last executing test programs:

13.219003326s ago: executing program 1 (id=1240):
socket$kcm(0x10, 0x0, 0x0)
socket$inet(0xa, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'team_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x14}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000040)={'team0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="94000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000100000008000100", @ANYRES32=r4, @ANYBLOB="780002803c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r1, @ANYBLOB='8'], 0x94}, 0x1, 0xf000}, 0x0)

12.140528895s ago: executing program 4 (id=1246):
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000000)='./bus\x00', 0x490, &(0x7f0000000240)={[{@grpquota}, {@usrjquota_path={'usrjquota', 0x3d, './bus'}}, {@minixdf}]}, 0x1, 0x4fd, &(0x7f0000000ac0)="$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")
open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000080)=0x13)
socket$inet6_udp(0xa, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000002840)={0xff}, 0x0, 0x0)
r1 = syz_io_uring_setup(0xf3b, &(0x7f0000000380), &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x47ba, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000140)={0xff03})

11.615029237s ago: executing program 1 (id=1251):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x0, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000007"], 0x0}, 0x90)
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0x440000a0)
close(r4)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x10)
syz_emit_ethernet(0xe, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd"], 0x0)
r6 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x172f, 0x502, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

10.228805101s ago: executing program 4 (id=1255):
io_setup(0x0, &(0x7f0000000080))
mkdirat(0xffffffffffffffff, &(0x7f0000000240)='./file0/file0\x00', 0x14)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x8, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64(r0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa1000000000000070100"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00'}, 0x4e)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001580)={r3, r4, 0x25, 0x2, @val=@iter={&(0x7f0000001540)=@task, 0x10}}, 0x40)
syz_emit_ethernet(0xd2, &(0x7f0000000900)=ANY=[], 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r5, &(0x7f0000001b80)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/250, 0xfa}], 0x2}}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000001c40)=""/162, 0xa2}, {&(0x7f0000000240)}, {&(0x7f0000001680)=""/141, 0x8d}, {&(0x7f00000017c0)=""/112, 0x70}, {0x0}, {&(0x7f0000001600)=""/42, 0x2a}, {&(0x7f0000003080)=""/4096, 0x1000}], 0x7, &(0x7f0000004080)=""/4096, 0x1000}, 0x6}, {{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000018c0)=""/23, 0x17}, {&(0x7f0000001900)=""/223, 0xdf}, {&(0x7f0000001a00)=""/129, 0x81}], 0x3, &(0x7f0000001b00)=""/118, 0x76}, 0xc7}], 0x3, 0x34000, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f00000014c0)={'filter\x00', 0x4}, 0x68)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r6, 0x40405515, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16, @ANYBLOB="a787000000ff000000000b00000404000180"], 0x18}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0xe, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
read$FUSE(0xffffffffffffffff, &(0x7f00000077c0)={0x2020}, 0x2020)

7.790940561s ago: executing program 4 (id=1259):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x2018c80, &(0x7f00000000c0)={[{@gid}, {@nointegrity}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@errors_remount}, {@usrquota}, {@usrquota}, {@nointegrity, 0x0}, {@grpquota}, {@quota}, {@grpquota}, {@usrquota}, {@resize}, {@discard}, {@noquota}, {@noquota}]}, 0x1, 0x60f6, &(0x7f000000c4c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
ftruncate(0xffffffffffffffff, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

7.693428979s ago: executing program 3 (id=1260):
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000000fc0)=""/102400, 0x19000)
keyctl$instantiate(0xc, 0x0, 0x0, 0x2a, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x8, 0x3, 0x500, 0x148, 0xa, 0x148, 0x0, 0x10, 0x468, 0x2a8, 0x2a8, 0x468, 0x2a8, 0x3, 0x0, {[{{@ip={@local, @empty, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x120, 0x148, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'macvlan0\x00', {0x0, 0x0, 0x100, 0x1, 0xfffffffd, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00', 0x0}, {'pim6reg0\x00'}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@uncond, 0x0, 0x2c0, 0x320, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x0, 0x0, 'syz1\x00'}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x560)
socket$packet(0x11, 0x0, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000002540)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

6.544348283s ago: executing program 1 (id=1266):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./file1\x00', 0x810, &(0x7f0000000040), 0x1, 0x50f3, &(0x7f000000a2c0)="$eJzs3U+IVWUfB/Dnzp1x5lVw7isEtsoikGrh4CYioqtMUFF0y8VgBE4tgnThJEi0EMQW/Vt4S4paSK6kFsksjKA2LqQwArehYS7cKAaSi3Yac8957pz7HO+5d0ZtTD8fmTnnOb/zPOe5l7O43+uccwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACEEF74/bNDVfVT16bPnJtp7jywZebyvul1p0OodbbX8vqOrc++8ua2HS9OxA6zL2fLRqPfkFnX81ljVc/GhX69P6+HEMaSAer58pk1pVGLq3vKA1a6fnH30U17mxuPH27Xr146e7L80lkwsdITWCn5eXVh8Vxqdn6PJHt024VTr9Zzimb90xPuX3kRAMCSTLU6i+7H0fwjbre9P60n7WbSbift+AmhXWwsRzbuqn7z3JDWV2iezSwqjPedZ1LP3/9uu5X2T9pJ1FjCPHt3zSPNRL95ziX1lZonAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJ3kkbdHH6qqn7o2febcTHPngS0zl/dNrzsdQqOzvZaVa6vfP9z869utxw78uPmr4xeef6ye94vL0cLO4be48sRkCG8UKhfisBfXhtDqLXSa4cty4a3OynOxAAAAwN3k/s7vkW47i4NjPe1aJ03WOv+iLCxev7j76Ka9zY3HD7frVy+dPbn88Vp9xmvecLxuu7H4UysE4xh/0/EW63HXPaVxqqUjpnn+8fNTf1f1L+X/RnX+j++c/A8AAMDNkP/TcaoNyv/fvfbHJ1X9S/l/Q88hS/k/zjjm/5GwvPwPAAAAd7Lbnf+bpXGqDcr/4y+NfV3Vv5T/p4bL/6PFaceNv8YJ75oMYWrQ1AEAAIA+4v+7L361EPN69s1BmtefevTguarxSvm/OVz+H7ulrwoAAAC4GUe+2P5wVb2U/1vD5f/x2zprAAAAYCne+XDig6p6Kf/PDpf/V+fL/MqHrNNP8a8QDk2GMLGwMpcVfg7tp7sFAAAA4BaJOf3PT3f+ULVfKf/PVd//P97pIF7/33P/v9L1/4VCdte/J90YAAAAgHtR+Xr+eHv87MkF/Z6/P+z1/w/87+CrVccv5f/9w+X/enF5K5//BwAAAMvwX3v+3/bSONUG3f//vo/e/aWqfyn/t4fL/3G5pvjyTtRq2fvz3mQI6xdW8rsJfhMPtyspzI8VCh2tpMe22CMvzI8XCh1zSY/NkyE8uLCyPyn8PxbaSeHK2rxwJCmcjoX8fOgWjiWFE/FM+3xtPt208H0s5BdYzMcrKNZ0L4lIelzt12OhcMMeZ7sHBwAAuKfE8Jxn2bHeZkij7Hxt0A6rB+0wMmiH+qAdRpMd0h37bQ+zvYW4vX1m49Ke/39kuPwf34pV2aLf9f8hXv+fP9ewe/3/bCw0ksJ8LLTSOwa04jGysPtxPEajlfe4sr5bAAAAgLta/F6gvsLzAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP5h715j5KruA4CffY734fVCUoXQKNkkNY6beL22gUQtVdaUqhEpzbqhoCqi2NhrsnjBjm1KjEJkbCIaIShtkJIPRRhFUc0HqBWISAoIFymOUHlEVEUBBAqtIQoipSQRaYIUqtl7z+ydc3cefqzx0t9P8s6Z+Z/nnYfn3HvnXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/h4Feu+dtm8Ud/e96zL1w8fsWetRe/et15pz4ZwsTM4x1ZuKP/xtvHf373uffseWD1HfcdPv+jvXm5PB4Gqn868zs3xFoPLw7h/o4QutPAisEs0JPfH4z1vW8whFPCbKBWYrI/K5E2HL7fF8K+MBuoVfW9vhAGC4ELn3rk4Zuridv6QlgaQqikbTxfydroSwNn9GaB/jSwtTsL/OqtTC3w3c4sAMcsvhlqL/oDE/UZhucu1+D113PcOvb2SofXFRPDjfP9bO08d6qgN31g4pietlJ1zIvS2+Ogd9sCeLeVtvOtnrbiF6n8G8pbs6FK6Nw0uXnD1dM74yOdYXS0q1FN8/Q8P/P6lzYeSXrBvA5jB4aPy+vwlieW3t21/ILH71ux9OX9H9v7yrF280eFTVpMz7dKyF9zC+Z5jMZ9niyAt1/pW9KIL10hhM2f/73PNIuX5v/Dzef/8eUcbzvrcsda3xzK5ubxkcGYeG0om5sDAADAgrEQ9ppuHX3oE83qK83/R9o7/h8P+eeT+Wy0B0MYn0nsXRLCaTOPZ4G7YnOXLQnhgzOpifrA2iRwMIT3ziSW16pKSiyKJUaSwE+G8sB4EjgUAxNJ4FsxcGsSuCEGDiSBjTFwMAmcGwNhqn4cvz+Uj6PtQF8MrM824oF4FsIvhmJrybZ6rlYVAADAcZLPDnvq7xbOdTjWDHF6eaCvVYZ4BnbDDJWkhnQGW5tWNayhu1UNna1qqI17d/Phl2ruaFVz6TSMjvoMt//ybz4bmijN/8eaz/8rc3Sko3T8P4R1M39j7s48Ml2Lr5+oywAAAAAcg4H/ffGbzeKl+f94e+f/x30iXYXM4bG4G2LLkhDG6gNZtX9YDmRHvQfyAAAAACwEtePxtWPhU/ltdop2Op8u5584wvzxwP/4nPl7Dz64vll/S/P/ifbO/++vv806cSj24mtLQlhUCPwg9rIamDESAz/+ZH0gH/+huAFuilXlJybUqropllgfA2NJYF+jEj+slTitPpA/WbXG99bGMZWXKAQAAADghIu7A+Jx+Xj+/4d+s/qaZuVK8//1R3b+/8w8uHR6//RACCu7Q+hKfxjwWH+2MGAMDHbkiYf6s7q60qqu7w/hnOrA0qpezNf/707XGHyqL6sqBk770P7Xz6gmvtkXwspi4OnP3XlWNbEzCdQa/8u+ED5QHW3a+HcWZY33pI1/fVEI7y8EalVdtiiEamO9aVWPVPLrGKRV/XMlhHcVArWqzq6EsCsAsEDF/0o3FR/csevaLRumpye3z2Mi7sPvC5unpidHN26d3lRp0KdNSZ/rljG6vjymdq9881y+RNFF964bbCdd+53gWLGtfD9+6cTB/H78LtQzM87VPXV316RD/siHy02EwjepRkPunOch9xcrmX0SS/XH/L1hICy6esfk9tEvbti5c/uq7G+72Vdnf+NhpmxbrUq3Vf9cfWvj5dFwtazE0W6rZcVKVu68ctvKHbuuXTF15YbLJy+fvGrV2avHzhxbM/bxM1dWRzWW/W0x1GVzVZ0M9a072xzXcRzq6d2FSk7Ep4aEhMRCS2wdWNb0/+TS/H9b8/l//NSJn/z5+gyNjv8Px8P82eOzh/nXx8C+do//Dzc6ml87MWAkCeyOgd0O8wMAAPDOECf5cW9m3Cv90+XfeblZudL8f3d7v/8/Tuv/15auP7/RMv/LY4mxRuv/p8v819b/391o/f90mf/a+v/73ob1/6+uBZJN8gvr/wMAAO8EJ279/5bL+6cXCChlaLm8f3qBgFKGlsv4t3uBgCNe///5//yr/w5NlOb/t7Y3/7dwPwAAAJw8vvxn1/xOs3hp/r+vvfn/iV//LzQ6/3+kUWCi0cKA1v8DAABggWq0/t/wjf2XNitXmv8faG/+H0+76KzLHWt9cyhb0y6ka9q9NlT7yQAAAAAsDJ1hdLSnzbx1K6OuPfo2n8mXAm2WLnrxTw4f2fn/B9ub/9f9LuOWJ5be3bX8gsffvG/F0pf3f2zvK7PH/wEAAID50+5+CQAAAAAAAAAAAAAA4O334n/sWdMsXvr9f1g383ij3//H6/7F3xe8uy53rLX1+n/5/Qs/fc+umSULHxsK4cPFwJY9W04J+bX5lxUDD1+y/D3VxJ60xIMvnPtSNXFpGvjUilPfqCbOSQLr4yKJ700D8aqKbyxOAnF5xX9PA3F7HEgDvXngq4uzcXSk2+qng9m26ki31bODISwpBGrb6v7BrI2OdIC3JYHaAL+QBuIA/zwPdKa9umcg61UMDMaidwxkvQIA4KQVvwX2hM1T05Nj8St8vD29u/42qluy7PpytR1tNv9cvjTZRfeuG2wn3ZV+F5291nhPqFSHsKr0dbWYpWNmlMenlhab7t0NhtxqtbfOBuVSR7rpehuPqC8b0ejGrdObeloOfE3rLKu7W2ZZVZrsFLN0zmzSNmppoy9tjKjNbdNGl+P9zjA62pXk+oMYHA51Wr0i2v29fnGdv0avgmKeqw7v/VWz+krz/+H25v+V4rjeyC8GsDteWe/vlljmHwAAAObXV9f++hvx32dvfPTpZnlL8/+R9ub/cQ9Wfig429txMF7/f++SEGYurT+cBe6KzV22JIQPzqQmYonsgvrnxxJjWeCuuMNkeSyxfqK+qkUxcCAJ/GQoDxxMAodiIN9LsT/ku3L+fiiEs2ZS6+pLbIslhpPAZ2JgJAmMxsBYElgcA+NJ4NXFeWAiCfxbDISp+m117+J8WwEAAByJfJ7VU383pPO8A92tMnS0ytDfKkNnqwyVVhkajSLe/3bM0JOcvNJRyNST1tqX1FLKEC+Gf8T9KmUIP6zPmRYsNR3PP6idb9BRn+GBT3RXQhOl+f9Ye/P//vrbrPVDcf4/e/2/LPCD2L2vxVPHR2Lgx5+sD+Q7Bg7Fye5Ntaom8hL5pP2mWGI8BkaSwLYYGE8C69flgX3vqQ/kM+1a43trjU/lJQoBAAAAOOHiDoK4mybO/+/Y8ZWBZuVK8//x9ub/sb2BYmM3xFoPLw7h/o7Z3tQCKwazQNyPMRh/Hv++wRBOKezgqJWY7M9K9CYNh+/3Zb9Q702r+l5f9uODeP/Cpx55+OZq4ra+EJYW9r7U2ni+krXRlwbO6M0C/Wlga3cWiHt+aoHvdmYBOGa1vYLxBZWf6lIzPHe5Bq+/d8o1QdPhlfaBzpFvrt9czZfSDtd8n2rNkT1tTfffctyU3h4HvdsW4rtt2Lut+EUq/4by1myoEjo3TW7ecPX0zvhI8ZesJfP0PBd/pdpO+ji8DncffW9bq6QdGEs+PsbmLjf367AjVnfLE0vv7lp+weP3rVj68v6P7X2l7W40EH8o/Mh1/zr4o8LmnW+VkL/mFtznyYTPk4X438CIpy2EsO7Vr9/ULF6a/0+0N//vTm5n/DpuzB1LQvhIYeM+Fjf/Hy/JPgcLgexT8l3lQHbI/b+GGn5yAgAAwPFW291R218wld9mJ4Sn8+Ry/okjzB/3V4zPmb/dfvf/9SVLm8VL8//1zef/i5JuOv7v+D/zxPH/OZ3su6IXpQ/sPqZd0aXqmBeO/8/pZH+3Of4/J8f/Hf+fi+P/LTj+P6eT/WkrfUva5ktXCOHlP3ro2Wbx0vx/W3vzf+v/zb1oX239v/WN1v/b1mj9v93W/wMAAOZVg4Xm0nleafW+UoZ09b5ShpYLBLZcYtD6f0e8/t9Lpz//m9BEaf6/u735f3w5DBRbXyjr/42sa1DVrTGwzcKAAAAAnIwa7SAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg7fXAP/zPpmbxR3973rMvXDx+xZ61F7963XmnPhnC1MzjHVm4o//G28d/fve59+x5YPUd9x0+/6OVvFxPfvu7dbljrW8OhbCv8MhgTLw2VL0zG7jw0/fs6q4mHhsK4cPFwJY9W06pJr41FMKyYuDhS5a/p5rYk5Z48IVzX6omLk0Dn1px6hvVxDl5oCPt7j8uzrrbkXb35sUhLCkEat29YnF9VbU2/jQPdKZt/NNg1kYMDMai3xjM2oiB6VhialEIK7tD6EqrerSSVdWVVvUvlayqrrSqL1dCOCeE0J1W9UJvVlV3OvIne7OqYuC0D+1//YxqYl9vCCuLgac/d+dZ1cQXkkCt8b/oDeED1ZdM2vi3e7LGe9LGb+sJ4f0hhN60xC+7sxK9aYkXu0N4VyFQa/zz3SHsCrwjxA+fuk+0Hbuu3bJhenpy+zwmevO2+sLmqenJ0Y1bpzdVkj410lFIv3X90Y/9ude/tLF6e9G96wbbSXfn5Xpmury6p+7umpO997Ff/cVKZp+PUv0xf28YCIuu3jG5ffSLG3bu3L4q+9tu9tXZ3648mm2rVQtlWy0rVrJy55XbVu7Yde2KqSs3XD55+eRVq85ePXbm2Jqxj5+5sjqqsezv8RjqnSd+qKd3Fyo5ER8AEhISCy3RWffpNnayf5CXvujPdrQnVGY+oEvTimKWjplRHo9Brz3KER/N95SWI1pVmjiUsqyeI8v19VnWlCYTs7X0ZVlmvteVJofFxjpnNmm83xlGR7sabYfh+rvFzfuzY9i8z+Sbrt00AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/HDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFXbgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwA8cCAAAAAML8rcPo2QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEsBAAD//+erI4o=")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='btrfs_space_reservation\x00', r0}, 0x10)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
r2 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r2, r1, 0x0, 0x80000000)

