last executing test programs: 34m28.699064808s ago: executing program 32 (id=1280): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) write$tun(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="0000080003050700030080"], 0x217) 34m27.699108363s ago: executing program 33 (id=1283): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x7c7, 0x7ff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x80, 0x4, 0x0, @loopback, @rand_addr=0x64010101}}}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f3, &(0x7f0000000000)={'syztnl0\x00', &(0x7f0000000040)={'ip_vti0\x00', 0x0, 0x0, 0x700, 0x4000000, 0x0, {{0x5, 0x4, 0x0, 0x16, 0x14, 0xfffd, 0x0, 0x1, 0x4, 0x0, @loopback, @rand_addr=0x64010100}}}}) 34m14.298236154s ago: executing program 34 (id=1293): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) r1 = inotify_init1(0x0) ppoll(&(0x7f0000000080)=[{r0}, {r1, 0x8014}], 0x2, &(0x7f0000000100), 0x0, 0x0) 33m3.979176287s ago: executing program 35 (id=1377): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/partitions\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000540)={0x2020}, 0x2020) preadv2(r0, &(0x7f0000004e80)=[{&(0x7f0000003700)=""/121, 0x79}], 0x1, 0xd643, 0xaa, 0x14) 31m20.337680787s ago: executing program 36 (id=1579): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) sendfile(r1, r0, &(0x7f0000002080)=0x3a, 0x23b) 28m15.943218101s ago: executing program 37 (id=2195): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000380)={0x0, 0x0}, 0x10) 19m8.244372568s ago: executing program 38 (id=4444): r0 = socket$rxrpc(0x21, 0x2, 0x2) bind$rxrpc(r0, &(0x7f0000000340)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) bind$rxrpc(r0, &(0x7f0000001280)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) listen(r0, 0x8a1) 18m56.980987344s ago: executing program 39 (id=4479): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x149800, 0x0) ppoll(&(0x7f0000000180)=[{r0, 0x4000}, {r0, 0x4}], 0x2, 0x0, 0x0, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x4182, 0x0) 15m0.669317527s ago: executing program 40 (id=5238): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) 12m54.118338108s ago: executing program 41 (id=5341): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0x48, 0x32, 0x25, 0x0, 0x0, {}, [{0x34, 0x1, [@m_pedit={0x30, 0x1, 0x0, 0x0, {{0xa}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0) 12m51.826645999s ago: executing program 42 (id=5342): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x44, r1, 0x1, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x5c4}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x83}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x5}, 0x4814) 11m54.353951399s ago: executing program 43 (id=5373): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x38}, 0x1, 0x300}, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9403000010000104f04e93294c00000000001700", @ANYRES32=0x0, @ANYBLOB="00000000000000001400350076657468305f6d61637674617000000005001100050000000a000200aaaaaaaaaa0e00004c0316"], 0x394}}, 0x0) sendmmsg$alg(r0, &(0x7f0000000140), 0x4924b68, 0x0) 11m52.749229312s ago: executing program 44 (id=5374): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="dfbf00000000000000006700000008000300", @ANYRES32=r2, @ANYBLOB="0800c300741300000800c40001"], 0x30}, 0x1, 0x0, 0x0, 0x40002}, 0x0) 7m58.095427664s ago: executing program 8 (id=5818): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000000), 0xd) 7m57.517001102s ago: executing program 8 (id=5820): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000e40)={0x58, r1, 0x1, 0x20000002, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}], @key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_DEFAULT={0x4}], @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @key_params=[@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}]]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 7m56.990306288s ago: executing program 8 (id=5826): syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'}) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') 7m56.256450791s ago: executing program 8 (id=5832): syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x47, 0xc1e, &(0x7f0000001940)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0) 7m55.423492337s ago: executing program 8 (id=5839): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000a80)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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") chdir(&(0x7f0000000240)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000ec0)='./file0\x00', 0x1, 0x9) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000180)={0x1, 0x4, 0x1000, 0x20, 0x0, 0x0, 0x0, 0x0}) 7m54.856169681s ago: executing program 8 (id=5844): pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x80, 0x0) write$binfmt_aout(r1, 0x0, 0x120) 7m53.40604041s ago: executing program 45 (id=5844): pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x80, 0x0) write$binfmt_aout(r1, 0x0, 0x120) 5m33.687900354s ago: executing program 9 (id=6721): syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file0\x00', 0x40, &(0x7f000001fcc0)={[{@noload}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200}}, {@jqfmt_vfsv0}, {@noquota}, {@errors_remount}, {@resuid}, {@discard}]}, 0x1, 0x576, &(0x7f0000000140)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x105042, 0x189) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff7, 0x4012011, r0, 0x1000) write$binfmt_format(r0, &(0x7f0000000000)='1\x00', 0x2422) 5m32.945524603s ago: executing program 9 (id=6726): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xffeffffffffffffa]}, 0x8, 0x0) io_setup(0x206, &(0x7f0000000200)=0x0) io_submit(r1, 0x1, &(0x7f0000000240)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000180)="951aa14bd6f68579cac67c83bf8d4500e5cea1bb1596d4ee6645fa16fa7cacb9214070a622a2c57b89075f59b85c7b5b2c41edc9d2cd5a2c95ed1c2cf72425be9c1a2df1b60a309bc3228d7e85b300f0d7a042a40166b9208e9d2e423c32ad8e47adedf5dc425c6bcb031fb2230835d41afc23476eae602bad3246417e5ac757", 0x80, 0x0, 0x0, 0x0, r0}]) 5m30.766736676s ago: executing program 9 (id=6737): r0 = socket$kcm(0x2, 0x1, 0x84) sendmsg$inet(r0, &(0x7f0000002c00)={&(0x7f0000000140)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000880)=[{&(0x7f00000006c0)="7015", 0x2}], 0x1}, 0x40000) sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000640)="80", 0x26892}], 0x1}, 0xfc) sendmsg$inet(r0, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080) 5m30.0252541s ago: executing program 9 (id=6741): syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYRES8=0x0], 0x1, 0x14c, &(0x7f00000001c0)="$eJzszzFLOgEYx/Hf/e+Uf6VRYGANIjR0FOZ1Yk0NGklCelC4NAl2UaAZCdGotDYEjTVYruJbsCwC64SwN9FyW9AUF+cdlGP777PofZ+Hh7v11Z6MMCDCsVYuHR3rlYq+G97SDlPb7+12wu5eAP+H5s7+XQLYt38lwKwBdn7wA3sHRX2xUC7az2YCkAEkx5yuwNkdtVvAaUsQBLMGEbNAZ8ppqrsn/2oxt81IQPjr5551A8zZ9yaddgXgA8Dp9ULLg6xhWZYFPHXczxz05nPW6KYj8yH9XE1NN3xBETn98RZJwZ6/RbuR12ir2e8ZmU0to/ViqrocUyRFife1FyMdr15A2vCdADvC8D0vgiEpB5wJwOVgZt4LfgCd+qdWGl+pu+9QHXH/FPJBTyMfmPgHUYYAIiIiIiIiIiIiIiIiIiKiv/oOAAD//0rtZa4=") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0xc9) getdents(r0, &(0x7f0000000480)=""/40, 0x28) 5m29.36864786s ago: executing program 9 (id=6746): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000500)={0x200, 0x1, &(0x7f0000000180)=[r1], 0x0, 0x0, 0x0}) 5m28.640947672s ago: executing program 9 (id=6750): set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0xd) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_page_alloc\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) 5m26.931315799s ago: executing program 46 (id=6750): set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0xd) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='mm_page_alloc\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) 3m33.112994056s ago: executing program 4 (id=7308): ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'sit0\x00', 0x0}) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000340)={0x8, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @multicast2}}}, 0x108) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000000340)=""/225, &(0x7f0000000180)=0xe1) 3m32.743013769s ago: executing program 4 (id=7310): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000007b00000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x4c, r1, 0x1, 0x0, 0x0, {0x3d}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x82}, {0x5, 0x87}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40800}, 0x8) 3m32.201752391s ago: executing program 4 (id=7311): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'vxcan1\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10) setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000040)=0xd, 0x4) close(r0) 3m31.954923744s ago: executing program 4 (id=7314): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file2\x00', 0x42, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) chdir(&(0x7f00000001c0)='./file0\x00') link(&(0x7f0000000100)='./file1\x00', &(0x7f0000000280)='./file3\x00') 3m30.979900775s ago: executing program 4 (id=7318): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0xcafe28741a3524c9, 0x70bd2b, 0x25dfdbfb, {0x7, 0x0, 0x0, r1, 0x80, 0x95, 0xa}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0041}, 0x0) 3m30.168846858s ago: executing program 4 (id=7324): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xc}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00001b5000/0x2000)=nil, 0x2000}, 0x3}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x18) ioctl$UFFDIO_COPY(r0, 0xc028aa03, 0x0) 3m28.555899811s ago: executing program 47 (id=7324): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xc}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00001b5000/0x2000)=nil, 0x2000}, 0x3}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x18) ioctl$UFFDIO_COPY(r0, 0xc028aa03, 0x0) 3m16.940694274s ago: executing program 0 (id=7370): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x142) mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) openat$cgroup(r0, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0) getdents64(r0, &(0x7f0000000380)=""/141, 0x8d) 3m16.317716246s ago: executing program 0 (id=7373): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "2e2b5aa4"}, @local=@item_4={0x3, 0x2, 0x0, "f85edaca"}, @main=@item_4={0x3, 0x0, 0x8}]}}, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) ioctl$HIDIOCGDEVINFO(r1, 0x801c4803, &(0x7f0000000040)=""/44) 3m13.979079945s ago: executing program 0 (id=7375): syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f00000000c0)='./file0\x00', 0x3210052, &(0x7f0000000100)={[{}, {@errors_continue}, {}, {@order_strict}, {@nobarrier}, {@order_strict}, {@nodiscard}, {@order_relaxed}], [], 0x2c}, 0x43, 0xede, &(0x7f0000000f80)="$eJzs3U9sHNX9APA3a6/txCZeE35g4EdIoRXhnx2SSE1vQaAeEZfeQSGBCENRQw9E/Ak9ICohioQ4VRyouFAqpUhFAlWqop7anlr11hPqhUpVKgX10kiJqzjvrXdfPN31xJ717n4+0nffvnmz8/2ON5iZ8ezbAIytxtrjkSOLRQgffPn+4689U3x+ddnd7TX2rz0WsdcKITQ7+kW2va/igssXXz2+UVuEQ2uPqR+euNB+7WwI4WzYH86HVvh0eeWbTz587MBnb83c+u6Z51/fpt1vy/cDAABG0bk/rfzt/n/88aGFS+f2HQvT7eXp+LwV+7PxuP9gPFBOx8uN0N0vOqLTVLbeRIxGtt5Ett5klmeyJF8z206zZL2pHvkmOpZttJ8AAAAwjNJ5bSsUjaWufqOxtHTtvP+qr+aniqUXT62cPD2gQgEAAIDK/v3G2k23QgghhBBCCCGEGOFYnR/0FQgAAABg3OTzhV3n7NbO1NXeWqu//BcebWz8etgCdf/7H+r8nz842PzboFf+j9/0GwcAgOpG9Wgy7Vc6jk7zGOTzCE5kr9vs8X8j287kJussm1dwWOYbLKsz/7nuVGX1b/Z9HJSy+vP5MHeqsvrzeTp3qrL6p2uuo6qy+mdqrqOqsvp31VxHVWX17665jqrK6p+tuY6qyuqfq7mOqsrqv6nmOqoqq39PzXVUVVb/sNxWW1Z/q+Y6qiqrf6HmOqoqq//mmuuoqqz+vTXXUVVZ/bfUXMeg3BXb9HPYl413nj/n53TDco4HAAAA4+4/5v8TQgghhBhsXFodfA1C1BoTO6AGIcYv3hj0BQgAAABg4NLnAtKn3lejND7RY3yyx3izx/hUj/HpHuMAAABACL99++Tt7xXrn/O/0fnw0rxRaf6lzc5jlM9HuNn8Nzrv2Y3mH5Z5ywAAABgvxffPX3ng8Y9eXrh0bt+xjrPfK/F8N80DOhmvDXwR++m+gLmsX6Rz6GPdeRol6+XXB24q296TN7ijAAAAMMbS+XsrFI2ljvPuVmg0lpbWz8cXQ7M4eWrlxMHYT9/P8of55vTV5Y/UXDcAAADQv/Xz/dkNz//T9/guhqli6cVTKydPX+vPtZc3G53XBebXlxed1wVa2fJDJcsPx376/s7n5netLV86/sOVZ7Z65wEAAGBMnH7lzPNPr6yc+JEnnnjiSfvJoH8zAQAAW+3rr99v/vjw3O+uff5/ff679Pn//bHfinP7/TmukO4TSJ8DuO7z+k9155kvW++l7vVa2XoTMaazumc6thM65htMr1soy9fq3s5USb7ZLN9cli+fp2AyWz/l25Mtz+cnTOvNZ8vzeRgnsxxFlv+eAAAAAOWWX37hpeXTr5x5+NQLTz974tkTLx4+dPR7R48efOS7jyyv3de/3Hl3PwAAADCM1m/6HXQlAAAAAAAAAAAAAAAAAAAAML7q+DqxQe8jAAAAjLt/vRFCOCuEKIlrX4E5+DqEEGLYY+8OqEGI0Y+JHVCDEGLHxupq/k3zAAAAANvr8sVXj3e21zlbbGm+9tZa15orMW9q5x7+68LVSKtdeLT7esnuLa2GcVf3v3/5hyv/x29ubf6Z9KTv33+N7g0cq5b3vuVfLnbmv2Oyz/z5/j9ZLf+BLP99ob/8qx9l+Z+qlv/+LP/uPvNft/8vVcv/QMy/GPsH7u03f/f7Px3btB+7+sz/YLb/z4R+82f73+ozYeahmB8AxlFj0AVsk3SUkI6jZ2M/7W883Az53Q+bPf5vZNuZvOHKu7ebjoNui/10vDSX5U02W/9str2bKtaZG5a7Ssrq36r3cbuV1d+suY6qyuqfqrmOqsrqn665jqrK6p+puY6qyurvOg99buf+11BW/7BcVy6rf7bmOqoqq3+u5jqqKqt/s/8fH5Sy+vfUXEdVZfXP11xHVWX1V7ysVruy+hdqrqOqsvpvrrmOqsrq31tzHVWV1X9LzXUMyp2xLTsfTuef83Es9VtZf3qDn+WoXlsAAACAYfNP8/8JIYQQQgghhBAjH6urg74CwSBt76eZAdip/P4fb97/8eb9H2/ef/6XdA9/kfWTiR7jkz3Gmz3Gp7Lx/N/rdI/xvdl2V6M0fkuP8f/rMb6nx/htPcYXNxjf1TF+e4/X39Fj/M4e4wAAAIyHW2Pr/BAAAABG12u/+uKd39z31MWFS+f2HQtT1807fzD2p+Pf1t+O/Xze+6QZ/+b/k9j/RWx/H9u/Z+u7/wQAAAC2X/qeGH//BwAAgNGVvqfU+T8AAACMroXYOv8HAACA0XVzbJ3/AwAAwAgrZjZeHNt0XeCe2PY7rx8AsPP9f2zviu2+2N4d22/FNh0H3Bvbb9dUHwCwdX7+g58efa9Yn+//cDZ+OS5P7XXOXrtSUDS6Z/LfFdvdsf1On/Xk3wfQb/5kT595tiv//A3mBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABGR2Pt8ciRxSKED758//GfTb3zl6vL7m6vsX/tsYi9Vgih2X5dGl3v/zquePniq8c72yuxLcKhUISivTw8caGdaTaEcDbsD+dDK3y6vPLNJx8+duCzt2ZufffM869v44+ga/8AAABgFP03AAD//wcJIDw=") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x4) open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20) 3m12.91640212s ago: executing program 0 (id=7378): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file2\x00', 0x42, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) chdir(&(0x7f00000001c0)='./file0\x00') link(&(0x7f0000000100)='./file1\x00', &(0x7f0000000280)='./file3\x00') 3m12.223656133s ago: executing program 6 (id=7380): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000000180)={[{@clear_cache}, {@user_subvol_rm}, {@compress_force_algo={'compress-force', 0x3d, 'zlib'}}, {@noautodefrag}, {@autodefrag}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x7, 0x32, 0x37, 0x2d, 0x32, 0x36, 0x32, 0x2d, 0x2d, 0x37]}}, {@space_cache}]}, 0x0, 0x559e, &(0x7f00000103c0)="$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") ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, 0x0) 3m11.378861133s ago: executing program 0 (id=7382): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x6c, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x50, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "793bb0bb537be833"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="a999dbb3c95adb3923e14d9897b207dfbd955dea847a0871"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="ab6767688391798cb2500ac06e6fb37f1d425716da38f5e3c52210ef22b60194"}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4020}, 0x4000080) 3m10.841708697s ago: executing program 6 (id=7384): r0 = socket(0x10, 0x80002, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010000d0425bd7000fcdbff2500000000", @ANYRES32=0x0, @ANYBLOB="1000000000c600001c0012800b00010062726964676500000c000280080013"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) 3m10.406346597s ago: executing program 0 (id=7386): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000380)='memory.stat\x00', 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x14) sendfile(r2, r1, 0x0, 0x2) 3m8.069670208s ago: executing program 48 (id=7386): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000380)='memory.stat\x00', 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x14) sendfile(r2, r1, 0x0, 0x2) 3m8.01252254s ago: executing program 6 (id=7391): mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) open$dir(&(0x7f0000000100)='./file0\x00', 0x2, 0x8) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x10) fadvise64(r0, 0x8, 0xb098, 0x5) 3m7.526902019s ago: executing program 6 (id=7392): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file2\x00', 0x42, 0x0, 0x0, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) chdir(&(0x7f00000001c0)='./file0\x00') link(&(0x7f0000000100)='./file1\x00', &(0x7f0000000280)='./file3\x00') 3m6.22182721s ago: executing program 6 (id=7395): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f00000002c0)={0x3f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000001740)={'syz1\x00', {0x0, 0x0, 0x0, 0x6}, 0x0, [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0xc2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x0, 0x10000000, 0x0, 0x4, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7fffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xe8c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xffffffff, 0x0, 0x0, 0xffffffff, 0x806, 0x9], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff]}, 0x45c) 3m5.257458107s ago: executing program 6 (id=7398): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r0}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r1}, 0x18) rseq(&(0x7f0000000080), 0x20, 0x0, 0x0) 3m3.142222675s ago: executing program 49 (id=7398): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r0}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r1}, 0x18) rseq(&(0x7f0000000080), 0x20, 0x0, 0x0) 6.965130341s ago: executing program 3 (id=8068): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000004a80), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_SET_FLAGS(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000004ac0)={0x18, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x200008c5}, 0x40) 6.534327312s ago: executing program 3 (id=8071): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x84, &(0x7f00000000c0)={r2, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, &(0x7f00000001c0)=0x9c) 6.020118673s ago: executing program 7 (id=8075): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x5, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x7}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1}, &(0x7f0000000180), &(0x7f0000000100)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r1, &(0x7f0000000300), 0x0}, 0x20) 5.830677636s ago: executing program 5 (id=8076): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0x40045010, &(0x7f0000000300)=0x3) ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) 5.540327203s ago: executing program 7 (id=8078): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r2, @ANYBLOB="0a00340002020202020200000a00060008021100000000000800350000000000080026006c"], 0x44}}, 0x0) 5.189743097s ago: executing program 3 (id=8079): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, 0x0}, 0x2020) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x27, 0x4, 0x6a0dd525, 0xfffe, 0xffff, 0x20004, 0x9, 0x0, 0x0, 0xc00, 0xf}}, 0x50) 5.064408415s ago: executing program 7 (id=8081): r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000140), 0x2) r1 = memfd_create(&(0x7f0000000940)='y\x105\xfb\xf7u\x83%\b\x00\x00\x00\x00\x00\x00\x00\xea_\xccZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x10\x00\x00\x00\x04\x879\xa24\xa9a\b\x00\xb2\xd3\xcbZJ\x7fa\xc4\x1acB\xaa\xc1\xfb Q\x96\xd9xJ2\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea\b\x00\x00\x00\x00\x00\x00\x00\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9V\x01A\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\a\x00\x01vRk\xaabB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\x80\x81\xa0\xa2-g\b\x99\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecn\x02\xc8\xc4\f\x04\x99\xf6\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc8L\xae\x1ff\xcf\xb3\xb65\x12\x89\x02\x82t\x0f\xb0\xe89\x16\fO\x19\x91\xfd\x10\x0e\xa7r\x12\xab\xd4\xd1d\xad\f\x11\xb3\xb3c\xe2\xfe\xcd\x9f7\xa1\x14\xfa\xe2\xdf\x7f\xf4NG\xe3\xeb\x18\xde|\xb3\xf5S\x9a\x04\xb4Lry\xa9\xd6\xfb\xbc\n+N\xf7\xf6\x87\x95\xd9+\xd2sc/\x06\xaa#K3,k\xf3(\xcc\xc7\xb47\xfa\xc3\x1c\x91!