.4569" path="/dev/usb/lp0" dev="devtmpfs" ino=1625 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[ 1136.639849][T18070] loop4: detected capacity change from 0 to 256
[ 1136.646085][   T28] audit: type=1400 audit(1136.595:449130): avc:  denied  { create } for  pid=18067 comm="syz.7.4569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[ 1136.686300][T18072] input: syz1 as /devices/virtual/input/input15
[ 1136.773840][T18081] loop6: detected capacity change from 0 to 256
[ 1136.787535][T18081] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[ 1136.812978][T18061] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1136.821398][T18061] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1136.834546][T18061] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1136.852832][T18061] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1137.138893][T17964] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1137.320252][T17964] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1137.331043][T17964] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1137.339849][T17964] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1137.348500][T17964] usb 5-1: config 0 descriptor??
[ 1137.464385][T18099] device syzkaller0 entered promiscuous mode
[ 1137.540171][T18105] fuse: Invalid rootmode
[ 1137.556088][T17964] usbhid 5-1:0.0: can't add hid device: -71
[ 1137.562076][T17964] usbhid: probe of 5-1:0.0 failed with error -71
[ 1137.569210][T17964] usb 5-1: USB disconnect, device number 7
[ 1137.860655][   T28] audit: type=1400 audit(1137.895:449131): avc:  denied  { accept } for  pid=18108 comm="syz.6.4587" laddr=fe80::e lport=58738 faddr=fe80:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[ 1137.896054][  T396] usb 3-1: USB disconnect, device number 10
[ 1137.904116][  T396] usblp0: removed
[ 1137.912493][T18115] loop2: detected capacity change from 0 to 128
[ 1137.920857][T18115] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1137.936118][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1138.402484][T17964] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1138.499872][   T28] audit: type=1400 audit(1138.535:449132): avc:  denied  { create } for  pid=18135 comm="syz.7.4598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 1138.589094][T17964] usb 5-1: Using ep0 maxpacket: 16
[ 1138.599173][T17964] usb 5-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1138.613854][T17964] usb 5-1: config 0 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1138.634542][T17964] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1138.643549][T17964] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1138.652993][T17964] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1138.663827][T17964] usb 5-1: config 0 descriptor??
[ 1139.041224][T18196] loop7: detected capacity change from 0 to 128
[ 1139.059579][T18196] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1139.076139][T17964] wacom 0003:056A:0331.000B: hidraw0: USB HID v4.13 Device [HID 056a:0331] on usb-dummy_hcd.4-1/input0
[ 1139.088488][T17915] EXT4-fs (loop7): unmounting filesystem.
[ 1139.145363][T18203] loop7: detected capacity change from 0 to 128
[ 1139.192570][T18203] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1139.223914][T17915] EXT4-fs (loop7): unmounting filesystem.
[ 1139.288897][   T39] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[ 1139.319359][T18209] loop7: detected capacity change from 0 to 256
[ 1139.328193][T18209] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b3669, utbl_chksum : 0xe619d30d)
[ 1139.400303][T18220] loop7: detected capacity change from 0 to 512
[ 1139.411725][T18220] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1139.431212][T17915] EXT4-fs (loop7): unmounting filesystem.
[ 1139.468935][   T39] usb 1-1: Using ep0 maxpacket: 16
[ 1139.475489][   T39] usb 1-1: config 0 has an invalid interface number: 214 but max is 0
[ 1139.479784][T18083] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1139.484494][   T39] usb 1-1: config 0 has no interface number 0
[ 1139.497887][T18083] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1139.507789][   T39] usb 1-1: New USB device found, idVendor=0572, idProduct=1349, bcdDevice=73.96
[ 1139.526671][   T39] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1139.539241][   T39] usb 1-1: Product: syz
[ 1139.543288][   T39] usb 1-1: Manufacturer: syz
[ 1139.552021][   T39] usb 1-1: SerialNumber: syz
[ 1139.560614][   T39] usb 1-1: config 0 descriptor??