5.492847929s ago: executing program 3 (id=1271):
syz_emit_ethernet(0x66, &(0x7f0000000340)={@broadcast, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0xb, 0x0, 0x0, 0x4, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x0, {{}, 0x3580}}}}}}}, 0x0)

4.865672531s ago: executing program 4 (id=1272):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file1\x00', 0x210008, &(0x7f0000001040)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc2d, &(0x7f00000001c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r1=>0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={0x0, &(0x7f00000000c0)=""/220, 0x0, 0xdc}, 0x20)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000}])

4.608977342s ago: executing program 3 (id=1275):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000400)=ANY=[@ANYBLOB="050000000000000003"])

4.316651516s ago: executing program 3 (id=1277):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
sendmmsg(r2, &(0x7f0000007b80)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000003c0)="b6", 0x1}], 0x1}}], 0x1, 0x4008014)
open(&(0x7f0000000140)='./file1\x00', 0x10f0c2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000018c0), 0x0, &(0x7f0000001b40)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}})

4.243430002s ago: executing program 0 (id=1278):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

4.161011939s ago: executing program 0 (id=1279):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect$802154_dgram(r0, &(0x7f0000000000)={0x2, @long}, 0x63)

3.890877231s ago: executing program 0 (id=1282):
r0 = socket$inet6(0xa, 0x0, 0x88)
getsockopt$inet6_int(r0, 0x29, 0x1, 0x0, &(0x7f0000002600))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0xbb}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$packet(0x11, 0x2, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0)
r3 = dup(r2)
ioctl$EVIOCGPROP(r3, 0x40044591, &(0x7f0000000180)=""/87)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(0x0, 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
signalfd4(r4, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f0000000180), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')

3.614754144s ago: executing program 1 (id=1284):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="05a300000000000000000d000000040003"], 0x1c}}, 0x0)

3.476885925s ago: executing program 2 (id=1285):
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000140))
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
syz_open_dev$mouse(&(0x7f0000000680), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
write$char_usb(r1, &(0x7f0000000040)="e2", 0x918)

3.318458188s ago: executing program 3 (id=1286):
syz_usb_connect(0x0, 0x36, &(0x7f00000005c0)=ANY=[@ANYBLOB="12010000276ca640b40b040a91a30102030109022400010000000009040000021033700009050402000000000009058102"], 0x0)

3.220409526s ago: executing program 4 (id=1287):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000640000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x17ba, &(0x7f00000004c0))
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, 0x0, 0x0)

2.994626984s ago: executing program 2 (id=1288):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
gettid()
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000e9ff20850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
timer_create(0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)