\xd3\xd2`-\xa2xrR\x1c\x81i\x87u|29Q\xdf\xed\x10\x9b\x930\xa8v\xa0\x88\xa4t\x17\xb2\xca9\x02\x03\xc9P\xcc\xe0\xb7\x9c\x82\xb4\x03\x83e\xee\x95\xccO\x1b\x83\f\n{\xf3\x12\x90\xcf\x10\xb5>\b3\x80\x8d\xb2%7\x10\xeee\xe4\xc3\xb2^\xad\xb6~\xa2\xbdE\xbf\x91\vqt\x81\xbd\x19\xde\x81\tw\xd4p\xd1\x8aNJ\xb3M\a\xc4\xfa\xb0,$\x81j\xb4Hs\x93>\x16U\xd0t\xe4\xca0T\xb7\xf7\x9d4\b\xd9\xdeps\xec\xa0\nJ\xa5\xfe\xda{(\xee\xb5\x11?\xc3I-\x8bc\xc9\xfb\a\xe5\xab\xf8v1\xdc\xc5\x8c\xebs1\x81\xca\x81l\xa12\xff<\xf5\x12\xcc+\xd4\xab\x84\x16\xa4+\x0e\xd4\x02\xe3\xaa1\xeam\x8ce\xb4r\x0eo&3wff\xe6\x91\x7f\xba\xad\x05\xdd\xc0+\"\xa5\x80\'#\xfd\x9dA&\xee \x18\xe5\x17\x1bd\xd0\xb9\x90\xde\xec\xe4M\xe5\x06\x03r\fc\x8c\x10\x99x\xec`e`\xc3F\xdf\xbc\xa8\xff\x05\xe6\xea\xc3u\xd7\t\x88<\"\xf7!\xd6\x0e\xbbE^\xcd\xb0\x15g\xe6\xf2?y1\x9f\xd3\x95\xc4E\xd0\xb4\x16`r\x14\xad\x02\x17\x9a\x86I]\x02f\xd3\xc9\xe1H\xd7c\xcaQ\x8cE7\xcc\xcf=\xf3\xf7\xb9\xf6s\x88\bZi\b*w\xc5;\x88\r\xab\xa1\t\xf1\x02)5\x00\x84', 0xb) ftruncate(r1, 0xffff) fcntl$addseals(r1, 0x409, 0x7) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x8000}) 4.737120052s ago: executing program 7 (id=8082): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x3b}, @in6=@local, 0x0, 0x0, 0x0, 0xc9c, 0xa, 0x60, 0x30, 0x0, 0x0, 0xee01}, {0x0, 0x7f, 0x7, 0x3, 0x0, 0xfffffffffffffffd, 0x5, 0xffffffffffffffff}, {0xffffffff, 0x0, 0x0, 0x5}, 0x0, 0x0, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x90}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@updpolicy={0xb8, 0x19, 0x1, 0x70bd2a, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x2c}, @in6=@local, 0x4e22, 0x0, 0x4e24, 0x7, 0xa, 0x0, 0x0, 0x21}, {0x0, 0x1000000000000401, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x77, 0x5, 0x0, 0x7fff}, 0x8, 0x0, 0x1}}, 0xb8}}, 0xc0e1ed0507c55408) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x8, 0x2c, 0x0, @remote, @local, {[], {{0x3a00, 0x5, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 4.666015979s ago: executing program 1 (id=8083): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={r2, 0x80000001}, 0x8) 4.639797077s ago: executing program 5 (id=8084): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000180)='\x00', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @private1}, 0x1c) sendto$inet6(r0, &(0x7f0000000640)='w', 0x1, 0x40000, &(0x7f0000000040)={0xa, 0x4e21, 0xffffffff, @private2, 0xb852}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={0x0, 0xda}, &(0x7f0000000100)=0x8) 4.269298108s ago: executing program 7 (id=8086): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f646973636172642c6e6f636865636b706f696e745f6d657267652c616c6c6f635f6d6f64653d64656661756c742c636865636b706f696e743d64697361626c652c666c7573685f6d657267652c6661756c745f696e6a656374696f6e3d30303030303030303030303030303030313236322c61636c2c6e6f61636c2c636f6d70726573735f63616368652c616c6c6f635f6d6f64653d64656661756c742c6e6f657874656e745f63616368652c636f6d70726573735f63616368652c6661756c745f747970653d30303030303030303030303030303030303030342c008d73b6efef8bf6f516d60904182d07bca0e749cc80891d95a64e7017e017d72450a7d42539b57fb9c48865a0e2adbf3b690b6e666283ce3274281626e6b683df1e10a4b3b952294895df65e4a6b94f5c5a650e35a010e04bce2a92891fec6ae51521e10eeb1224f2905d434d7558325f47edf48ce3a8ad4664164f"], 0x1, 0x5505, &(0x7f0000002480)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) 4.204972304s ago: executing program 5 (id=8087): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000002c0)={0x0, 0x5}, &(0x7f0000000400)=0x8) 4.156138379s ago: executing program 1 (id=8088): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="b4050000200080066110000000000000c6000000000000009500d800000000009f33ef60916e55893f1eeb0b2ae13d922e6235592ce847e2566c43d72918a897323fd0723043c47c896ce0bce66a245ad9d6817fd98cd824498949714ffaac8a6f77ef0000ca5d82054d54d53cd2b6db714e75d9bdae214fa68a0557eb2c5ca683a4b6fcfcff0bffffffffffd47042eaebfa6fa26fa7a347c7faa8e700458c60897d4a6148a1c11428427c40de60beacf871ab5c2ff88a02084e5b5271e45f00003826fb8579c1fb01d2c5553d2ccb5fc5b51fe6b174ebd9907dcff414ed55b0c20cdbe7009a6fe7cc78762f1d4dcdbca64920db9a50f86c21632f7a4bd344e0bd74ff05d37ef68e3b9db863c758ffffffffabe90ac5d08dd9d4e0359c41cf3626e1230bc1cd4c02c460ceb44276e9bd94d1c2e6d17dc5c2edf332a62f5fe68fbbbbfcfd00000000000fbf940e6652d357474ed5f816f66ac3027460ae66317f83cdd7a7eb2a7003d1a6cf5478533584961c329fcf5a43e05c92bfef0dcd28000000003f2915a3039c9a78f63b8ec7e60a0000fed7d67c440e23d130e51eea1e085bebabe7059de9cbfc5117c024185a062acb6b8eec31c21b3af8b9eedb4660ed2deb7acf2a33a376a5cb7d4266d5b0be14488d14b473502486ad8dd600000000000000000000c7766ea7c581782c0d90f42a85303835fc291c25d29e6bead5d7360f2e1929d7736ebc8558c4506407d3046022bdf25485bd5442169e9b4c1278343581b7a06f65e8ea6b042c4fd08381e5000000000000006398d6480000001a723b91030000006480304c66b217aea0156ce9eef911fe5b7370f79987303ecb3aabc53c60014a0101ab766754f596b41da9534d12b8306a1b36cf3b03f0d790879f523eabfbee83d8bd472ef69660cf6ec897106c51e54a17497f384c4956b41f3843e7c878b1e11316d8ddae1c6c3b85aaf7a9fcaf8f5d6186c42542d68ba72682c938d3c0a2e6e10eed71b1d31c9f300b41745329bf34495c63e43fb896e4903fb0fae54a8f0fe3b48a5b29d279070647e65097c8ecf32a15080000000000000001007ba4a70a084bd994ac5e00000000000000000000000000351a30cd97f83d72631d0fe92efa974a53f4dc1eb9a86df632a6d463688123f64d42a919bcfc44a90ffd680200000091f842a91c977f6075d07e39e669b0713af0498a99bf5261cb3269d499a5202d7a08b33ade7b38829b9bd39619688d5e9af22170ef83e5b92cbb32b655c45de1c154aad81bf64351668a3f76d5afa958aff76249e0ffdf8e45155536a1a44bfcbfbfd232af000052f9002a"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000580)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="05"], 0x10) close(r0) close(r1) 4.051382155s ago: executing program 2 (id=8089): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r1}, &(0x7f00000006c0), &(0x7f0000000700)=r0}, 0x20) 3.953724255s ago: executing program 3 (id=8090): syz_mount_image$hfs(&(0x7f0000000140), &(0x7f0000000040)='./bus\x00', 0x2810880, &(0x7f0000000300)=ANY=[], 0x88, 0x28e, &(0x7f0000000680)="$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") memfd_secret(0x80000) renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./bus\x00', 0x0) sched_setscheduler(0x0, 0x1, 0x0) open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0) 3.646692838s ago: executing program 1 (id=8091): r0 = syz_io_uring_setup(0x49f, &(0x7f0000000400)={0x0, 0xe7a8, 0x400, 0x7ffe, 0x40024e}, &(0x7f0000000340)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) r2 = eventfd2(0xfe, 0x80001) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000300)=r2, 0x1) io_uring_enter(r0, 0x3d0e, 0x4c1, 0x43, 0x0, 0x0) 3.636951229s ago: executing program 5 (id=8092): r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000300)=0x806, 0x2) 3.570210438s ago: executing program 2 (id=8093): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="05000000040000000400000001"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 3.199786178s ago: executing program 5 (id=8094): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) syz_mount_image$f2fs(&(0x7f0000000380), &(0x7f0000000400)='./bus\x00', 0xa18008, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x5505, &(0x7f00000079c0)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S") r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) openat(r0, &(0x7f0000000040)='./file1\x00', 0x101543, 0x15) 2.977338274s ago: executing program 1 (id=8095): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0xfe, 0x0, 0x0) read$FUSE(r0, &(0x7f0000004940)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, r1, {0x7, 0x8, 0xfffffff7, 0xf2babda972faf6a5, 0x400, 0x1, 0xfffffff6, 0x2c0, 0x0, 0x0, 0x100, 0x27}}, 0x50) chown(&(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, 0xee00) 2.970038985s ago: executing program 2 (id=8096): r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20) recvmmsg(r0, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10051, 0x0) 2.529377268s ago: executing program 2 (id=8097): syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40)={0x8000203d}) 2.131636317s ago: executing program 2 (id=8098): r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) setpriority(0x2, 0xff, 0x0) 1.677033288s ago: executing program 1 (id=8099): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) r2 = pidfd_getfd(r1, r1, 0x0) setns(r2, 0x66020000) mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0) 1.163983705s ago: executing program 5 (id=8100): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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") r0 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20) fallocate(r0, 0x0, 0x0, 0x1001f0) fallocate(r0, 0x3, 0x9, 0x10000) copy_file_range(r0, 0x0, r0, &(0x7f00000000c0)=0xc615, 0x39ea, 0x0) 618.668888ms ago: executing program 3 (id=8101): r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x47ca, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00', 0x0}) setsockopt$CAN_RAW_FD_FRAMES(r0, 0x65, 0x5, &(0x7f0000000180)=0x1, 0x4) sendmsg$can_raw(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x1d, r1}, 0x10, &(0x7f0000000000)={&(0x7f00000001c0)=@canfd={{}, 0x2e, 0x0, 0x0, 0x0, "4e4e488e419039dda425818c34de45852abd1372621b404219373c9a72cdb611ef256a70bf66c39d7082f2809cbc3da9bb3c86e0c5e53cff15d561c53fe9ae3a"}, 0x48}}, 0x1) 591.923974ms ago: executing program 7 (id=8102): r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x10) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff}) ioctl$SG_BLKTRACETEARDOWN(r0, 0x1276, 0x0) 545.727347ms ago: executing program 1 (id=8103): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)={0x15}, 0x8) 280.780872ms ago: executing program 2 (id=8104): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd010000000000140000006000000000042f00fe88a43de1a400000000000000007d01ff020000000000000000000000000001"], 0xfdef) 0s ago: executing program 3 (id=8105): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000280)={[{@jqfmt_vfsold}, {@grpid}, {@debug}, {@noload}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@debug}, {@usrjquota}, {@nolazytime}, {@mblk_io_submit}]}, 0xfe, 0x477, &(0x7f0000000780)="$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") creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x80) symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) kernel console output (not intermixed with test programs): disabled! [ 2393.432398][T25643] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 2393.618788][ T4458] kworker/u8:24: attempt to access beyond end of device [ 2393.618788][ T4458] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 2393.634368][ T4458] CPU: 1 UID: 0 PID: 4458 Comm: kworker/u8:24 Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2393.634542][ T4458] Tainted: [W]=WARN [ 2393.634593][ T4458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2393.634718][ T4458] Workqueue: writeback wb_workfn (flush-7:5) [ 2393.634898][ T4458] Call Trace: [ 2393.634948][ T4458] [ 2393.635000][ T4458] __dump_stack+0x26/0x30 [ 2393.635160][ T4458] dump_stack_lvl+0x1df/0x270 [ 2393.635332][ T4458] dump_stack+0x1e/0x25 [ 2393.635480][ T4458] f2fs_handle_critical_error+0xa6f/0xc20 [ 2393.635702][ T4458] f2fs_stop_checkpoint+0x65/0x80 [ 2393.635893][ T4458] f2fs_write_end_io+0xb4b/0x1920 [ 2393.636032][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.636235][ T4458] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 2393.636423][ T4458] bio_endio+0xe27/0xf80 [ 2393.636590][ T4458] submit_bio_noacct+0x214/0x2710 [ 2393.636798][ T4458] submit_bio+0x5a9/0x5d0 [ 2393.636969][ T4458] f2fs_submit_write_bio+0x92/0x250 [ 2393.637144][ T4458] __submit_merged_bio+0x16f/0x6a0 [ 2393.637314][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.637507][ T4458] __submit_merged_write_cond+0x458/0x9a0 [ 2393.637703][ T4458] f2fs_write_data_pages+0x4bb2/0x5480 [ 2393.638117][ T4458] ? blk_add_trace_getrq+0x30/0x290 [ 2393.638284][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.638473][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.638652][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.638841][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.639027][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.639192][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.639363][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.639542][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.639724][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.639915][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.640094][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.640270][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.640441][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.640622][ T4458] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2393.640796][ T4458] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2393.640975][ T4458] do_writepages+0x3ef/0x860 [ 2393.641126][ T4458] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2393.641306][ T4458] ? writeback_sb_inodes+0x31/0x1c90 [ 2393.641452][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.641644][ T4458] __writeback_single_inode+0x101/0x1190 [ 2393.641807][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.641997][ T4458] writeback_sb_inodes+0xaa9/0x1c90 [ 2393.642238][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.642445][ T4458] wb_writeback+0x4ce/0xc00 [ 2393.642605][ T4458] ? queue_io+0x4d1/0x790 [ 2393.642754][ T4458] wb_workfn+0x397/0x1910 [ 2393.642895][ T4458] ? kmsan_get_metadata+0xfb/0x160 [ 2393.643090][ T4458] ? __pfx_wb_workfn+0x10/0x10 [ 2393.643214][ T4458] process_scheduled_works+0xb91/0x1d80 [ 2393.643438][ T4458] worker_thread+0xedf/0x1590 [ 2393.643653][ T4458] kthread+0xd59/0xf00 [ 2393.643785][ T4458] ? __pfx_worker_thread+0x10/0x10 [ 2393.643990][ T4458] ? __pfx_kthread+0x10/0x10 [ 2393.644122][ T4458] ret_from_fork+0x1e0/0x310 [ 2393.644245][ T4458] ? __pfx_kthread+0x10/0x10 [ 2393.644374][ T4458] ret_from_fork_asm+0x1a/0x30 [ 2393.644568][ T4458] [ 2393.971580][ T4458] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 2394.077367][T25489] veth0_vlan: entered promiscuous mode [ 2394.176846][T25489] veth1_vlan: entered promiscuous mode [ 2394.232715][T25531] veth0_vlan: entered promiscuous mode [ 2394.620618][T25531] veth1_vlan: entered promiscuous mode [ 2394.778816][T25489] veth0_macvtap: entered promiscuous mode [ 2394.849841][T25489] veth1_macvtap: entered promiscuous mode [ 2394.955241][T25531] veth0_macvtap: entered promiscuous mode [ 2395.164294][T25531] veth1_macvtap: entered promiscuous mode [ 2395.202733][T25489] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2395.390011][T25489] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2395.474766][T25654] loop7: detected capacity change from 0 to 32768 [ 2395.555201][T25531] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2395.579644][T25489] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.589746][T25489] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.602582][T25489] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.613718][T25489] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.686594][T25654] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 2395.686720][T25654] allowing incompatible features above 0.0: (unknown version) [ 2395.686809][T25654] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2395.699735][T25531] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2395.705209][T25654] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0 [ 2395.740019][T25654] bcachefs (loop7): initializing new filesystem [ 2395.756831][T25654] bcachefs (loop7): going read-write [ 2395.810148][T25531] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.820048][T25531] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.829255][T25531] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.838430][T25531] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2395.951868][T25654] bcachefs (loop7): marking superblocks [ 2396.002021][T25654] bcachefs (loop7): initializing freespace [ 2396.029690][T25654] bcachefs (loop7): done initializing freespace [ 2396.048768][T25654] bcachefs (loop7): reading snapshots table [ 2396.055296][T25654] bcachefs (loop7): reading snapshots done [ 2396.219902][T25654] bcachefs (loop7): loop7: Superblock write was silently dropped! (seq 0 expected 42) [ 2396.232359][T25654] bcachefs (loop7): done starting filesystem [ 2396.904091][T25288] bcachefs (loop7): shutting down [ 2396.909387][T25288] bcachefs (loop7): going read-only [ 2396.915347][T25288] bcachefs (loop7): finished waiting for writes to stop [ 2396.936082][T25288] bcachefs (loop7): flushing journal and stopping allocators, journal seq 2 [ 2397.312955][T25288] bcachefs (loop7): flushing journal and stopping allocators complete, journal seq 3 [ 2397.387773][T25664] loop1: detected capacity change from 0 to 65536 [ 2397.402555][T25288] bcachefs (loop7): clean shutdown complete, journal seq 4 [ 2397.455627][T25288] bcachefs (loop7): marking filesystem clean [ 2397.481444][T25664] XFS (loop1): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 2397.614245][T25288] bcachefs (loop7): shutdown complete [ 2397.677806][T25664] XFS (loop1): Ending clean mount [ 2397.753078][T25664] XFS (loop1): Quotacheck needed: Please wait. [ 2397.844142][T25664] XFS (loop1): Quotacheck: Done. [ 2397.971798][T20074] XFS (loop1): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 2399.261171][T25687] loop5: detected