[ 1139.728077][   T39] usb 5-1: USB disconnect, device number 8
[ 1139.769325][T17964] usb 1-1: USB disconnect, device number 9
[ 1140.238972][   T28] kauditd_printk_skb: 59 callbacks suppressed
[ 1140.238989][   T28] audit: type=1400 audit(1140.275:449192): avc:  denied  { read write } for  pid=16796 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1140.305529][   T28] audit: type=1400 audit(1140.275:449193): avc:  denied  { read write } for  pid=18276 comm="syz.7.4658" name="loop7" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1140.358966][   T28] audit: type=1400 audit(1140.305:449194): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1140.408977][   T28] audit: type=1400 audit(1140.305:449195): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1140.450716][   T28] audit: type=1400 audit(1140.365:449196): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1140.509232][   T28] audit: type=1400 audit(1140.375:449197): avc:  denied  { remount } for  pid=18287 comm="syz.0.4663" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=0
[ 1140.548770][   T28] audit: type=1400 audit(1140.415:449198): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1140.588429][   T28] audit: type=1400 audit(1140.415:449199): avc:  denied  { read write } for  pid=18283 comm="syz.2.4661" name="loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1140.650464][   T28] audit: type=1400 audit(1140.435:449200): avc:  denied  { read } for  pid=18289 comm="syz.0.4664" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[ 1140.675516][   T28] audit: type=1400 audit(1140.435:449201): avc:  denied  { create } for  pid=18289 comm="syz.0.4664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=0
[ 1142.114467][T18537] sit: Src spoofed 0.0.127.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[ 1142.619871][T18561] binfmt_misc: register: failed to install interpreter file ./file0
[ 1142.841914][T18585] 
��: renamed from vlan0
[ 1144.175830][T18738] sit: Src spoofed 0.0.127.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc
[ 1144.272900][T18755] ip_tunnel: non-ECT from 0.0.0.224 with TOS=0x3
[ 1145.045097][T18902] bridge0: port 3(gretap0) entered blocking state
[ 1145.055308][T18902] bridge0: port 3(gretap0) entered disabled state
[ 1145.062268][T18902] device gretap0 entered promiscuous mode
[ 1145.068178][T18902] bridge0: port 3(gretap0) entered blocking state
[ 1145.074467][T18902] bridge0: port 3(gretap0) entered forwarding state
[ 1145.250647][   T28] kauditd_printk_skb: 1278 callbacks suppressed
[ 1145.250663][   T28] audit: type=1400 audit(1145.285:450480): avc:  denied  { read write } for  pid=16969 comm="syz-executor" name="loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1145.281507][   T28] audit: type=1400 audit(1145.295:450481): avc:  denied  { read write } for  pid=16796 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1145.308323][   T28] audit: type=1400 audit(1145.295:450482): avc:  denied  { create } for  pid=18964 comm="syz.7.4986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=0
[ 1145.330528][   T28] audit: type=1400 audit(1145.315:450483): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1145.388391][   T28] audit: type=1400 audit(1145.315:450484): avc:  denied  { read } for  pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=0
[ 1145.410295][   T28] audit: type=1400 audit(1145.325:450485): avc:  denied  { read write } for  pid=17915 comm="syz-executor" name="loop7" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1145.437821][   T28] audit: type=1400 audit(1145.325:450486): avc:  denied  { bpf } for  pid=18968 comm="syz.2.4987" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1145.463557][   T28] audit: type=1400 audit(1145.325:450487): avc:  denied  { prog_load } for  pid=18968 comm="syz.2.4987" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1145.476089][T19009] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1145.483324][T17915] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1145.955769][T19107] xt_hashlimit: max too large, truncated to 1048576
[ 1148.946613][T19639] xt_nat: multiple ranges no longer supported
[ 1148.985523][T19643] xt_hashlimit: max too large, truncated to 1048576
[ 1150.183128][T19797] syz.6.5384 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1150.259865][   T28] kauditd_printk_skb: 2458 callbacks suppressed
[ 1150.259881][   T28] audit: type=1326 audit(1150.295:452897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19799 comm="syz.2.5387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8e4cf85d29 code=0x0
[ 1150.290690][   T28] audit: type=1400 audit(1150.305:452898): avc:  denied  { read write } for  pid=16796 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0
[ 1150.314707][   T28] audit: type=1400 audit(1150.315:452899): avc:  denied  { bpf } for  pid=19822 comm="syz.6.5397" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1150.344798][   T28] audit: type=1400 audit(1150.315:452900): avc:  denied  { prog_load } for  pid=19822 comm="syz.6.5397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1150.366342][   T28] audit: type=1400 audit(1150.315:452901): avc:  denied  { bpf } for  pid=19822 comm="syz.6.5397" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1150.396522][T17915] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1150.402994][T17915] audit: audit_lost=18 audit_rate_limit=0 audit_backlog_limit=64
[ 1150.404015][T19840] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1150.411677][   T85] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1150.420460][T19842] audit: audit_backlog=65 > audit_backlog_limit=64
[ 1150.936415][T19946] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5457'.