2.707000218s ago: executing program 1 (id=1289):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000002c0)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYRES64=0x0], 0x5, 0x61fd, &(0x7f000000c700)="$eJzs3UuPHFfZB/Cn+jaXvEmsLKK8EUKTC5cQ4mswhgCJF7BgwwJ5i2w5k8jCAWQb5EQWnmg2LPgQICSWCLFkxQfIgi07PgCWbCRQVilUM+eMayo97nEm09Uz5/eTxlVPn6rpU/539WWqqk8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPHDH/z4TBURl3+VbjgR8X8xjBhErDT1WkSsrJ3Iy48i4rnYao5nI2K8FNGsv/XP0xGvR8RHT6XbIjbO7rMf3//zP/7wkyd+9Pc/jU/99y+3hm/stdzt27/9z1/vHmSLAQAAoDx1XddV+pj/fPp8P+i7UwDAXOTX/zrJt6vVarVarT5+dVs93d12EREb7XWa9wwOxwPAEbMRH/fdBXok/6KNIuKJvjsBLLSq7w5wKO4/uHO1SvlW7deDte32fC7Irvw3qq318vrTprN0zzGZ1+NrM4bxzB79WZlTHxZJzn/Qzf/ydvskLXfY+c/LXvlPti99Kk7Of9jNv+P45D+Ymn+pcv6jx8p/KH8AAAAAAFhg+e//J3o+/rt08E3Zl0cd/12bUx8AAAAAAAAA4PN20PH/dnTG/8vnARj/DwAAAPrXfFZv/O6ph7ft9V1sze2XqognO8sDZanSxTKrfXcEAAAAAAAAAAAAAEoy2j6H91IVMY6IJ1dX67puftq69eM66PpHXenbDyXr+0keAAC2ffRU51r+KmI5Ii6l7/obr66u1vXyymq9Wq8s5fezk6XleqX1uTZPm9uWJvt4Qzya1M0vW26t1zbr8/Ks9u7va+5rUg/30bH56DFwAIiI7Vej+16Rjpm6fjr6fpfD0WD/P37s/+xH349TAAAA4PDVdV1XaZi/59Mx/0HfnQIA5iK//nePC6jVarVarT5+dVs93d12EREb7XWa9wyG4weAI2YjPu67C/RI/kUbRcRzfXcCWGhV3x3gUNx/cOdqlfKt2q8HaXz3fC7Irvw3qq318vrTprN0zzGZ1+NrM4bxzB79eXZOfVgkOf9BN//L2+2TtNxh5z8ve+XfbOeJHvrTt/sPLo6abIfd/DuOT/6DqfmXKu//o8fKfyh/AAAAAABYYPnv/ycW6vjv5LNuzkyPOv67to/1fTcCAAAAAAAAAIvo/oM7V/N1r/n4/xemLOf6z+Mp51/Jv0g5/0En/692lhu25u9dfJj/vx/cufrHW//6/zzdb/5LeaZKj6wqPSKqdE/VKE0PsnWftjkeTpp7GleD4Sid81OP34lrcT3W4/SuZQfp/+Nh+5ld7U1Px1vt9XC7/eyu9tFOe17/3K72cTrTqV7J7Sfjavw8rsfbW+1N29KM7V+e0V7PaM/5D+3/Rcr5j1o/Tf6rqb3qTBv3Phx8ar9vT6fdz1vXvvib04e/OTNtxnBn29qa7Xuxh/5s/Z88MYlf3ly/cfL2lVu3bpyJNNl169lIk89Zzn+cfnae/1/abs/P++399d6Hk8fOf1FsxmjP/F9qzTfb+8qc+9aHnP8k/eT8307t0/f/o5z/3vv/qz30BwAAAAAAAAAAAAAAAB6lruutS0Tfiojz6fof33EPAGXIr/91km+fVz2c8/2p1Ue8rhasP3OtP6kXqz9q9VGs2+rp3mwXEfG39jrNe4ZfT/tlAMAi+yQi/tl3J+iN/AuWv++vmb7cd2eAubr5/gc/vXL9+vqNm333BAAAAAAAAAD4rPL4n2ut8Z9fruv6bme5XeO/Xoy1g47/OcozOwOM7jFQ9fDxt+lRNgeT4aA13PgLsdf43+OduUeN/z2acX/jGe2TGe1LM9qXZ7RPvdCjJef/Qmu885cj4vnO8OsljP/aHfO+BDn/F1uP5yb/r3SWa+df//4o5z/Ylf+pW+/94tTN9z947dp7V95df3f9Z+fOnDl97vz5CxcunHrn2vX109v/9tjjw5Xzz2NfOw+0LDn/nLn8y5Lz/1Kq5V+WnP+XUy3/suT88/s9+Zcl558/+8i/LDn/V1It/7Lk/L+WavmXJef/aqrlX5ac/9dTLf+y5PxfS7X8y5LzP5lq+Zcl538q1fvMf+Ww+8V85PzzES77f1ly/vnMBvmXJed/NtXyL0vO/1yq5V+WnP/rqZZ/WXL+30i1/MuS8z+favmXJef/zVTLvyw5/wupln9Zcv7fSrX8y5Lz/3aq5V+WnP8bqZZ/WXL+30m1/MuS8/9uquVflpz/91It/7Lk/N9MtfzL8vD7/82YOYozKxGxAN04djN9PzMBAAAAAAAAAAAAAF3zOJ24720EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/sQMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYUdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7N1bjFx3fQfws1evHZIYCKmTGrJxTAiJk13biS+0KSZcG24lEAq9YLvetVnwDa9dAo1ko0CJhFFRRdvw0BYQavNSEVU80ApQHlCrSpWgfaAviKoSqqIqoICERCvIVnPO///fmdkzM7vr8WbmnM9Hin/e2TNzzpz5z+x+1/nuAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQLNbXz//6ZEsyxr/5X9szbIXNf6+eXprftlrXugjBAAAAK7UL/M/n7s+XXBoFVdq2uafX/Gdry0tLS1l7xv7s4nPLy2lT0xn2cSmLMs/Fz31X+8fad4meCybGhlt+ni0x+7Henx+vMfnJ3p8frLH5zf1+PxUj8+vOAErbC5+HpPf2M78r1uLU5rdkE3kn9tZcq3HRjaNjsaf5eRG8ussTRzPFrKT2Xw227J9se1Ivv03bm3s6y1Z3Ndo0762N1bITx49Fo9hJJzjnS37Wr7N6Eevy6Z/+pNHj/3N+WdvKps9T0PL7RXHeceOxnF+MlxSHOtItimdk3ico03Hub3kMRlrOc6R/HqNv7cf53OrPM6x5cPcUO2P+VQ2mv/9u/l5Gm/+sV46T9vDZT+/LcuyS8uH3b7Nin1lo9mWlktGlx+fqWJFNm6jsZReko2vaZ3euop12phzO1vXaftzIj7+t4brjXc4huaH6UefmGx63H+xtJ51GjXudafnSvsa7PdzZVDWYFwX383v9OOla3BnuP+P3t55DZaunZI1mO530xrc0WsNjk6O5cecHoSR/DrLa3B3y/Zj+Z5G8vnM7d3X4Mz5U2dnFj/28bsXTh09MX9i/vTe3btn9+7bd+DAgZnjCyfnZ4s/13m2B9+WbDQ9B3aEcxefA69q27Z5qS59aXLF6+96n4dTXZ6HW9u27ffzcLz9zo1szBNy5ZounhvvaZz0qcujWYfnWP743Hnlz8N0v5ueh+NNz8PSryklz8PxVTwPG9ucvXN137OMN/1XdgydvxZc2Rrc2rQG278faV+D/f5+ZFDW4FRYF9+/s/PXgu3heB/ftdbvR8ZWrMF0d8NrT+OS9P3+1IF8lK3LmxufuGYyu7A4f+6eR46eP39udxbGhnhp01ppX69bmu5TtmK9jq55vR5aeMXjN5dcvjWcq6m7G39MdXysGtvce0/3xyr/6lZ+Plsu3ZOF0WcbfT7Lvpo3zudkln3h25946JuPfuH1Hc9nI29+cubKvxdPubTp9Xeiw+tvzP3PF/tLN/XY2MR48fwdS2dnouX1uPWhGs9fu0byfT83s7rX44nw30a/Ht/Q5fV4W9u2/X49nmi/c/H1eKTXTzuuTPvjORXWycnZ7q/HjW227Vnrmhzv+np8W5gj4fy/OiSFlIua1k6ndZv2NT4+Ee7XeNxD6zrd27L9RMhmjX09uWd96/SO24rbGkv3btlGrdPptm37vU7Tz746rdORXj99W5/2x3MqrIsb9nZfp41tnr73yl87N8e/Nr12TvZagxNjk41jnkiLMH+9z5Y2xzV4T3YsO5OdzObyz07m62kk39eu+1a3BifDfxv9Wrmtyxq8o23bfq/B9HWs09obGV955/ug/fGcCuviifu6r8HGNm/Y39/vXe8Il6Rtmr53bf/5Wqefed3cdpqu1loZD8f57f3dfzbb2ObkgbXmzO7n6a5wyTUl56n9+dvpOTWXrfY8jVzxc6pxnM8e6HyeGsfT2ObzB1e5ng5lWXbxIw/kP+8N/77y9xe+97WWf3cp+zedix954MfXHv+ntRw/AMPv+WJsKb7WNf3L1Gr+/R8AAAAYCjH3j4aZyP8AAABQGTH3x/8rPJH/AQAAoDJi7h8PM6lJ/t/2hmcXnr+YpWb+UhA/n07Dg8V2seM6Gz6eXlrWuPyBr8z/7B8vrm7fo1mW/eLBPyrdftuD8bgK0+E4n3pj6+UrfO3uVe37yMMX036b++tfDLcf789ql0FZBXc2y7JvXP/ZfD/T77+cz6cfPJLPhy49/lhjm+cOFh/H6z/z0mL7vwzl30PHj7Zc/5lwHn4Y5uxby89HvN5XL796+/73Lu8vXm9kx3X53X7iA8XthorspuyxYvt4njsd/zc/8+RXG1d45JXlx39xtPz4nwy3+5Uw//flxfbNj0Hj43i9T4Xjj/uL17vny98qO/7sqU8X2599U7HdkTDj/u8IH+9807MLzefrkZGjLfcre3OxXdz/7Pf+JP98vL14++3HP3X4csv5aF8fT/97cTszbdvHy+N+on9o23/jdprXZ9z/k398pOU899r/Uw898/LG7bbv/6627c5+5M58/8u31/obm/7qU58t3V88nkN/d7bl/hx6V3geh/0/8YGwHsPn/++p4vbaf7vCkXe1vv7E7b+49WLL/Yne8tNi/0+99kQ+N01t3nLNi6697tItjXOXZd/dVNxet/3H3wHRfPxfurE4H/E4Yke/ff+dxP2f++iu02cWLyzMpbP66PX57855W3E88XivD6+t7R8fPnP+g/PnpmenZ7Nsurq/Qm/dvhzmj4txaa3Xv/Ph8Hje/Bff2HL7v30mXv4f7ykuv/zW4uvWq8J2nwuXbw2P35Xu/4lbb8yf3yNPFx+39Nj7YPvO/zmwqg3D/W//viCu97Mv+2B+Hhqfy79uxOf1FR7/D+aK2/l6OK9L4Tcz77hxeX/N28ffjXD53cXz/YrPX3iZi4/r34bH++0/LG4/Hle8vz8I38d8a1vr611cH1+/ONp++/lv8bgUXk+yS8Xn41bxfF9+7sbSw4u/hyS7dFP+8Z+m27lpTXezk8WPLc6cXDh94ZGZ8/OL52cWP/bxw6fOXDh9/nD+uzwPf6jX9Zdfn7bkr09z8/vuzfJXqzPFuMpe6OM/+/Cxuf2zt8/NHz964fj5h8/OnztxbHHx2Pzc4u1Hjx+f/2iv6y/M3b97z8G9+/fsOrEwd/+Bgwf3Hty1cPpM4zCKg+ph3+yHd50+dzi/yuL99x7cfd99987uOnVmbv7+/bOzuy70un7+tWlX49p/uOvc/Mmj5xdOze9aXPj4/P27D+7bt6fnbwM8dfb44vTMuQunx7LF+XMzxX2ZPp9f3Pja1+v6VNPifxbfz7YbKX4RX/bOu/al38/a8JVPdLypYpO2XyD6bPhdNP/y4rMHVvNxzP0TYSY1yf8AAABQBzH3T4aZyP8AAABQGTH3bwozkf8BAACgMmLunwozqUn+r1z/f9vFVe1f/7+0/599Tv9f/78O/f939+7/N5z46zM/25j+f/F6of/fH/3p/z8YPtL/1//X/9f/1/9fc/9/5oL+P8mg9f9j7t+cZbXM/wAAAFAHMfdvCTOR/wEAAKAyYu6/JsxE/gcAAIDKiLn/RWEmNcn/+v/6/4PR///va+Ox6/8vX0//v6D/r/+/Ft7/vzv9/x70/2eyevX/L/Xz+PX/9f9ZadD6/zH3XxtmUpP8DwAAAHUQc/91YSbyPwAAAFRGzP3Xh5nI/wAAAFAZMfdvDTOpSf7X/9f/H4z+/zL9/+Xr6f8X9P/1/9dC/787/f8e9P+9/7/+v/4/fTVo/f+Y+18cZlKT/A8AAAB1EHP/S8JM5H8AAAAYPOPru1rM/S8NM1mR/9e5AwAAAOAFF3P/DVlbEbwm//6v/6//r/+v/6//X77/1ff/xzL9/8Gh/9+d/n8P+v9V6/+PZ/r/+v+8oAat/5/n/mwqe1mYSU3yPwAAANRBzP03hpnI/wAAAFAZMff/SpiJ/A8AAACVEXP/tjCTmuR//f+r3f/frP+v/6//H9dlZfv/3v9/kAxL/3+yw+X6//r/+v/De/xD0v9/zUMdrq//z9UwaP3/mPtvCjOpSf4HAACAOoi5/+YwE/kfAAAAKiPm/l8NM5H/AQAAoDJi7t8eZlKT/K//7/3/9f/1//X/y/ev/z+chqX/34n+v/6//v/wHv+Q9P870v/nahi0/n/M/S8PM6lJ/gcAAIA6iLn/FWEm8j8AAABURsz9t4SZyP8AAABQGTH3T4eZ1CT/6//r/+v/6//r/5fvX/9/OOn/d6f/34P+v/6//r/+P301aP3/mPtvDTOpSf4HAACAOoi5f0eYifwPAAAAlRFz/21hJvI/AAAAVEbM/TvDTGqS//X/9f/1//X/9f/L96//P5z0/7vT/+9B/1//X/9f/5++GrT+f8z9rwwzqUn+BwAAgDqIuf/2MBP5HwAAACoj5v5XhZnI/wAAAFAZMfffEWZSk/yv/6//Pxj9/1vSsev/L19P/7+g/6//vxaV6/9n+v+Z/n+i/z/Yx6//r//PSoPW/4+5/9VhJjXJ/wAAAFAHMfffGWYi/wMAAEBlxNx/V5iJ/A8AAACVEXP/rjCTmuR//X/9/8Ho/y/T/1++3tXv/990X/Plg9L/b6996f/r/69F5fr/3v8/p/9fGJT+f9n3PZn+v/6//j8lBq3/H3P/3WEmNcn/AAAAUAcx998TZiL/AwAAQGXE3D8TZiL/AwAAQGXE3D8bZlK5/D9deqn+v/6//n+d+//reP//W5Zv1/v/50czrv8/WPT/u9P/70H/3/v/v+D9/wn9fypl0Pr/MffvDjOpXP4HAACA+oq5f0+YifwPAAAAlRFz/94wE/kfAAAAKiPm/nvDTGqS//X/9f/1//X/B+39/4er/+/9/weN/n93/e//x7uo/6//r//v/f/1/1lp0Pr/MfffF2ZSk/wPAAAAdRBz/74wE/kfAAAAKiPm/v1hJvI/AAAAVEbM/QfCTGqS//X/9f/1//X/9f/L96//P5z0/7vz/v896P/r/+v/6//TV4PW/4+5/2CYSU3yPwAAANRBzP2vCTOR/wEAAKAyYu7/tTAT+R8AAAAqI+b+Xw8zqUn+1//X/9f/1//X/y/fv/7/cNL/707/vwf9f/1//X/9f/pq0Pr/MfffH2ZSk/wPAAAAdRBz/2+Emcj/AAAAUBkx9782zET+BwAAgMqIuf9QmElN8r/+v/6//r/+v/5/+f7X1f+fyDrS/98Y+v/dNff/N3fbUP9f/1//X/9f/58+GLT+f8z9rwszqUn+BwAAgDqIuf+BMBP5HwAAACoj5v7Xh5nI/wAAAFAZMfe/IcykJvlf/1//X/9f/1//v3z/3v9/OOn/d+f9/3vQ/9f/1//X/6evBq3/H3P/G8NMapL/AQAAoA5i7n9TmIn8DwAAAJURc/+bw0zkfwAAAKiMmPvfEmZSk/yv/6//r/+v/6//X75//f/hpP/fnf5/D/r/+v/6//r/rN/UyosGrf8fc/9vth9wTfI/AAAA1EHM/Q+Gmcj/AAAAUBkx9781zET+BwAAgMqIuf9tYSY1yf/6//r/+v/6//r/5fvX/x9O+v/dDVn//5fXhcv1/wv6/4N9/MPV/1/a1H59/X+uhkHr/8fc//Ywk5rkfwAAAKiDmPvfEWYi/wMAAEBlxNz/zjAT+R8AAAAqI+b+3wozqUn+1/9vHMdye1n/X/8/v0D/X/9f/39o6f93N2T9f+//30b/f7CPf7j6/yvp/3M1DFr/P+b+d4WZ1CT/AwAAQB3E3P9QmIn8DwAAAJURc/+7w0zkfwAAAKiMmPvfE2ZSk/yv/+/9//X/9f/1/8v3r/8/nPT/u9P/L5feCV3/X/9f/1//n74atP5/zP0Ph5nUJP8DAABAHcTc/94wE/kfAAAAKiPm/t8OM5H/AQAAoDJi7n9fmElN8r/+/7D0/6f1//X/9f/b7o/+v/5/Gf3/7vT/e9D/1/9f7/Fv0v/X/6fMoPX/Y+5/f5hJTfI/AAAA1EHM/b8TZiL/AwAAQGXE3P+7YSbyPwAAAFRGzP2/F2ZSk/yv/z8s/X/v/5/p/+v/t90f/X/9/zIb1/+Przz6//r/+v9Rrfv/nd7//+fhQdX/1/+vqUHr/8fc//thJjXJ/wAAAFAHMfd/IMxE/gcAAIChUPb/ZLeLuf9wmIn8DwAAAJURc/+RMJOa5H/9f/1//f8B7f//+Y5//f533nFkt/6//r/+/5ps6Pv/N578637//82ll+r/6//r/w/v8Xv/f/1/Vhq0/n/M/UfDTGqS/wEAAKAOYu7/gzAT+R8AAAAqI+b+Y2Em8j8AAABURsz9c2EmNcn/+v/6//r/A9r/H+L3/4/nQ/+/Vd/6//FFV/+/1Ib2/9+73BP3/v9r7f9Pll6q/6//P8zHr/+v/89Kg9b/j7l/PsykJvkfAAAA6iDk/tHjxVz+hPwPAAAAlRFz/4kwE/kfAAAAKiPm/g+GmdQk/+v/6//r/+v/e///8v0PbP/f+/93pf+/wubmDwan/19O/1//f5iPX/9f/5+VBq3/H3P/QphJTfI/AAAA1EHM/R8KM5H/AQAAoDJi7v9wmIn8DwAAAJURc//JMOtG//+F7P8vlfb/m1eh/r/+v/6//r/+/9ro/3en/9+D/r/+v/6//j99NWj9/5j7T4WZ+Pd/AAD4f/buo1nS+rrj+B08hFu8AC+8wWu/BBaw8sJeu7ywq+yFXeXyAmxjnG3AOeKcA7aVAwogIZRQTqCEhLJQzlkoI1VdFZpzzk09T9++0z336f/5fDbHHmnUDZ4C/8R86w8wjNz9N8Ut9j8AAAAMI3f/zXGL/Q8AAADDyN3/K3FLk/2v//f+/4r9/61Xb0v/f4P+/2Kfr//X/49M/z9N/7+E/l//r//X/7NWc+v/c/f/atzSZP8DAABAB7n7fy1usf8BAABgGLn7b4lb7H8AAAAYRu7+X49bmuz/I/3/uZ2e/X9mvPp/7//r//X/+v8td3n7/zue+Cuf/l//r/8P+n/9v/6fo+bW/+fuvzVuabL/AQAAoIPc/b8Rt9j/AAAAMIzc/b8Zt9j/AAAAMIzc/b8VtzTZ/97/9/7/Rfr/n9pw/7+7o//X/+v/68+q/n99vP8/rVP/f8sj19702H0/cv8qn7+p/v/8/n++/n+Dzvr76//1/xw3t/4/d/9vxy1N9j8AAAB0kLv/d+IW+x8AAACGkbv/d+MW+x8AAACGkbv/9+KWJvtf/6//9/6//l//v/jz9f/bSf8/rVP/f5rP9/6//l//r/9nvebW/+fu//24pcn+BwAAgA5y9/9B3GL/AwAAwDBy998Wt9j/AAAAMIzc/bfHLU32v/5f/6//1//r/xd/vv5/O+n/p+n/l9D/6//1//p/1mpu/X/u/jvilib7HwAAADrI3f+HcYv9DwAAAMPI3f9HcYv9DwAAAMPI3f/HcUuT/a//1//r//X/+v/Fn6//3076/2n6/yX0/5faz1+p/9f/6/85aMX+//GJv2yvpf/P3f8ncUuT/Q8AAAAd5O7/07jF/gcAAIBh5O7/s7jF/gcAAIBh5O7/87ilyf7X/+v/9f/6f/3/4s/X/28n/f+0g/3/FVP/xk33/+fOL/xh/f/W9//e/9f/6/85ZG7v/+fu/4u4pcn+BwAAgA5y9/9l3GL/AwAAwDBy9/9V3GL/AwAAwDBy9/913NJk/2+y/z/a8B6l/9f/7/fzV9d31//v/7zt6f+vOvTjHfr/+w98P/3/vOj/p3n/fwn9v/5f/6//Z63m1v/n7v+buKXJ/gcAAIAOcvffGbfY/wAAADCM3P1/G7fY/wAAADCM3P1/F7c02f+L+//9f937/yej/z/8/b3/v/jXx7r6//xP3HT//4Qtfv//Ru//96T/n6b/X0L/r/8/w/5/b+9y9/+H/76+pP/fXfb5+n8WWVP/v7eu/j93/9/HLU32PwAAAHSQu/8f4hb7HwAAAIaRu/8f4xb7HwAAAIaRu/+f4pYm+3+T7/8vo//X/+v/R3n//7CZ9P8bff9/57L3/+f1/yek/5+m/19C/6//9/6/9/9ZqzX1/zvr6v9z9/9z3NJk/wMAAEAHufv/JW6x/wEAAGA7HPy9A0d/Q2nI3f+vcYv9DwAAAMPI3f9vcUuT/a//1//r//X/+v/Fnz+v/t/7/yel/5+m/19C/7+Jfv78YP3/XRf7+XPo/2/T/zMzh/r/B/Z//Kz6/9z9/x63NNn/AAAA0EHu/v+IW+x/AAAAGEbu/v+MW+x/AAAAGEbu/v+KW5rs/433/7sX/2z9v/5f/6//1//r/9dN/z+tZf+/yv8Vxun/f3SFP+py1u/nX6qz/v5z6P+9/8/cHOr/Dzir/j93/3/HLU32PwAAAHSQu/9/4hb7HwAAAIaRu/+uuMX+BwAAgGHk7v/fuKXJ/vf+v/5f/6//1/8v/nz9/3bS/09r2f+vYpz+/1TOup/f9u+v/9f/c9zc+v/c/f8XtzTZ/wAAANBB7v7/j1vsfwAAABhG7v4nxS32PwAAAAwjd/+T45Ym+1//v9n+P39c/6//39H/n6T/v1H/r/+/VG37/3OL/k503EX6/4d+6fafPPwjffr/w3/i9P/6f/2//p+1mkX/v7f//13m7n9K3NJk/wMAAEAHufufGrfY/wAAADCM3P1Pi1vsfwAAABhG7v6nxy1N9r/+3/v/+n/9/4z6f+//1/c9p/8/pbb9/wl5/38J/b/+X/+v/2etZtH/H/jfc/c/I25psv8BAACgg9z9z4xb7H8AAAAYRu7+Z8Ut9j8AAAAMI3f/s+OWJvtf/7+0/7/iJH8s+v/D31//v/jXh/5f/+/9/83T/0/T/y+h/9f/6//1/6zV3Pr/3P13xy1N9j8AAAB0kLv/OXGL/Q8AAADDyN3/3LjF/gcAAIBh5O5/XtzSZP/r/73/r//X/+v/F3++/n876f+nten/f3zi8++Z+AKL+v+9q/X/+n/9v/6fU5pb/5+7//lxS5P9DwAAAB3k7r8nbrH/AQAAYBi5+++NW+x/AAAAGEbu/hfELU32v/5f/6//1//r/xd/vv5/O+n/p7Xp/73/fypn3c9v+/fX/+v/OW5u/X/u/hfGLU32PwAAAHSQu/++uMX+BwAAgGHk7n9R3GL/AwAAwDBy998ftzTZ//p//b/+X/+v/1/8+fr/7bS5/n9H/6//35r+f3elP+h9Z93PX6oTfv8bNvX99f/6f46bW/+fu//FcUuT/Q8AAAAd5O5/Sdxi/wMAAMAwcve/NG6x/wEAAGAYuftfFrc02f/6f/2//l//r/9f/Pn6/+3k/f9p+v8lBun/T6tJ/7+x76//1/9z3Nz6/9z9L49bmux/AAAA6CB3/wNxi/0PAAAAw8jd/4q4xf4HAACAYeTuf2Xc0mT/L+n/9/+E6P8n6f8Pf3/9/+JfH/p//f+R/v+aHf3/2un/p+n/l9D/j9n/X7EzUP+/e9Gfr/9njubW/+fuf1Xc0mT/AwAAQAe5+18dt9j/AAAAMIzc/a+JW+x/AAAAGEbu/tfGLU32v/f/9f/6f/2//n/x53v/fzvp/6fp/5fQ/4/Z/3v/X//PmZlb/5+7/3VxS5P9DwAAAB3k7n993GL/AwAAwJZY/tvucve/IW6x/wEAAGAYufvfGLc02f/6f/2//l//r/9f/Pn6/+2k/5+m/19C/6//1//r/1mrufX/ufvfFLc02f8AAADQQe7+B+MW+x8AAACGkbv/objF/gcAAIBh5O5/c9zSZP/r//X/+v/t7P+v0f/r//X/C82l/7/++p94WP+v/9f/6//1//r/7jbW/8dPWLX/z93/lrilyf4HAACADnL3vzVusf8BAABgGLn73xa32P8AAAAwjNz9b49bmuz/4/3/lTsXCtULFvX/0ajp/w/Q/x/+/vr/xb8+vP+v/9f/b95c+n/v/5/u++v/9f/b/P1X6v+vO/7zf9D/7+7o/xnK3N7/z93/cNzSZP8DAABAB7n73xG32P8AAAAwjNz974xb7H8AAAAYRu7+R+KWJvvf+//6f/2//l//v/jz9f/bSf8/Tf+/hP5f/+/9/5t/4YcuS/+/d/Tv94xpbv1/7v53xS1N9j8AAAB0kLv/3XHL4v2/6B/zAgAAADOXu/89cYt//g8AAADDyN3/3rilyf7X/+v/59r/7+7o//X/F+j/9f+r0P9P0/8vof/fRD9/1Vq+3Ano/73/z/zMrf/P3f++uKXJ/gcAAIAOcve/P26x/wEAAGAYufs/ELfY/wAAADCM3P0fjFua7H/9v/5/rv3/hff/f271/v+6o/3/z+v/j3y+/l//PzL9f/4dfTH9/xL6f+//6//1/6zV3Pr/3P2Pxi1N9j8AAAB0kLv/Q3GL/Q8AAADDyN3/4bjF/gcAAIBh5O7/SNzSZP/r/3v1/+d2tq3/9/6//l//r/9fjf5/mv5/Cf2//l//r/9nrebW/+fu/2jc0mT/AwAAwLb66R/75UdP+u/N3f+xuMX+BwAAgGHk7v943GL/AwAAwDBy938ibmmy//X/vfr/7Xv/X/+v/9f/6/9Xo/+fdor+/1DArv/X/0/R/+v/9f8cNbf+P3f/J+OWA8Pv/Mp/lAAAAMCc5O7/VNzS5J//AwAAQAe5+z8dtxzb/3sn/F3tAAAAwNzk7v9M3NLkn//r/2fe/+/o//X/+n/9v/5/Ffr/aZf4/v/eOf2//n+C/l//r//nqLn1/7n7Pxu3NNn/AAAAMKhD/41C7v7PxS32PwAAAAwjd//n4xb7HwAAAIaRu/8LcUuT/a//n3n/f6r3/3frf9L/N+//77xm4efr//X/I9P/T7vE/t/7//r/Sfr/5f3/z048LK7/Z0Rz6/9z938xbmmy/wEAAKCD3P1filvsfwAAABhG7v4vxy32PwAAAAwjd/9X4pYm+1//P2L/7/1//f/054/T///wtbc/+DO/eO/d+n/2Xc7+P38t6P/1//r/C/T/3v/X/3PU3Pr/3P1fjVua7H8AAADoIHf/Y3GL/Q8AAADDyN3/tbjF/gcAAIBh5O7/etzSZP/r//X/+v9t7P+zKe7e/3v/X/9/nPf/p+n/l9D/6//1//p/1mpu/X/u/m/ELU32PwAAAHSQu/+bcYv9DwAAAMPI3f+tuMX+BwAAgO1xfvpfzt3/7bilyf7X/+v/9f9z7f/Pef8/6P/1/6vQ/0/T/y+h/9f/6//1/6zV3Pr/3P3fiVua7H8AAADoIHf/43GL/Q8AAADDyN3/3bjF/gcAAIBh5O7/XtzSZP/r//X/+v+59v9T7//r/3f0//r/i9D/T9P/L6H/1//r//X/rNXc+v/c/d8PAAD//xI4Zx0=")
rename(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='./bus\x00')
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x0, 0x0)
syz_io_uring_setup(0x1526, &(0x7f0000000100), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x4c02, &(0x7f0000000140))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r1, &(0x7f00000001c0)={0x34914eae78f2de5}, 0xffca)

2.504194495s ago: executing program 2 (id=1290):
socket$packet(0x11, 0x2, 0x300)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000005100000008000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100ff05008a0004"], 0x30}}, 0x0)

2.343439608s ago: executing program 2 (id=1291):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001500), r0)
socket$inet6(0xa, 0x3, 0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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")
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
setrlimit(0xf, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000e80)=@file={0x0, './file0/file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0xfffffffa, 0xca9a3b, &(0x7f0000000080)={0x77359400}, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4048aecb, &(0x7f0000000600)={0x5, 0x0, [{0x2}, {}, {}, {}, {}]})
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x2, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0x10)

2.260560844s ago: executing program 4 (id=1292):
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/block/loop0', 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast1, @loopback}})
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x1}, &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f00000001c0)={r0, r1, r1}, 0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000040)={'crct10dif\x00\x00\x00 \x00\x00\x00+\xcc\xff%\xd2cTH,\x00'}})

1.030749335s ago: executing program 2 (id=1294):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x2000000058831, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)

633.038438ms ago: executing program 1 (id=1295):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f00000002c0)=0x7, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000000)=0x5, 0x4)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x5, 0x4)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
listen(r2, 0x0)