capacity change from 0 to 32768 [ 2399.435517][T25687] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 2399.435674][T25687] allowing incompatible features above 0.0: (unknown version) [ 2399.435762][T25687] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2399.483989][T25687] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0 [ 2399.493879][T25687] bcachefs (loop5): initializing new filesystem [ 2399.519646][T25687] bcachefs (loop5): going read-write [ 2399.558136][T25687] bcachefs (loop5): marking superblocks [ 2399.607825][T25687] bcachefs (loop5): initializing freespace [ 2399.633716][T25687] bcachefs (loop5): done initializing freespace [ 2399.655937][T25687] bcachefs (loop5): reading snapshots table [ 2399.662270][T25687] bcachefs (loop5): reading snapshots done [ 2399.791320][T25687] bcachefs (loop5): done starting filesystem [ 2400.042357][T21457] bcachefs (loop5): shutting down [ 2400.047763][T21457] bcachefs (loop5): going read-only [ 2400.053207][T21457] bcachefs (loop5): finished waiting for writes to stop [ 2400.187316][T21457] bcachefs (loop5): flushing journal and stopping allocators, journal seq 3 [ 2400.375078][T21457] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3 [ 2400.475038][T21457] bcachefs (loop5): clean shutdown complete, journal seq 4 [ 2400.506792][T21457] bcachefs (loop5): marking filesystem clean [ 2400.659778][T21457] bcachefs (loop5): shutdown complete [ 2402.328733][T25730] loop7: detected capacity change from 0 to 512 [ 2402.412186][T25730] EXT4-fs error (device loop7): ext4_orphan_get:1393: inode #15: comm syz.7.7437: casefold flag without casefold feature [ 2402.495627][T25730] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.7437: couldn't read orphan inode 15 (err -117) [ 2402.560841][T25730] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2402.754897][ T3552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2402.764633][ T3552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2402.862731][T19817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2402.873941][T19817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2402.998423][T25288] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2403.842631][ T1132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2403.851157][ T1132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2404.146260][ T1132] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2404.154756][ T1132] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2404.358211][T25745] loop3: detected capacity change from 0 to 40427 [ 2404.368470][T25745] F2FS-fs (loop3): Wrong NAT boundary, start(2560) end(3584) blocks(512) [ 2404.377627][T25745] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 2404.436373][T25745] F2FS-fs (loop3): invalid crc value [ 2404.774221][T25745] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 2404.781569][T25745] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 2404.843040][T25750] f2fs_ckpt-7:3: attempt to access beyond end of device [ 2404.843040][T25750] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 2404.857885][T25750] CPU: 1 UID: 0 PID: 25750 Comm: f2fs_ckpt-7:3 Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2404.858062][T25750] Tainted: [W]=WARN [ 2404.858113][T25750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2404.858195][T25750] Call Trace: [ 2404.858245][T25750] [ 2404.858300][T25750] __dump_stack+0x26/0x30 [ 2404.858465][T25750] dump_stack_lvl+0x1df/0x270 [ 2404.858638][T25750] dump_stack+0x1e/0x25 [ 2404.858783][T25750] f2fs_handle_critical_error+0xa6f/0xc20 [ 2404.858994][T25750] f2fs_stop_checkpoint+0x65/0x80 [ 2404.859167][T25750] f2fs_write_end_io+0xb4b/0x1920 [ 2404.859310][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.859511][T25750] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 2404.859696][T25750] bio_endio+0xe27/0xf80 [ 2404.859873][T25750] submit_bio_noacct+0x214/0x2710 [ 2404.860086][T25750] submit_bio+0x5a9/0x5d0 [ 2404.860254][T25750] f2fs_submit_write_bio+0x92/0x250 [ 2404.860432][T25750] __submit_merged_bio+0x16f/0x6a0 [ 2404.860600][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.860789][T25750] __submit_merged_write_cond+0x458/0x9a0 [ 2404.860984][T25750] f2fs_write_data_pages+0x4bb2/0x5480 [ 2404.861291][T25750] ? kmsan_get_metadata+0xfb/0x160 [ 2404.861465][T25750] ? kmsan_get_metadata+0xfb/0x160 [ 2404.861639][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.861832][T25750] ? folios_put_refs+0x21/0xb10 [ 2404.861965][T25750] ? filter_irq_stacks+0x49/0x190 [ 2404.862107][T25750] ? stack_depot_save_flags+0x35/0x7b0 [ 2404.862273][T25750] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2404.862444][T25750] ? kmsan_get_metadata+0xfb/0x160 [ 2404.862616][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.862796][T25750] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2404.862988][T25750] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2404.863169][T25750] do_writepages+0x3ef/0x860 [ 2404.863330][T25750] ? _raw_spin_unlock+0x30/0x50 [ 2404.863468][T25750] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 2404.863681][T25750] filemap_fdatawrite+0x207/0x260 [ 2404.863929][T25750] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 2404.864097][T25750] f2fs_write_checkpoint+0xfe2/0x2b00 [ 2404.864364][T25750] __checkpoint_and_complete_reqs+0xc7/0x4d0 [ 2404.864522][T25750] ? kmsan_get_metadata+0xfb/0x160 [ 2404.864696][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.864875][T25750] ? kmsan_get_metadata+0xfb/0x160 [ 2404.865056][T25750] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2404.865246][T25750] issue_checkpoint_thread+0xa6/0x350 [ 2404.865389][T25750] ? __pfx_autoremove_wake_function+0x10/0x10 [ 2404.865585][T25750] kthread+0xd59/0xf00 [ 2404.865719][T25750] ? __pfx_issue_checkpoint_thread+0x10/0x10 [ 2404.865895][T25750] ? __pfx_kthread+0x10/0x10 [ 2404.866030][T25750] ret_from_fork+0x1e0/0x310 [ 2404.866166][T25750] ? __pfx_kthread+0x10/0x10 [ 2404.866302][T25750] ret_from_fork_asm+0x1a/0x30 [ 2404.866518][T25750] [ 2405.154314][T25750] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 2405.452662][T25757] loop2: detected capacity change from 0 to 4096 [ 2405.544593][T25757] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 2405.670704][T25761] loop7: detected capacity change from 0 to 64 [ 2406.054120][T25763] loop1: detected capacity change from 0 to 2048 [ 2406.185724][T25763] EXT4-fs (loop1): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2406.746275][T20074] EXT4-fs (loop1): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 2406.898491][T25774] netlink: 'syz.7.7449': attribute type 5 has an invalid length. [ 2406.906807][T25774] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7449'. [ 2406.917966][T25774] bond0: Unable to set down delay as MII monitoring is disabled [ 2407.200995][T25778] loop3: detected capacity change from 0 to 2048 [ 2407.221008][T25782] loop1: detected capacity change from 0 to 256 [ 2407.247409][T25778] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2407.423864][ T30] audit: type=1800 audit(1752336508.531:404): pid=25778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7444" name="file1" dev="loop3" ino=1346 res=0 errno=0 [ 2407.455576][T25782] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 2407.509425][ T30] audit: type=1800 audit(1752336508.641:405): pid=25782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7450" name="file1" dev="loop1" ino=1049003 res=0 errno=0 [ 2407.570256][T25788] input: syz0 as /devices/virtual/input/input46 [ 2408.077260][T25794] loop1: detected capacity change from 0 to 1024 [ 2408.335428][T15192] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 2408.433628][ T1132] hfsplus: b-tree write err: -5, ino 4 [ 2408.545149][T15192] usb 3-1: Using ep0 maxpacket: 32 [ 2408.572501][T15192] usb 3-1: config 0 has no interfaces? [ 2408.599660][T15192] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 2408.613938][T15192] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2408.625328][T15192] usb 3-1: Product: syz [ 2408.629899][T15192] usb 3-1: Manufacturer: syz [ 2408.634894][T15192] usb 3-1: SerialNumber: syz [ 2408.689188][T25802] loop5: detected capacity change from 0 to 2048 [ 2408.691189][T15192] usb 3-1: config 0 descriptor?? [ 2408.799695][T25802] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2409.043121][T21457] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 2409.231247][T25818] loop3: detected capacity change from 0 to 256 [ 2409.233943][T25818] exfat: Deprecated parameter 'utf8' [ 2409.528450][T20065] IPVS: starting estimator thread 0... [ 2409.634783][T25822] IPVS: using max 288 ests per chain, 14400 per kthread [ 2409.864368][T25824] input: syz0 as /devices/virtual/input/input47 [ 2410.759465][T25829] loop3: detected capacity change from 0 to 32768 [ 2410.875266][T25829] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,read_only [ 2410.875405][T25829] allowing incompatible features above 0.0: (unknown version) [ 2410.875493][T25829] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2410.918745][T25829] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 2410.927997][T25829] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 2410.936840][T25829] bcachefs (loop3): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive [ 2410.936840][T25829] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes [ 2411.051128][T15192] usb 6-1: new low-speed USB device number 23 using dummy_hcd [ 2411.121905][T25829] bcachefs (loop3): btree node read error at btree lru level 0/0 [ 2411.122001][T25829] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0 [ 2411.122100][T25829] loop3 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0 [ 2411.122175][T25829] flagging btree lru lost data [ 2411.122242][T25829] running recovery pass check_lrus (14), currently at recovery_pass_empty (0) [ 2411.122327][T25829] running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0) [ 2411.122417][T25829] running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0) [ 2411.122507][T25829] ret btree_node_read_validate_error [ 2411.198386][T25829] bcachefs (loop3): error reading btree root btree=lru level=0: btree_node_read_error, fixing [ 2411.231861][T25829] bcachefs (loop3): btree node read error at btree freespace level 0/0 [ 2411.231960][T25829] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0 [ 2411.232051][T25829] loop3 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295 [ 2411.232132][T25829] u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0 [ 2411.232205][T25829] flagging btree freespace lost data [ 2411.232275][T25829] ret btree_node_read_validate_error [ 2411.260877][T15192] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 2411.261123][T15192] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8 [ 2411.261364][T15192] usb 6-1: config 0 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 2411.276286][T25829] bcachefs (loop3): error reading btree root btree=freespace level=0: btree_node_read_error, fixing [ 2411.345903][T15192] usb 6-1: config 0 interface 0 has no altsetting 0 [ 2411.352822][T15192] usb 6-1: New USB device found, idVendor=28bd, idProduct=0074, bcdDevice= 0.00 [ 2411.362592][T15192] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2411.400707][T25829] bcachefs (loop3): check_topology... done [ 2411.413767][T25829] bcachefs (loop3): accounting_read... done [ 2411.429156][T15192] usb 6-1: config 0 descriptor?? [ 2411.435378][T25829] bcachefs (loop3): alloc_read... done [ 2411.447732][T25829] bcachefs (loop3): snapshots_read... done [ 2411.458799][T25829] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean [ 2411.473097][T25829] bcachefs (loop3): done starting filesystem [ 2411.487758][T25835] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 2411.504209][T25835] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 2411.579691][T25829] bcachefs (loop3): inode 4099:4294967295 has wrong backpointer: [ 2411.579781][T25829] got 8977922886548783724:0 [ 2411.579851][T25829] should be 4098:8977922886548783724, fixing [ 2411.793554][T25531] bcachefs (loop3): shutting down [ 2411.959101][T25531] bcachefs (loop3): shutdown complete [ 2412.017387][T15192] uclogic 0003:28BD:0074.0032: interface is invalid, ignoring [ 2412.165275][T25846] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7478'. [ 2412.244897][T15192] usb 6-1: USB disconnect, device number 23 [ 2412.461486][T25851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 2412.471338][T25851] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 2412.560417][T25849] loop7: detected capacity change from 0 to 2048 [ 2412.644190][T25849] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2412.657262][T25849] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 2412.996614][T25288] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2414.282410][T25865] loop2: detected capacity change from 0 to 32768 [ 2414.385324][T25865] JBD2: Ignoring recovery information on journal [ 2414.500461][T25865] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 2414.676043][T25489] ocfs2: Unmounting device (7,2) on (node local) [ 2414.717606][T25874] loop1: detected capacity change from 0 to 1024 [ 2414.785821][T25874] EXT4-fs: Ignoring removed orlov option [ 2414.806108][T25876] loop7: detected capacity change from 0 to 164 [ 2414.866895][T25874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2415.418474][T20074] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2416.363023][T25885] loop5: detected capacity change from 0 to 32768 [ 2416.372914][T25885] btrfs: Deprecated parameter 'usebackuproot' [ 2416.379416][T25885] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2416.398461][T25885] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7495 (25885) [ 2416.443591][T25885] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2416.454289][T25885] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm [ 2416.463556][T25885] BTRFS info (device loop5): using free-space-tree [ 2416.633996][T19538] BTRFS warning (device loop5): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2416.649733][T25885] BTRFS error (device loop5): failed to load root extent [ 2416.657531][T25885] BTRFS warning (device loop5): try to load backup roots slot 1 [ 2416.672893][T19535] BTRFS warning (device loop5): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2416.687142][T25885] BTRFS warning (device loop5): couldn't read tree root [ 2416.701455][T25885] BTRFS warning (device loop5): try to load backup roots slot 2 [ 2416.710495][ T9082] BTRFS error (device loop5): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2416.721870][T25885] BTRFS warning (device loop5): couldn't read tree root [ 2416.729974][T25885] BTRFS warning (device loop5): try to load backup roots slot 3 [ 2416.847769][T25885] BTRFS info (device loop5): rebuilding free space tree [ 2416.905470][T25885] BTRFS info (device loop5): checking UUID tree [ 2417.401181][T21457] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2417.505159][T20065] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 2417.735399][T20065] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 2417.745023][T20065] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2417.818763][T20065] usb 2-1: config 0 descriptor?? [ 2417.858938][T20065] cp210x 2-1:0.0: cp210x converter detected [ 2418.274740][T20065] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 2418.518163][T20065] usb 2-1: cp210x converter now attached to ttyUSB0 [ 2418.718830][T20065] usb 2-1: USB disconnect, device number 22 [ 2418.770776][T20065] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 2418.865530][T20065] cp210x 2-1:0.0: device disconnected [ 2419.812108][T25935] loop7: detected capacity change from 0 to 4096 [ 2419.878361][T25935] NILFS (loop7): invalid segment: Checksum error in segment payload [ 2419.887021][T25935] NILFS (loop7): trying rollback from an earlier position [ 2419.944961][T25935] NILFS (loop7): recovery complete [ 2419.954451][T25945] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2420.435503][T25950] 9pnet: p9_errstr2errno: server reported unknown error @íÿ0x000000000000000400000000000000000004 [ 2420.769761][T25957] team0 (unregistering): Port device team_slave_0 removed [ 2420.910364][T25957] team0 (unregistering): Port device team_slave_1 removed [ 2421.771381][T25960] loop7: detected capacity change from 0 to 32768 [ 2421.780531][T25960] btrfs: Deprecated parameter 'usebackuproot' [ 2421.787056][T25960] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2421.798689][T25960] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.7516 (25960) [ 2421.880743][T25960] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2421.891535][T25960] BTRFS info (device loop7): using crc32c (crc32c-x86_64) checksum algorithm [ 2421.900780][T25960] BTRFS info (device loop7): using free-space-tree [ 2422.183905][T19528] BTRFS warning (device loop7): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2422.198122][T25960] BTRFS error (device loop7): failed to load root extent [ 2422.205600][T25960] BTRFS warning (device loop7): try to load backup roots slot 1 [ 2422.333809][T19528] BTRFS warning (device loop7): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2422.347791][T25960] BTRFS warning (device loop7): couldn't read tree root [ 2422.355422][T25960] BTRFS warning (device loop7): try to load backup roots slot 2 [ 2422.454093][T19528] BTRFS error (device loop7): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2422.465727][T25960] BTRFS warning (device loop7): couldn't read tree root [ 2422.472969][T25960] BTRFS warning (device loop7): try to load backup roots slot 3 [ 2422.633700][T25964] loop1: detected capacity change from 0 to 32768 [ 2422.681657][T25960] BTRFS info (device loop7): rebuilding free space tree [ 2422.718223][T25960] BTRFS info (device loop7): checking UUID tree [ 2422.784078][T25964] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2422.971370][T25288] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2423.411348][T25964] XFS (loop1): Ending clean mount [ 2423.477958][T25964] XFS (loop1): Quotacheck needed: Please wait. [ 2423.579906][T25964] XFS (loop1): Quotacheck: Done. [ 2423.719715][T20074] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2424.595172][T26008] loop3: detected capacity change from 0 to 4096 [ 2424.643547][T26008] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 2424.955337][T26008] ntfs3(loop3): ino=0, attr_set_size [ 2425.008940][T26014] ntfs3(loop3): ino=0, attr_set_size [ 2425.061309][T26008] ntfs3(loop3): ino=0, attr_set_size [ 