[ 1150.945777][T19946] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5457'.
[ 1151.599058][T20074] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1153.471448][T20484] serio: Serial port pts0
[ 1153.653355][T20524] binfmt_misc: register: failed to install interpreter file ./file2
[ 1154.829365][T20648] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1155.269297][   T28] kauditd_printk_skb: 2465 callbacks suppressed
[ 1155.269314][   T28] audit: type=1400 audit(1155.305:455345): avc:  denied  { bpf } for  pid=20710 comm="syz.2.5824" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1155.295667][   T28] audit: type=1400 audit(1155.305:455346): avc:  denied  { prog_load } for  pid=20710 comm="syz.2.5824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1155.314699][   T28] audit: type=1400 audit(1155.305:455347): avc:  denied  { bpf } for  pid=20710 comm="syz.2.5824" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1155.334785][   T28] audit: type=1400 audit(1155.305:455348): avc:  denied  { map_create } for  pid=20710 comm="syz.2.5824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1155.334810][   T28] audit: type=1400 audit(1155.305:455349): avc:  denied  { bpf } for  pid=20710 comm="syz.2.5824" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1155.334829][   T28] audit: type=1400 audit(1155.305:455350): avc:  denied  { prog_load } for  pid=20710 comm="syz.2.5824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1155.334853][   T28] audit: type=1400 audit(1155.305:455351): avc:  denied  { bpf } for  pid=20710 comm="syz.2.5824" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1155.334871][   T28] audit: type=1400 audit(1155.305:455352): avc:  denied  { map_create } for  pid=20710 comm="syz.2.5824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1155.334889][   T28] audit: type=1400 audit(1155.305:455353): avc:  denied  { bpf } for  pid=20710 comm="syz.2.5824" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=0
[ 1155.334910][   T28] audit: type=1400 audit(1155.305:455354): avc:  denied  { prog_load } for  pid=20710 comm="syz.2.5824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0
[ 1155.523410][T20720] xt_hashlimit: max too large, truncated to 1048576
[ 1155.881249][T20775] netlink: 'syz.7.5854': attribute type 13 has an invalid length.
[ 1155.889725][T20775] gretap0: refused to change device tx_queue_len
[ 1155.896095][T20775] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1155.949600][T20779] SELinux:  policydb table sizes (10785,0) do not match mine (8,7)
[ 1155.957440][T20779] SELinux: failed to load policy
[ 1156.193171][T20808] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20808 comm=syz.7.5868
[ 1156.236251][T20815] 9pnet: p9_errstr2errno: server reported unknown error �@��hQI���
[ 1156.249702][T20817] 9pnet: Could not find request transport: rdma
[ 1156.279273][T20819] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5874'.
[ 1156.288058][T20819] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5874'.
[ 1156.299390][T20819] device wireguard0 entered promiscuous mode
[ 1156.303225][T20825] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5876'.
