last executing test programs:

3m59.715173949s ago: executing program 32 (id=88):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000036dbdf25250000000e0001006e657464657673696d0000000f0002"], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

3m7.025004772s ago: executing program 33 (id=494):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000040)={0x0, @bt={0x8af, 0x640, 0x1, 0x2, 0xd59f83, 0x19f2, 0x42, 0x4, 0x3, 0x3, 0x2800, 0x2800, 0x2, 0xba2, 0xd, 0x23, {0x8, 0xffffffff}, 0xd0, 0x9}})

2m59.888786109s ago: executing program 6 (id=551):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
tgkill(0x0, 0x0, 0x26)

2m59.648954757s ago: executing program 6 (id=554):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000100)=@gettaction={0x20, 0x32, 0x605, 0x70bd26, 0x25dfdbfe, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xffffffffffffff9f, 0x2, {0x1, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

2m55.254690372s ago: executing program 6 (id=579):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000080)=0xfffffff7, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000e40)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @local, 0x1}, 0x1c, 0x0, 0x0, &(0x7f00000000c0)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28, 0x7ffffff7}}], 0x1, 0x0)

2m54.856729581s ago: executing program 6 (id=583):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000140)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@i_version}, {@user_xattr}, {@lazytime}]}, 0x1, 0x445, &(0x7f0000000200)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000540), 0x10000, &(0x7f00000006c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}], [], 0x2c})