564.477324ms ago: executing program 2 (id=1296):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4e7, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, &(0x7f0000000100)={0x0, 0x0, 0x57, {0x57, 0x0, "171e84ba8c7e2719dc40b6c363ae143c602829b2f5a789e521af1d02d34d8e636b54a49d0f78f124eb74d4c8fd33aa3c84812db596128ddcea2be11096bf86e22fd7c6d416fb7c00cbd2bd25bb0c2cbe5263806088"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

364.16741ms ago: executing program 0 (id=1297):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)={0x24, 0x12, 0xa01, 0x0, 0x0, {0xa}, [@nested={0x10, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x24}}, 0x0)

264.729699ms ago: executing program 3 (id=1298):
r0 = syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[], 0xfc, 0x165, &(0x7f0000003640)="$eJzs0T2LU0EUxvH/3Dt5gSREMUWwMOmMhkBe0E5CrhiMGC8oNlaBeEUhIWJALQ22FgHbFL604ldIdIslS9JsvR9gm3QLW95l5iaE3c9wft2cGZ5zZubRg3VJsfdwNHz/IRiPg9fF5363/eJ0Pm+ZehxIXtqPzi9a8BbNQsNmAqZ8kIE37waB0x8NzHrTggTgpbZ1htldPy+nmWioEbo4Ue1/wp5zopap7ckwhEHQIGZXNzV42SivCqx+wm1CvOtRrQacAS4oZYYPE1FMp1y4oeDzrPz3z9Gz1bJTudsMvtXb0zvpvFsGfuGp5KGzf5L1qvvU7/rrRr1+P1mtOdw7NoF8maIfpz/CKwXa5DnYvDj5W/olfFWcfLe9Nv9Uxlzsx7k/jOZomoBPbhFUYdbv5WO/e7lrDm5J27vaJ19WnuxmMF9kd+wnCCGEEEIIIYQQQgghhBBCCCGEEFdcBAAA//+o+lCz")
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000340), &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4004, &(0x7f0000000480)=ANY=[@ANYRESOCT=r0, @ANYRES64=r1], 0x2, 0xc2f, &(0x7f0000001e00)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
creat(0x0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000001000)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000240), 0x800}, 0x38)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540)}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008c}, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
rename(&(0x7f0000000e00)='./file0\x00', &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mkdir(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)

80.606743ms ago: executing program 0 (id=1299):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000080)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @ib={0x1b, 0x0, 0x0, {"d53f3784cd1edadbb7e5815932d17134"}}}}, 0xffffffec)

0s ago: executing program 0 (id=1300):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="d80000001b0001000000000000000000ac1414aa000000000000000000000000fc0100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000002b40000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ae08000000000000000000000000000000000000000000000000000000000000000000000c00080008000800000000080c0015"], 0xd8}}, 0x0)

kernel console output (not intermixed with test programs):