[ 1156.340431][T20833] 9pnet_fd: Insufficient options for proto=fd
[ 1156.438070][T20840] tmpfs: Bad value for 'nr_inodes'
[ 1156.511520][T20850] loop2: detected capacity change from 0 to 128
[ 1156.595728][T20856] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=20856 comm=+}[@
[ 1156.886884][T20862] tipc: Can't bind to reserved service type 1
[ 1157.002284][T20870] xt_hashlimit: max too large, truncated to 1048576
[ 1157.339070][T20891] overlayfs: failed to clone upperpath
[ 1157.586479][T20904] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[ 1157.596505][T20904] SELinux: failed to load policy
[ 1157.678918][ T1444] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1157.713214][T20925] loop2: detected capacity change from 0 to 1024
[ 1157.720685][T20925] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1157.728769][T20925] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1157.735522][T20925] EXT4-fs error (device loop2): __ext4_get_inode_loc:4508: comm syz.2.5916: Invalid inode table block 0 in block_group 0
[ 1157.748164][T20925] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1157.757702][T20925] EXT4-fs error (device loop2): ext4_quota_write:7183: inode #3: comm syz.2.5916: mark_inode_dirty error
[ 1157.769032][T20925] EXT4-fs error (device loop2): ext4_acquire_dquot:6788: comm syz.2.5916: Failed to acquire dquot type 0
[ 1157.780609][T20925] EXT4-fs error (device loop2): __ext4_get_inode_loc:4508: comm syz.2.5916: Invalid inode table block 0 in block_group 0
[ 1157.793484][T20925] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1157.802886][T20925] EXT4-fs error (device loop2): ext4_ext_truncate:4453: inode #15: comm syz.2.5916: mark_inode_dirty error
[ 1157.814385][T20925] EXT4-fs error (device loop2): __ext4_get_inode_loc:4508: comm syz.2.5916: Invalid inode table block 0 in block_group 0
[ 1157.827001][T20925] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1157.836363][T20925] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[ 1157.844859][T20925] EXT4-fs error (device loop2): __ext4_get_inode_loc:4508: comm syz.2.5916: Invalid inode table block 0 in block_group 0
[ 1157.848962][T17964] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1157.857504][T20925] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5887: Corrupt filesystem
[ 1157.873969][T20925] EXT4-fs error (device loop2): ext4_truncate:4313: inode #15: comm syz.2.5916: mark_inode_dirty error
[ 1157.885022][T20925] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[ 1157.893889][T20925] EXT4-fs (loop2): 1 truncate cleaned up
[ 1157.899495][T20925] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1157.900637][ T1444] usb 5-1: config 0 has an invalid interface number: 176 but max is 0
[ 1157.912733][T20925] EXT4-fs error (device loop2): ext4_search_dir:1549: inode #2: block 16: comm syz.2.5916: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1157.921417][ T1444] usb 5-1: config 0 has no interface number 0
[ 1157.941935][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1157.947880][ T1444] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice=5e.d2
[ 1157.962551][ T1444] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1157.970686][ T1444] usb 5-1: Product: syz
[ 1157.978629][T20930] loop2: detected capacity change from 0 to 512
[ 1157.985054][ T1444] usb 5-1: Manufacturer: syz
[ 1157.989950][ T1444] usb 5-1: SerialNumber: syz
[ 1157.996278][T20930] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #17: comm syz.2.5919: iget: bogus i_mode (0)
[ 1158.004710][ T1444] usb 5-1: config 0 descriptor??