2m54.01315183s ago: executing program 6 (id=589):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x210042, &(0x7f00000001c0)={[{@grpquota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@noquota}, {@uid}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@uid}, {@errors_remount}, {@uid}]}, 0x24, 0x62dc, &(0x7f000000ec80)="$eJzs3c1vHGcdB/Df7JtfQtOoh6pECLlteCmleS0hUKDtAQ5cOKBcUSLXrSJSQElAaRURV75w4I8AIXFEiCMn/oAeuHLjDyBSggTqAXXQ2M/jzE53vXYS76wzn4/kzPzmmfE+k++Od9cz4ycAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgPjhD358roiIK79KC05EfC76Eb2Ilapei4iVtRP1bV6I7eZ4PiKGSxHV9tv/PBvxekR8fDzi/oM769Xi8/vsx/f//I8//OTYj/7+p+GZ//7lVv+Naevdvv3b//z17qPvLwAAAHRRWZZlkT7mn4yIQfpsDwA8/fLrf5nk5eqFqzcXrD9qtVqtPoJ1XTnZ3XoREZv1bar3DE7HA8ARsxmftN0FWiT/ThtExLG2OwEstKLtDnAo7j+4s16kfIv668HaTnu+FmQs/81i9/6OadNZmteYzOv5tRX9eG5Kf1bm1IdFkvPvNfO/stM+Susddv7zMi3/0c6tT52T8+838294evLvTcy/q3L+gwPl35c/AAAAAAAssPz7/xMtn/9devxd2Ze9zv+uzakPAAAAAAAAAPCkHXT8v0Fj/L9dxv8DAACAhVV9Vq/87vjDZdP+Flu1/HIR8UxjfaBj0s0yq233AwAAAAAAAAAAAAC6ZLBzDe/lImIYEc+srpZlWX3VNeuDetztj7qu7z90Wds/5AEAYMfHxxv38hcRyxFxOf2tv+Hq6mpZLq+slqvlylJ+PztaWi5Xap9r87RatjTaxxviwaisvtlybbu6WZ+XZ7U3v1/1WKOyv4+OzUeLgQNAROy8Gt2f9or0P69XR1NZPhstv8nhiNjj+OeIcvyzH20/TwEAAIDDV5ZlWaQ/530ynfPvtd0pAGAu8ut/87yAWq1Wq9Xqp6+uKye7Wy8iYrO+TfWewXD8AHDEbMYnbXeBFsm/0wYR8ULbnQAWWtF2BzgU9x/cWS9SvkX99SCN756vBRnLf7PY3i5vP2k6S/Mak3k9v7aiH89N6c/zc+rDIsn595r5X9lpH6X1Hj//cuzXhG1dYzQt/2o/T7TQn7bl/PvN/BsO+/ifl63oTcy/q3L+gwPl35c/AAAAAAAssPz7/xMLdf539Ki7M9Ne53/XJm5xeH0BAAAAAAAAgCfl/oM76/m+13z+/wsT1nP/59Mp51/Iv5Ny/r1G/l9trNevzd97+2H+/35wZ/2Pt/71+Tzdb/5LeaZIz6wiPSOK9EjFIE0fZ+8+a2vYH1WPNCx6/UG65qccvhvX4npsxNmxdXvp/+Nh+7mx9qqnw+32sr/Tfn6sfbDbnre/MNY+TFcXlSu5/XSsx8/jeryz3V61Lc3Y/+UZ7eWM9px/3/HfSTn/Qe2ryn81tReNaeXeR73PHPf16aTHeevaF39z9vB3Z6at6O/uW121fy+10J/t/5Njo/jlzY0bp29fvXXrxrlIk7Gl5yNNnrCc/zB97f78f3mnPf/crx+v9z4aHTj/RbEVg6n5v1ybr/b3lTn3rQ05/1H6yvm/k9onH/9HOf/px/+rLfQHAAAAAAAAAAAAAAAA9lKW5fYtom9FxMV0/09b92YCAPOVX//LJC+fV92f8+Op1YdWF8U8Hq9YmP1tof60nPPjD8YXtL3/avWTqOvKyd6sFxHxt/o21XuGX0/6ZgDAIvs0Iv7Zdidojfw7LP+9v2p6qu3OAHN184MPf3r1+vWNGzfb7gkAAAAAAAAA8Kjy+J9rtfGfT5Vlebex3tj4r2/H2uOO/5lvp3k4wOiUgar7B9+nvWz1Rv1ebbjxF2Pa+N/D3bm9xv