T7379] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  315.987557][ T7379] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.006163][ T7306] keytouch 0003:0926:3333.000D: fixing up Keytouch IEC report descriptor
[  316.018550][ T7306] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.000D/input/input11
[  316.078508][ T3716] bond0 (unregistering): Released all slaves
[  316.121464][ T7306] keytouch 0003:0926:3333.000D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  316.246663][ T6116] EXT4-fs (loop1): unmounting filesystem.
[  316.417468][ T7382] loop0: detected capacity change from 0 to 1024
[  317.737203][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  317.896373][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  318.600913][ T7415] loop0: detected capacity change from 0 to 4096
[  318.608502][ T7415] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  319.165783][ T7415] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  319.346136][ T7415] ntfs3: loop0: Failed to load $Extend.
[  319.353108][ T7429] netlink: 'syz.1.869': attribute type 4 has an invalid length.
[  319.371870][ T7429] netlink: 20 bytes leftover after parsing attributes in process `syz.1.869'.
[  319.381039][ T7425] netlink: 'syz.2.867': attribute type 4 has an invalid length.
[  319.430408][ T7426] netlink: 'syz.2.867': attribute type 4 has an invalid length.
[  319.550229][ T3685] usb 1-1: USB disconnect, device number 17
[  319.943452][ T7441] loop1: detected capacity change from 0 to 8
[  319.950176][ T7441] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  320.490234][ T7221] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  320.558188][ T7221] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  320.622135][ T7221] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  320.676074][ T7221] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  320.861695][ T3916] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  320.975856][ T7221] 8021q: adding VLAN 0 to HW filter on device bond0
[  321.044523][ T3651] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  321.054964][ T3051] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  321.055259][ T3651] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  321.072401][ T3651] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  321.072707][ T3051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  321.090909][ T3651] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  321.098937][ T3651] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  321.108789][ T3651] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  321.121696][ T3916] usb 3-1: Using ep0 maxpacket: 8
[  321.223124][ T7221] 8021q: adding VLAN 0 to HW filter on device team0
[  321.242082][ T3916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  321.264552][ T3916] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  321.294264][ T3916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  321.336227][ T3916] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  321.367295][ T7460] vcan0 speed is unknown, defaulting to 1000
[  321.379036][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  321.408058][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  321.427425][ T7308] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.434623][ T7308] bridge0: port 1(bridge_slave_0) entered forwarding state
[  321.477437][ T7468] netlink: 4 bytes leftover after parsing attributes in process `syz.1.880'.
[  321.512776][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  321.520807][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  321.529377][ T3916] usb 3-1: New USB device found, idVendor=0582, idProduct=007a, bcdDevice=c7.3d
[  321.551769][ T3916] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.576288][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  321.585295][ T3916] usb 3-1: Product: syz
[  321.589474][ T3916] usb 3-1: Manufacturer: syz
[  321.608453][ T4371] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.615676][ T4371] bridge0: port 2(bridge_slave_1) entered forwarding state
[  321.623678][ T3916] usb 3-1: SerialNumber: syz
[  321.636311][ T3916] usb 3-1: config 0 descriptor??
[  321.646991][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  321.666731][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  321.700466][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  321.730835][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  321.752538][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  321.779694][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  321.807236][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  321.834446][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  321.869710][ T7221] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  321.907198][ T7221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  321.967988][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  322.001079][ T3916] snd-usb-audio: probe of 3-1:0.0 failed with error -12
[  322.010853][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  322.062855][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  322.072327][ T3916] usb 3-1: USB disconnect, device number 8
[  322.303114][ T7251] udevd[7251]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  322.664272][ T7460] chnl_net:caif_netlink_parms(): no params data found
[  323.133747][ T3652] Bluetooth: hci3: command tx timeout
[  323.570674][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  323.581919][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  323.668481][ T7221] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.824413][ T7460] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.902085][ T7460] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.947297][ T7460] device bridge_slave_0 entered promiscuous mode
[  323.990556][ T7460] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.050770][ T7460] bridge0: port 2(bridge_slave_1) entered disabled state
[  324.089597][ T7460] device bridge_slave_1 entered promiscuous mode
[  324.255384][ T7460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  324.275468][ T7460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  324.277822][ T4307] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  324.343824][ T7518] netlink: 20 bytes leftover after parsing attributes in process `syz.1.887'.
[  324.564665][ T7460] team0: Port device team_slave_0 added
[  324.605827][ T7460] team0: Port device team_slave_1 added
[  324.677019][ T7526] netlink: 'syz.1.888': attribute type 29 has an invalid length.
[  324.701946][ T4307] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  324.711015][ T4307] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.749018][ T7526] netlink: 'syz.1.888': attribute type 29 has an invalid length.
[  324.753244][ T4307] usb 3-1: config 0 descriptor??
[  324.777929][ T7460] batman_adv: batadv0: Adding interface: batadv_slave_0
[  324.792200][ T7460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.828750][ T4307] cp210x 3-1:0.0: cp210x converter detected
[  324.838414][ T7460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  324.858038][ T7526] netlink: 'syz.1.888': attribute type 29 has an invalid length.
[  324.883976][ T7528] netlink: 'syz.1.888': attribute type 29 has an invalid length.
[  324.903369][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  324.923057][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  324.955990][ T7460] batman_adv: batadv0: Adding interface: batadv_slave_1
[  324.964604][ T7460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  325.029566][ T7460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  325.057028][ T7221] device veth0_vlan entered promiscuous mode
[  325.095985][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  325.116877][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  325.171901][ T7221] device veth1_vlan entered promiscuous mode
[  325.211718][ T3649] Bluetooth: hci3: command tx timeout
[  325.228745][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  325.242856][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  325.261192][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  325.271163][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  325.362024][ T7221] device veth0_macvtap entered promiscuous mode
[  325.388112][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  325.403300][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  325.458597][ T7221] device veth1_macvtap entered promiscuous mode
[  325.491376][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  325.503104][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  325.507744][ T4307] cp210x 3-1:0.0: failed to get vendor val 0x000e size 678: -71
[  325.541289][ T4307] cp210x 3-1:0.0: GPIO initialisation failed: -71
[  325.568661][ T4307] usb 3-1: cp210x converter now attached to ttyUSB0
[  325.609969][ T4307] usb 3-1: USB disconnect, device number 9
[  325.619442][ T7460] device hsr_slave_0 entered promiscuous mode
[  325.628997][ T4307] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  325.747970][ T4307] cp210x 3-1:0.0: device disconnected
[  325.795229][ T7460] device hsr_slave_1 entered promiscuous mode
[  325.807245][ T7460] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  325.829614][ T7460] Cannot create hsr debugfs directory
[  325.994978][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.035772][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.078179][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.095308][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.115893][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.146872][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.213587][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  326.227166][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.259564][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_0
[  326.308764][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  326.332889][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  326.520630][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.547306][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.565276][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.589652][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.620057][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.627960][ T7564] Process accounting resumed
[  326.639022][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.658977][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  326.682183][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  326.718438][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_1
[  326.763195][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  326.805214][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  326.884248][ T7221] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.911680][ T7221] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.920412][ T7221] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  326.950217][ T7221] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.139048][ T6713] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.229834][ T7580] netlink: 28 bytes leftover after parsing attributes in process `syz.2.898'.
[  327.249106][ T7580] netlink: 8 bytes leftover after parsing attributes in process `syz.2.898'.
[  327.299622][ T3649] Bluetooth: hci3: command tx timeout
[  327.334001][ T6713] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.535684][ T6713] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.668104][ T4339] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  327.846141][ T4339] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  327.868752][ T6713] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.891751][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  328.362215][ T4497] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.426220][ T4497] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.669985][ T7599] loop1: detected capacity change from 0 to 512
[  328.691207][ T3051] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  328.743317][ T7599] EXT4-fs (loop1): orphan cleanup on readonly fs
[  328.749764][ T7599] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #3: comm syz.1.903: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  328.892356][ T7599] EXT4-fs error (device loop1): ext4_quota_enable:6971: comm syz.1.903: Bad quota inode: 3, type: 0
[  328.937978][ T7599] EXT4-fs warning (device loop1): ext4_enable_quotas:7012: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  329.017302][ T7599] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  329.041147][ T7599] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  329.108991][ T7607] loop2: detected capacity change from 0 to 2048
[  329.202728][ T6116] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 3: comm syz-executor: path /92/file1: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=83886096, rec_len=0, size=4096 fake=0
[  329.268901][ T7607] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  329.285385][ T7607] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038 (0x7fffffff)
[  329.372033][ T3649] Bluetooth: hci3: command tx timeout
[  329.538906][ T6315] EXT4-fs (loop2): unmounting filesystem.
[  329.882521][ T7628] loop2: detected capacity change from 0 to 256
[  330.975877][ T7628] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  331.024630][ T7626] overlayfs: unrecognized mount option "/" or missing value
[  331.103327][ T7628] vcan0 speed is unknown, defaulting to 1000
[  331.123896][ T6116] EXT4-fs (loop1): unmounting filesystem.
[  331.691012][ T3652] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  331.728064][ T3652] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  331.738400][ T3652] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  331.747343][ T3652] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  331.755659][ T3652] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  331.763764][ T3652] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  331.802896][ T7460] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  331.866758][ T7460] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  331.934401][ T7460] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  331.968568][ T7460] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  331.987520][ T7647] vcan0 speed is unknown, defaulting to 1000
[  332.280793][ T7655] loop2: detected capacity change from 0 to 4096
[  332.345381][ T7657] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  332.438953][ T3649] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  332.450950][ T3649] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  332.460576][ T3649] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  332.469821][ T3649] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  332.482710][ T3649] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  332.492066][ T3649] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  332.607672][   T26] audit: type=1326 audit(1723393933.086:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8471779f9 code=0x7ffc0000
[  332.631304][   T26] audit: type=1326 audit(1723393933.086:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd8471779f9 code=0x7ffc0000
[  332.655315][   T26] audit: type=1326 audit(1723393933.086:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd847177a33 code=0x7ffc0000
[  332.670582][ T7662] loop4: detected capacity change from 0 to 256
[  332.677812][   T26] audit: type=1326 audit(1723393933.086:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd8471764df code=0x7ffc0000
[  332.707902][   T26] audit: type=1326 audit(1723393933.086:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd847177a87 code=0x7ffc0000
[  332.746004][   T26] audit: type=1326 audit(1723393933.086:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd847176390 code=0x7ffc0000
[  332.779247][ T7460] 8021q: adding VLAN 0 to HW filter on device bond0
[  332.790721][ T7659] vcan0 speed is unknown, defaulting to 1000
[  332.802766][   T26] audit: type=1326 audit(1723393933.086:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd8471775fb code=0x7ffc0000
[  332.848529][ T7662] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  332.858659][   T26] audit: type=1326 audit(1723393933.166:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd84717668a code=0x7ffc0000
[  332.870091][ T7662] FAT-fs (loop4): Filesystem has been set read-only
[  332.901414][   T26] audit: type=1326 audit(1723393933.166:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd84717668a code=0x7ffc0000
[  332.935405][ T6713] device hsr_slave_0 left promiscuous mode
[  332.964130][ T6713] device hsr_slave_1 left promiscuous mode
[  332.968083][   T26] audit: type=1326 audit(1723393933.166:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd847176297 code=0x7ffc0000
[  333.009855][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  333.031796][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  333.049175][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  333.069370][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  333.085699][ T6713] device bridge_slave_1 left promiscuous mode
[  333.097711][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.108093][ T6713] device bridge_slave_0 left promiscuous mode
[  333.128332][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.178971][ T6713] device veth1_macvtap left promiscuous mode
[  333.185739][ T6713] device veth0_macvtap left promiscuous mode
[  333.192160][ T6713] device veth1_vlan left promiscuous mode
[  333.198000][ T6713] device veth0_vlan left promiscuous mode
[  333.904422][ T3649] Bluetooth: hci1: command tx timeout
[  334.389864][ T6713] team0 (unregistering): Port device team_slave_1 removed
[  334.431968][ T6713] team0 (unregistering): Port device team_slave_0 removed
[  334.474266][ T6713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  334.518105][ T6713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  334.577544][ T3652] Bluetooth: hci4: command tx timeout
[  334.977186][ T6713] bond0 (unregistering): Released all slaves
[  335.062959][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  335.070669][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  335.083734][ T7460] 8021q: adding VLAN 0 to HW filter on device team0
[  335.148016][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  335.157376][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  335.166277][ T4371] bridge0: port 1(bridge_slave_0) entered blocking state
[  335.173449][ T4371] bridge0: port 1(bridge_slave_0) entered forwarding state
[  335.182481][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  335.228871][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  335.239441][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  335.248395][ T3914] bridge0: port 2(bridge_slave_1) entered blocking state
[  335.255552][ T3914] bridge0: port 2(bridge_slave_1) entered forwarding state
[  335.263839][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  335.314626][ T7679] loop2: detected capacity change from 0 to 1024
[  335.321148][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  335.331090][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  335.345553][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  335.354266][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  335.369089][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  335.386833][ T7460] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  335.412910][ T7460] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  335.415442][ T7679] hfsplus: bad catalog entry type
[  335.435420][ T7647] chnl_net:caif_netlink_parms(): no params data found
[  335.446587][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  335.463482][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  335.472707][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  335.481314][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  335.502403][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  335.551061][ T3992] hfsplus: b-tree write err: -5, ino 4
[  335.654093][ T7688] loop2: detected capacity change from 0 to 64
[  335.679933][ T7688] hfs: bad catalog entry type 0
[  335.821481][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  335.998219][ T3652] Bluetooth: hci1: command tx timeout
[  336.428402][ T7647] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.441739][ T7647] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.493030][ T7647] device bridge_slave_0 entered promiscuous mode
[  336.501970][ T7647] bridge0: port 2(bridge_slave_1) entered blocking state
[  336.509376][ T7647] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.519914][ T7647] device bridge_slave_1 entered promiscuous mode
[  336.617640][ T7659] chnl_net:caif_netlink_parms(): no params data found
[  336.661762][ T3652] Bluetooth: hci4: command tx timeout
[  336.675952][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  336.685057][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  336.708739][ T7647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  336.721805][ T7460] 8021q: adding VLAN 0 to HW filter on device batadv0
[  336.737677][ T7647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  336.903103][ T7708] loop4: detected capacity change from 0 to 256
[  337.135859][ T7708] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  337.255918][ T7647] team0: Port device team_slave_0 added
[  337.619226][ T7659] bridge0: port 1(bridge_slave_0) entered blocking state
[  337.631741][ T7659] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.692514][ T7659] device bridge_slave_0 entered promiscuous mode
[  337.701584][ T7659] bridge0: port 2(bridge_slave_1) entered blocking state
[  337.710029][ T7659] bridge0: port 2(bridge_slave_1) entered disabled state
[  337.737337][ T7659] device bridge_slave_1 entered promiscuous mode
[  337.801534][ T7647] team0: Port device team_slave_1 added
[  337.839322][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  337.862530][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  337.983795][ T7659] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  338.033675][ T7659] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  338.047868][ T7647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  338.061102][ T7647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.092134][ T3652] Bluetooth: hci1: command tx timeout
[  338.098984][ T7647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  338.184081][ T7647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  338.191052][ T7647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.249266][ T7647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  338.291498][ T7659] team0: Port device team_slave_0 added
[  338.320501][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  338.339329][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  338.358475][ T7659] team0: Port device team_slave_1 added
[  338.400864][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  338.425563][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  338.468766][ T7460] device veth0_vlan entered promiscuous mode
[  338.493399][ T7647] device hsr_slave_0 entered promiscuous mode
[  338.512136][ T7647] device hsr_slave_1 entered promiscuous mode
[  338.519957][ T7647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  338.536531][ T7647] Cannot create hsr debugfs directory
[  338.564469][ T7659] batman_adv: batadv0: Adding interface: batadv_slave_0
[  338.599451][ T7659] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.658899][ T7724] loop4: detected capacity change from 0 to 512
[  338.677370][ T7724] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  338.684482][ T7659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  338.688948][ T7724] UDF-fs: Scanning with blocksize 512 failed
[  338.721537][ T7724] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  338.729159][ T7724] UDF-fs: Scanning with blocksize 1024 failed
[  338.732039][ T3652] Bluetooth: hci4: command tx timeout
[  338.755729][ T7724] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  338.773084][ T7659] batman_adv: batadv0: Adding interface: batadv_slave_1
[  338.780052][ T7659] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.812053][ T7724] UDF-fs: Scanning with blocksize 2048 failed
[  338.819203][ T7724] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  338.832094][ T7724] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  338.882011][ T7659] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  338.904865][ T7460] device veth1_vlan entered promiscuous mode
[  338.935211][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  338.962979][    C1] eth0: bad gso: type: 1, size: 1408
[  339.032712][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  339.043128][ T7727] vivid-004: =================  START STATUS  =================
[  339.051360][ T7727] vivid-004: Radio HW Seek Mode: Bounded
[  339.061779][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  339.081016][ T7727] 
[  339.096053][ T7727] vivid-004: Radio Programmable HW Seek: false
[  339.119548][ T7727] vivid-004: RDS Rx I/O Mode: Block I/O
[  339.134509][ T7460] device veth0_macvtap entered promiscuous mode
[  339.147506][ T7727] vivid-004: Generate RBDS Instead of RDS: false
[  339.179041][ T7460] device veth1_macvtap entered promiscuous mode
[  339.196074][ T7659] device hsr_slave_0 entered promiscuous mode
[  339.202865][ T7727] vivid-004: RDS Reception: true
[  339.207869][ T7727] vivid-004: RDS Program Type: 0 inactive
[  339.229590][ T7727] vivid-004: RDS PS Name:  inactive
[  339.252729][ T7659] device hsr_slave_1 entered promiscuous mode
[  339.260355][ T7727] vivid-004: RDS Radio Text:  inactive
[  339.267472][ T7659] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  339.276595][ T7727] vivid-004: RDS Traffic Announcement: false inactive
[  339.285333][ T7727] vivid-004: RDS Traffic Program: false inactive
[  339.301908][ T7659] Cannot create hsr debugfs directory
[  339.321327][ T7727] vivid-004: RDS Music: false inactive
[  339.334088][ T7727] vivid-004: ==================  END STATUS  ==================
[  339.356665][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  339.373612][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.391254][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  339.421827][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.438650][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  339.461680][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.481673][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  339.501657][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.535761][   T26] kauditd_printk_skb: 29 callbacks suppressed
[  339.535777][   T26] audit: type=1804 audit(1723393940.016:83): pid=7734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.934" name="/newroot/12/file0/bus" dev="loop4" ino=42 res=1 errno=0
[  339.564921][ T7460] batman_adv: batadv0: Interface activated: batadv_slave_0
[  339.666772][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  339.685278][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  339.734897][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  339.765529][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  339.782192][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  339.811662][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.823046][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  339.841668][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.852876][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  339.863716][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.873822][ T7460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  339.884604][ T7460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  339.912611][ T7460] batman_adv: batadv0: Interface activated: batadv_slave_1
[  339.995770][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  340.010936][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  340.185761][ T3652] Bluetooth: hci1: command tx timeout