[ 1158.012164][T17964] usb 8-1: device descriptor read/64, error -71
[ 1158.019389][T20930] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.5919: couldn't read orphan inode 17 (err -117)
[ 1158.033085][T20930] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1158.044371][T20934] xt_hashlimit: max too large, truncated to 1048576
[ 1158.055415][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1158.103172][T20944] loop2: detected capacity change from 0 to 512
[ 1158.121426][T20944] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #17: comm syz.2.5925: iget: bogus i_mode (0)
[ 1158.133260][T20944] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.5925: couldn't read orphan inode 17 (err -117)
[ 1158.146210][T20944] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 1158.167934][T20944] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.5925: bg 0: block 7: invalid block bitmap
[ 1158.188043][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1158.220260][T20881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1158.230137][T20881] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1158.290933][T17964] usb 8-1: device descriptor read/64, error -71
[ 1158.353966][T20971] overlayfs: failed to clone upperpath
[ 1158.640677][T20881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1158.649085][T20881] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1158.657653][ T1444] (unnamed net_device) (uninitialized): Assigned a random MAC address: f2:e0:07:9a:ad:2f
[ 1158.669070][ T1444] rtl8150 5-1:0.176: eth1: rtl8150 is detected
[ 1158.677885][ T1444] usb 5-1: USB disconnect, device number 9
[ 1158.798895][T17964] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1158.948965][T17964] usb 8-1: device descriptor read/64, error -71
[ 1159.218934][T17964] usb 8-1: device descriptor read/64, error -71
[ 1159.299654][T21014] syz.6.5955[21014] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.299739][T21014] syz.6.5955[21014] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.341500][T17964] usb usb8-port1: attempt power cycle
[ 1159.400525][T21029] syz.6.5962[21029] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.400597][T21029] syz.6.5962[21029] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.580207][T21045] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5969'.
[ 1159.755965][T21073] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Dropping request.  Check SNMP counters.
[ 1159.768888][T17964] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1159.810256][T17964] usb 8-1: device descriptor read/8, error -71
[ 1159.861166][T21087] syz.6.5989[21087] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.861239][T21087] syz.6.5989[21087] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1159.867660][T21090] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1159.942698][T21098] loop2: detected capacity change from 0 to 1024
[ 1159.959895][T17964] usb 8-1: device descriptor read/8, error -71
[ 1159.966593][T21098] EXT4-fs: Ignoring removed orlov option
[ 1160.000125][T21098] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1160.026663][T21112] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5999'.
[ 1160.050026][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1160.071553][T21121] 9pnet_fd: Insufficient options for proto=fd
[ 1160.154711][T21140] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6013'.
[ 1160.185434][T21145] 9pnet: Could not find request transport: 0xffffffffffffffff
[ 1160.238909][T17964] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1160.273637][T21159] loop4: detected capacity change from 0 to 8192
[ 1160.288542][T21159] FAT-fs (loop4): Unrecognized mount option "017777777777777777777771844674407370955161500000000000000000000003E�AY�ȶ���윏�j�8���� 9LA�@66���*5?�|�����Hk�U*�I��þwu@�]��tX����V��" or missing value
[ 1160.309237][T17964] usb 8-1: device descriptor read/8, error -71
[ 1160.346976][T21163] loop2: detected capacity change from 0 to 512
[ 1160.375421][T21163] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1160.384977][   T28] kauditd_printk_skb: 457 callbacks suppressed
[ 1160.384995][   T28] audit: type=1400 audit(1160.415:455810): avc:  denied  { unmount } for  pid=16796 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 1160.446005][   T28] audit: type=1326 audit(1160.445:455811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1160.475366][T17964] usb 8-1: device descriptor read/8, error -71
[ 1160.515311][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1160.529333][T21177] loop7: detected capacity change from 0 to 512
[ 1160.536797][T21175] loop4: detected capacity change from 0 to 1024
[ 1160.566702][T21177] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1160.574832][   T28] audit: type=1326 audit(1160.445:455812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1160.591111][T21175] EXT4-fs: Ignoring removed orlov option
[ 1160.609346][T17964] usb usb8-port1: unable to enumerate USB device
[ 1160.618998][T21175] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1160.625903][T21175] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1160.637557][T21177] EXT4-fs warning (device loop7): ext4_enable_quotas:7023: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[ 1160.668117][T21190] loop2: detected capacity change from 0 to 512
[ 1160.697373][T21190] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1160.709193][T21177] EXT4-fs (loop7): Cannot turn on quotas: error -22
[ 1160.717489][T21177] EXT4-fs error (device loop7): ext4_ext_check_inode:520: inode #13: comm syz.7.6026: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[ 1160.739009][   T28] audit: type=1326 audit(1160.445:455813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1160.770676][T21177] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.6026: couldn't read orphan inode 13 (err -117)
[ 1160.783043][T21175] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1160.788935][   T28] audit: type=1326 audit(1160.445:455814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1160.793677][T21190] EXT4-fs (loop2): 1 truncate cleaned up
[ 1160.850101][T21177] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1160.862391][T16796] EXT4-fs (loop4): unmounting filesystem.