8ezHi84Yz20Yz2pRntyzPaJ97oUZPzf7E23vmpiDjZGH69C+O/Nse874Kc/0u153OV/1ca69XzL39/lPPvjeV/5tb7vzhz84MPX7v2/tX3Nt7b+NmFc+fOXrh48dKlS2fevXZ94+zOvy32+HDl/PPY164D7Zacf85c/t2S8/9SquXfLTn/L6da/t2S88/v9+TfLTn//NlH/t2S838l1fLvlpz/11It/27J+b+aavl3S87/66mWf7fk/F9Ltfy7Jed/OtXy75ac/5lU7zP/lcPuF/OR889nuBz/3ZLzz1c2yL9bcv7nUy3/bsn5X0i1/Lsl5/96quXfLTn/b6Ra/t2S87+Yavl3S87/m6mWf7fk/C+lWv7dkvP/Vqrl3y05/2+nWv7dkvN/I9Xy75ac/3dSLf9uyfl/N9Xy75ac//dSLf9uyfm/mWr5d8vDv/9vxowZM3mm7Z9MAAAAAAAAAAAAAEDTPC4nbnsfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgp7dxcj11nfD/zsq9cOJAZC/k7+BjaOSUKyya7txC+0KSa8NryVQCj0Bdv1rs2CYxuvXQKNZNNAiYRRUUXbUKktINTmpiIXXNAKUC5QK6RK0F7QG0SFykWEAgpIlWgF2WrOeZ5nZ2bnZde73j1zzucj2T/vmTNznjnznLPz2/V3DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANLv5dXOfGsqyrPEn/2t7lr2g8e+tk9vzZa/e7BECAAAAa/Wr/O/nrksLDq/gTk3r/MvLv/PVxcXFxey9I38+9rnFxXTDZJaNbcmy/LboqR++b6h5neCxbGJouOnr4T6bH+lz+2if28f63D7e5/YtfW6f6HP7sh2wzNbi5zH5g+3O/7m92KXZ9dlYftvuDvd6bGjL8HD8WU5uKL/P4tiJbD47lc1lMy3rF+sO5et//ebGtt6cxW0NN21rZ2OG/OzR43EMQ2Ef727Z1tJjRj95bTb58589evzvzj97Y6fadze0PF4xztt3Ncb5ibCkGOtQtiXtkzjO4aZx7uzwmoy0jHMov1/j3+3jfG6F4xxZGuaGan/NJ7Lh/N/fzffTaPOP9dJ+2hmW/eKWLMsuLQ27fZ1l28qGs20tS4aXXp+JYkY2HqMxlV6cja5qnt68gnnaqLO7W+dp+zERX/+bw/1Gu4yh+WX6ycfHm173Xy5eyTyNGs+627HSPgfX+1gpyxyM8+K7+ZN+vOMc3B2e/6O3dp+DHedOhzmYnnfTHNzVbw4Oj4/kY04vwlB+n6U5uKdl/ZF8S0N5febW3nNw+vzDZ6cXPvqxu+YfPnZy7uTc6X179szs27//4MGD0yfmT83NFH9f4d4uv23ZcDoGdoV9F4+B29rWbZ6qi18cX3b+vdLjcKLHcbi9bd31Pg5H25/c0MYckMvndHFsvLux0ycuD2ddjrH89blj7cdhet5Nx+Fo03HY8XtKh+NwdAXHYWOds3es7D3LaNOfTmPo/r1gbXNwe9McbH8/0j4H1/v9SFnm4ESYF9+/o/v3gp1hvI9Prfb9yEi2reWb6vDS0w3nnsaS9H5/4mBeOs3Lmxo3XDOeXViYO3f3I8fOnz+3JwtlQ7ykaa60z9dtTc8pWzZfh1c9Xw/Pv/zxmzos3x721cRdjb8mur5WjXXuubv3a5V/d+u8P1uW7s1CWWcbvT87fTdv7M/xLPv8tz7+4Dce/fzruu7PRr/5iem1vxdPfWnT+Xesy/k39v3PF9tLD/XYyNhocfyOpL0z1nI+bn2pRvNz11C+7eemV3Y+Hgt/Nvp8fH2P8/GOtnXX+3w81v7k4vl4qN9PO9am/fWcCPPk1Ezv83FjnR17VzsnR5fNyeZj7JZQh8L+f1XoFNIpvGnudJu3aVujo2PheY3GLbTO030t64+F3qyxrSf3hjeFaZQrm6e331KsP9J0v2ij5ulk27rrPU/Tz766zdOhfj99uzLtr+dEmBfX7+s9TxvrPH3P2s+dW+M/m86d4/3m4NjIeGPMY2kS5uf7bHFrnIN3Z8ezM9mpbDa/dTyfT0P5tqbuXdm5cjz82ehz5Y4ec/D2tnXXew6m72Pd5t7Q6PInvw7aX8+JMC+euLf3HGys8/oDV/DetWVJ67ny9rAkrdP03rX952vdfuZ1U9tuulpzZTSM81sHev9strHOqYOr7TN776c7w5JrOuyn9uO32zE1m23MftoRxvnswe77qTGexjqfO7TC+XQ4y7KLH74//3lv+P3KxQvf+2rL7106/U7n4ofv/+kLT/zzasYPwOB7vijbiu91TT9EW8nv/wEAAICBEPv+4VAT/T8AAABURuz74/8KT/T/AAAAUBmx7x8NNalC///H/VfZ8fpn55+/mKVk/mIQb0+74YFivZhxnQlfTy4uaSy//8tz//1PF1c2vOEsy375wB91XH/HA3Fchckwzqfe0Lp8ma/etaJtH33oYtpuc379C+Hx4/NZ6TToFMGdybLs69d9Jt/O5Psu5/XpB47m9cFLjz/WWOe5Q8XX8f7PvKRY/69D+PfwiWMt938m7IcfhTrzls77I97vK5dftfPAe5a2F+83tOva/Gk/8f7icePn5Hz2sWL9uJ+7jf8bn37yK431H3ll5/FfHO48/ifD43451P95WbF+82vQ+Dre75Nh/HF78X53f+mbHcf/1KeK9c++sVjvaKhx+7eHr3e/8dn55v31yNCxlueVvalYL25/5nt/mt8eHy8+fvv4J45cbtkf7fPj6X8vHme6bf24PG4n+se27Tcep3l+xu0/+SdHW/Zzv+0/9eAzL2s8bvv272xb7+yH78i3v/R4rZ/Y9Def/EzH7cXxHP6Hsy3P5/A7w3Ectv/E+8N8DLf/71PF47V/usLRd7aef+L6X9h+seX5RG/+ebH9p15zMq9bJrZuu+YFL7z20isa+y7LvruleLx+2z/5t2daxv/FG4r9EW+PGf327XcTt3/uI1OnzyxcmJ9Ne/XR6/LPznlrMZ443uvCubX96yNnzn9g7tzkzORMlk1W9yP0rtiXQv1pUS71Xntx2Rn0jofC63nTX359263/9um4/D/eXSy//Jbi+9ZtYb3PhuXbw+u3uu0v98TNN+TH99DTYYSLyz8veC127v7xwRWtGJ5/+/uCON/PvvQD+X5o3JZ/34jH9RrH/4PZ4nG+FvbrYvhk5l03LG2vef342QiX31Uc72vef+E0F1/Xvw+v99t+VDx+HFd8vj8I72O+uaP1fBfnx9cuDrc/fv4pHpfC+SS7VNwe14r7+/JzN3QcXvwckuzSjfnXf5Ye58ZVPc1uFj66MH1q/vSFR6bPzy2cn1746MeOPHzmwunzR/LP8jzywR53/avbsixbOj9ty89Ps3P778nys9WZolxlaxh/bq3jP/vQ8dkDM7fOzp04duHE+YfOzp07eXxh4fjc7MKtx06cmPtIv/vPz963Z++hfQf2Tp2cn73v4KFD+w5NzZ8+0xhGMag+9s98aOr0uSP5XRbuu+fQnnvvvWdm6uEzs3P3HZiZmbrQ7/7596apxr3/cOrc3Klj5+cfnptamP/Y3H17Du3fv7fvpwE+fPbEwuT0uQunpy8szJ2bLp7L5Pl8ceN7X7/7U00L/1m8n203VHwQX/aOO/enz2dt+PLHuz5UsUrbB4g+Gz6L5tsvOntwJV/Hvn8s1KQK/T8AAACQi33/eKiJ/h8AAAAqI/b9W0JN9P8AAABQGbHvnwg1/ZeAmvT/lcv/77i4ou3L/8v/N+8v+f+a5f/fVbb8f3G+kP9fH2vN38v/B/L/8v8pPz+eZdnG