2425.085946][T26008] ntfs3(loop3): no free space to extend mft [ 2425.904203][T26027] loop1: detected capacity change from 0 to 256 [ 2426.059312][ T30] audit: type=1800 audit(1752336527.191:406): pid=26027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7528" name="file1" dev="loop1" ino=1049004 res=0 errno=0 [ 2426.355501][T26032] loop7: detected capacity change from 0 to 256 [ 2426.433775][T26032] exFAT-fs (loop7): failed to read boot sector [ 2426.440382][T26032] exFAT-fs (loop7): failed to recognize exfat type [ 2426.757512][T26030] loop3: detected capacity change from 0 to 32768 [ 2426.766589][T26030] btrfs: Deprecated parameter 'usebackuproot' [ 2426.772933][T26030] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2426.791595][T26030] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7536 (26030) [ 2426.821318][T26030] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2426.837439][T26030] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 2426.849243][T26030] BTRFS info (device loop3): using free-space-tree [ 2426.907724][T26027] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 2426.917219][T26027] FAT-fs (loop1): Filesystem has been set read-only [ 2427.148892][ T9082] BTRFS warning (device loop3): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2427.163101][T26030] BTRFS error (device loop3): failed to load root extent [ 2427.170554][T26030] BTRFS warning (device loop3): try to load backup roots slot 1 [ 2427.204336][ T1132] BTRFS warning (device loop3): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2427.218330][T26030] BTRFS warning (device loop3): couldn't read tree root [ 2427.225768][T26030] BTRFS warning (device loop3): try to load backup roots slot 2 [ 2427.240991][ T4458] BTRFS error (device loop3): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2427.252369][T26030] BTRFS warning (device loop3): couldn't read tree root [ 2427.260023][T26030] BTRFS warning (device loop3): try to load backup roots slot 3 [ 2427.305008][T26030] BTRFS info (device loop3): rebuilding free space tree [ 2427.331094][T26030] BTRFS info (device loop3): checking UUID tree [ 2427.516133][T25531] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2428.900893][T26070] loop5: detected capacity change from 0 to 128 [ 2428.958089][T26061] loop7: detected capacity change from 0 to 2048 [ 2428.990144][T26061] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2429.001782][T26065] loop2: detected capacity change from 0 to 32768 [ 2429.013583][T26065] gfs2: Invalid block size shift [ 2430.046129][T26080] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7553'. [ 2430.055659][T26080] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7553'. [ 2430.274574][T26086] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input48 [ 2430.459053][T26091] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7556'. [ 2430.937029][T26097] loop5: detected capacity change from 0 to 256 [ 2432.029324][T26103] loop3: detected capacity change from 0 to 32768 [ 2432.038509][T26103] XFS: attr2 mount option is deprecated. [ 2432.150733][T26103] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2432.469727][T26107] loop1: detected capacity change from 0 to 32768 [ 2432.488944][T26103] XFS (loop3): Ending clean mount [ 2432.505235][T26103] XFS (loop3): Quotacheck needed: Please wait. [ 2432.633122][T26103] XFS (loop3): Quotacheck: Done. [ 2432.693071][T26107] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 2432.693218][T26107] allowing incompatible features above 0.0: (unknown version) [ 2432.693569][T26107] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2432.738988][T26107] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 2432.747829][T26107] bcachefs (loop1): initializing new filesystem [ 2432.775810][T26107] bcachefs (loop1): going read-write [ 2432.841886][T26107] bcachefs (loop1): marking superblocks [ 2432.895883][T26107] bcachefs (loop1): initializing freespace [ 2432.925654][T26107] bcachefs (loop1): done initializing freespace [ 2432.944706][T26107] bcachefs (loop1): reading snapshots table [ 2432.951834][T26107] bcachefs (loop1): reading snapshots done [ 2433.034380][T26107] bcachefs (loop1): done starting filesystem [ 2433.042605][T26133] netlink: 14528 bytes leftover after parsing attributes in process `syz.5.7567'. [ 2433.135942][T20074] bcachefs (loop1): shutting down [ 2433.141379][T20074] bcachefs (loop1): going read-only [ 2433.151568][T20074] bcachefs (loop1): finished waiting for writes to stop [ 2433.284219][T20074] bcachefs (loop1): flushing journal and stopping allocators, journal seq 2 [ 2433.304145][T25531] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2433.551820][T20074] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3 [ 2433.628758][T20074] bcachefs (loop1): clean shutdown complete, journal seq 4 [ 2433.685171][T20074] bcachefs (loop1): marking filesystem clean [ 2433.857674][T20074] bcachefs (loop1): shutdown complete [ 2436.119295][T26196] loop3: detected capacity change from 0 to 32768 [ 2436.901612][T26196] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nochanges,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only,nocow [ 2436.901754][T26196] allowing incompatible features above 0.0: (unknown version) [ 2436.901842][T26196] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2436.950135][T26196] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 2436.959415][T26196] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 2436.971626][T26196] bcachefs (loop3): Version upgrade required: [ 2436.971626][T26196] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 2436.971626][T26196] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 2436.971626][T26196] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 2437.341432][T26196] bcachefs (loop3): accounting_read... done [ 2437.369058][T26196] bcachefs (loop3): alloc_read... done [ 2437.382329][T26196] bcachefs (loop3): done starting filesystem [ 2437.620222][T25531] bcachefs (loop3): shutting down [ 2437.722551][T26229] loop7: detected capacity change from 0 to 256 [ 2437.759051][T25531] bcachefs (loop3): shutdown complete [ 2437.823750][T20065] usb 3-1: USB disconnect, device number 23 [ 2437.846233][T26229] exFAT-fs (loop7): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 2437.993714][ T30] audit: type=1800 audit(1752336539.111:407): pid=26229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.7578" name="file1" dev="loop7" ino=1049012 res=0 errno=0 [ 2438.374156][T26236] loop2: detected capacity change from 0 to 64 [ 2438.541935][T26236] minix_free_block (loop2:1): bit already cleared [ 2438.550629][T26236] minix_free_block (loop2:4): bit already cleared [ 2438.558368][T26236] minix_free_block (loop2:3): bit already cleared [ 2438.566184][T26236] minix_free_block (loop2:2): bit already cleared [ 2438.572860][T26236] minix_free_block (loop2:1): bit already cleared [ 2438.698050][T26241] netlink: 'syz.5.7584': attribute type 10 has an invalid length. [ 2438.735800][T26241] bond0: (slave veth1_to_bond): Enslaving as an active interface with an up link [ 2439.971240][T26246] loop2: detected capacity change from 0 to 32768 [ 2440.079987][T26246] JBD2: Ignoring recovery information on journal [ 2440.226429][T26246] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 2440.366646][ T30] audit: type=1800 audit(1752336541.481:408): pid=26246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7586" name="bus" dev="loop2" ino=17058 res=0 errno=0 [ 2440.544865][T25489] ocfs2: Unmounting device (7,2) on (node local) [ 2441.231030][T26252] loop7: detected capacity change from 0 to 32768 [ 2441.240123][T26252] btrfs: Deprecated parameter 'usebackuproot' [ 2441.246572][T26252] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2441.275082][T26252] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.7587 (26252) [ 2441.321526][T26252] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2441.332210][T26252] BTRFS info (device loop7): using crc32c (crc32c-x86_64) checksum algorithm [ 2441.341761][T26252] BTRFS info (device loop7): using free-space-tree [ 2441.539147][T19538] BTRFS warning (device loop7): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2441.553634][T26252] BTRFS error (device loop7): failed to load root extent [ 2441.561015][T26252] BTRFS warning (device loop7): try to load backup roots slot 1 [ 2441.582184][T26175] BTRFS warning (device loop7): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2441.597442][T26252] BTRFS warning (device loop7): couldn't read tree root [ 2441.604975][T26252] BTRFS warning (device loop7): try to load backup roots slot 2 [ 2441.621443][T26268] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7569'. [ 2441.632917][T26268] netlink: 'syz.1.7569': attribute type 30 has an invalid length. [ 2441.668743][T19535] BTRFS error (device loop7): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2441.681970][T26252] BTRFS warning (device loop7): couldn't read tree root [ 2441.689415][T26252] BTRFS warning (device loop7): try to load backup roots slot 3 [ 2441.758440][T26252] BTRFS info (device loop7): rebuilding free space tree [ 2441.804119][T26252] BTRFS info (device loop7): checking UUID tree [ 2441.900109][T26268] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7569'. [ 2441.910499][T26268] netlink: 'syz.1.7569': attribute type 30 has an invalid length. [ 2442.258820][T25288] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2443.579022][T26280] loop5: detected capacity change from 0 to 32768 [ 2443.618206][T26280] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 2443.633456][T26280] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 2443.680017][T26280] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 2443.691526][T15192] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 2443.698745][T15192] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 2444.076054][T26292] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7599'. [ 2444.095271][T15192] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 396ms [ 2444.103588][T15192] gfs2: fsid=syz:syz.0: jid=0: Done [ 2444.109147][T26280] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 2445.089934][T26300] loop1: detected capacity change from 0 to 2048 [ 2445.583848][T26302] loop2: detected capacity change from 0 to 32768 [ 2445.592903][T26302] btrfs: Deprecated parameter 'usebackuproot' [ 2445.599444][T26302] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2445.613668][T26302] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7603 (26302) [ 2445.641903][T26302] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2445.650406][T26307] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2445.652468][T26302] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm [ 2445.681615][T26302] BTRFS info (device loop2): using free-space-tree [ 2445.796676][T26304] loop7: detected capacity change from 0 to 2048 [ 2445.806035][T26175] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2445.817988][T26304] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2445.829087][T26302] BTRFS error (device loop2): failed to load root extent [ 2445.836693][T26302] BTRFS warning (device loop2): try to load backup roots slot 1 [ 2445.845867][T26175] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2445.859608][T26302] BTRFS warning (device loop2): couldn't read tree root [ 2445.867003][T26302] BTRFS warning (device loop2): try to load backup roots slot 2 [ 2445.869003][T26300] overlayfs: failed to create directory ./bus/work (errno: 1); mounting read-only [ 2445.888430][T26300] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null. [ 2445.909257][T26175] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2445.922181][T26302] BTRFS warning (device loop2): couldn't read tree root [ 2445.929671][T26302] BTRFS warning (device loop2): try to load backup roots slot 3 [ 2445.960667][T26302] BTRFS info (device loop2): rebuilding free space tree [ 2446.003736][T26302] BTRFS info (device loop2): checking UUID tree [ 2446.380408][T25489] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2446.886943][T26331] loop7: detected capacity change from 0 to 2048 [ 2446.992941][T26331] loop7: p1 < > p4 < > [ 2447.061016][T26327] loop5: detected capacity change from 0 to 32768 [ 2447.070051][T26327] XFS: noikeep mount option is deprecated. [ 2447.136342][T26327] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2447.863699][T26327] XFS (loop5): Ending clean mount [ 2447.873684][T26327] XFS (loop5): Quotacheck needed: Please wait. [ 2447.965772][T26327] XFS (loop5): Quotacheck: Done. [ 2448.168387][T21457] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2449.535057][T26357] loop3: detected capacity change from 0 to 32768 [ 2449.544152][T26357] btrfs: Deprecated parameter 'usebackuproot' [ 2449.550493][T26357] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 2449.568777][T26357] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7618 (26357) [ 2449.593803][T26357] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2449.604557][T26357] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 2449.613826][T26357] BTRFS info (device loop3): using free-space-tree [ 2449.710387][ T1132] BTRFS warning (device loop3): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 2449.726222][T26357] BTRFS error (device loop3): failed to load root extent [ 2449.733850][T26357] BTRFS warning (device loop3): try to load backup roots slot 1 [ 2449.762363][ T4458] BTRFS warning (device loop3): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 2449.778187][T26357] BTRFS warning (device loop3): couldn't read tree root [ 2449.785766][T26357] BTRFS warning (device loop3): try to load backup roots slot 2 [ 2449.817542][T26175] BTRFS error (device loop3): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 2449.830530][T26357] BTRFS warning (device loop3): couldn't read tree root [ 2449.838056][T26357] BTRFS warning (device loop3): try to load backup roots slot 3 [ 2449.915916][T26357] BTRFS info (device loop3): rebuilding free space tree [ 2450.015848][T26357] BTRFS info (device loop3): checking UUID tree [ 2450.274512][T26381] loop7: detected capacity change from 0 to 512 [ 2450.326624][T25531] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2450.345870][T26381] EXT4-fs: Ignoring removed i_version option [ 2450.415919][T26381] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2450.430489][T26381] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 2450.616737][T26381] EXT4-fs warning (device loop7): verify_group_input:156: Last group not full [ 2450.787867][T26307] NILFS (loop1): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 2450.802200][T26307] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=2) [ 2450.881916][T25288] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2450.884773][T26307] Remounting filesystem read-only [ 2451.133551][T20074] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 2451.662537][T26394] loop2: detected capacity change from 0 to 4096 [ 2451.707228][T26394] NILFS (loop2): invalid segment: Checksum error in segment payload [ 2451.723513][T26394] NILFS (loop2): trying rollback from an earlier position [ 2451.854507][T26394] NILFS (loop2): recovery complete [ 2451.915055][T26402] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2452.275016][T26409] loop5: detected capacity change from 0 to 24 [ 2452.897323][T26418] loop5: detected capacity change from 0 to 128 [ 2452.952717][T26418] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2452.979679][T26418] ext4 filesystem being mounted at /333/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2453.331808][T21457] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2453.474095][T26433] loop1: detected capacity change from 0 to 256 [ 2453.544039][T26435] snd_dummy snd_dummy.0: control 1:1:195:ÿÿ:53367 is already present [ 2453.623859][T20065] usb 4-1: new full-speed USB device number 13 using dummy_hcd [ 2453.659729][T26437] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7642'. [ 2453.669511][T26437] netlink: 'syz.7.7642': attribute type 30 has an invalid length. [ 2453.676803][T26433] FAT-fs (loop1): Directory bread(block 64) failed [ 2453.684447][T26433] FAT-fs (loop1): Directory bread(block 65) failed [ 2453.691892][T26433] FAT-fs (loop1): Directory bread(block 66) failed [ 2453.693675][T26437] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 2453.698920][T26433] FAT-fs (loop1): Directory bread(block 67) failed [ 2453.707643][T26437] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 2453.714309][T26433] FAT-fs (loop1): Directory bread(block 68) failed [ 2453.714427][T26433] FAT-fs (loop1): Directory bread(block 69) failed [ 2453.714654][T26433] FAT-fs (loop1): Directory bread(block 70) failed [ 2453.714761][T26433] FAT-fs (loop1): Directory bread(block 71) failed [ 2453.714982][T26433] FAT-fs (loop1): Directory bread(block 72) failed [ 2453.715092][T26433] FAT-fs (loop1): Directory bread(block 73) failed [ 2453.769926][T26437] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 2453.779113][T26437] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 2453.796515][T26437] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7642'. [ 2453.806130][T26437] netlink: 'syz.7.7642': attribute type 30 has an invalid length. [ 2453.949183][T20065] usb 4-1: config index 0 descriptor too short (expected 69, got 36) [ 2453.958059][T20065] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 2453.970605][T20065] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 2453.983789][T20065] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 2453.995718][T20065] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 2454.005965][T20065] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 2454.070548][T20065] usb 4-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89 [ 2454.080137][T20065] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2454.088792][T20065] usb 4-1: Product: syz [ 2454.093413][T20065] usb 4-1: Manufacturer: syz [ 2454.098261][T20065] usb 4-1: SerialNumber: syz [ 2454.129005][T20065] usb 4-1: config 0 descriptor?? [ 2454.220386][T20065] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622 [ 2455.003709][T20065] input: gspca_pac7302 as /devices/platform/dummy_hcd.3/usb4/4-1/input/input49 [ 2455.234776][T20065] usb 4-1: USB disconnect, device number 13 [ 2455.639571][T26449] loop5: detected capacity change from 0 to 40427 [ 2455.660603][T26449] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 2455.669325][T26449] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 2455.691796][T26449] F2FS-fs (loop5): invalid