[  340.776980][ T7460] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  340.811901][ T3652] Bluetooth: hci4: command tx timeout
[  340.818972][ T7460] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  340.828091][ T7460] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  340.838744][ T7460] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  341.042873][ T7647] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.127718][ T7746] loop2: detected capacity change from 0 to 2048
[  341.215735][ T7647] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.356419][ T7753] loop4: detected capacity change from 0 to 1024
[  341.853843][ T7746] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  341.904501][ T7746] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038 (0x7fffffff)
[  342.003712][ T6580] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  342.014610][ T4339] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.087595][ T4339] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.108681][ T7647] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.168472][ T6315] EXT4-fs (loop2): unmounting filesystem.
[  342.192444][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  342.238232][ T3804] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.247451][ T3804] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.327287][ T7647] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.378652][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  342.553002][ T6713] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.561523][ T7765] loop3: detected capacity change from 0 to 1024
[  342.581176][ T7765] EXT4-fs: Ignoring removed nomblk_io_submit option
[  342.621695][ T7765] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  342.685522][ T6713] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.701312][ T7765] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  342.751750][ T4298] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  342.838412][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  342.900338][ T6713] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.027538][ T6713] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.142001][ T4298] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  343.343154][ T7781] loop3: detected capacity change from 0 to 512
[  343.346632][ T4298] usb 3-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  343.388542][ T4298] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.407208][ T4298] usb 3-1: Product: syz
[  343.411420][ T4298] usb 3-1: Manufacturer: syz
[  343.424315][ T7781] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  343.425172][ T4298] usb 3-1: SerialNumber: syz
[  343.459145][ T4298] usb 3-1: config 0 descriptor??
[  343.519174][ T7781] EXT4-fs (loop3): 1 truncate cleaned up
[  343.532821][ T4298] dm9601: probe of 3-1:0.0 failed with error -22
[  343.561897][ T7781] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  343.647936][ T7781] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  343.891119][ T4298] usb 3-1: USB disconnect, device number 10
[  343.951199][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  344.272069][ T3685] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  344.521682][ T3685] usb 5-1: Using ep0 maxpacket: 16
[  344.525257][ T7813] loop2: detected capacity change from 0 to 256
[  344.567270][ T7813] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  344.589983][ T7647] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  344.640159][ T7647] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  344.647297][ T3685] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  344.656495][ T7806] loop3: detected capacity change from 0 to 40427
[  344.673925][ T3685] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.684685][ T3685] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  344.698917][ T7806] F2FS-fs (loop3): invalid crc value
[  344.703845][ T3685] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  344.719325][ T3685] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.733203][ T7806] F2FS-fs (loop3): Found nat_bits in checkpoint
[  344.736142][ T3685] usb 5-1: config 0 descriptor??
[  344.749406][ T7817] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  344.829616][ T7647] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  344.841550][ T7647] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  344.848250][ T7806] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  344.901008][ T7806] syz.3.954: attempt to access beyond end of device
[  344.901008][ T7806] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  345.059006][ T7460] syz-executor: attempt to access beyond end of device
[  345.059006][ T7460] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  345.148877][ T7659] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  345.243683][ T3685] microsoft 0003:045E:07DA.000E: unknown main item tag 0x0
[  345.257175][ T3685] microsoft 0003:045E:07DA.000E: item 0 0 0 11 parsing failed
[  345.266712][ T3685] microsoft 0003:045E:07DA.000E: parse failed
[  345.274070][ T3685] microsoft: probe of 0003:045E:07DA.000E failed with error -22
[  345.337632][ T7659] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  345.366697][ T7659] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  345.405634][ T7659] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  345.481798][ T3051] usb 5-1: USB disconnect, device number 8
[  345.750504][ T7647] 8021q: adding VLAN 0 to HW filter on device bond0
[  345.777040][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  346.444887][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  346.456042][ T7647] 8021q: adding VLAN 0 to HW filter on device team0
[  346.529151][ T7659] 8021q: adding VLAN 0 to HW filter on device bond0
[  346.611840][ T4371] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  346.623006][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  346.639724][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  346.653406][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.660553][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[  346.670385][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  346.678596][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  346.690069][ T7659] 8021q: adding VLAN 0 to HW filter on device team0
[  346.778450][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  346.791946][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  346.812606][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  346.820981][ T3681] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.828184][ T3681] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.861725][ T4371] usb 4-1: Using ep0 maxpacket: 32
[  346.901223][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  346.916563][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  346.931880][   T27] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.939056][   T27] bridge0: port 1(bridge_slave_0) entered forwarding state
[  346.957774][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  346.968946][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  346.980869][   T27] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.988001][   T27] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.991753][ T4371] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  347.007630][ T4371] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  347.010447][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  347.030565][ T4371] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  347.032519][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  347.041270][ T4371] usb 4-1: config 1 has no interface number 0
[  347.060269][ T4371] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  347.063418][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  347.084453][ T4371] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  347.086248][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  347.109902][ T4371] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  347.121302][ T4371] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.155027][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  347.164703][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  347.186799][ T7659] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  347.206786][ T7659] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  347.244788][ T4371] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  347.246832][ T7647] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  347.274027][ T7647] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  347.345280][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  347.353814][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  347.362359][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  347.374644][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  347.392175][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  347.404076][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  347.415773][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  347.430175][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  347.443895][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  347.454801][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  347.476100][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  347.484140][ T4298] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  347.497541][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  347.507400][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  347.521111][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  347.529659][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  347.539441][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  347.574104][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  347.593614][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  347.613114][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  347.731768][ T4298] usb 3-1: Using ep0 maxpacket: 8
[  347.763382][ T4371] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  347.852840][ T4298] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  347.871633][ T4298] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  347.901797][ T4298] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  347.939349][ T4298] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  347.970925][ T4298] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  347.998333][ T4298] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.069636][ T7659] 8021q: adding VLAN 0 to HW filter on device batadv0
[  348.110691][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  348.118970][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  348.150654][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  348.159409][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  348.174163][ T7647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  348.206165][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  348.223475][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  348.248571][ T7659] device veth0_vlan entered promiscuous mode
[  348.285029][ T7866] loop4: detected capacity change from 0 to 512
[  348.291805][ T4298] usb 3-1: usb_control_msg returned -32
[  348.297649][ T7866] ext4: Unknown parameter 'fowner<00000000000000000000'
[  348.297692][ T4298] usbtmc 3-1:16.0: can't read capabilities
[  348.311319][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  348.320351][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  348.344525][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  348.354072][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  348.377626][ T7659] device veth1_vlan entered promiscuous mode
[  348.388207][ T6584] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  348.406375][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  348.420585][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  348.433590][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  348.455349][ T7647] device veth0_vlan entered promiscuous mode
[  348.478078][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  348.487849][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  348.497415][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  348.517696][ T7647] device veth1_vlan entered promiscuous mode
[  348.532820][ T7659] device veth0_macvtap entered promiscuous mode
[  348.544814][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  348.553683][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  348.562159][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  348.570430][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  348.580984][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  348.602587][ T7659] device veth1_macvtap entered promiscuous mode
[  348.622697][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  348.630885][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  348.652888][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  348.679628][ T7647] device veth0_macvtap entered promiscuous mode
[  348.694055][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  348.713807][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  348.725360][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  348.742749][ T6713] device hsr_slave_0 left promiscuous mode
[  348.754112][ T6713] device hsr_slave_1 left promiscuous mode
[  348.768353][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.775999][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  348.784252][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  348.792167][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.800191][ T6713] device bridge_slave_1 left promiscuous mode
[  348.806903][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.816750][ T3687] snd_usb_pod 4-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  348.828119][ T6713] device bridge_slave_0 left promiscuous mode
[  348.835248][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.848660][ T6713] device hsr_slave_0 left promiscuous mode
[  348.855245][ T6713] device hsr_slave_1 left promiscuous mode
[  348.862544][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  348.870161][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  348.878039][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  348.885716][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.893776][ T6713] device bridge_slave_1 left promiscuous mode
[  348.895548][ T3051] usb 3-1: USB disconnect, device number 11
[  348.903376][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.915219][ T6713] device bridge_slave_0 left promiscuous mode
[  348.926830][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.974769][ T6713] device veth1_macvtap left promiscuous mode
[  348.980867][ T6713] device veth0_macvtap left promiscuous mode
[  348.987166][ T6713] device veth1_vlan left promiscuous mode
[  348.993899][ T6713] device veth0_vlan left promiscuous mode
[  349.000727][ T6713] device veth0_to_bond left promiscuous mode
[  349.008093][ T6713] device veth1_macvtap left promiscuous mode
[  349.014202][ T6713] device veth0_macvtap left promiscuous mode
[  349.020346][ T6713] device veth1_vlan left promiscuous mode
[  349.026652][ T6713] device veth0_vlan left promiscuous mode
[  349.042149][ T4298] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  349.101397][ T7308] usb 4-1: USB disconnect, device number 12
[  349.109703][ T7308] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  349.164443][ T6713] infiniband syz1: set down
[  349.197882][ T7875] loop3: detected capacity change from 0 to 512
[  349.226083][ T7875] EXT4-fs (loop3): Test dummy encryption mode enabled
[  349.276129][ T7875] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.970: invalid indirect mapped block 10 (level 1)
[  349.322044][ T7875] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.970: invalid indirect mapped block 8 (level 1)
[  349.366333][ T7875] EXT4-fs (loop3): 1 truncate cleaned up
[  349.373291][ T7875] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  349.429143][ T4298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  349.447196][ T4298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  349.459371][ T4298] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  349.488999][ T4298] usb 5-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  349.693931][ T4298] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.704400][ T4298] usb 5-1: config 0 descriptor??
[  351.393473][ T7885] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  351.585314][ T4298] samsung 0003:0419:0001.000F: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.4-1/input0
[  351.721810][ T3681] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  351.905358][ T6713] team0 (unregistering): Port device team_slave_1 removed
[  351.958879][ T6713] team0 (unregistering): Port device team_slave_0 removed
[  352.009560][ T6713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  352.056325][ T6713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  352.105310][ T3681] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8
[  352.114591][ T3681] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 895
[  352.124949][ T3681] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  352.221937][ T3681] usb 3-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice= 0.00
[  352.238114][ T3681] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  352.246642][ T3681] usb 3-1: SerialNumber: syz
[  352.259739][ T3681] usb 3-1: config 0 descriptor??
[  352.282979][ T7880] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  352.303170][ T3681] port100 3-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  352.669588][ T6713] bond0 (unregistering): Released all slaves
[  352.709614][ T4497] smc: removing ib device syz1
[  353.510243][ T6713] team0 (unregistering): Port device team_slave_1 removed
[  353.622441][ T7308] usb 3-1: USB disconnect, device number 12
[  353.651277][ T7306] usb 5-1: USB disconnect, device number 9
[  353.678646][ T6713] team0 (unregistering): Port device team_slave_0 removed
[  353.840236][ T6713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  354.162475][ T7909] loop4: detected capacity change from 0 to 256
[  355.060740][ T7909] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  355.264567][ T7906] overlayfs: unrecognized mount option "/" or missing value
[  355.552710][ T6713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  355.967314][ T7920] input: syz0 as /devices/virtual/input/input12
[  356.301261][ T6713] bond0 (unregistering): Released all slaves
[  356.419070][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  356.504423][ T7931] loop2: detected capacity change from 0 to 1024
[  356.545517][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  356.635312][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  356.737622][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  356.747790][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  356.758457][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  356.777509][ T7659] batman_adv: batadv0: Interface activated: batadv_slave_0
[  356.795010][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  356.805643][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  356.820347][ T3051] vcan0 speed is unknown, defaulting to 1000
[  356.876131][ T7647] device veth1_macvtap entered promiscuous mode
[  356.949849][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  356.961956][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  356.972893][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  356.983115][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  356.994283][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.011361][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  357.022145][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.043849][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  357.054912][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.068734][ T7647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  357.079706][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  357.096963][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  357.184091][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.200689][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.210658][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.221133][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.231108][ T7659] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.241845][ T7659] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.262489][ T7659] batman_adv: batadv0: Interface activated: batadv_slave_1
[  357.272006][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.283342][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.319233][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.339279][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.350867][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.364212][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.374401][ T7647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  357.384964][ T7647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  357.396349][ T7647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  357.410467][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  357.427671][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  357.439680][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  357.457122][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  357.469387][ T7937] TCP: request_sock_subflow_v6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  357.496671][ T7659] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  357.503344][ T7942] netlink: 'syz.2.988': attribute type 1 has an invalid length.
[  357.518838][ T7659] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  357.552509][ T7659] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  357.584772][ T7659] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  357.619992][ T7647] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  357.643766][ T7647] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  357.674417][ T7647] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  357.683772][ T7647] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  357.727935][ T7950] loop2: detected capacity change from 0 to 1024
[  358.057967][ T7956] netlink: 12 bytes leftover after parsing attributes in process `syz.3.993'.
[  358.078732][ T3716] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  358.087488][ T4468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  358.108045][ T3716] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  358.123711][ T4468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  358.132968][ T4339] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  358.160778][ T4339] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  358.164604][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  358.208056][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  358.259261][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  358.287306][ T4468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  358.305190][ T4468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  358.396129][ T3914] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  358.586270][ T3914] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  358.766308][ T7972] loop1: detected capacity change from 0 to 512
[  358.830069][ T7972] EXT4-fs: Ignoring removed nobh option
[  358.875609][ T7972] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[  358.901810][ T7972] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.999: attempt to clear invalid blocks 2 len 1
[  358.956151][ T7972] EXT4-fs (loop1): Remounting filesystem read-only
[  358.962967][ T3914] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  358.987314][ T3914] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  359.011809][ T7972] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  359.061395][ T7978] loop0: detected capacity change from 0 to 1024
[  359.074807][ T7972] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.999: invalid indirect mapped block 1819239214 (level 0)
[  359.111779][ T3914] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  359.123016][ T7978] hfsplus: unable to parse mount options
[  359.131559][ T7972] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.999: invalid indirect mapped block 1819239214 (level 1)
[  359.146650][ T3914] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  359.171656][ T3914] usb 3-1: SerialNumber: syz
[  359.181508][ T7972] EXT4-fs (loop1): 1 truncate cleaned up
[  359.231777][ T7972] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  359.733683][ T3914] usb 3-1: 0:2 : does not exist
[  359.738600][ T3914] usb 3-1: unit 24 not found!
[  359.911916][ T3914] usb 3-1: USB disconnect, device number 13
[  360.721377][ T6315] hfsplus: bad catalog entry type
[  360.724045][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  360.742486][ T6580] udevd[6580]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  360.753962][ T7962] loop3: detected capacity change from 0 to 32768
[  360.887557][ T7993] binder: 7991:7993 ioctl c0306201 0 returned -14
[  360.962684][ T7308] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  361.008437][ T7962] XFS (loop3): Mounting V5 Filesystem
[  361.093096][ T7962] XFS (loop3): Ending clean mount
[  361.201894][ T7308] usb 5-1: Using ep0 maxpacket: 32
[  361.227913][ T3805] hfsplus: b-tree write err: -5, ino 8
[  361.243617][ T7460] XFS (loop3): Unmounting Filesystem
[  361.321907][ T7308] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  361.343278][ T7308] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.373646][ T7308] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  361.391658][ T7308] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.444960][ T7308] usb 5-1: config 0 descriptor??
[  361.482747][ T7308] hub 5-1:0.0: USB hub found
[  361.583389][ T8007] Option '                                                    ' to dns_resolver key: bad/missing value
[  361.635616][ T8009] loop0: detected capacity change from 0 to 8
[  361.703306][ T7308] hub 5-1:0.0: 1 port detected
[  361.723045][ T6584] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  361.896997][ T8007] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1012'.
[  361.922858][ T3649] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  361.934233][ T3649] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  361.944799][ T3649] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  361.956404][ T3649] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  361.966400][ T3649] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  361.973845][ T3649] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  362.124092][ T8016] program syz.1.1013 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  362.272530][ T8021] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1015'.
[  362.332000][ T3914] hub 5-1:0.0: activate --> -90
[  362.403758][ T8011] chnl_net:caif_netlink_parms(): no params data found
[  362.538128][ T8011] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.546256][ T8011] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.558093][ T8011] device bridge_slave_0 entered promiscuous mode
[  362.573963][ T8011] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.582311][ T8011] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.591059][ T8011] device bridge_slave_1 entered promiscuous mode
[  362.653242][ T8011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  362.682768][ T8011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  362.755758][ T3687] usb 5-1: USB disconnect, device number 10
[  362.831138][ T8011] team0: Port device team_slave_0 added
[  362.848985][ T8011] team0: Port device team_slave_1 added
[  362.907920][ T8011] batman_adv: batadv0: Adding interface: batadv_slave_0
[  362.956932][ T8011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.002325][ T3914] usb 5-1-port1: config error