5Oevzvjl/+X/2Uxly//Hvn9rlvn9PwAAAFRU7Pu3hZro/wEAAKAyYt9/TaiJ/h8AAAAqI/b9Lwg1qUn/L/8v/y//L/8v/995+/L/g0n+vzf5/26KT4SW/1+YzjYxP78e419l/v/Seo5/E/L/W5u/kP+njMqW/499/wtDTWrS/wMAAEAdxL7/2lAT/T8AAABURuz7rws10f8DAABAZcS+f3uoSU36f/n/NeX/U+ZK/r91/PL/reT/w3yQ/5f/3wDy/73J//ch/7+p188f9PG7/r/8P8uVLf8f+/4XhZrUpP8HAACAyhpb+mfs+18caqL/BwAAgPIZvbK7xb7/JaEmy/r/K9wAAAAAsOli33991hYEr8nv/+X/Xf9f/l/+X/6/8/ZXnv8fyeT/y0P+vzf5/z7k/+X/65v/n8jk/7kKypb/z/v+bCJ7aahJTfp/AAAAqIPY998QaqL/BwAAgMqIff//CzXR/wMAAEBlxL5/R6hJTfr/Dvn/lqCa/P/KlCD//4vmiKb8v/x/r+3L/7v+f5XJ//cm/9+H/L/8f33z/67/z1VRtvx/7PtvDDWpSf8PAAAAdRD7/ptCTfT/AAAAUBmx7///oSb6fwAAAKiM2PfvDDWpSf/v+v8lz//H5Kjr/8v/y/+XMv8/If9fOvL/vcn/9yH/L/8v/y//z7oqW/4/9v0vCzWpSf8PAAAAdRD7/peHmuj/AQAAoDJi3/+KUBP9PwAAAFRG7PsnQ01q0v+vJv8/dEn+v5urfP3/8RVc/7+F/L/8f6/ty/+7/n+Vyf/3Jv/fh/y//L/8v/w/66ps+f/Y998calKT/h8AAADqIPb9u0JN9P8AAABQGbHvvyXURP8PAAAAlRH7/t2hJjXp/13/fyDy/5n8v/y//L/8v/z/ysj/9yb/34f8v/y//L/8P+tqnfP/w+0LV5v/j33/K0NNatL/AwAAQB3Evv/WUBP9PwAAAFRG7PtvCzXR/wMAAEBlxL7/9lCTmvT/8v/y//L/8v/y/523L/8/mOT/e5P/70P+X/5f/l/+n3VVtuv/x77/VaEmNen/AQAAoA5i339HqIn+HwAAACoj9v13hpro/wEAAKAyYt8/FWpSk/5f/l/+X/5f/l/+v/P25f8Hk/x/b/L/fcj/y//L/8v/s67Klv+Pff9doSY16f8BAACgDmLff3eoif4fAAAAKiP2/dOhJvp/AAAAqIzY98+EmtSk/5f/l/+X/5f/X1X+/xVLjyv/X5D/Lxf5/97k//uQ/5f/3/T8/5j8P5VStvx/7Pv3hJrUpP8HAACAOoh9/95QE/0/AAAAVEbs+/eFmuj/AQAAoDJi339PqElN+n/5f/l/+X/5f9f/77x9+f/BJP/f2/rn/+NTlP+X/5f/d/1/+X+WK1v+P/b994aa1KT/BwAAgDqIff/+UBP9PwAAAFRG7PsPhJro/wEAAKAyYt9/MNSkJv2//L/8v/y//L/8f+fty/8PJvn/3lz/vw/5f/n/Ac7/N+aW/D9lU7b8f+z7D4Wa1KT/BwAAgDqIff+rQ030/wAAAFAZse//tVAT/T8AAABURuz7fz3UpCb9v/y//L/8v/x/2fP/4/L/8v+rIP/fm/x/H/L/8v8DnP93/X/KqGz5/9j33xdqUpP+HwAAAOog9v2/EWqi/wcAAIDKiH3/a0JN9P8AAABQGbHvPxxqUpP+X/5/g/L/caH8v/y//L/r/8v/X1Xy/73J//ch/y//L/8v/8+6Klv+P/b9rw01qUn/DwAAAHUQ+/77Q030/wAAAFAZse9/XaiJ/h8AAAAqI/b9rw81qUn/L//v+v+bn/8faxm7/P/S/eT/C/L/8v+rIf/fm/x/H/L/8v/y//L/rKuy5f9j3/+GUJOa9P8AAABQB7Hvf2Ooif4fAAAAKiP2/W8KNdH/AwAAQGXEvv/NoSY16f/l/+X/Nz//7/r/8v8F+X/5//Ug/9/bYOb/G7tR/j+T/y/9+OX/5f9Zrmz5/9j3/2aoSU36fwAAAKiD2Pc/EGqi/wcAAIDKiH3/W0JN9P8AAABQGbHvf2uoSU36f/l/+X/5f/l/+f/O25f/H0zy/70NWP7/V9eG5a7/X5D/L/f4V5v/H237+qrk/3/YLf+/uKX9/vL/XA1ly//Hvv9toSY16f8BAACgDmLf//ZQE/0/AAAAVEbs+98RaqL/BwAAgMqIff9vhZrUpP+X/2+MYym9LP8v/58vkP+X/5f/H1jy/70NWP4/XP9f/j+S/y/3+F3/X/6f5cqW/499/ztDTWrS/wMAAEAdxL7/wVAT/T8AAABURuz73xVqov8HAACAyoh9/7tDTWrS/8v/u/6//L/8v/x/5+3L/w+m9cn/j8j/y//L/8v/lyP//1/y/wy2suX/Y9//UKhJTfp/AAAAqIPY978n1ET/DwAAAJUR+/7fDjXR/wMAAEBlxL7/vaEmNen/5f8HJf8/Kf+/yvz/eFgm/y//L/9fL67/39vO3T/unqxsJv8v/y//X478v+v/M+DKlv+Pff/7Qk1W3v9PrHhNAAAAYFPEvv93Qk1q8vt/AAAAqIPY9/9uqIn+HwAAACoj9v2/F2pSk/5f/n9Q8v+u/59t2vX/l0JI8v/y//L/5bdx+f945hm4/L/r//ci/y//L//fNf8/3Of+8v90Urb8f+z7fz/UpCb9PwAAANRB7PvfH2qi/wcAAICB0On/ZLeLff+RUBP9PwAAAFRG7PuPhprUpP+X/5f/l/8v6fX//2LXv37/O28/ukf+X/5f/n9VNvT6/42Df/Cu/y//34v8v/y//L/r/7Ouypb/j33/sVCTpcbvrS7wDwAAAIMt9v1/EGpSk9//AwAAQB3Evv94qIn+HwAAACoj9v2zoSY16f/l/+X/5f9Lmv8f4Ov/x/0xSPn/qS0DlP+PJ135/442NP//nqWcuPz/avP/4x2Xtuf/h+T/W8j/r3r8386yTP5f/p9NVLb8f+z750JNatL/AwAAQB2Evn/4RFGXbtD/AwAAQGXEvv9kqIn+HwAAACoj9v0fCDWpSf8v/y//L/8v/+/6/523X9r8v+v/9yT/31t58v+duf6//P8gj1/+X/6f5cqW/499/3yoSU36fwAAAKiD2Pd/MNRE/w8AAACVEfv+D4Wa6P8BAACgMv6PvTt70rQs7zj+NmmKmSIhqVSqcpADcp4/gYNwlIPkD8gBJzlJVSqVkIXsG0P2lSTuOyqiuOACirihuAsqoriLivsu4o5aY830dV0z3f30805Pv2+/z3Pfn89BLmZ0fJs4hfwYvty5+/8gbulk/+v/9f/6f/2//n/48/X/86T/H6f/X0L/r//X/+v/Wamp9f+5+/8wbulk/wMAAEAPcvdfG7fY/wAAANCM3P1/FLfY/wAAANCM3P1/HLfMcv9vPXLYSlD/r/9vtv//df3/QZ+v/9f/t0z/P07/v8Rx9f9XLPT/a7Dpr1//r/9nv6n1/7n7/yRumeX+BwAAAIbk7v/TuMX+BwAAgGbk7r8ubrH/AQAAoBm5+/8sbulk/+/p/7cWffb/mfHq/1vq/8/1+tsL/f+uz9f/6/9bdrz9/w1n/sin/9f/e/8/6P/1//p/9ppa/5+7/8/jlk72PwAAAPQgd/9fxC32PwAAADQjd/9fxi32PwAAADQjd/9fxS2d7P8Jvv9/9r8E7//vfFv/v5L+3/v/ez5f/6//b5n3/8f11P9f9+Dl1z5656/cdZjP1//r//X/+n9Wa2r9f+7+v45bOtn/AAAA0IPc/X8Tt9j/AAAA0Izc/X8bt9j/AAAAMEMnB783d//fxS2d7P8J9v87X5f+/yz9/zH2/yf0//p//X8L9P/jeur/L+bzO+n/h/+keAL9/