crc value [ 2456.052150][T26449] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 2456.059669][T26449] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 2456.200725][T26461] loop2: detected capacity change from 0 to 1024 [ 2456.586588][T26466] loop7: detected capacity change from 0 to 64 [ 2456.618109][T26466] hfs: unable to locate alternate MDB [ 2456.623984][T26466] hfs: continuing without an alternate MDB [ 2456.738316][T26466] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 2457.031306][ T4458] hfsplus: b-tree write err: -5, ino 4 [ 2457.508436][T26484] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7659'. [ 2458.532941][T26496] loop3: detected capacity change from 0 to 1024 [ 2458.660450][T26496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2458.785864][T26492] loop1: detected capacity change from 0 to 32768 [ 2458.793497][ T30] audit: type=1800 audit(1752336559.921:409): pid=26496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7667" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 2458.809103][T26492] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7665 (26492) [ 2458.852960][ T30] audit: type=1800 audit(1752336559.961:410): pid=26496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7667" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 2458.889492][T26492] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2458.900225][T26492] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm [ 2458.909646][T26492] BTRFS info (device loop1): disk space caching is enabled [ 2458.917228][T26492] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2459.026673][T25531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2459.175016][T26492] BTRFS info (device loop1): rebuilding free space tree [ 2459.222263][T26492] BTRFS info (device loop1): disabling free space tree [ 2459.229726][T26492] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2459.240051][T26492] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2459.321460][T26492] BTRFS info (device loop1 state M): max_inline set to 4096 [ 2459.465296][T20074] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2459.516527][T26520] syzkaller1: entered promiscuous mode [ 2459.522367][T26520] syzkaller1: entered allmulticast mode [ 2459.539974][T26524] loop7: detected capacity change from 0 to 128 [ 2459.623856][T26524] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2459.651264][T26524] ext4 filesystem being mounted at /67/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2459.730995][T26522] loop5: detected capacity change from 0 to 2048 [ 2459.891180][T26522] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2460.050483][T25288] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2460.483703][T26539] loop5: detected capacity change from 0 to 512 [ 2460.536937][T26539] EXT4-fs: Ignoring removed i_version option [ 2460.584506][T26539] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 2460.748060][T26539] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2460.761517][T26539] ext4 filesystem being mounted at /339/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 2460.915718][T26539] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.7678: corrupted inode contents [ 2460.963718][T26539] EXT4-fs (loop5): Remounting filesystem read-only [ 2461.077131][T26537] loop7: detected capacity change from 0 to 32768 [ 2461.125458][T26533] loop2: detected capacity change from 0 to 2048 [ 2461.207845][T26533] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 2461.282027][T26537] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 2461.282144][T26537] allowing incompatible features above 0.0: (unknown version) [ 2461.282231][T26537] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2461.283552][T21457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2461.299353][T26537] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0 [ 2461.327099][ T4458] Quota error (device loop5): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 2461.329283][T26537] bcachefs (loop7): initializing new filesystem [ 2461.372116][T26553] loop3: detected capacity change from 0 to 512 [ 2461.379086][T26537] bcachefs (loop7): going read-write [ 2461.407897][T26555] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2461.425529][T26537] bcachefs (loop7): marking superblocks [ 2461.466378][T26553] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 2461.476218][T26537] bcachefs (loop7): initializing freespace [ 2461.504931][T26537] bcachefs (loop7): done initializing freespace [ 2461.523984][T26537] bcachefs (loop7): reading snapshots table [ 2461.530322][T26537] bcachefs (loop7): reading snapshots done [ 2461.571186][T26553] EXT4-fs (loop3): invalid journal inode [ 2461.577502][T26553] EXT4-fs (loop3): can't get journal size [ 2461.634504][T26537] bcachefs (loop7): done starting filesystem [ 2461.752835][T26553] EXT4-fs (loop3): 1 truncate cleaned up [ 2461.760948][T26553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2461.808905][T25288] bcachefs (loop7): shutting down [ 2461.814589][T25288] bcachefs (loop7): going read-only [ 2461.820032][T25288] bcachefs (loop7): finished waiting for writes to stop [ 2461.889590][T25288] bcachefs (loop7): flushing journal and stopping allocators, journal seq 3 [ 2462.123974][T25288] bcachefs (loop7): flushing journal and stopping allocators complete, journal seq 3 [ 2462.201457][T25531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2462.211244][T25288] bcachefs (loop7): clean shutdown complete, journal seq 4 [ 2462.255474][T25288] bcachefs (loop7): marking filesystem clean [ 2462.293895][T26564] loop1: detected capacity change from 0 to 64 [ 2462.432210][T25288] bcachefs (loop7): shutdown complete [ 2463.713796][T26576] loop1: detected capacity change from 0 to 32768 [ 2463.722623][T26576] XFS: noikeep mount option is deprecated. [ 2463.871086][T26576] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2464.336981][T26576] XFS (loop1): Ending clean mount [ 2464.346932][T26576] XFS (loop1): Quotacheck needed: Please wait. [ 2464.379355][T26576] XFS (loop1): Quotacheck: Done. [ 2464.580838][T20074] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2466.436042][T26600] loop5: detected capacity change from 0 to 40427 [ 2466.463060][T26600] F2FS-fs (loop5): build fault injection rate: 690 [ 2466.471616][T26600] F2FS-fs (loop5): Image doesn't support compression [ 2466.479025][T26600] F2FS-fs (loop5): Image doesn't support compression [ 2466.492511][T26600] F2FS-fs (loop5): invalid crc value [ 2466.694340][T26612] mkiss: ax0: crc mode is auto. [ 2466.838564][T26600] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 2468.164261][T26625] netlink: 64 bytes leftover after parsing attributes in process `syz.3.7705'. [ 2468.928623][T26633] loop3: detected capacity change from 0 to 128 [ 2469.174525][T26633] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2469.190106][T26631] loop2: detected capacity change from 0 to 32768 [ 2469.206365][T26631] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7707 (26631) [ 2469.247305][T26633] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2469.283147][T26631] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2469.298227][T26631] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm [ 2469.309496][T26631] BTRFS info (device loop2): using free-space-tree [ 2469.456294][T26633] EXT4-fs (loop3): shut down requested (0) [ 2469.815489][T25489] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2469.876349][T25531] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2469.959392][T26658] loop5: detected capacity change from 0 to 1024 [ 2469.986697][T26658] EXT4-fs: Ignoring removed nobh option [ 2469.992595][T26658] EXT4-fs: Ignoring removed bh option [ 2470.102660][T26660] loop7: detected capacity change from 0 to 2048 [ 2470.125165][T26658] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2470.243709][T26660] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found [ 2470.254008][T26660] UDF-fs: Scanning with blocksize 512 failed [ 2470.254985][T21457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2470.329658][T26660] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2471.053398][T26673] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7717'. [ 2472.425494][T26697] loop2: detected capacity change from 0 to 64 [ 2473.320285][T26702] loop3: detected capacity change from 0 to 4096 [ 2473.483794][T26711] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2473.566345][T26702] NILFS error (device loop3): nilfs_readdir: zero-length directory entry [ 2473.572917][T26713] mac80211_hwsim hwsim30 wlan0: entered promiscuous mode [ 2473.582985][T26713] macvlan2: entered allmulticast mode [ 2473.588909][T26713] mac80211_hwsim hwsim30 wlan0: entered allmulticast mode [ 2473.617016][T26716] loop2: detected capacity change from 0 to 512 [ 2473.643580][T26702] NILFS error (device loop3): nilfs_readdir: zero-length directory entry [ 2473.670169][T26713] mac80211_hwsim hwsim30 wlan0: left allmulticast mode [ 2473.677604][T26713] mac80211_hwsim hwsim30 wlan0: left promiscuous mode [ 2473.824421][T26716] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.7734: casefold flag without casefold feature [ 2473.960161][T26716] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.7734: couldn't read orphan inode 15 (err -117) [ 2474.032415][T26716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2474.891266][T26721] loop7: detected capacity change from 0 to 32768 [ 2474.967043][T25489] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2475.000025][T26721] JBD2: Ignoring recovery information on journal [ 2475.150740][T26721] ocfs2: Mounting device (7,7) on (node local, slot 0) with writeback data mode. [ 2475.364023][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 2475.375002][T25288] ocfs2: Unmounting device (7,7) on (node local) [ 2475.377776][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 2475.574189][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 2475.584675][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 2475.941281][T26738] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7745'. [ 2477.494814][T26749] loop2: detected capacity change from 0 to 32768 [ 2477.625485][T26749] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7748 (26749) [ 2478.192402][T26751] loop7: detected capacity change from 0 to 32768 [ 2478.218015][T26749] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2478.229545][T26749] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm [ 2478.241670][T26749] BTRFS info (device loop2): disk space caching is enabled [ 2478.249450][T26749] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2478.399064][T26751] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2478.662824][T26749] BTRFS info (device loop2): rebuilding free space tree [ 2478.701022][T26749] BTRFS info (device loop2): disabling free space tree [ 2478.708635][T26749] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2478.718824][T26749] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2478.790437][T26751] XFS (loop7): Ending clean mount [ 2478.912046][T25288] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2479.024409][T18761] Bluetooth: hci3: command 0x0406 tx timeout [ 2479.109671][T25489] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2481.362165][T26800] loop1: detected capacity change from 0 to 2048 [ 2481.490284][T26800] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 2481.498562][T26800] UDF-fs: Scanning with blocksize 512 failed [ 2481.634880][T26804] netlink: 'syz.2.7757': attribute type 1 has an invalid length. [ 2481.643054][T26804] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7757'. [ 2481.658678][T26804] (unnamed net_device) (uninitialized): option mode: invalid value (48) [ 2481.681581][T26800] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2483.270945][T26816] loop1: detected capacity change from 0 to 40427 [ 2483.292096][T26816] F2FS-fs (loop1): build fault injection rate: 690 [ 2483.299314][T26816] F2FS-fs (loop1): Image doesn't support compression [ 2483.306713][T26816] F2FS-fs (loop1): Image doesn't support compression [ 2483.328590][T26816] F2FS-fs (loop1): invalid crc value [ 2483.518817][T26822] loop2: detected capacity change from 0 to 512 [ 2483.604582][T26822] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 2483.644918][T26816] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 2483.788818][T26822] EXT4-fs (loop2): 1 truncate cleaned up [ 2483.797113][T26822] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2483.827652][T20074] syz-executor: attempt to access beyond end of device [ 2483.827652][T20074] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 2483.847061][T20074] CPU: 1 UID: 0 PID: 20074 Comm: syz-executor Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2483.847241][T20074] Tainted: [W]=WARN [ 2483.847291][T20074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2483.847378][T20074] Call Trace: [ 2483.847434][T20074] [ 2483.847484][T20074] __dump_stack+0x26/0x30 [ 2483.847650][T20074] dump_stack_lvl+0x1df/0x270 [ 2483.847819][T20074] dump_stack+0x1e/0x25 [ 2483.847967][T20074] f2fs_handle_critical_error+0xa6f/0xc20 [ 2483.848189][T20074] f2fs_stop_checkpoint+0x65/0x80 [ 2483.848375][T20074] f2fs_write_end_io+0xb4b/0x1920 [ 2483.848518][T20074] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2483.848716][T20074] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 2483.848902][T20074] bio_endio+0xe27/0xf80 [ 2483.849069][T20074] submit_bio_noacct+0x214/0x2710 [ 2483.849280][T20074] submit_bio+0x5a9/0x5d0 [ 2483.849451][T20074] f2fs_submit_write_bio+0x92/0x250 [ 2483.849626][T20074] __submit_merged_bio+0x16f/0x6a0 [ 2483.849796][T20074] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2483.849982][T20074] __submit_merged_write_cond+0x458/0x9a0 [ 2483.850179][T20074] f2fs_write_data_pages+0x4bb2/0x5480 [ 2483.850516][T20074] ? kmsan_get_metadata+0xfb/0x160 [ 2483.850687][T20074] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2483.850874][T20074] ? __update_load_avg_cfs_rq+0xe9/0x1010 [ 2483.851067][T20074] ? kmsan_get_metadata+0xfb/0x160 [ 2483.851234][T20074] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2483.851417][T20074] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2483.851573][T20074] ? kmsan_get_metadata+0xfb/0x160 [ 2483.851734][T20074] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2483.851909][T20074] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2483.852094][T20074] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2483.852272][T20074] do_writepages+0x3ef/0x860 [ 2483.852447][T20074] ? _raw_spin_unlock+0x30/0x50 [ 2483.852597][T20074] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 2483.852816][T20074] filemap_fdatawrite+0x207/0x260 [ 2483.853069][T20074] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 2483.853244][T20074] f2fs_write_checkpoint+0xfe2/0x2b00 [ 2483.853506][T20074] kill_f2fs_super+0x2ff/0x970 [ 2483.853661][T20074] ? __pfx_kill_f2fs_super+0x10/0x10 [ 2483.853801][T20074] deactivate_locked_super+0xcb/0x3c0 [ 2483.853982][T20074] deactivate_super+0x12f/0x140 [ 2483.854141][T20074] cleanup_mnt+0x6fb/0x780 [ 2483.854270][T20074] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2483.854458][T20074] ? __pfx___cleanup_mnt+0x10/0x10 [ 2483.854594][T20074] __cleanup_mnt+0x22/0x30 [ 2483.854725][T20074] task_work_run+0x206/0x2b0 [ 2483.854889][T20074] exit_to_user_mode_loop+0x2a6/0x330 [ 2483.855061][T20074] do_syscall_64+0x1e3/0x210 [ 2483.855238][T20074] ? irqentry_exit+0x16/0x60 [ 2483.855432][T20074] ? clear_bhb_loop+0x40/0x90 [ 2483.855579][T20074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2483.855722][T20074] RIP: 0033:0x7f725c78fc57 [ 2483.855824][T20074] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 2483.855942][T20074] RSP: 002b:00007ffc402f6838 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 2483.856068][T20074] RAX: 0000000000000000 RBX: 00007f725c810925 RCX: 00007f725c78fc57 [ 2483.856161][T20074] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc402f68f0 [ 2483.856248][T20074] RBP: 00007ffc402f68f0 R08: 0000000000000000 R09: 0000000000000000 [ 2483.856336][T20074] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc402f7980 [ 2483.856435][T20074] R13: 00007f725c810925 R14: 000000000025e7e7 R15: 00007ffc402f79c0 [ 2483.856563][T20074] [ 2484.218194][T20074] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 2484.862314][T25489] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2485.288359][T26833] loop3: detected capacity change from 0 to 1024 [ 2485.326340][T26833] EXT4-fs: inline encryption not supported [ 2485.332581][T26833] EXT4-fs: Ignoring removed i_version option [ 2485.393970][T26833] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 2485.442810][T24303] Bluetooth: hci0: command tx timeout [ 2485.487356][T26833] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.7774: lblock 2 mapped to illegal pblock 2 (length 1) [ 2485.515726][T26833] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 2485.528749][T26833] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.7774: lblock 0 mapped to illegal pblock 48 (length 1) [ 2485.639518][T26833] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 2485.648753][T26833] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.7774: Failed to acquire dquot type 0 [ 2485.763665][T26833] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem [ 2485.817956][T26833] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.7774: mark_inode_dirty error [ 2485.876165][T26833] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 2485.887036][T26833] EXT4-fs (loop3): 1 orphan inode deleted [ 2485.895218][T26833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2485.943921][ T1132] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 2485.994524][ T1132] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 2486.003851][ T1132] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 0 [ 2486.292824][T26845] netlink: 76 bytes leftover after parsing attributes in process `syz.2.7778'. [ 2486.403000][T25531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2486.461104][T25531] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 2486.540411][T25531] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem [ 2486.565175][T25531] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error [ 2487.204586][T15192] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 2487.395153][T15192] usb 4-1: Using ep0 maxpacket: 16 [ 2487.436051][T15192] usb 4-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3 [ 