[  363.024966][ T8011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  363.054307][ T8011] batman_adv: batadv0: Adding interface: batadv_slave_1
[  363.069306][ T8011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.134790][ T8011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  365.049605][ T3649] Bluetooth: hci0: command tx timeout
[  365.402801][ T8011] device hsr_slave_0 entered promiscuous mode
[  365.442132][ T8011] device hsr_slave_1 entered promiscuous mode
[  365.451486][ T8011] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  365.480797][ T8011] Cannot create hsr debugfs directory
[  365.702846][ T8048] loop4: detected capacity change from 0 to 4096
[  365.751716][ T3685] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  365.767006][ T8048] ntfs: (device loop4): ntfs_attr_find(): Inode is corrupt.  Run chkdsk.
[  365.786161][ T8048] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  365.808039][ T8011] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.832574][ T8048] ntfs: (device loop4): load_system_files(): Failed to load $MFTMirr.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  365.849408][ T8048] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  365.860971][ T3051] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  365.877877][ T8048] ntfs: (device loop4): load_system_files(): Failed to load $Volume.
[  365.886928][ T8048] ntfs: (device loop4): ntfs_fill_super(): Failed to load system files.
[  365.934281][ T8011] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  366.009346][ T3685] usb 2-1: Using ep0 maxpacket: 8
[  366.083915][ T8045] device syzkaller0 entered promiscuous mode
[  366.272172][ T3685] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  366.285934][ T3685] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  366.297028][ T3685] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  366.354379][ T8060] loop3: detected capacity change from 0 to 256
[  366.419591][ T8060] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  366.565389][   T26] audit: type=1804 audit(1723393967.016:84): pid=8060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1029" name="/newroot/19/file0/file0" dev="loop3" ino=1048754 res=1 errno=0
[  366.603422][ T3051] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  366.754354][ T3051] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  366.851892][ T3685] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[  366.861227][ T3051] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  366.878853][ T3685] usb 2-1: New USB device strings: Mfr=141, Product=0, SerialNumber=0
[  366.887483][ T3051] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  366.895655][ T3051] usb 1-1: SerialNumber: syz
[  366.900456][ T3685] usb 2-1: Manufacturer: syz
[  366.929857][ T3685] usb 2-1: config 0 descriptor??
[  367.132082][ T3652] Bluetooth: hci0: command tx timeout
[  367.255948][ T3051] usb 1-1: 0:2 : does not exist
[  367.277932][ T3051] usb 1-1: unit 5: unexpected type 0x03
[  367.305518][ T3051] usb 1-1: USB disconnect, device number 18
[  367.909215][ T6580] udevd[6580]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  368.664059][ T8067] loop0: detected capacity change from 0 to 40427
[  368.675240][ T8067] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  368.696204][ T8067] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  368.751278][ T8067] F2FS-fs (loop0): Found nat_bits in checkpoint
[  368.829131][ T8067] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  368.841322][ T8067] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  368.996982][ T8067] syz.0.1031: attempt to access beyond end of device
[  368.996982][ T8067] loop0: rw=34817, sector=77824, nr_sectors = 880 limit=40427
[  369.105857][ T7647] syz-executor: attempt to access beyond end of device
[  369.105857][ T7647] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  369.244879][ T3652] Bluetooth: hci0: command tx timeout
[  369.382013][ T3685] usbhid 2-1:0.0: can't add hid device: -71
[  369.392557][ T3685] usbhid: probe of 2-1:0.0 failed with error -71
[  369.414079][ T3685] usb 2-1: USB disconnect, device number 9
[  370.463407][ T8082] loop1: detected capacity change from 0 to 64
[  370.499938][ T8082] BFS-fs: bfs_fill_super(): Impossible last inode number 18874527 > 513 on loop1
[  371.148038][ T8011] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.215709][ T8063] netlink: 'syz.3.1030': attribute type 24 has an invalid length.
[  371.291851][ T3649] Bluetooth: hci0: command tx timeout
[  371.383298][ T8011] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  371.436120][ T8095] loop0: detected capacity change from 0 to 256
[  371.448507][ T8095] exfat: Deprecated parameter 'utf8'
[  371.507481][ T8095] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xcc9b7de9, utbl_chksum : 0xe619d30d)
[  372.435748][ T8105] loop3: detected capacity change from 0 to 2048
[  372.472749][ T8107] loop1: detected capacity change from 0 to 4096
[  372.533403][ T8105] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  372.551835][ T8111] loop0: detected capacity change from 0 to 256
[  372.565719][ T8105] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038 (0x7fffffff)
[  372.668147][ T8111] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  372.668771][ T8011] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  372.705147][ T8105] EXT4-fs error (device loop3): ext4_find_dest_de:2113: inode #2: block 16: comm syz.3.1044: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  372.708005][ T8011] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  372.821441][ T8111] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  372.879390][ T8011] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  372.900008][ T8011] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  372.939941][ T8119] loop1: detected capacity change from 0 to 4096
[  372.959844][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  372.967563][ T8119] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  373.521084][ T8128] xt_connbytes: Forcing CT accounting to be enabled
[  373.543782][ T8128] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  373.570907][ T8128] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  373.622860][ T8011] 8021q: adding VLAN 0 to HW filter on device bond0
[  373.691986][ T8011] 8021q: adding VLAN 0 to HW filter on device team0
[  373.720519][ T8137] loop1: detected capacity change from 0 to 512
[  373.722584][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  373.742422][ T7308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  373.780143][ T8137] EXT4-fs (loop1): Test dummy encryption mode enabled
[  373.831926][ T8137] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz.1.1055: casefold flag without casefold feature
[  373.866836][ T8137] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #2: comm syz.1.1055: missing EA_INODE flag
[  373.965146][ T8146] loop4: detected capacity change from 0 to 2048
[  373.975385][ T8146] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  374.014831][ T8137] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1055: error while reading EA inode 2 err=-117
[  374.031130][ T8137] EXT4-fs (loop1): 1 orphan inode deleted
[  374.045656][ T8137] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  374.046346][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  374.095383][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  374.095806][ T3916] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.095866][ T3916] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.182836][ T6713] device hsr_slave_0 left promiscuous mode
[  374.183686][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  374.202016][ T6713] device hsr_slave_1 left promiscuous mode
[  374.279655][ T8148] loop3: detected capacity change from 0 to 2048
[  374.325174][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.325233][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  374.325952][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.325976][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  374.327295][ T6713] device bridge_slave_1 left promiscuous mode
[  374.327411][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.329109][ T6713] device bridge_slave_0 left promiscuous mode
[  374.329218][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.356130][ T8148] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  374.492947][ T6713] device veth1_macvtap left promiscuous mode
[  374.493048][ T6713] device veth0_macvtap left promiscuous mode
[  374.493296][ T6713] device veth1_vlan left promiscuous mode
[  374.493492][ T6713] device veth0_vlan left promiscuous mode
[  374.602150][ T8157] loop1: detected capacity change from 0 to 256
[  374.646855][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  374.649537][ T8157] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  374.705154][ T8157] overlayfs: unrecognized mount option "/" or missing value
[  375.389902][ T8161] loop3: detected capacity change from 0 to 256
[  375.424296][ T8161] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  375.433712][ T8140] loop0: detected capacity change from 0 to 40427
[  375.450354][ T8140] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[  375.536115][ T8161] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  375.541668][ T8140] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  375.592846][ T8140] F2FS-fs (loop0): invalid crc value
[  375.615740][ T8140] F2FS-fs (loop0): Found nat_bits in checkpoint
[  375.719863][ T8140] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  375.727182][ T8140] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  375.798300][ T8140] F2FS-fs (loop0): access invalid blkaddr:3
[  375.815976][ T8140] CPU: 0 PID: 8140 Comm: syz.0.1057 Not tainted 6.1.104-syzkaller #0
[  375.824186][ T8140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  375.834261][ T8140] Call Trace:
[  375.837572][ T8140]  <TASK>
[  375.840527][ T8140]  dump_stack_lvl+0x1e3/0x2cb
[  375.845239][ T8140]  ? nf_tcp_handle_invalid+0x642/0x642
[  375.850730][ T8140]  ? f2fs_get_next_page_offset+0x6c0/0x6c0
[  375.856569][ T8140]  ? register_lock_class+0x100/0x990
[  375.861893][ T8140]  f2fs_is_valid_blkaddr+0xca6/0x1270
[  375.867389][ T8140]  f2fs_map_blocks+0x15fd/0x3ab0
[  375.872485][ T8140]  ? f2fs_do_map_lock+0x70/0x70
[  375.877352][ T8140]  ? rwsem_write_trylock+0x166/0x210
[  375.882722][ T8140]  ? clear_nonspinnable+0x60/0x60
[  375.887748][ T8140]  f2fs_precache_extents+0x278/0x420
[  375.893134][ T8140]  ? f2fs_pin_file_control+0x1d0/0x1d0
[  375.897874][ T8173] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  375.898607][ T8140]  ? kasan_set_track+0x60/0x70
[  375.911811][ T8140]  ? kasan_set_track+0x4b/0x70
[  375.916596][ T8140]  ? kasan_save_free_info+0x27/0x40
[  375.921887][ T8140]  ? __kmem_cache_free+0x25c/0x3c0
[  375.927015][ T8140]  ? tomoyo_path_number_perm+0x61b/0x7f0
[  375.932748][ T8140]  ? security_file_ioctl+0x6d/0xa0
[  375.937858][ T8140]  ? __se_sys_ioctl+0x47/0x160
[  375.942615][ T8140]  ? do_syscall_64+0x3b/0xb0
[  375.947200][ T8140]  __f2fs_ioctl+0x10b7/0xc2a0
[  375.951890][ T8140]  ? do_vfs_ioctl+0xc55/0x2a90
[  375.956648][ T8140]  ? __x64_compat_sys_ioctl+0x80/0x80
[  375.962023][ T8140]  ? __lock_acquire+0x1f80/0x1f80
[  375.967063][ T8140]  ? lockdep_hardirqs_on+0x94/0x130
[  375.972271][ T8140]  ? __kmem_cache_free+0x25c/0x3c0
[  375.977420][ T8140]  ? f2fs_ioctl+0x1d0/0x1d0
[  375.981959][ T8140]  ? tomoyo_path_number_perm+0x61b/0x7f0
[  375.987624][ T8140]  ? tomoyo_path_number_perm+0x68a/0x7f0
[  375.993297][ T8140]  ? tomoyo_path_number_perm+0x1f2/0x7f0
[  375.998965][ T8140]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  376.004553][ T8140]  ? __fget_files+0x28/0x4a0
[  376.009200][ T8140]  ? __fget_files+0x28/0x4a0
[  376.013906][ T8140]  ? __fget_files+0x435/0x4a0
[  376.018612][ T8140]  ? __fget_files+0x28/0x4a0
[  376.023235][ T8140]  ? f2fs_ioctl+0x132/0x1d0
[  376.027757][ T8140]  ? f2fs_precache_extents+0x420/0x420
[  376.033216][ T8140]  __se_sys_ioctl+0xf1/0x160
[  376.037805][ T8140]  do_syscall_64+0x3b/0xb0
[  376.042215][ T8140]  ? clear_bhb_loop+0x45/0xa0
[  376.046969][ T8140]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  376.052855][ T8140] RIP: 0033:0x7f0a3c5779f9
[  376.057265][ T8140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.076954][ T8140] RSP: 002b:00007f0a3d33c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  376.085641][ T8140] RAX: ffffffffffffffda RBX: 00007f0a3c705f80 RCX: 00007f0a3c5779f9
[  376.093605][ T8140] RDX: 0000000000000000 RSI: 000000000000f50f RDI: 0000000000000004
[  376.101567][ T8140] RBP: 00007f0a3c5e58ee R08: 0000000000000000 R09: 0000000000000000
[  376.109627][ T8140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  376.117590][ T8140] R13: 0000000000000000 R14: 00007f0a3c705f80 R15: 00007ffe8a982688
[  376.125567][ T8140]  </TASK>
[  376.196539][ T7647] syz-executor: attempt to access beyond end of device
[  376.196539][ T7647] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  376.597552][ T6713] team0 (unregistering): Port device team_slave_1 removed
[  376.645586][ T6713] team0 (unregistering): Port device team_slave_0 removed
[  376.695235][ T6713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  376.742641][ T6713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  376.774038][ T4298] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  377.041767][ T4298] usb 1-1: Using ep0 maxpacket: 32
[  377.171857][ T4298] usb 1-1: New USB device found, idVendor=0458, idProduct=706e, bcdDevice=35.64
[  377.181097][ T4298] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.193080][ T4298] usb 1-1: config 0 descriptor??
[  377.269401][ T6713] bond0 (unregistering): Released all slaves
[  377.351836][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  377.359759][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  377.374018][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  377.382671][ T3687] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.389752][ T3687] bridge0: port 2(bridge_slave_1) entered forwarding state
[  377.398852][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  377.408451][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  377.417277][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  377.426736][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  377.435456][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  377.444424][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  377.458518][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  377.484074][ T3685] usb 1-1: USB disconnect, device number 19
[  377.527893][ T8011] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  377.601754][ T8011] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  377.649043][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  377.674232][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  377.721280][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  377.771074][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  377.797093][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  377.891242][ T8188] IPv6: addrconf: prefix option has invalid lifetime
[  378.413231][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  378.420010][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  378.781357][   T26] audit: type=1400 audit(1723393979.256:85): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name=3AA7F8EC696C7F728D9CBCE7CC29B047B7865D1CD970ED3359DB6D8EE9D63E983A pid=8196 comm="syz.3.1075"
[  378.904819][ T8203] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1076'.
[  378.933953][   T26] audit: type=1326 audit(1723393979.416:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.1072" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a3c5779f9 code=0x0
[  379.259888][ T8213] sp0: Synchronizing with TNC
[  379.458686][ T8011] 8021q: adding VLAN 0 to HW filter on device batadv0
[  379.486834][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  379.497095][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  379.559440][   T26] audit: type=1326 audit(1723393980.036:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8198 comm="syz.0.1072" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a3c5779f9 code=0x0
[  379.586941][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  379.606205][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  379.650280][ T8011] device veth0_vlan entered promiscuous mode
[  379.726179][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  379.745134][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  379.792369][ T8011] device veth1_vlan entered promiscuous mode
[  379.829761][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  379.841510][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  379.858991][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  379.929338][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  379.948008][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  380.002448][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  380.007344][ T8234] loop1: detected capacity change from 0 to 64
[  380.014785][ T8011] device veth0_macvtap entered promiscuous mode
[  380.056718][ T8011] device veth1_macvtap entered promiscuous mode
[  380.101430][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  380.116940][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  380.177662][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  380.202400][ T8234] hfs: request for non-existent node 1291 in B*Tree
[  380.225907][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.237548][ T8234] hfs: request for non-existent node 1291 in B*Tree
[  380.256465][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  380.305115][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.355218][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  380.387038][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.421771][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  380.438873][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.463484][    T9] hfs: request for non-existent node 1291 in B*Tree
[  380.471020][    T9] hfs: request for non-existent node 1291 in B*Tree
[  380.493896][ T8011] batman_adv: batadv0: Interface activated: batadv_slave_0
[  380.526158][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  380.534934][    T9] hfs: request for non-existent node 1291 in B*Tree
[  380.543760][ T3916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  380.552421][    T9] hfs: request for non-existent node 1291 in B*Tree
[  380.569869][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  380.627984][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.661718][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  380.681711][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.716894][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  380.743612][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.774553][ T8011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  380.803897][ T8011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  380.849977][ T8011] batman_adv: batadv0: Interface activated: batadv_slave_1
[  380.873377][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  380.892702][ T7306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  380.924107][ T8011] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.959870][ T8011] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  381.003808][ T8011] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  381.041228][ T8011] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  381.221756][ T8243] loop3: detected capacity change from 0 to 32768
[  381.356844][ T4468] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  381.395041][ T4468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.421550][ T8265] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  381.428561][ T8265] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  381.436806][ T8243] XFS (loop3): Mounting V5 Filesystem
[  381.467668][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  381.501073][ T3666] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  381.511141][ T3666] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.527727][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  381.548501][ T8270] vhci_hcd: connection closed
[  381.592078][ T8265] vhci_hcd vhci_hcd.0: Device attached
[  381.614169][ T3805] vhci_hcd: stop threads
[  381.628782][ T8243] XFS (loop3): Ending clean mount
[  381.651686][ T3805] vhci_hcd: release socket
[  381.656252][ T3805] vhci_hcd: disconnect device
[  381.710936][ T8243] XFS (loop3): Quotacheck needed: Please wait.
[  381.919136][ T8243] XFS (loop3): Quotacheck: Done.
[  382.050759][ T8280] input: syz1 as /devices/virtual/input/input13
[  382.954184][ T7460] XFS (loop3): Unmounting Filesystem
[  383.135996][   T22] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  383.221683][ T4371] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  383.270602][ T8287] loop0: detected capacity change from 0 to 256
[  383.391404][ T8287] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00006005)
[  383.411663][   T22] usb 5-1: Using ep0 maxpacket: 16
[  383.465411][ T8287] FAT-fs (loop0): error, invalid access to FAT (entry 0x00006005)
[  383.581956][ T4371] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  383.628834][ T4371] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  383.660841][ T4371] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  383.691180][ T4371] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.733640][ T8285] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  383.748388][   T22] usb 5-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  383.768734][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.816735][   T22] usb 5-1: Product: syz
[  383.841141][   T22] usb 5-1: Manufacturer: syz
[  383.857770][   T22] usb 5-1: SerialNumber: syz
[  383.890544][   T22] usb 5-1: config 0 descriptor??
[  383.943147][   T22] ssu100 5-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  384.177406][ T8285] netlink: 'syz.2.1098': attribute type 10 has an invalid length.
[  384.191731][ T8285] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1098'.
[  384.226378][ T8285] bridge0: port 3(syz_tun) entered blocking state
[  384.238396][ T8313] xt_TPROXY: Can be used only with -p tcp or -p udp
[  384.270036][ T8285] bridge0: port 3(syz_tun) entered disabled state
[  384.287161][ T8285] device syz_tun entered promiscuous mode
[  384.328736][ T8319] loop1: detected capacity change from 0 to 512
[  384.329279][ T8285] bridge0: port 3(syz_tun) entered blocking state
[  384.342490][ T8285] bridge0: port 3(syz_tun) entered forwarding state
[  384.403746][ T8319] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  384.480128][ T8319] EXT4-fs (loop1): 1 truncate cleaned up
[  384.489423][ T8319] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  384.556036][ T4371] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  384.571925][   T22] ssu100: probe of 5-1:0.0 failed with error -71
[  384.594981][   T22] usb 5-1: USB disconnect, device number 11
[  384.624330][ T4371] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input14
[  384.639321][   T26] audit: type=1800 audit(1723393985.116:88): pid=8319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1111" name="bus" dev="loop1" ino=18 res=0 errno=0
[  384.755161][ T4371] usb 3-1: USB disconnect, device number 14
[  384.771668][    C0] aiptek 3-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  385.215137][ T8331] program syz.3.1115 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  385.370966][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  385.388037][ T8338] netlink: 'syz.2.1118': attribute type 3 has an invalid length.
[  385.683455][ T8350] loop4: detected capacity change from 0 to 512
[  385.720376][ T8350] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  385.785035][ T8350] EXT4-fs (loop4): 1 truncate cleaned up
[  385.811316][ T8353] loop2: detected capacity change from 0 to 512
[  385.833786][ T8350] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  385.893728][ T8353] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  386.432812][ T8353] EXT4-fs (loop2): 1 truncate cleaned up
[  386.462159][ T8353] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  386.513537][ T7221] EXT4-fs (loop4): unmounting filesystem.
[  386.948600][ T8370] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1124'.
[  387.158194][ T8370] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 4: comm syz.2.1124: lblock 0 mapped to illegal pblock 4 (length 1)
[  387.533271][    C1] eth0: bad gso: type: 1, size: 1408
[  387.539427][ T8011] EXT4-fs (loop2): unmounting filesystem.
[  387.591720][ T3687] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  387.599433][ T4371] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  387.921718][ T3687] usb 4-1: Using ep0 maxpacket: 8
[  388.043395][ T3687] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  388.061868][ T4371] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.085081][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  388.135841][ T4371] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.309920][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  388.336691][ T4371] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  388.351121][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  388.361435][ T4371] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  388.401656][ T4371] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.454668][ T4371] usb 5-1: config 0 descriptor??
[  388.472281][ T3687] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  388.483011][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  388.484324][ T8379] loop0: detected capacity change from 0 to 512
[  388.559012][ T8379] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  388.582069][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  388.619674][ T8379] EXT4-fs (loop0): 1 truncate cleaned up
[  388.672193][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  388.690011][ T8379] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  388.755116][   T26] audit: type=1800 audit(1723393989.236:89): pid=8379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1131" name="bus" dev="loop0" ino=18 res=0 errno=0
[  388.823026][ T3687] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  388.834855][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  388.875347][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  388.907410][ T3687] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  388.943497][ T4371] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving
[  388.974870][ T4371] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  389.191886][ T4305] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  389.205526][ T3687] usb 4-1: string descriptor 0 read error: -22
[  389.225898][ T3687] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  389.255758][ T3687] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.301914][ T7647] EXT4-fs (loop0): unmounting filesystem.
[  389.335959][ T3687] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux1
[  389.491894][ T4305] usb 3-1: Using ep0 maxpacket: 16
[  389.625577][ T4305] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  389.639980][ T4305] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  389.742012][ T7308] usb 4-1: USB disconnect, device number 13
[  389.834397][ T4305] usb 3-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=f6.59
[  389.853834][ T4305] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.871685][ T4305] usb 3-1: Product: syz
[  389.882124][ T4305] usb 3-1: Manufacturer: syz
[  389.891903][ T4305] usb 3-1: SerialNumber: syz
[  389.911237][ T4305] usb 3-1: config 0 descriptor??
[  390.019753][ T8412] loop1: detected capacity change from 0 to 512
[  390.042055][ T8407] loop0: detected capacity change from 0 to 40427