FGt7Ou/eaH/1/+zIlPr/3P3/33c0sn+BwAAgB7k7v+HuMX+BwAAgOka+huxR+Tuvz5usf8BAACgGbn7T8Utnex//f/6+/+f6P/n0f97/1//r/9vgv5/nP5/iT76/wPp/73/r/9n1abW/+fuvyFu6WT/AwAAQA9y9/9j3GL/AwAAQDNy9/9T3GL/AwAAQDNy9/9z3NLJ/tf/e/9f/6//1/8Pf77+f570/+P0/0vo/4/az1+q/9f/6/853yH7/8dG/rC9kv4/d/+/xC2d7H8AAADoQe7+f41b7H8AAABoRu7+f4tb7H8AAABoRu7+f49bOtn/+n/9v/5f/3/R/f/+n3pn6f+H6f+Ph/5/3GT6/63twe/W/8++//f+v/5f/88uU3v/P3f/f8Qtnex/AAAA6EHu/v+MW0b2/6H/Yj4AAACwUbn7/ytu8ev/AAAAMHtZneXu/++4pZP9P5/+//7f2Pkt/b/+X/8/mf6/4/f/7zrv69P/T4v+f9xk+v8D6P/1/3P++vX/+n/2m1r/n7v/f+KWTvY/AAAA9CB3/41xi/0PAAAAzcjd/79xi/0PAAAAzcjd/39xSyf7f7j/P/evT6f/9/6//l//n/1//ifq/0f7/6u9/98n/f84/f8S+n/9v/7/oP7/5LIfr/9nyNT6/9z9/x+3dLL/AQAAoAe5+x8Xt9j/AAAA0Izc/Y+PW+x/AAAAaEbu/ifELZ3s//m8/6//1//r/73/v/v3Z5Pv/y+Ovf/f1v9fIP3/OP3/Evp//b/+f/z9/5F/CoD+nyFT6/9z9z8xbulk/wMAAEAPcvc/KW6x/wEAAGAezv97B/b+DaUhd/+T4xb7HwAAAJqRu/8pcUs7+3/0rU79v/5f/6//1/8Pf/60+n/v/18o/f84/f8S+v919PPbjfX/Nx3046fQ/1+/7v5/hP6fIbv6/7vPff+m+v/c/U+NW9rZ/wAAANC93P1Pi1vsfwAAAGhG7v6nxy32PwAAADQjd/8z4pZO9v/a+/+Rf/qA/l//r//X/+v/9f+rpv8fp/9fQv/v/X/v/+v/Wald/f95NtX/5+5/ZtzSyf4HAACAHuTuf1bcYv8DAABAM3L33xS32P8AAADQjNz9z45bOtn/3v/X/+v/9f/6/+HP1//P05H6+0v0/0X/r//X/+v/9f+swNT6/9z9z4lbOtn/AAAA0IPc/c+NW+x/AAAAaEbu/pvjFvsfAAAAmpG7/3lxSyf7X/+/3v4/v1//r/9f6P/1//r/Y9Ht+/9bQ/9LtN8B/f99v3fqt3Z/j/5f/6//1//r/7lAvzDyr02i/z997s8uc/ffErd0sv8BAACgB7n7nx+3DO//nz2erwoAAABYpdz9L4hb/Po/AAAANCN3/61xyyH3/1jzMOyRKw/9Q9ZA/+/9f/2//l//P/z5+v956rb/v0De/19C/6//1//r/1mpSfT/5307d/8L4xa//g8AAADNyN3/orjF/gcAAIBm5O5/cdxi/wMAAEAzcve/JG7pZP/r//X/+n/9v/5/+PP1//Ok/x+n/19iTv3/rUfo/7eHv3vT/fxRbfrr1//r/9lvav1/7v7b4pZO9j8AAAD0IHf/S+MW+x8AAACakbv/ZXGL/Q8AAADNyN3/8rilk/2v/9f/6//1//r/4c/X/8+T/n+c/n+xWNw+8gUM9f+nL5tm/+/9/8l9/fp//T/7Ta3/z93/irilk/0PAAAAPcjdf3vcYv8DAABAM3L33xG32P8AAADQjNz9r4xbOtn/+n/9v/5f/7+C/n9XX6v/H6b/Px76/3H6/yXm9P6//n9yX7/+X//PfsfQ/9/y84fo/3P3vypu6WT/AwAAQA9y998Zt9j/AAAA0Izc/a+OW+x/AAAAaEbu/rvilk72v/5f/6//1/97/3/48/X/87S+/n+h/9f/6/+X0P/r//X