[ 1160.867245][T21190] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1160.897360][   T28] audit: type=1326 audit(1160.445:455815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1160.927210][   T28] audit: type=1326 audit(1160.445:455816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2113f84690 code=0x7ffc0000
[ 1160.959944][T17915] EXT4-fs (loop7): unmounting filesystem.
[ 1160.967109][T21190] ==================================================================
[ 1160.974997][T21190] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x909/0x1fa0
[ 1160.982546][T21190] Read of size 18446744073709551572 at addr ffff88814a569050 by task syz.2.6031/21190
[ 1160.991915][T21190] 
[ 1160.994086][T21190] CPU: 1 PID: 21190 Comm: syz.2.6031 Not tainted 6.1.118-syzkaller-00021-gd12538e9da37 #0
[ 1161.003806][T21190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1161.013705][T21190] Call Trace:
[ 1161.016836][T21190]  <TASK>
[ 1161.019602][T21190]  dump_stack_lvl+0x151/0x1b7
[ 1161.024115][T21190]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 1161.029407][T21190]  ? _printk+0xd1/0x111
[ 1161.033402][T21190]  ? __virt_addr_valid+0x242/0x2f0
[ 1161.038350][T21190]  print_report+0x158/0x4e0
[ 1161.042686][T21190]  ? __virt_addr_valid+0x242/0x2f0
[ 1161.047636][T21190]  ? kasan_complete_mode_report_info+0x57/0x1b0
[ 1161.053708][T21190]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1161.059007][T21190]  kasan_report+0x13c/0x170
[ 1161.063346][T21190]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1161.068639][T21190]  kasan_check_range+0x294/0x2a0
[ 1161.073411][T21190]  ? ext4_xattr_set_entry+0x909/0x1fa0
[ 1161.078710][T21190]  memmove+0x2d/0x70
[ 1161.082440][T21190]  ext4_xattr_set_entry+0x909/0x1fa0
[ 1161.087561][T21190]  ? ext4_xattr_inode_lookup_create+0x1a60/0x1a60
[ 1161.093807][T21190]  ? memcpy+0x56/0x70
[ 1161.097625][T21190]  ext4_xattr_block_set+0x99c/0x37f0
[ 1161.102750][T21190]  ? ext4_drop_inode+0x90/0x1a0
[ 1161.107436][T21190]  ? __getblk_gfp+0x3d/0x7d0
[ 1161.111862][T21190]  ? ext4_xattr_block_find+0x320/0x320
[ 1161.117153][T21190]  ? xattr_find_entry+0x23c/0x300
[ 1161.122017][T21190]  ? ext4_xattr_block_find+0x2ac/0x320
[ 1161.127742][T21190]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 1161.133483][T21190]  ? ext4_xattr_set+0x3d0/0x3d0
[ 1161.138158][T21190]  ? rwsem_write_trylock+0x153/0x340
[ 1161.143278][T21190]  ? dquot_initialize_needed+0x13d/0x370
[ 1161.148744][T21190]  __ext4_expand_extra_isize+0x31a/0x420
[ 1161.154218][T21190]  __ext4_mark_inode_dirty+0x4bb/0x7d0
[ 1161.159510][T21190]  ? sb_end_intwrite+0x130/0x130
[ 1161.164287][T21190]  ? current_time+0x1ba/0x300
[ 1161.168792][T21190]  ? atime_needs_update+0x810/0x810
[ 1161.173829][T21190]  ? __kasan_check_write+0x14/0x20
[ 1161.178774][T21190]  ? drop_nlink+0xa9/0x110
[ 1161.183028][T21190]  __ext4_unlink+0x6ed/0xba0
[ 1161.187468][T21190]  ? __ext4_read_dirblock+0x8e0/0x8e0
[ 1161.192678][T21190]  ? rwsem_mark_wake+0x770/0x770
[ 1161.197444][T21190]  ext4_unlink+0x142/0x3f0
[ 1161.201689][T21190]  vfs_unlink+0x38c/0x630
[ 1161.205856][T21190]  do_unlinkat+0x483/0x920