2487.445695][T15192] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2487.458677][T15192] usb 4-1: Product: syz [ 2487.463132][T15192] usb 4-1: Manufacturer: syz [ 2487.469684][T15192] usb 4-1: SerialNumber: syz [ 2487.575645][T26858] loop7: detected capacity change from 0 to 2048 [ 2487.595430][T15192] usb 4-1: config 0 descriptor?? [ 2487.800703][T26858] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2488.131421][T15192] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state. [ 2488.216871][T15192] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 2488.265754][T15192] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T) [ 2488.282479][T15192] usb 4-1: media controller created [ 2488.299398][T26863] loop1: detected capacity change from 0 to 4096 [ 2488.329454][T26863] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 2488.339110][T26863] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 2488.412462][T15192] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 2488.544322][T25288] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2488.689999][T15192] zl10353_read_register: readreg error (reg=127, ret==0) [ 2488.698104][T15192] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T' [ 2488.706343][T15192] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected. [ 2488.744194][T19756] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 2488.817713][T26872] loop2: detected capacity change from 0 to 1024 [ 2488.825034][T15192] usb 4-1: USB disconnect, device number 14 [ 2488.978614][T26872] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2488.994307][T19756] usb 6-1: Using ep0 maxpacket: 16 [ 2489.019575][T19756] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 2489.029753][T19756] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 2489.040607][T19756] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 2489.093096][T15192] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected. [ 2489.111438][T19756] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 2489.121013][T19756] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2489.130037][T19756] usb 6-1: Product: syz [ 2489.134541][T19756] usb 6-1: Manufacturer: syz [ 2489.139382][T19756] usb 6-1: SerialNumber: syz [ 2489.308626][T26872] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.7789: Allocating blocks 497-513 which overlap fs metadata [ 2489.426434][T26872] EXT4-fs (loop2): pa ffff888125dec620: logic 256, phys. 385, len 8 [ 2489.435141][T26872] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1 [ 2489.724192][T26881] loop1: detected capacity change from 0 to 256 [ 2489.767032][T26881] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 2489.785638][T19756] usb 6-1: 0:2 : does not exist [ 2489.847730][T25489] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2489.884408][T19756] usb 6-1: USB disconnect, device number 24 [ 2491.663566][T26897] loop3: detected capacity change from 0 to 32768 [ 2491.678477][T26897] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7799 (26897) [ 2491.703062][T26897] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 2491.714985][T26897] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm [ 2491.726088][T26897] BTRFS info (device loop3): using free-space-tree [ 2491.911410][T26897] BTRFS info (device loop3): rebuilding free space tree [ 2492.187997][T25531] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 2492.862043][T26931] loop1: detected capacity change from 0 to 1024 [ 2493.442139][T26935] loop3: detected capacity change from 0 to 64 [ 2493.502518][T26935] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing [ 2493.654037][T26933] loop5: detected capacity change from 0 to 32768 [ 2493.713975][T26933] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2493.999895][T26189] hfsplus: b-tree write err: -5, ino 4 [ 2494.034348][T26933] XFS (loop5): Ending clean mount [ 2494.167060][T21457] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2494.886233][T26956] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7817'. [ 2494.990808][T26960] loop2: detected capacity change from 0 to 128 [ 2495.057292][T26960] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 2495.203134][T26960] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2495.638540][T26972] loop5: detected capacity change from 0 to 128 [ 2495.684864][T26973] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2495.720658][T26972] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2495.762800][T26972] ext4 filesystem being mounted at /370/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2495.879955][T26973] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2495.999192][T26973] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2496.105797][T21457] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2496.150076][T26973] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2496.450898][T26973] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2496.487823][T26973] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2496.516613][T26973] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2496.545331][T26973] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2496.704041][T26984] loop7: detected capacity change from 0 to 256 [ 2496.738231][T26986] loop5: detected capacity change from 0 to 512 [ 2496.754857][T26986] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 2496.891946][T26986] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 2496.968253][T26986] EXT4-fs (loop5): 1 truncate cleaned up [ 2496.982850][T26986] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2497.166550][ T30] audit: type=1800 audit(1752336598.301:411): pid=26986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7825" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 2497.293045][T26980] loop1: detected capacity change from 0 to 40427 [ 2497.306129][T26980] F2FS-fs (loop1): build fault injection rate: 690 [ 2497.313590][T26980] F2FS-fs (loop1): heap/no_heap options were deprecated [ 2497.324015][T26980] F2FS-fs (loop1): invalid crc value [ 2497.407576][T26992] loop7: detected capacity change from 0 to 128 [ 2497.506615][T26994] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 2497.646798][T21457] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2497.691142][T26980] F2FS-fs (loop1): Start checkpoint disabled! [ 2497.702179][T26992] FAT-fs (loop7): Directory bread(block 162) failed [ 2497.709437][T26992] FAT-fs (loop7): Directory bread(block 163) failed [ 2497.716485][T26992] FAT-fs (loop7): Directory bread(block 164) failed [ 2497.723576][T26992] FAT-fs (loop7): Directory bread(block 165) failed [ 2497.730475][T26992] FAT-fs (loop7): Directory bread(block 166) failed [ 2497.737630][T26992] FAT-fs (loop7): Directory bread(block 167) failed [ 2497.746723][T26992] FAT-fs (loop7): Directory bread(block 168) failed [ 2497.754360][T26992] FAT-fs (loop7): Directory bread(block 169) failed [ 2497.764788][T26980] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 2497.806456][T26997] netlink: 'syz.2.7831': attribute type 3 has an invalid length. [ 2497.815801][T26997] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7831'. [ 2497.929997][T26992] FAT-fs (loop7): Directory bread(block 162) failed [ 2497.937208][T26992] FAT-fs (loop7): Directory bread(block 163) failed [ 2497.993847][T26992] syz.7.7830: attempt to access beyond end of device [ 2497.993847][T26992] loop7: rw=3, sector=226, nr_sectors = 6 limit=128 [ 2498.010232][T26992] syz.7.7830: attempt to access beyond end of device [ 2498.010232][T26992] loop7: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 2498.299777][T27002] program syz.3.7834 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2498.676781][T27006] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 2499.310397][T27014] loop7: detected capacity change from 0 to 1024 [ 2499.388796][T27014] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2499.584130][T24303] Bluetooth: hci0: command 0x0406 tx timeout [ 2499.607702][T27014] EXT4-fs error (device loop7): __ext4_new_inode:1073: comm syz.7.7839: reserved inode found cleared - inode=1 [ 2499.970009][T25288] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2501.174639][T27039] loop1: detected capacity change from 0 to 32768 [ 2501.185304][T27039] XFS: attr2 mount option is deprecated. [ 2501.231092][T27039] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2501.438164][T27039] XFS (loop1): Ending clean mount [ 2501.459703][T27039] XFS (loop1): Quotacheck needed: Please wait. [ 2501.489340][T27039] XFS (loop1): Quotacheck: Done. [ 2501.620565][T20074] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2501.750685][T27061] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7856'. [ 2501.782183][T27062] loop7: detected capacity change from 0 to 1024 [ 2502.140558][T19538] hfsplus: b-tree write err: -5, ino 4 [ 2502.478034][T27070] loop7: detected capacity change from 0 to 256 [ 2503.200534][T27077] loop2: detected capacity change from 0 to 4096 [ 2503.202687][T27079] loop1: detected capacity change from 0 to 2048 [ 2503.229082][T27077] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 2503.351003][T27085] loop7: detected capacity change from 0 to 2048 [ 2503.356891][T27086] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2503.411180][T27087] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2503.506421][ T30] audit: type=1800 audit(1752336604.631:412): pid=27085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.7866" name="file2" dev="loop7" ino=16 res=0 errno=0 [ 2503.548561][T27085] NILFS (loop7): writing node/leaf block does not appear in b-tree (ino=16) at key=5, level=0 [ 2503.559606][T27085] NILFS error (device loop7): nilfs_bmap_propagate: broken bmap (inode number=16) [ 2503.574060][T27085] Remounting filesystem read-only [ 2503.662531][T25288] NILFS (loop7): disposed unprocessed dirty file(s) when stopping log writer [ 2504.322025][T27097] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7873'. [ 2504.880272][T27093] loop7: detected capacity change from 0 to 40427 [ 2504.890915][T27093] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12 [ 2504.899159][T27093] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock [ 2504.915772][T27093] F2FS-fs (loop7): invalid crc value [ 2505.251089][T27093] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0 [ 2505.258747][T27093] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 2506.075830][T19756] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 2506.232256][T27119] loop3: detected capacity change from 0 to 1024 [ 2506.318549][T19756] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 2506.321527][T27119] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2506.328026][T19756] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 2506.328173][T19756] usb 3-1: Product: syz [ 2506.328270][T19756] usb 3-1: Manufacturer: syz [ 2506.328371][T19756] usb 3-1: SerialNumber: syz [ 2506.386838][T19756] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 2506.592965][T27127] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.7882: Abort forced by user [ 2506.618936][T15192] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 2506.649909][T27127] EXT4-fs (loop3): Remounting filesystem read-only [ 2506.659358][T27127] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 2507.098263][T20048] usb 3-1: USB disconnect, device number 24 [ 2507.187732][T27131] program syz.5.7886 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2507.253216][T25531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2508.394143][T27137] loop3: detected capacity change from 0 to 32768 [ 2508.405348][T15192] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 2508.413113][T15192] ath9k_htc: Failed to initialize the device [ 2508.421497][T27137] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7887 (27137) [ 2508.462935][T27137] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2508.474336][T27137] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 2508.483604][T27137] BTRFS info (device loop3): disk space caching is enabled [ 2508.491104][T27137] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2508.509547][T20048] usb 3-1: ath9k_htc: USB layer deinitialized [ 2508.632421][T27137] BTRFS info (device loop3): rebuilding free space tree [ 2508.674715][T27137] BTRFS info (device loop3): disabling free space tree [ 2508.682085][T27137] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2508.692259][T27137] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2508.762334][ T30] audit: type=1800 audit(1752336609.891:413): pid=27137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7887" name="bus" dev="loop3" ino=263 res=0 errno=0 [ 2508.991045][T25531] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2509.125575][T27164] ALSA: mixer_oss: invalid OSS volume '' [ 2509.131814][T27164] ALSA: mixer_oss: invalid OSS volume '' [ 2509.544594][T27168] loop2: detected capacity change from 0 to 1024 [ 2509.621323][T27168] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2509.881839][T27168] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 2509.905863][T27178] loop5: detected capacity change from 0 to 16 [ 2510.295670][T25489] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2511.691590][T27207] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7906'. [ 2511.965969][T27200] loop7: detected capacity change from 0 to 40427 [ 2511.979688][T27200] F2FS-fs (loop7): heap/no_heap options were deprecated [ 2511.988364][T27200] F2FS-fs (loop7): build fault injection rate: 19 [ 2511.997194][T27200] F2FS-fs (loop7): build fault injection type: 0x3bfe8c [ 2512.010201][T27200] F2FS-fs (loop7): invalid crc value [ 2512.059215][T27200] F2FS-fs (loop7): inject page alloc in f2fs_grab_cache_folio of f2fs_build_free_nids+0xd0b/0x1e80 [ 2512.312660][T27200] F2FS-fs (loop7): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x1d2/0x4b0 [ 2512.342473][T27200] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5 [ 2513.431172][T27226] loop3: detected capacity change from 0 to 4096 [ 2513.481710][T27226] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 2514.318968][T27226] ntfs3(loop3): ino=1a, mi_enum_attr [ 2514.324709][T27226] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 2514.566256][T27226] ntfs3(loop3): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22. [ 2515.187116][T19817] ntfs3(loop3): ino=1e, ntfs3_write_inode failed, -22. [ 2515.368439][T27239] loop7: detected capacity change from 0 to 32768 [ 2515.455392][T27239] JBD2: Ignoring recovery information on journal [ 2515.629903][T27239] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode. [ 2515.944839][T27245] loop1: detected capacity change from 0 to 32768 [ 2516.209990][T27245] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 2516.210142][T27245] allowing incompatible features above 0.0: (unknown version) [ 2516.210232][T27245] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2516.258303][T27245] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0 [ 2516.266970][T27245] bcachefs (loop1): initializing new filesystem [ 2516.290893][T27245] bcachefs (loop1): going read-write [ 2516.306727][T27245] bcachefs (loop1): marking superblocks [ 2516.356953][T27245] bcachefs (loop1): initializing freespace [ 2516.385205][T27245] bcachefs (loop1): done initializing freespace [ 2516.404513][T27245] bcachefs (loop1): reading snapshots table [ 2516.410866][T27245] bcachefs (loop1): reading snapshots done [ 2516.579344][T27245] bcachefs (loop1): done starting filesystem [ 2516.629483][T27250] loop2: detected capacity change from 0 to 40427 [ 2516.654844][T27250] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 2516.663110][T27250] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 2516.897635][T20074] bcachefs (loop1): shutting down [ 2516.903071][T20074] bcachefs (loop1): going read-only [ 2516.908872][T20074] bcachefs (loop1): finished waiting for writes to stop [ 2516.947099][T25288] ocfs2: Unmounting device (7,7) on (node local) [ 2516.982412][T20074] bcachefs (loop1): flushing journal and stopping allocators, journal seq 3 [ 2517.116473][T27250] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 2517.124171][T27250] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 2517.198053][T20074] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3 [ 2517.283046][T27269] netlink: 40 bytes leftover after parsing attributes in process `syz.5.7928'. [ 2517.302932][T20074] bcachefs (loop1): clean shutdown complete, journal seq 4 [ 2517.358368][T20074] bcachefs (loop1): marking filesystem clean [ 2517.492314][T20074] bcachefs (loop1): shutdown complete [ 2517.723018][T27271] input: syz0 as /devices/virtual/input/input52 [ 2518.032397][T27273] loop5: detected capacity change from 0 to 256 [ 2518.058156][T27273] exfat: Deprecated parameter 'namecase' [ 2518.255934][T27273] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 2518.731275][T27280] syzkaller1: entered promiscuous mode [ 2518.737875][T27280] syzkaller1: entered allmulticast mode [ 2519.017751][T27283] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 2520.222747][T27288] loop3: detected capacity change from 0 to 32768 [ 2520.240799][T27288] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7936 (27288) [ 2520.290212][T27288] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2520.301247][T27288] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm [ 2520.302319][T27292] loop7: detected capacity change from 0 to 1024 [ 2520.312308][T27288] BTRFS info (device loop3): using free-space-tree [ 2520.774375][T25531] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2521.925185][T27316] loop5: detected capacity change from 0 to 32768 [ 2522.074571][T27316] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 2522.074717][T27316] allowing incompatible features above 0.0: (unknown version) [ 2522.074803][T27316] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2522.122673][T27316] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0 [ 2522.131336][T27316] bcachefs (loop5): initializing new filesystem [ 2522.153108][T27316] bcachefs (loop5): going read-write [ 2522.204618][T27316] bcachefs (loop5): marking superblocks [ 2522.254836][T27316] bcachefs (loop5): initializing freespace [ 2522.283930][T27316] bcachefs (loop5): done initializing freespace [ 2522.302627][T27316] bcachefs (loop5): reading snapshots table [ 2522.309436][T27316] bcachefs (loop5): reading snapshots done [ 2522.404156][T27316] bcachefs (loop5): done starting filesystem [ 2522.466954][ T30] audit: type=1800 audit(1752336623.601:414): pid=27316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7941" name="bus" dev="loop5" ino=4098 