[  390.060819][ T8407] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(258) root(3)
[  390.079982][ T8407] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  390.094722][ T8412] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  390.106677][ T8412] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  390.112204][ T8407] F2FS-fs (loop0): invalid crc value
[  390.116886][ T8412] EXT4-fs (loop1): 1 truncate cleaned up
[  390.126456][ T8412] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  390.150759][ T8412] EXT4-fs error (device loop1): ext4_append:79: inode #2: comm syz.1.1144: Logical block already allocated
[  390.153657][ T8407] F2FS-fs (loop0): Found nat_bits in checkpoint
[  390.168933][ T8412] EXT4-fs (loop1): Remounting filesystem read-only
[  390.175225][ T8412] EXT4-fs error (device loop1): __ext4_remount:6425: comm syz.1.1144: Abort forced by user
[  390.195051][ T4305] usb 3-1: USB disconnect, device number 15
[  390.238356][ T8412] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1144'.
[  390.245625][ T8407] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  390.259767][ T8407] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  390.314114][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  390.534571][ T8425] loop1: detected capacity change from 0 to 256
[  390.541511][ T8425] exfat: Deprecated parameter 'namecase'
[  390.566761][ T8425] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  390.720022][ T8431] loop0: detected capacity change from 0 to 512
[  390.728746][ T8431] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  390.804934][ T8431] EXT4-fs (loop0): 1 truncate cleaned up
[  390.853208][ T8431] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  390.925594][ T8439] program syz.4.1153 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  391.101102][ T3685] usb 5-1: USB disconnect, device number 12
[  391.214555][ T3652] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  391.224392][ T3652] Bluetooth: hci0: Injecting HCI hardware error event
[  391.237073][ T3649] Bluetooth: hci0: hardware error 0x00
[  391.518923][ T8444] netlink: 'syz.1.1155': attribute type 4 has an invalid length.
[  391.602540][ T8444] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1155'.
[  391.976098][ T8444] loop1: detected capacity change from 0 to 2048
[  392.071774][ T8444] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  392.087915][ T7647] EXT4-fs (loop0): unmounting filesystem.
[  392.423927][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  392.812145][ T3685] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  392.914651][ T8465] loop4: detected capacity change from 0 to 1024
[  393.117274][ T3666] hfsplus: b-tree write err: -5, ino 4
[  393.159172][ T8438] loop2: detected capacity change from 0 to 40427
[  393.204047][ T8438] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  393.221673][ T8438] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  393.243086][ T3685] usb 1-1: New USB device found, idVendor=14cd, idProduct=6116, bcdDevice= 1.60
[  393.265162][ T3685] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.298120][ T3685] usb 1-1: config 0 descriptor??
[  393.326609][ T8438] F2FS-fs (loop2): Found nat_bits in checkpoint
[  393.388431][ T3685] ums-cypress 1-1:0.0: USB Mass Storage device detected
[  393.422695][ T8438] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  393.453501][ T3649] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  393.642566][ T8438] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  393.658497][ T8438] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  393.722550][   T26] audit: type=1326 audit(1723393994.206:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8477 comm="syz.1.1163" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f239eb779f9 code=0x0
[  393.752847][ T8482] loop4: detected capacity change from 0 to 256
[  393.766750][ T8482] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  393.794670][ T8482] syz.4.1161: attempt to access beyond end of device
[  393.794670][ T8482] loop4: rw=524288, sector=34359738488, nr_sectors = 3 limit=256
[  393.810636][ T8482] syz.4.1161: attempt to access beyond end of device
[  393.810636][ T8482] loop4: rw=0, sector=34359738488, nr_sectors = 3 limit=256
[  393.827586][   T26] audit: type=1800 audit(1723393994.306:91): pid=8482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1161" name="file0" dev="loop4" ino=1048778 res=0 errno=0
[  393.829698][ T8482] [syz.4.1161/8482] FS: loop4 File: /file0/file0 would truncate fibmap result
[  394.470939][ T8489] loop1: detected capacity change from 0 to 512
[  394.553129][ T8489] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  394.562581][ T8489] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038 (0x7fffffff)
[  394.586679][ T4371] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  394.963132][ T4371] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  394.997919][ T4371] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.034510][ T4371] usb 3-1: config 0 descriptor??
[  395.085560][ T4371] cp210x 3-1:0.0: cp210x converter detected
[  395.150929][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  395.236253][ T4305] usb 1-1: USB disconnect, device number 20
[  395.533443][ T3649] Bluetooth: hci2: ISO packet for unknown connection handle 4095
[  395.548978][ T3649] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  395.550083][ T8514] netlink: 652 bytes leftover after parsing attributes in process `syz.0.1176'.
[  395.559413][ T3649] CPU: 0 PID: 3649 Comm: kworker/u5:6 Not tainted 6.1.104-syzkaller #0
[  395.576722][ T3649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  395.586811][ T3649] Workqueue: hci2 hci_rx_work
[  395.591619][ T3649] Call Trace:
[  395.594922][ T3649]  <TASK>
[  395.597878][ T3649]  dump_stack_lvl+0x1e3/0x2cb
[  395.602581][ T3649]  ? nf_tcp_handle_invalid+0x642/0x642
[  395.608146][ T3649]  ? panic+0x764/0x764
[  395.612239][ T3649]  sysfs_create_dir_ns+0x2c6/0x390
[  395.617420][ T3649]  ? sysfs_warn_dup+0xa0/0xa0
[  395.622122][ T3649]  kobject_add_internal+0x6df/0xd10
[  395.627436][ T3649]  kobject_add+0x14e/0x210
[  395.631868][ T3649]  ? device_add+0x3c2/0xfd0
[  395.636377][ T3649]  ? kobject_init+0x1d0/0x1d0
[  395.641074][ T3649]  ? __raw_spin_lock_init+0x41/0x100
[  395.646459][ T3649]  ? get_device_parent+0x128/0x400
[  395.651582][ T3649]  device_add+0x476/0xfd0
[  395.655927][ T3649]  hci_conn_add_sysfs+0xe4/0x1f0
[  395.660873][ T3649]  le_conn_complete_evt+0xcc6/0x1320
[  395.666158][ T3649]  ? trace_contention_end+0x61/0x170
[  395.671445][ T3649]  ? hci_le_big_info_adv_report_evt+0x390/0x390
[  395.677766][ T3649]  ? __mutex_unlock_slowpath+0x218/0x750
[  395.683412][ T3649]  ? mutex_unlock+0x10/0x10
[  395.687914][ T3649]  ? skb_pull_data+0x10e/0x220
[  395.692688][ T3649]  hci_le_enh_conn_complete_evt+0x181/0x410
[  395.698592][ T3649]  hci_event_packet+0xa40/0x1510
[  395.703535][ T3649]  ? hci_remote_host_features_evt+0x210/0x210
[  395.709698][ T3649]  ? bis_list+0x290/0x290
[  395.714118][ T3649]  ? do_raw_spin_unlock+0x137/0x8a0
[  395.719413][ T3649]  ? kcov_remote_start+0x4b5/0x7d0
[  395.724522][ T3649]  ? lockdep_hardirqs_on+0x80/0x130
[  395.729714][ T3649]  ? hci_send_to_monitor+0x99/0x4d0
[  395.734920][ T3649]  hci_rx_work+0x3cd/0xce0
[  395.739359][ T3649]  ? do_raw_spin_unlock+0x137/0x8a0
[  395.744661][ T3649]  ? process_one_work+0x7a9/0x11d0
[  395.749789][ T3649]  process_one_work+0x8a9/0x11d0
[  395.754760][ T3649]  ? worker_detach_from_pool+0x260/0x260
[  395.760399][ T3649]  ? _raw_spin_lock_irqsave+0x120/0x120
[  395.765938][ T3649]  ? kthread_data+0x4e/0xc0
[  395.770442][ T3649]  ? wq_worker_running+0x97/0x190
[  395.775552][ T3649]  worker_thread+0xa47/0x1200
[  395.780227][ T3649]  ? release_firmware_map_entry+0x186/0x186
[  395.786130][ T3649]  kthread+0x28d/0x320
[  395.790189][ T3649]  ? worker_clr_flags+0x190/0x190
[  395.795205][ T3649]  ? kthread_blkcg+0xd0/0xd0
[  395.799793][ T3649]  ret_from_fork+0x1f/0x30
[  395.804215][ T3649]  </TASK>
[  395.808970][ T4371] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  395.831885][ T3649] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  395.847290][ T3649] Bluetooth: hci2: failed to register connection device
[  395.884563][ T4371] usb 3-1: cp210x converter now attached to ttyUSB0
[  396.002377][ T8523] loop0: detected capacity change from 0 to 1024
[  396.077006][ T4305] usb 3-1: USB disconnect, device number 16
[  396.102938][ T4305] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  396.136108][ T4305] cp210x 3-1:0.0: device disconnected
[  396.181749][ T3685] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  396.196634][ T8525] loop1: detected capacity change from 0 to 512
[  396.268205][ T8525] EXT4-fs: Ignoring removed orlov option
[  396.338432][ T8525] EXT4-fs: Ignoring removed i_version option
[  396.373344][ T8525] EXT4-fs: Ignoring removed nomblk_io_submit option
[  396.399753][ T8525] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  396.419658][ T8525] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  396.463047][ T8525] EXT4-fs (loop1): orphan cleanup on readonly fs
[  396.469619][ T8525] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[  396.479853][ T3685] usb 4-1: Using ep0 maxpacket: 8
[  396.521813][ T8525] EXT4-fs warning (device loop1): ext4_enable_quotas:7012: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  396.551842][ T8525] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  396.579593][ T8525] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1182: bg 0: block 40: padding at end of block bitmap is not set
[  396.598129][ T8525] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6173: Corrupt filesystem
[  396.619775][ T8525] EXT4-fs (loop1): 1 truncate cleaned up
[  396.637585][ T8525] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  396.643132][ T3685] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  396.688058][ T3685] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  396.724851][ T3685] usb 4-1: New USB device found, idVendor=056a, idProduct=0333, bcdDevice= 0.00
[  396.756537][ T3685] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.938324][ T3685] usb 4-1: config 0 descriptor??
[  397.459931][ T8548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1190'.
[  397.480652][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  397.673294][ T3685] wacom 0003:056A:0333.0011: hidraw0: USB HID v0.00 Device [HID 056a:0333] on usb-dummy_hcd.3-1/input0
[  397.951743][ T3649] Bluetooth: hci2: command tx timeout
[  398.346207][ T8557] loop4: detected capacity change from 0 to 131072
[  398.432740][ T8557] F2FS-fs (loop4): invalid crc value
[  398.495343][ T8557] F2FS-fs (loop4): Found nat_bits in checkpoint
[  398.605033][ T8557] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  398.827632][ T3687] usb 4-1: USB disconnect, device number 14
[  399.025530][ T8566] loop1: detected capacity change from 0 to 2048
[  399.654143][ T8566] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  399.849498][ T8575] loop2: detected capacity change from 0 to 4096
[  399.879043][ T8575] EXT4-fs: Ignoring removed oldalloc option
[  399.926401][ T7659] EXT4-fs (loop1): unmounting filesystem.
[  399.934875][ T8575] EXT4-fs (loop2): Test dummy encryption mode enabled
[  399.989229][ T8575] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  400.180343][ T8575] EXT4-fs (loop2): shut down requested (2)
[  400.200649][ T8575] fs-verity: sha512 using implementation "sha512-avx2"
[  400.425523][ T8011] EXT4-fs (loop2): unmounting filesystem.
[  401.272177][ T8595] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1205'.
[  401.330783][ T8591] loop2: detected capacity change from 0 to 1024
[  401.419454][ T8579] loop0: detected capacity change from 0 to 32768
[  401.426543][ T8591] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  401.439192][ T8591] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038 (0x7fffffff)
[  401.508139][ T8579] XFS (loop0): Mounting V5 Filesystem
[  401.566727][ T4371] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  401.590208][ T8579] XFS (loop0): Ending clean mount
[  401.677598][   T26] audit: type=1800 audit(1723394002.156:92): pid=8579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1200" name="bus" dev="loop0" ino=4425 res=0 errno=0
[  401.821035][ T8011] EXT4-fs (loop2): unmounting filesystem.
[  401.886050][ T7647] XFS (loop0): Unmounting Filesystem
[  401.915841][ T8606] loop1: detected capacity change from 0 to 32768
[  401.947621][ T4371] usb 5-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  401.967060][ T4371] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.998232][ T4371] usb 5-1: config 0 descriptor??
[  402.043580][ T4371] gspca_main: sunplus-2.14.0 probing 055f:c420
[  402.102762][ T8606] XFS (loop1): Mounting V5 Filesystem
[  402.170082][ T8606] XFS (loop1): Ending clean mount
[  402.192284][ T8606] XFS (loop1): Quotacheck needed: Please wait.
[  402.331221][ T8637] binder: BINDER_SET_CONTEXT_MGR already set
[  402.338123][ T8637] binder: 8622:8637 ioctl 4018620d 20000040 returned -16
[  402.726649][ T8606] XFS (loop1): Quotacheck: Done.
[  402.958091][ T8639] loop2: detected capacity change from 0 to 4096
[  403.011739][ T4371] gspca_sunplus: reg_w_riv err -71
[  403.016950][ T4371] sunplus: probe of 5-1:0.0 failed with error -71
[  403.033059][ T7659] XFS (loop1): Unmounting Filesystem
[  403.050191][ T4371] usb 5-1: USB disconnect, device number 13
[  403.147215][ T8639] ntfs: (device loop2): parse_options(): NLS character set maccenteuroAdma not found. Using previous one koi8-u.
[  403.224841][ T8639] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.  deltaxcn = 0x1, max_cluster = 0x0
[  403.258469][ T8639] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  403.271181][ T8639] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  403.337351][ T8647] loop3: detected capacity change from 0 to 512
[  403.341762][ T8639] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt attribute.  deltaxcn = 0x1, max_cluster = 0x0
[  403.396598][ T8639] ntfs: (device loop2): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[  403.420333][ T8647] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  403.429117][ T8639] ntfs: (device loop2): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  403.451360][ T8639] ntfs: (device loop2): check_mft_mirror(): Failed to read $MFTMirr.
[  403.460158][ T8639] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  403.475923][ T8647] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038 (0x7fffffff)
[  403.508551][ T8639] ntfs: volume version 3.1.
[  403.994205][ T8669] loop2: detected capacity change from 0 to 512
[  404.024895][ T7460] EXT4-fs (loop3): unmounting filesystem.
[  404.053231][ T8669] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  404.147417][ T8669] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  404.318272][ T8680] loop1: detected capacity change from 0 to 64
[  404.347095][ T8669] EXT4-fs (loop2): 1 truncate cleaned up
[  404.390363][ T8669] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  405.132912][ T8687] loop1: detected capacity change from 0 to 131072
[  405.145166][ T8687] F2FS-fs (loop1): invalid crc value
[  405.164434][ T8667] loop4: detected capacity change from 0 to 32768
[  405.171695][ T8667] XFS: ikeep mount option is deprecated.
[  405.179668][ T8667] XFS (loop4): sunit and swidth options incompatible with the noalign option
[  405.518829][ T8687] F2FS-fs (loop1): Found nat_bits in checkpoint
[  405.653731][ T8687] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  405.880858][ T8011] EXT4-fs (loop2): unmounting filesystem.
[  406.131906][ T4298] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  406.633147][ T8704] loop2: detected capacity change from 0 to 512
[  406.698310][ T8704] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  406.717601][ T8704] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038 (0x7fffffff)
[  406.767575][ T3649] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  406.771885][ T4298] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  406.790566][ T4298] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  406.800511][ T4298] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  406.816881][ T4298] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.845996][ T4298] usb 4-1: config 0 descriptor??
[  407.202646][ T8011] EXT4-fs (loop2): unmounting filesystem.
[  407.285508][ T8713] loop4: detected capacity change from 0 to 40427
[  407.313587][ T4298] cm6533_jd 0003:0D8C:0022.0012: unknown main item tag 0x0
[  407.321392][ T4298] cm6533_jd 0003:0D8C:0022.0012: unknown main item tag 0x0
[  407.340288][ T4298] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0D8C:0022.0012/input/input18
[  407.364827][ T8713] F2FS-fs (loop4): Found nat_bits in checkpoint
[  407.372775][ T4298] cm6533_jd 0003:0D8C:0022.0012: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.3-1/input0
[  407.450541][ T8713] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  407.580030][   T22] usb 4-1: USB disconnect, device number 15
[  407.946584][ T8736] loop4: detected capacity change from 0 to 512
[  407.961529][ T8736] EXT4-fs: quotafile must be on filesystem root
[  408.047678][ T6580] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  408.101456][ T8739] loop0: detected capacity change from 0 to 4096
[  408.197100][ T8739] ntfs: volume version 3.1.
[  409.094198][ T8748] tipc: Started in network mode
[  409.099833][ T8748] tipc: Node identity fe800000000000000000000000000011, cluster identity 4711
[  409.125362][ T8748] tipc: Enabled bearer <udp:syz0>, priority 10
[  409.488663][ T8751] loop3: detected capacity change from 0 to 1024
[  409.811417][ T4298] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  409.909094][ T8760] loop0: detected capacity change from 0 to 1024
[  410.081135][ T8760] EXT4-fs (loop0): barriers disabled
[  410.091004][ T7308] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  410.117178][ T8760] JBD2: no valid journal superblock found
[  410.123673][ T8760] EXT4-fs (loop0): error loading journal
[  410.246842][   T22] tipc: Node number set to 4269801489
[  412.239054][ T8779] xt_hashlimit: max too large, truncated to 1048576
[  412.833213][ T8784] input: syz1 as /devices/virtual/input/input19
[  413.071737][ T4298] usb 2-1: device descriptor read/all, error -71
[  414.292190][ T8772] loop4: detected capacity change from 0 to 32768
[  414.337169][ T8803] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1269'.
[  414.458990][ T8802] tap0: tun_chr_ioctl cmd 1074025676
[  414.493820][ T8802] tap0: owner set to 0
[  415.061473][ T8793] loop1: detected capacity change from 0 to 32768
[  415.106869][ T8808] loop0: detected capacity change from 0 to 256
[  415.124517][ T8793] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.1266 (8793)
[  415.203259][ T8793] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  415.218793][ T8808] tipc: Failed to remove unknown binding: 66,1,1/0:778633170/778633172
[  415.245275][ T8793] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  415.258261][ T8808] tipc: Failed to remove unknown binding: 66,1,1/0:778633170/778633172
[  415.299406][ T8808] tipc: Failed to remove unknown binding: 66,1,1/0:778633170/778633172
[  415.310911][ T8793] BTRFS info (device loop1): using free space tree
[  415.359813][ T8817] loop4: detected capacity change from 0 to 2048
[  415.420375][ T8817] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  415.699361][ T8793] BTRFS info (device loop1): enabling ssd optimizations
[  416.218761][ T7659] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  416.895334][ T8871] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 49617 - 0
[  416.917766][ T8871] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 49617 - 0
[  416.958596][ T8871] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 49617 - 0
[  416.979338][ T8871] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 49617 - 0
[  416.991738][ T4306] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  417.006565][ T8871] netdevsim netdevsim2 netdevsim0: set [1, 2] type 2 family 0 port 35690 - 0
[  417.030087][ T8871] netdevsim netdevsim2 netdevsim1: set [1, 2] type 2 family 0 port 35690 - 0
[  417.041038][ T8871] netdevsim netdevsim2 netdevsim2: set [1, 2] type 2 family 0 port 35690 - 0
[  417.067055][ T8871] netdevsim netdevsim2 netdevsim3: set [1, 2] type 2 family 0 port 35690 - 0
[  417.109004][ T8871] device geneve2 entered promiscuous mode
[  417.421850][ T4306] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  417.447592][ T4306] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  417.497734][ T4306] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  417.534225][ T8879] loop2: detected capacity change from 0 to 128
[  417.542604][ T4306] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  417.697140][ T4468] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  417.932780][ T4468] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  417.982904][ T4306] usb 4-1: New USB device found, idVendor=0bb4, idProduct=0a04, bcdDevice=a3.91
[  418.530628][ T4306] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.556501][ T4306] usb 4-1: Product: syz
[  418.562396][ T4306] usb 4-1: Manufacturer: syz
[  418.569522][ T4306] usb 4-1: SerialNumber: syz
[  418.584572][ T4306] usb 4-1: config 0 descriptor??
[  418.625390][ T4306] ipaq 4-1:0.0: PocketPC PDA converter detected
[  418.642820][ T8875] loop1: detected capacity change from 0 to 32768
[  418.723548][ T4306] usb 4-1: active config #0 != 1 ??
[  418.775493][ T4468] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  418.851792][ T8875] loop1: detected capacity change from 32768 to 32767
[  418.859261][ T7308] usb 4-1: USB disconnect, device number 17
[  418.992448][ T4468] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  419.113045][ T7659] non-latin1 character 0x3ff found in JFS file name
[  419.146414][ T7659] mount with iocharset=utf8 to access
[  419.217815][ T7659] ERROR: (device loop1): diRead: i_ino != di_number
[  419.217815][ T7659] 
[  419.234853][ T3652] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  419.248320][ T3652] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  419.269350][ T3651] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  419.288642][ T3651] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  419.302197][ T7659] ERROR: (device loop1): remounting filesystem as read-only
[  419.318678][ T3651] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  419.320515][ T7659] jfs_lookup: iget failed on inum 32
[  419.336549][ T3651] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  419.413669][ T7659] ERROR: (device loop1): diRead: i_ino != di_number
[  419.413669][ T7659] 
[  419.432722][ T7659] jfs_lookup: iget failed on inum 32
[  419.450668][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1297'.
[  419.532079][ T3914] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  419.561450][ T8897] loop3: detected capacity change from 0 to 16
[  419.607916][ T8897] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  419.781019][  T133] ================================================================================
[  419.801971][  T133] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2778:24
[  419.810019][  T133] index 4294967295 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[  419.858360][  T133] CPU: 1 PID: 133 Comm: jfsCommit Not tainted 6.1.104-syzkaller #0
[  419.866580][  T133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  419.876916][  T133] Call Trace:
[  419.880315][  T133]  <TASK>
[  419.883261][  T133]  dump_stack_lvl+0x1e3/0x2cb
[  419.887966][  T133]  ? nf_tcp_handle_invalid+0x642/0x642
[  419.893450][  T133]  ? panic+0x764/0x764
[  419.897639][  T133]  ? lock_metapage+0x2f5/0x370
[  419.902445][  T133]  __ubsan_handle_out_of_bounds+0x118/0x140
[  419.908370][  T133]  dbJoin+0x2e9/0x310
[  419.912474][  T133]  dbFreeBits+0x4ef/0xdb0
[  419.916843][  T133]  dbFree+0x357/0x670
[  419.920858][  T133]  txFreeMap+0x966/0xd50
[  419.924709][ T3914] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  419.925101][  T133]  ? __mark_inode_dirty+0x430/0xf80
[  419.941182][  T133]  xtTruncate+0xe58/0x3260
[  419.945948][  T133]  ? xtInitRoot+0x160/0x160
[  419.950554][  T133]  ? mapping_evict_folio+0x5b0/0x5b0
[  419.955847][  T133]  jfs_free_zero_link+0x46a/0x6e0
[  419.960867][  T133]  ? jfs_write_failed+0x190/0x190
[  419.965987][  T133]  ? bit_waitqueue+0x30/0x30
[  419.970596][  T133]  jfs_evict_inode+0x35b/0x440
[  419.975352][  T133]  ? jfs_write_inode+0x210/0x210
[  419.980297][  T133]  evict+0x2a4/0x620
[  419.984455][  T133]  txUpdateMap+0x825/0x9e0
[  419.988874][  T133]  ? txCommit+0x6ba0/0x6ba0
[  419.993380][  T133]  jfs_lazycommit+0x476/0xb60
[  419.998045][  T133]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  420.003927][  T133]  ? lockdep_hardirqs_on+0x94/0x130
[  420.009120][  T133]  ? txFreelock+0x580/0x580
[  420.013613][  T133]  ? do_task_dead+0xd0/0xd0
[  420.018118][  T133]  ? _raw_spin_unlock+0x40/0x40
[  420.022962][  T133]  ? __kthread_parkme+0x168/0x1c0
[  420.027986][  T133]  kthread+0x28d/0x320
[  420.032077][  T133]  ? txFreelock+0x580/0x580
[  420.036572][  T133]  ? kthread_blkcg+0xd0/0xd0
[  420.041156][  T133]  ret_from_fork+0x1f/0x30
[  420.045622][  T133]  </TASK>
[  420.049825][ T3914] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  420.061208][ T3914] usb 3-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  420.077399][ T3914] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.087953][ T3914] usb 3-1: config 0 descriptor??
[  420.221541][  T133] ================================================================================
[  420.233721][  T133] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  420.240959][  T133] CPU: 1 PID: 133 Comm: jfsCommit Not tainted 6.1.104-syzkaller #0
[  420.249040][  T133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  420.259383][  T133] Call Trace:
[  420.262672][  T133]  <TASK>
[  420.265614][  T133]  dump_stack_lvl+0x1e3/0x2cb
[  420.270406][  T133]  ? nf_tcp_handle_invalid+0x642/0x642
[  420.275892][  T133]  ? panic+0x764/0x764
[  420.280023][  T133]  ? vscnprintf+0x59/0x80
[  420.284376][  T133]  panic+0x318/0x764
[  420.288308][  T133]  ? check_panic_on_warn+0x1d/0xa0
[  420.293426][  T133]  ? memcpy_page_flushcache+0xfc/0xfc
[  420.298792][  T133]  ? dump_stack_lvl+0x24f/0x2cb
[  420.303919][  T133]  check_panic_on_warn+0x7e/0xa0
[  420.309108][  T133]  __ubsan_handle_out_of_bounds+0x138/0x140
[  420.315089][  T133]  dbJoin+0x2e9/0x310
[  420.319075][  T133]  dbFreeBits+0x4ef/0xdb0
[  420.323493][  T133]  dbFree+0x357/0x670
[  420.327566][  T133]  txFreeMap+0x966/0xd50
[  420.331801][  T133]  ? __mark_inode_dirty+0x430/0xf80
[  420.336999][  T133]  xtTruncate+0xe58/0x3260
[  420.341533][  T133]  ? xtInitRoot+0x160/0x160
[  420.346057][  T133]  ? mapping_evict_folio+0x5b0/0x5b0
[  420.351433][  T133]  jfs_free_zero_link+0x46a/0x6e0
[  420.356552][  T133]  ? jfs_write_failed+0x190/0x190
[  420.361654][  T133]  ? bit_waitqueue+0x30/0x30
[  420.366336][  T133]  jfs_evict_inode+0x35b/0x440
[  420.371188][  T133]  ? jfs_write_inode+0x210/0x210
[  420.376215][  T133]  evict+0x2a4/0x620
[  420.380115][  T133]  txUpdateMap+0x825/0x9e0
[  420.384530][  T133]  ? txCommit+0x6ba0/0x6ba0
[  420.389038][  T133]  jfs_lazycommit+0x476/0xb60
[  420.393707][  T133]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  420.399591][  T133]  ? lockdep_hardirqs_on+0x94/0x130
[  420.404883][  T133]  ? txFreelock+0x580/0x580
[  420.409491][  T133]  ? do_task_dead+0xd0/0xd0
[  420.413989][  T133]  ? _raw_spin_unlock+0x40/0x40
[  420.419003][  T133]  ? __kthread_parkme+0x168/0x1c0
[  420.424046][  T133]  kthread+0x28d/0x320
[  420.428104][  T133]  ? txFreelock+0x580/0x580
[  420.432594][  T133]  ? kthread_blkcg+0xd0/0xd0
[  420.437243][  T133]  ret_from_fork+0x1f/0x30
[  420.441662][  T133]  </TASK>
[  420.444966][  T133] Kernel Offset: disabled
[  420.449431][  T133] Rebooting in 86400 seconds..