[ 1161.210109][T21190]  ? fsnotify_link_count+0x100/0x100
[ 1161.215235][T21190]  ? strncpy_from_user+0x169/0x2b0
[ 1161.220176][T21190]  ? getname_flags+0x1fd/0x520
[ 1161.224774][T21190]  __x64_sys_unlink+0x49/0x50
[ 1161.229286][T21190]  x64_sys_call+0x289/0x9a0
[ 1161.233625][T21190]  do_syscall_64+0x3b/0xb0
[ 1161.237876][T21190]  ? clear_bhb_loop+0x55/0xb0
[ 1161.242392][T21190]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1161.248120][T21190] RIP: 0033:0x7f8e4cf85d29
[ 1161.252375][T21190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1161.271814][T21190] RSP: 002b:00007f8e4dcea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 1161.280057][T21190] RAX: ffffffffffffffda RBX: 00007f8e4d175fa0 RCX: 00007f8e4cf85d29
[ 1161.287870][T21190] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[ 1161.295681][T21190] RBP: 00007f8e4d001b08 R08: 0000000000000000 R09: 0000000000000000
[ 1161.303492][T21190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1161.311308][T21190] R13: 0000000000000000 R14: 00007f8e4d175fa0 R15: 00007ffcc835d9d8
[ 1161.319126][T21190]  </TASK>
[ 1161.321978][T21190] 
[ 1161.324147][T21190] Allocated by task 21190:
[ 1161.328401][T21190]  kasan_set_track+0x4b/0x70
[ 1161.332826][T21190]  kasan_save_alloc_info+0x1f/0x30
[ 1161.337774][T21190]  __kasan_kmalloc+0x9c/0xb0
[ 1161.342208][T21190]  __kmalloc_node_track_caller+0xb3/0x1e0
[ 1161.347753][T21190]  kmemdup+0x29/0x60
[ 1161.351484][T21190]  ext4_xattr_block_set+0x80f/0x37f0
[ 1161.356612][T21190]  ext4_expand_extra_isize_ea+0x10eb/0x1c40
[ 1161.362334][T21190]  __ext4_expand_extra_isize+0x31a/0x420
[ 1161.367802][T21190]  __ext4_mark_inode_dirty+0x4bb/0x7d0
[ 1161.373105][T21190]  __ext4_unlink+0x6ed/0xba0
[ 1161.377525][T21190]  ext4_unlink+0x142/0x3f0
[ 1161.381776][T21190]  vfs_unlink+0x38c/0x630
[ 1161.385943][T21190]  do_unlinkat+0x483/0x920
[ 1161.390196][T21190]  __x64_sys_unlink+0x49/0x50
[ 1161.394706][T21190]  x64_sys_call+0x289/0x9a0
[ 1161.399045][T21190]  do_syscall_64+0x3b/0xb0
[ 1161.403300][T21190]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1161.409029][T21190] 
[ 1161.411206][T21190] The buggy address belongs to the object at ffff88814a569000
[ 1161.411206][T21190]  which belongs to the cache kmalloc-1k of size 1024
[ 1161.425083][T21190] The buggy address is located 80 bytes inside of
[ 1161.425083][T21190]  1024-byte region [ffff88814a569000, ffff88814a569400)
[ 1161.438189][T21190] 
[ 1161.440360][T21190] The buggy address belongs to the physical page:
[ 1161.446612][T21190] page:ffffea0005295a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x14a568
[ 1161.456674][T21190] head:ffffea0005295a00 order:3 compound_mapcount:0 compound_pincount:0
[ 1161.464834][T21190] flags: 0x4000000000010200(slab|head|zone=1)
[ 1161.470745][T21190] raw: 4000000000010200 ffffea0004fc0800 dead000000000002 ffff888100043080
[ 1161.479163][T21190] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1161.487574][T21190] page dumped because: kasan: bad access detected
[ 1161.493835][T21190] page_owner tracks the page as allocated