res=0 errno=0 [ 2522.598985][T21457] bcachefs (loop5): shutting down [ 2522.605386][T21457] bcachefs (loop5): going read-only [ 2522.610837][T21457] bcachefs (loop5): finished waiting for writes to stop [ 2522.669173][T21457] bcachefs (loop5): flushing journal and stopping allocators, journal seq 2 [ 2522.795043][T21457] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3 [ 2522.815374][T21457] bcachefs (loop5): clean shutdown complete, journal seq 4 [ 2522.829361][T21457] bcachefs (loop5): marking filesystem clean [ 2522.927951][T21457] bcachefs (loop5): shutdown complete [ 2523.823843][T27340] loop3: detected capacity change from 0 to 32768 [ 2523.839863][T27340] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7940 (27340) [ 2523.862324][T27340] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2523.873119][T27340] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm [ 2523.884785][T27340] BTRFS info (device loop3): disk space caching is enabled [ 2523.892246][T27340] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2524.155341][T27340] BTRFS info (device loop3): rebuilding free space tree [ 2524.198494][T27340] BTRFS info (device loop3): disabling free space tree [ 2524.206015][T27340] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2524.218982][T27340] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2524.299135][T27340] BTRFS info (device loop3): Snapshot src from another FS [ 2524.380771][T25531] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 2524.454235][T27365] loop7: detected capacity change from 0 to 512 [ 2524.480875][T27363] loop1: detected capacity change from 0 to 512 [ 2524.516566][T27365] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 2524.531847][T27365] UDF-fs: Scanning with blocksize 512 failed [ 2524.586758][T27363] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.7951: iget: bad i_size value: 38620345925642 [ 2524.644491][T27365] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 2524.652347][T27365] UDF-fs: Scanning with blocksize 1024 failed [ 2524.660559][T27363] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.7951: couldn't read orphan inode 15 (err -117) [ 2524.671345][T27365] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found [ 2524.682411][T27365] UDF-fs: Scanning with blocksize 2048 failed [ 2524.710203][T27363] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2524.749163][T27369] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 2524.767107][T27365] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256 [ 2524.822943][T27365] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 2524.954208][T27363] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.7951: bg 0: block 5: invalid block bitmap [ 2525.012702][T27363] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 176 with error 28 [ 2525.025842][T27363] EXT4-fs (loop1): This should not happen!! Data will be lost [ 2525.025842][T27363] [ 2525.041206][T27363] EXT4-fs (loop1): Total free blocks count 0 [ 2525.049274][T27363] EXT4-fs (loop1): Free/Dirty block details [ 2525.055691][T27363] EXT4-fs (loop1): free_blocks=0 [ 2525.060885][T27363] EXT4-fs (loop1): dirty_blocks=176 [ 2525.066468][T27363] EXT4-fs (loop1): Block reservation details [ 2525.072699][T27363] EXT4-fs (loop1): i_reserved_data_blocks=176 [ 2525.378861][T27372] loop2: detected capacity change from 0 to 1024 [ 2525.533780][T20074] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2525.785015][T27372] hfsplus: bad catalog entry type [ 2526.181221][T27379] loop3: detected capacity change from 0 to 1024 [ 2526.230832][T27379] EXT4-fs: Ignoring removed oldalloc option [ 2526.237626][T27379] EXT4-fs: Ignoring removed orlov option [ 2526.243793][T27379] EXT4-fs: Ignoring removed oldalloc option [ 2526.250025][T27379] EXT4-fs: Ignoring removed nomblk_io_submit option [ 2526.386201][T27379] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 2526.639227][T27376] loop1: detected capacity change from 0 to 32768 [ 2526.648301][T27376] XFS: ikeep mount option is deprecated. [ 2526.720535][T27376] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2526.754664][T26175] hfsplus: b-tree write err: -5, ino 4 [ 2526.818441][T25531] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2526.909659][T27376] XFS (loop1): Ending clean mount [ 2526.941699][T27376] XFS (loop1): Quotacheck needed: Please wait. [ 2527.007780][T27376] XFS (loop1): Quotacheck: Done. [ 2527.112832][T20074] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2527.494756][T27405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7961'. [ 2527.966772][T27410] loop5: detected capacity change from 0 to 256 [ 2527.996912][T27410] exfat: Deprecated parameter 'utf8' [ 2528.008287][T27410] exfat: Deprecated parameter 'namecase' [ 2528.318562][T27410] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 2528.722536][T27411] loop7: detected capacity change from 0 to 32768 [ 2528.804645][T27411] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nochanges,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only,nocow [ 2528.804793][T27411] allowing incompatible features above 0.0: (unknown version) [ 2528.804881][T27411] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 2528.852106][T27411] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0 [ 2528.862203][T27411] bcachefs (loop7): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad size, shutting down [ 2528.862313][T27411] error not marked as autofix and not in fsck [ 2528.862388][T27411] run fsck, and forward to devs so error can be marked for self-healing [ 2528.862470][T27411] emergency read only at seq 0 [ 2528.898636][T27411] bcachefs (loop7): error in recovery: fsck_errors_not_fixed [ 2528.906529][T27411] bcachefs (loop7): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed [ 2528.916428][T27411] bcachefs (loop7): shutting down [ 2528.946992][T27411] bcachefs (loop7): shutdown complete [ 2529.965156][T27419] loop1: detected capacity change from 0 to 32768 [ 2529.974446][T27419] XFS: attr2 mount option is deprecated. [ 2530.066558][T27419] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 2530.077048][T27419] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2530.350772][T27438] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 2530.431297][T27419] XFS (loop1): Ending clean mount [ 2530.444585][T27419] XFS (loop1): Quotacheck needed: Please wait. [ 2530.493632][T27419] XFS (loop1): Quotacheck: Done. [ 2530.684846][T20074] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 2530.696509][T27428] loop5: detected capacity change from 0 to 40427 [ 2530.712875][T27428] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 2530.723500][T27428] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 2530.740080][T27428] F2FS-fs (loop5): invalid crc value [ 2530.776458][T27411] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed [ 2531.197741][T27428] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 2531.205758][T27428] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 2531.832548][T27448] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7975'. [ 2531.966823][T27451] loop3: detected capacity change from 0 to 64 [ 2532.061618][T27449] loop2: detected capacity change from 0 to 4096 [ 2532.178557][T27452] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 2532.223763][ T30] audit: type=1800 audit(1752336633.341:415): pid=27449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7977" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 2532.927305][T27460] IPv6: Can't replace route, no match found [ 2533.609774][T27467] program syz.7.7985 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 2533.749339][T27464] loop3: detected capacity change from 0 to 32768 [ 2533.760020][T27464] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7983 (27464) [ 2533.791896][T27464] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 2533.802580][T27464] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm [ 2533.814894][T27464] BTRFS info (device loop3): using free-space-tree [ 2534.479186][T25531] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 2535.003098][T27490] loop2: detected capacity change from 0 to 32768 [ 2535.809996][T27505] input: syz0 as /devices/virtual/input/input53 [ 2537.372442][T27527] loop2: detected capacity change from 0 to 128 [ 2537.439527][T27527] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 2537.494813][T27527] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 2537.503235][T27521] loop1: detected capacity change from 0 to 32768 [ 2537.518367][T27521] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8001 (27521) [ 2537.548834][T27521] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2537.559617][T27521] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm [ 2537.569539][T27521] BTRFS info (device loop1): disk space caching is enabled [ 2537.577163][T27521] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2537.921553][T27521] BTRFS info (device loop1): rebuilding free space tree [ 2537.964694][T27521] BTRFS info (device loop1): disabling free space tree [ 2537.971962][T27521] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2537.982658][T27521] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2538.030061][T19817] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 2538.283219][T20074] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2540.068547][T27558] loop7: detected capacity change from 0 to 65536 [ 2540.298931][T27558] XFS (loop7): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 2540.588000][T27558] XFS (loop7): Ending clean mount [ 2540.607310][T27558] XFS (loop7): Quotacheck needed: Please wait. [ 2540.726453][T27558] XFS (loop7): Quotacheck: Done. [ 2540.875179][T25288] XFS (loop7): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 2540.969885][T27585] loop3: detected capacity change from 0 to 128 [ 2540.988999][T27586] loop1: detected capacity change from 0 to 128 [ 2541.015795][T27586] EXT4-fs (loop1): Test dummy encryption mode enabled [ 2541.025986][T27585] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 2541.066231][T27586] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2541.081780][T27586] ext4 filesystem being mounted at /536/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 2541.093097][T27585] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 2541.235007][T20074] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2541.692442][T27592] loop5: detected capacity change from 0 to 128 [ 2541.812126][T27592] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2541.936968][T27592] ext4 filesystem being mounted at /418/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2541.969351][ C1] vkms_vblank_simulate: vblank timer overrun [ 2542.209470][T27590] loop1: detected capacity change from 0 to 8192 [ 2542.275396][T27590] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 2542.470333][T21457] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2543.002198][T27595] loop3: detected capacity change from 0 to 32768 [ 2543.038937][T27590] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001) [ 2543.047321][T27590] FAT-fs (loop1): Filesystem has been set read-only [ 2543.188726][T27595] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names [ 2543.188871][T27595] allowing incompatible features above 0.0: (unknown version) [ 2543.188948][T27595] features: lz4 [ 2543.226177][T27595] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 2543.234961][T27595] bcachefs (loop3): initializing new filesystem [ 2543.251696][T27595] bcachefs (loop3): going read-write [ 2543.317333][T27595] bcachefs (loop3): marking superblocks [ 2543.405486][T27595] bcachefs (loop3): initializing freespace [ 2543.440046][T27595] bcachefs (loop3): done initializing freespace [ 2543.473219][T27595] bcachefs (loop3): reading snapshots table [ 2543.479813][T27595] bcachefs (loop3): reading snapshots done [ 2543.577990][T27595] bcachefs (loop3): done starting filesystem [ 2543.968429][T25531] bcachefs (loop3): shutting down [ 2543.978597][T25531] bcachefs (loop3): going read-only [ 2543.985509][T25531] bcachefs (loop3): finished waiting for writes to stop [ 2544.015920][T25531] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2 [ 2544.044757][T18761] Bluetooth: hci3: unexpected event for opcode 0x2031 [ 2544.216606][T25531] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3 [ 2544.245972][T25531] bcachefs (loop3): clean shutdown complete, journal seq 4 [ 2544.268697][T25531] bcachefs (loop3): marking filesystem clean [ 2544.419590][T25531] bcachefs (loop3): shutdown complete [ 2544.932307][T27621] loop7: detected capacity change from 0 to 4096 [ 2545.242845][ T30] audit: type=1800 audit(1752336646.371:416): pid=27621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.8033" name="file1" dev="loop7" ino=30 res=0 errno=0 [ 2545.832059][T27634] loop2: detected capacity change from 0 to 128 [ 2546.006486][T27634] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 2546.078432][T27634] ext4 filesystem being mounted at /124/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 2546.267559][T27645] loop5: detected capacity change from 0 to 1024 [ 2546.718445][T25489] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 2546.878901][T27644] loop7: detected capacity change from 0 to 32768 [ 2546.888096][T27644] XFS: ikeep mount option is deprecated. [ 2546.939872][T27644] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2547.231875][T27658] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8045'. [ 2547.241704][T27658] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8045'. [ 2547.458064][T27644] XFS (loop7): Ending clean mount [ 2547.468392][T27644] XFS (loop7): Quotacheck needed: Please wait. [ 2547.525853][T27644] XFS (loop7): Quotacheck: Done. [ 2547.698693][T25288] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2548.945877][T27674] vcan0: tx drop: invalid sa for name 0x0000000000000001 [ 2549.030186][T27669] loop1: detected capacity change from 0 to 40427 [ 2549.043967][T27669] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 2549.053764][T27669] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 2549.066464][T27669] F2FS-fs (loop1): invalid crc value [ 2549.944540][T27677] loop5: detected capacity change from 0 to 40427 [ 2550.024565][T27677] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504) [ 2550.032274][T27677] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 2550.045176][T27677] F2FS-fs (loop5): build fault injection rate: 17008 [ 2550.052530][T27677] F2FS-fs (loop5): build fault injection type: 0x6 [ 2550.083857][T27677] F2FS-fs (loop5): invalid crc value [ 2550.229955][T27679] loop7: detected capacity change from 0 to 32768 [ 2550.492849][T27679] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.8049 (27679) [ 2550.501582][T27669] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 2550.514060][T27669] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 2550.541934][T27677] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 2550.547422][T27679] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2550.550411][T27677] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 2550.559579][T27679] BTRFS info (device loop7): using crc32c (crc32c-x86_64) checksum algorithm [ 2550.576638][T27679] BTRFS info (device loop7): disk space caching is enabled [ 2550.586597][T27679] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 2550.609747][ T30] audit: type=1800 audit(1752336651.711:417): pid=27669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8051" name="bus" dev="loop1" ino=10 res=0 errno=0 [ 2550.782380][T21457] syz-executor: attempt to access beyond end of device [ 2550.782380][T21457] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 2550.798844][T21457] CPU: 1 UID: 0 PID: 21457 Comm: syz-executor Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2550.799019][T21457] Tainted: [W]=WARN [ 2550.799071][T21457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2550.799155][T21457] Call Trace: [ 2550.799206][T21457] [ 2550.799256][T21457] __dump_stack+0x26/0x30 [ 2550.799421][T21457] dump_stack_lvl+0x1df/0x270 [ 2550.799592][T21457] dump_stack+0x1e/0x25 [ 2550.799738][T21457] f2fs_handle_critical_error+0xa6f/0xc20 [ 2550.799960][T21457] f2fs_stop_checkpoint+0x65/0x80 [ 2550.800157][T21457] f2fs_write_end_io+0xb4b/0x1920 [ 2550.800297][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2550.800496][T21457] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 2550.800680][T21457] bio_endio+0xe27/0xf80 [ 2550.800847][T21457] submit_bio_noacct+0x214/0x2710 [ 2550.801057][T21457] submit_bio+0x5a9/0x5d0 [ 2550.801227][T21457] f2fs_submit_write_bio+0x92/0x250 [ 2550.801424][T21457] __submit_merged_bio+0x16f/0x6a0 [ 2550.801593][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2550.801781][T21457] __submit_merged_write_cond+0x458/0x9a0 [ 2550.801973][T21457] f2fs_write_data_pages+0x4bb2/0x5480 [ 2550.802293][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2550.802467][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2550.802652][T21457] ? __update_load_avg_cfs_rq+0xe9/0x1010 [ 2550.802846][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2550.803015][T21457] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2550.803203][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2550.803364][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2550.803541][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2550.803710][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2550.803884][T21457] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2550.804084][T21457] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2550.804263][T21457] do_writepages+0x3ef/0x860 [ 2550.804420][T21457] ? _raw_spin_unlock+0x30/0x50 [ 2550.804567][T21457] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 2550.804789][T21457] filemap_fdatawrite+0x207/0x260 [ 2550.805044][T21457] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 2550.805220][T21457] f2fs_write_checkpoint+0xfe2/0x2b00 [ 2550.805506][T21457] kill_f2fs_super+0x2ff/0x970 [ 2550.805666][T21457] ? __pfx_kill_f2fs_super+0x10/0x10 [ 2550.805806][T21457] deactivate_locked_super+0xcb/0x3c0 [ 2550.805975][T21457] deactivate_super+0x12f/0x140 [ 2550.806136][T21457] cleanup_mnt+0x6fb/0x780 [ 2550.806260][T21457] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2550.806438][T21457] ? __pfx___cleanup_mnt+0x10/0x10 [ 2550.806576][T21457] __cleanup_mnt+0x22/0x30 [ 2550.806705][T21457] task_work_run+0x206/0x2b0 [ 2550.806867][T21457] exit_to_user_mode_loop+0x2a6/0x330 [ 2550.807035][T21457] do_syscall_64+0x1e3/0x210 [ 2550.807214][T21457] ? irqentry_exit+0x16/0x60 [ 2550.807367][T21457] ? clear_bhb_loop+0x40/0x90 [ 2550.807516][T21457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2550.807657][T21457] RIP: 0033:0x7f9f7378fc57 [ 2550.807763][T21457] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 2550.807884][T21457] RSP: 002b:00007ffe575aecc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 2550.808012][T21457] RAX: 0000000000000000 RBX: 00007f9f73810925 RCX: 00007f9f7378fc57 [ 2550.808113][T21457] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe575aed80 [ 2550.808200][T21457] RBP: 00007ffe575aed80 R08: 0000000000000000 R09: 0000000000000000 [ 2550.808287][T21457] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe575afe10 [ 2550.808375][T21457] R13: 00007f9f73810925 R14: 000000000026ed7e R15: 00007ffe575afe50 [ 2550.808495][T21457] [ 2551.168195][T21457] F2FS-fs (loop5): Remounting filesystem read-only [ 2551.271224][T27699] loop2: detected capacity change from 0 to 256 [ 2551.328985][T27699] FAT-fs (loop2): Directory bread(block 64) failed [ 2551.335964][T27699] FAT-fs (loop2): Directory bread(block 65) failed [ 2551.342857][T27699] FAT-fs (loop2): Directory bread(block 66) failed [ 2551.351965][T27699] FAT-fs (loop2): Directory bread(block 67) failed [ 2551.359135][T27699] FAT-fs (loop2): Directory bread(block 68) failed [ 2551.366029][T27699] FAT-fs (loop2): Directory bread(block 69) failed [ 2551.372992][T27699] FAT-fs (loop2): Directory bread(block 70) failed [ 2551.379874][T27699] FAT-fs (loop2): Directory bread(block 71) failed [ 2551.386931][T27699] FAT-fs (loop2): Directory bread(block 72) failed [ 2551.393815][T27699] FAT-fs (loop2): Directory bread(block 73) failed [ 2551.728604][T27679] BTRFS info (device loop7): rebuilding free space tree [ 2551.770990][T27679] BTRFS info (device loop7): disabling free space tree [ 2551.779947][T27679] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 2551.790984][T27679] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 2552.149400][T25288] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 2552.925754][T20048] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 2553.147779][T20048] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 2553.159285][T20048] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 2553.169459][T20048] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 2553.183053][T20048] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 2553.194235][T20048] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 2553.336057][T20048] usb 4-1: config 0 descriptor?? [ 2553.811903][T27725] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8058'. [ 2553.937927][T20048] plantronics 0003:047F:FFFF.0033: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 2554.048125][T20048] usb 4-1: USB disconnect, device number 15 [ 2554.293159][T27727] loop5: detected capacity change from 0 to 64 [ 2554.491038][T27723] loop1: detected capacity change from 0 to 32768 [ 2554.517818][T27723] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2554.682495][T27736] syzkaller1: entered promiscuous mode [ 2554.688511][T27736] syzkaller1: entered allmulticast mode [ 2555.010228][T27723] XFS (loop1): Ending clean mount [ 2555.055229][T27746] syzkaller1: entered promiscuous mode [ 2555.061150][T27746] syzkaller1: entered allmulticast mode [ 2555.099799][T27723] XFS (loop1): Metadata CRC error detected at xfs_agfl_read_verify+0x1b0/0x2f0, xfs_agfl block 0x3 [ 2555.111297][T27723] XFS (loop1): Unmount and run xfs_repair [ 2555.117359][T27723] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 2555.125092][T27723] 00000000: 58 41 46 4c 00 00 00 00 bf dc 47 fc 10 d8 4e ed XAFL......G...N. [ 2555.140930][T27723] 00000010: a5 62 11 a8 31 b3 f7 91 00 00 00 00 00 00 00 00 .b..1........... [ 2555.154914][T27723] 00000020: a5 3b c8 8a ff ff ff ff 00 00 00 07 07 00 00 08 .;.............. [ 2555.164399][T27723] 00000030: 00 00 00 09 00 00 00 0a 00 00 00 0b 00 00 00 0c ................ [ 2555.173696][T27723] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 2555.182822][T27723] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 2555.192096][T27723] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 2555.203095][T27723] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 2555.213233][T27723] XFS (loop1): metadata I/O error in "xfs_alloc_read_agfl+0x242/0x460" at daddr 0x3 len 1 error 74 [ 2555.332169][T20074] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 2555.383989][T20074] XFS (loop1): Uncorrected metadata errors detected; please run xfs_repair. [ 2555.824136][T24303] Bluetooth: hci4: command 0x0406 tx timeout [ 2556.211733][T27761] loop2: detected capacity change from 0 to 1024 [ 2556.523488][T19535] hfsplus: b-tree write err: -5, ino 4 [ 2556.561507][T27768] loop1: detected capacity change from 0 to 512 [ 2556.695327][T27768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 2556.708834][T27768] ext4 filesystem being mounted at /545/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 2557.021944][T20074] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 2557.251164][T27782] sctp: [Deprecated]: syz.5.8084 (pid 27782) Use of struct sctp_assoc_value in delayed_ack socket option. [ 2557.251164][T27782] Use struct sctp_sack_info instead [ 2557.370101][T27786] input: syz1 as /devices/virtual/input/input54 [ 2557.377007][T27786] input: failed to attach handler leds to device input54, error: -6 [ 2558.498211][T27788] loop7: detected capacity change from 0 to 40427 [ 2558.546668][T27788] F2FS-fs (loop7): build fault injection rate: 690 [ 2558.553854][T27788] F2FS-fs (loop7): Image doesn't support compression [ 2558.561265][T27788] F2FS-fs (loop7): Image doesn't support compression [ 2558.568533][T27788] F2FS-fs (loop7): build fault injection type: 0x4 [ 2558.578101][T27788] F2FS-fs (loop7): invalid crc value [ 2558.861261][T27788] F2FS-fs (loop7): Start checkpoint disabled! [ 2558.883773][T27788] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6 [ 2559.769729][T27816] loop3: detected capacity change from 0 to 64 [ 2559.784489][T27807] loop5: detected capacity change from 0 to 40427 [ 2559.881790][T27807] F2FS-fs (loop5): build fault injection rate: 690 [ 2559.889217][T27807] F2FS-fs (loop5): Image doesn't support compression [ 2559.896913][T27807] F2FS-fs (loop5): Image doesn't support compression [ 2559.911579][T27807] F2FS-fs (loop5): invalid crc value [ 2560.362589][T27807] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 2560.525150][T21457] syz-executor: attempt to access beyond end of device [ 2560.525150][T21457] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 2560.540105][T21457] CPU: 1 UID: 0 PID: 21457 Comm: syz-executor Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2560.540287][T21457] Tainted: [W]=WARN [ 2560.540338][T21457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2560.540427][T21457] Call Trace: [ 2560.540478][T21457] [ 2560.540530][T21457] __dump_stack+0x26/0x30 [ 2560.540698][T21457] dump_stack_lvl+0x1df/0x270 [ 2560.540872][T21457] dump_stack+0x1e/0x25 [ 2560.541019][T21457] f2fs_handle_critical_error+0xa6f/0xc20 [ 2560.541240][T21457] f2fs_stop_checkpoint+0x65/0x80 [ 2560.541432][T21457] f2fs_write_end_io+0xb4b/0x1920 [ 2560.541574][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2560.541778][T21457] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 2560.541966][T21457] bio_endio+0xe27/0xf80 [ 2560.542134][T21457] submit_bio_noacct+0x214/0x2710 [ 2560.542346][T21457] submit_bio+0x5a9/0x5d0 [ 2560.542522][T21457] f2fs_submit_write_bio+0x92/0x250 [ 2560.542698][T21457] __submit_merged_bio+0x16f/0x6a0 [ 2560.542871][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2560.543082][T21457] __submit_merged_write_cond+0x458/0x9a0 [ 2560.543278][T21457] f2fs_write_data_pages+0x4bb2/0x5480 [ 2560.543580][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2560.543757][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2560.543928][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2560.544114][T21457] ? folios_put_refs+0x21/0xb10 [ 2560.544244][T21457] ? filter_irq_stacks+0x49/0x190 [ 2560.544386][T21457] ? stack_depot_save_flags+0x35/0x7b0 [ 2560.544559][T21457] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2560.544731][T21457] ? kmsan_get_metadata+0xfb/0x160 [ 2560.544907][T21457] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2560.545087][T21457] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2560.545275][T21457] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 2560.545464][T21457] do_writepages+0x3ef/0x860 [ 2560.545627][T21457] ? _raw_spin_unlock+0x30/0x50 [ 2560.545779][T21457] ? wbc_attach_and_unlock_inode+0x131/0x680 [ 2560.546005][T21457] filemap_fdatawrite+0x207/0x260 [ 2560.546261][T21457] f2fs_sync_dirty_inodes+0x2ab/0x9e0 [ 2560.546439][T21457] f2fs_write_checkpoint+0xfe2/0x2b00 [ 2560.546711][T21457] kill_f2fs_super+0x2ff/0x970 [ 2560.546870][T21457] ? __pfx_kill_f2fs_super+0x10/0x10 [ 2560.547011][T21457] deactivate_locked_super+0xcb/0x3c0 [ 2560.547191][T21457] deactivate_super+0x12f/0x140 [ 2560.547350][T21457] cleanup_mnt+0x6fb/0x780 [ 2560.547487][T21457] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2560.547668][T21457] ? __pfx___cleanup_mnt+0x10/0x10 [ 2560.547808][T21457] __cleanup_mnt+0x22/0x30 [ 2560.547936][T21457] task_work_run+0x206/0x2b0 [ 2560.548103][T21457] exit_to_user_mode_loop+0x2a6/0x330 [ 2560.548275][T21457] do_syscall_64+0x1e3/0x210 [ 2560.548458][T21457] ? irqentry_exit+0x16/0x60 [ 2560.548616][T21457] ? clear_bhb_loop+0x40/0x90 [ 2560.548764][T21457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2560.548909][T21457] RIP: 0033:0x7f9f7378fc57 [ 2560.549012][T21457] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 2560.549131][T21457] RSP: 002b:00007ffe575aecc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 2560.549263][T21457] RAX: 0000000000000000 RBX: 00007f9f73810925 RCX: 00007f9f7378fc57 [ 2560.549357][T21457] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe575aed80 [ 2560.549448][T21457] RBP: 00007ffe575aed80 R08: 0000000000000000 R09: 0000000000000000 [ 2560.549536][T21457] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe575afe10 [ 2560.549627][T21457] R13: 00007f9f73810925 R14: 0000000000271389 R15: 00007ffe575afe50 [ 2560.549754][T21457] [ 2560.912772][T21457] F2FS-fs (loop5): Stopped filesystem due to reason: 3 [ 2561.191834][T26189] kworker/u8:15: attempt to access beyond end of device [ 2561.191834][T26189] loop7: rw=1, sector=77824, nr_sectors = 2048 limit=40427 [ 2561.283680][T26189] kworker/u8:15: attempt to access beyond end of device [ 2561.283680][T26189] loop7: rw=1, sector=79872, nr_sectors = 2048 limit=40427 [ 2561.400957][T26189] kworker/u8:15: attempt to access beyond end of device [ 2561.400957][T26189] loop7: rw=1, sector=49152, nr_sectors = 2048 limit=40427 [ 2561.554102][T26189] kworker/u8:15: attempt to access beyond end of device [ 2561.554102][T26189] loop7: rw=1, sector=51200, nr_sectors = 2048 limit=40427 [ 2561.677372][ C1] ===================================================== [ 2561.685180][ C1] BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x14a3/0x1ff0 [ 2561.693576][ C1] bpf_prog_run_generic_xdp+0x14a3/0x1ff0 [ 2561.699530][ C1] do_xdp_generic+0xd52/0x1690 [ 2561.704616][ C1] __netif_receive_skb_core+0x2533/0x70c0 [ 2561.710769][ C1] __netif_receive_skb+0xcc/0xac0 [ 2561.716160][ C1] process_backlog+0x485/0xa00 [ 2561.721114][ C1] __napi_poll+0xda/0x9c0 [ 2561.725789][ C1] net_rx_action+0xa59/0x1ac0 [ 2561.730658][ C1] handle_softirqs+0x166/0x6e0 [ 2561.735800][ C1] __do_softirq+0x14/0x1b [ 2561.740342][ C1] do_softirq+0x99/0x100 [ 2561.744871][ C1] __local_bh_enable_ip+0xa1/0xb0 [ 2561.750088][ C1] tun_rx_batched+0x889/0x980 [ 2561.755209][ C1] tun_get_user+0x4ee0/0x6b40 [ 2561.760091][ C1] tun_chr_write_iter+0x3e9/0x5c0 [ 2561.765426][ C1] vfs_write+0xb4b/0x1580 [ 2561.770019][ C1] __x64_sys_write+0x1fb/0x4d0 [ 2561.775117][ C1] x64_sys_call+0x38c3/0x3db0 [ 2561.780026][ C1] do_syscall_64+0xd9/0x210 [ 2561.784853][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2561.790938][ C1] [ 2561.793433][ C1] Uninit was created at: [ 2561.796080][T26189] kworker/u8:15: attempt to access beyond end of device [ 2561.796080][T26189] loop7: rw=1, sector=57344, nr_sectors = 2048 limit=40427 [ 2561.797856][ C1] __kmalloc_node_track_caller_noprof+0x96d/0x12f0 [ 2561.818717][ C1] kmalloc_reserve+0x22f/0x4b0 [ 2561.823880][ C1] pskb_expand_head+0x1fc/0x1610 [ 2561.829054][ C1] do_xdp_generic+0xa79/0x1690 [ 2561.834147][ C1] __netif_receive_skb_core+0x2533/0x70c0 [ 2561.840106][ C1] __netif_receive_skb+0xcc/0xac0 [ 2561.845567][ C1] process_backlog+0x485/0xa00 [ 2561.850518][ C1] __napi_poll+0xda/0x9c0 [ 2561.855177][ C1] net_rx_action+0xa59/0x1ac0 [ 2561.860031][ C1] handle_softirqs+0x166/0x6e0 [ 2561.865191][ C1] __do_softirq+0x14/0x1b [ 2561.869761][ C1] [ 2561.872400][ C1] CPU: 1 UID: 0 PID: 27827 Comm: syz.2.8104 Tainted: G W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2561.886402][ C1] Tainted: [W]=WARN [ 2561.890342][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2561.900756][ C1] ===================================================== [ 2561.908032][ C1] Disabling lock debugging due to kernel taint [ 2561.914461][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 2561.921250][ C1] CPU: 1 UID: 0 PID: 27827 Comm: syz.2.8104 Tainted: G B W 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(none) [ 2561.935156][ C1] Tainted: [B]=BAD_PAGE, [W]=WARN [ 2561.940302][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 2561.950543][ C1] Call Trace: [ 2561.953955][ C1] [ 2561.956927][ C1] __dump_stack+0x26/0x30 [ 2561.961503][ C1] dump_stack_lvl+0x53/0x270 [ 2561.966412][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2561.972491][ C1] dump_stack+0x1e/0x25 [ 2561.976867][ C1] panic+0x4bd/0xd50 [ 2561.981070][ C1] kmsan_report+0x31c/0x320 [ 2561.985822][ C1] ? __msan_warning+0x1b/0x30 [ 2561.990735][ C1] ? bpf_prog_run_generic_xdp+0x14a3/0x1ff0 [ 2561.996895][ C1] ? do_xdp_generic+0xd52/0x1690 [ 2562.002088][ C1] ? __netif_receive_skb_core+0x2533/0x70c0 [ 2562.008247][ C1] ? __netif_receive_skb+0xcc/0xac0 [ 2562.014212][ C1] ? process_backlog+0x485/0xa00 [ 2562.019342][ C1] ? __napi_poll+0xda/0x9c0 [ 2562.024075][ C1] ? net_rx_action+0xa59/0x1ac0 [ 2562.029134][ C1] ? handle_softirqs+0x166/0x6e0 [ 2562.034282][ C1] ? __do_softirq+0x14/0x1b [ 2562.039003][ C1] ? do_softirq+0x99/0x100 [ 2562.043625][ C1] ? __local_bh_enable_ip+0xa1/0xb0 [ 2562.049026][ C1] ? tun_rx_batched+0x889/0x980 [ 2562.054104][ C1] ? tun_get_user+0x4ee0/0x6b40 [ 2562.059176][ C1] ? tun_chr_write_iter+0x3e9/0x5c0 [ 2562.064746][ C1] ? vfs_write+0xb4b/0x1580 [ 2562.069509][ C1] ? __x64_sys_write+0x1fb/0x4d0 [ 2562.074776][ C1] ? x64_sys_call+0x38c3/0x3db0 [ 2562.079860][ C1] ? do_syscall_64+0xd9/0x210 [ 2562.084779][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2562.091042][ C1] ? ___bpf_prog_run+0xea65/0xeba0 [ 2562.096343][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.101668][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.107005][ C1] ? __bpf_prog_run32+0xc2/0xf0 [ 2562.112035][ C1] ? kmem_cache_free+0x3ef/0xec0 [ 2562.117157][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.122482][ C1] __msan_warning+0x1b/0x30 [ 2562.127266][ C1] bpf_prog_run_generic_xdp+0x14a3/0x1ff0 [ 2562.133214][ C1] ? __pfx_kmsan_get_shadow_origin_ptr+0x1/0x10 [ 2562.139756][ C1] do_xdp_generic+0xd52/0x1690 [ 2562.144723][ C1] ? qdisc_run_end+0xc1/0x120 [ 2562.149780][ C1] ? filter_irq_stacks+0x49/0x190 [ 2562.155020][ C1] __netif_receive_skb_core+0x2533/0x70c0 [ 2562.160971][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.166293][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2562.172321][ C1] ? filter_irq_stacks+0x49/0x190 [ 2562.177523][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.182912][ C1] __netif_receive_skb+0xcc/0xac0 [ 2562.188162][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.193512][ C1] process_backlog+0x485/0xa00 [ 2562.198454][ C1] ? net_rx_action+0x4d1/0x1ac0 [ 2562.203512][ C1] ? __pfx_process_backlog+0x10/0x10 [ 2562.209259][ C1] __napi_poll+0xda/0x9c0 [ 2562.213807][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.219136][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2562.225203][ C1] net_rx_action+0xa59/0x1ac0 [ 2562.230055][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.235376][ C1] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 2562.241533][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 2562.246827][ C1] handle_softirqs+0x166/0x6e0 [ 2562.251786][ C1] __do_softirq+0x14/0x1b [ 2562.256300][ C1] do_softirq+0x99/0x100 [ 2562.260697][ C1] [ 2562.263732][ C1] [ 2562.266772][ C1] __local_bh_enable_ip+0xa1/0xb0 [ 2562.272012][ C1] ? tun_rx_batched+0x16c/0x980 [ 2562.277057][ C1] tun_rx_batched+0x889/0x980 [ 2562.281915][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.287250][ C1] tun_get_user+0x4ee0/0x6b40 [ 2562.292108][ C1] ? stack_depot_save_flags+0x35/0x7b0 [ 2562.298096][ C1] ? __rcu_read_unlock+0x6d/0xd0 [ 2562.303211][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.308544][ C1] ? kmsan_get_metadata+0xfb/0x160 [ 2562.313858][ C1] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 2562.320598][ C1] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 2562.326923][ C1] tun_chr_write_iter+0x3e9/0x5c0 [ 2562.332161][ C1] vfs_write+0xb4b/0x1580 [ 2562.336717][ C1] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 2562.342454][ C1] __x64_sys_write+0x1fb/0x4d0 [ 2562.347476][ C1] x64_sys_call+0x38c3/0x3db0 [ 2562.352382][ C1] do_syscall_64+0xd9/0x210 [ 2562.357095][ C1] ? irqentry_exit+0x16/0x60 [ 2562.361874][ C1] ? clear_bhb_loop+0x40/0x90 [ 2562.366907][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 2562.372980][ C1] RIP: 0033:0x7f29f9d8e929 [ 2562.377648][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 2562.397625][ C1] RSP: 002b:00007f29fab12038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2562.406228][ C1] RAX: ffffffffffffffda RBX: 00007f29f9fb5fa0 RCX: 00007f29f9d8e929 [ 2562.414384][ C1] RDX: 000000000000fdef RSI: 0000200000000040 RDI: 0000000000000003 [ 2562.422506][ C1] RBP: 00007f29f9e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 2562.430618][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2562.438727][ C1] R13: 0000000000000000 R14: 00007f29f9fb5fa0 R15: 00007ffe5541f438 [ 2562.446955][ C1] [ 2562.450428][ C1] Kernel Offset: disabled [ 2562.454912][ C1] Rebooting in 86400 seconds..