[ 1161.499377][T21190] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 16854, tgid 16854 (syz-executor), ts 1071423508286, free_ts 1071380977067
[ 1161.522467][T21190]  post_alloc_hook+0x213/0x220
[ 1161.527064][T21190]  prep_new_page+0x1b/0x110
[ 1161.531401][T21190]  get_page_from_freelist+0x2f41/0x2fc0
[ 1161.536784][T21190]  __alloc_pages+0x234/0x610
[ 1161.541208][T21190]  alloc_slab_page+0x6c/0xf0
[ 1161.545634][T21190]  new_slab+0x90/0x3e0
[ 1161.549540][T21190]  ___slab_alloc+0x6f9/0xb80
[ 1161.553965][T21190]  __slab_alloc+0x5d/0xa0
[ 1161.558132][T21190]  __kmem_cache_alloc_node+0x207/0x2a0
[ 1161.563434][T21190]  __kmalloc_node_track_caller+0xa2/0x1e0
[ 1161.568982][T21190]  __alloc_skb+0x125/0x2d0
[ 1161.573233][T21190]  alloc_uevent_skb+0x80/0x230
[ 1161.577833][T21190]  kobject_uevent_net_broadcast+0x188/0x590
[ 1161.583564][T21190]  kobject_uevent_env+0x53c/0x720
[ 1161.588425][T21190]  kobject_uevent+0x1f/0x30
[ 1161.592763][T21190]  __kobject_del+0xee/0x300
[ 1161.597101][T21190] page last free stack trace:
[ 1161.601613][T21190]  free_unref_page_prepare+0x83d/0x850
[ 1161.606908][T21190]  free_unref_page+0xb2/0x5c0
[ 1161.611429][T21190]  __free_pages+0x61/0xf0
[ 1161.615588][T21190]  __free_slab+0xce/0x1a0
[ 1161.619754][T21190]  __unfreeze_partials+0x165/0x1a0
[ 1161.624709][T21190]  put_cpu_partial+0xa9/0x100
[ 1161.629213][T21190]  __slab_free+0x1c8/0x280
[ 1161.633467][T21190]  ___cache_free+0xc6/0xd0
[ 1161.637717][T21190]  qlist_free_all+0xc5/0x140
[ 1161.642144][T21190]  kasan_quarantine_reduce+0x15a/0x180
[ 1161.647441][T21190]  __kasan_slab_alloc+0x24/0x80
[ 1161.652127][T21190]  slab_post_alloc_hook+0x53/0x2c0
[ 1161.657074][T21190]  kmem_cache_alloc+0x175/0x320
[ 1161.661765][T21190]  getname_flags+0xba/0x520
[ 1161.666100][T21190]  user_path_at_empty+0x2d/0x1a0
[ 1161.670872][T21190]  do_readlinkat+0x114/0x3a0
[ 1161.675302][T21190] 
[ 1161.677470][T21190] Memory state around the buggy address:
[ 1161.682948][T21190]  ffff88814a568f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1161.690840][T21190]  ffff88814a568f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1161.698735][T21190] >ffff88814a569000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1161.706655][T21190]                                                  ^
[ 1161.713146][T21190]  ffff88814a569080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1161.721043][T21190]  ffff88814a569100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1161.728936][T21190] ==================================================================
[ 1161.739281][T21190] Disabling lock debugging due to kernel taint
[ 1161.789541][T16969] EXT4-fs (loop2): unmounting filesystem.
[ 1161.795250][   T28] audit: type=1326 audit(1160.445:455817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2113f84690 code=0x7ffc0000
[ 1161.818620][   T28] audit: type=1326 audit(1160.445:455818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000
[ 1161.856155][   T28] audit: type=1326 audit(1160.445:455819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21167 comm="syz.4.6023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2113f85d29 code=0x7ffc0000