/7DW19/9z978mbulk/wMAAEAPcve/Nm6x/wEAAKAZuftfF7fY/wAAANCM3P2vj1s62f/6f/2//l//P43+/8wfg/T/+v+j8/7/OP3/Evp//b/+X//PSg33/9dvrP/P3f+GuKWT/Q8AAAA9yN1/d9xi/wMAAEAzcve/MW6x/wEAAKAZufvfFLd0sv/1//r/3f3/YqH/1/97/3/HMfT/Jxb6/5XT/4/T/y+h/2+z/79k0VD/f/LAH6//Z4qm9v5/7v574pZO9j8AAAD0IHf/m+MW+x8AAACakbv/LXGL/Q8AAADNyN3/1rilk/2v/9f/e/9f/6//H/587//Pk/5/XH/9/7b+/xCa7f+9/6//Z2Om1v/n7n9b3NLJ/gcAAIAe5O5/e9xi/wMAAEAzcve/I26x/wEAAKAZufvfGbd0sv/1//p//b/+X/8//Pn6/3nS/4/rr//3/v9hbLqfn/vXr//X/7Pf1Pr/3P3vils62f8AAADQg9z998Yt9j8AAAA0I3f/fXGL/Q8AAADNyN3/7rilk/2v/9f/6//n2f+f0P/r//X/g6bS/1911W8+oP/X/+v/u+z/L1no//X/lKn1/7n73xO3dLL/AQAAoAe5+98bt9j/AAAA0Izc/ffHLfY/AAAANCN3//vilk72//7+/9LFTqG6Y6j/j0ZN/38e/f/ur1//P/zzw/v/+n/9//pNpf/3/v/Fff36f/3/nL/+Q73//6v7f7z+nxZNrf/P3f9A3NLJ/gcAAIAe5O5/f9xi/wMAAEAzcvd/IG6x/wEAAKAZufsfjFs62f/e/9f/6//1//r/4c/X/8+T/n+c/n8J/b/+/7j6/wGT6f9/Rv/P6kyt/8/d/8G4pZP9DwAAAD3I3f+huMX+BwAAgGbk7v9w3GL/AwAAQDNy938kbulk/+v/9f/6/zX0/9vDPz/0//p//f/66f/H6f/L3t+1Hf30/yeGvnPT/fxRbfrrX1P/f8/l3v9nxqbW/+fu/2jc0sn+BwAAgB7k7v9Y3GL/AwAAQDNy9388brH/AQAAoBm5+z8Rt3Sy//X/jff/Z77Rff//O97/3/P5+n/9f8v0//m/6MP0/0v00/8P2nQ/P/evv5n3//X/rNDU+v/c/Q/FLZ3sfwAAAOhB7v5Pxi32PwAAADQjd/+n4hb7HwAAAJqRu//TcUsn+1//33j/v+f9/61Fj/3/Bt7/P+Dnh/5f/6//Xz/9/zj9/xL6f/2//l//z0pNrf/P3f/w1naX+x8AAADm6rd/7fcfutB/78Nn/++JxWfilqsXpy/wl7EBAACAiTuz+7e2F4vPnv2WX/8HAACAFuXu/1zc0sn+1//31f/3+f7/Gvv/Mx+s/9f/6/8nRf8/Tv+/hP5f/6//1/+zUlPr/3P3fz5uOW/4bR/69xIAAACYktz9X4hbOvn1fwAAAOhB7v4vxi379r9/HCAAAADMVe7+L8Utnfz6v/5/4v3/Yk39f/z79P87vP+v/x/6fP3/POn/xx2x/z+9pf/X/4/Q/+v/9f/sNbX+P3f/l+OWTvY/AAAANGrXX1HI3f+VuMX+BwAAgGbk7v9q3GL/AwAAQDNy938tbulk/+v/j73/z1R9je//n6zfuqj3/xe/tPMN/f/8+/8bTwx+vv5f/98y/f847/8vof9vpf+/TP+v/2captb/5+7/etzSyf4HAACAHuTu/0bcYv8DAABAM3L3fzNusf8BAACgGbn7Hzlzfq6//b+R/j/+Qzrt/w/3/v8F9v+/eMXuz176/v9Y/+/9/3b6/wM+v53+/5cvP3XvNb97x236f845zv4/fy7o//X/+v8dE+r/vf+v/2ciVt//b+/6zsP2/2d3/+LE4ltxSyf7HwAAAHqQu//RuMX+BwAAgGbk7v923GL/AwAAQDNy938nbulk/3v/v43+f6859v/5/+sN9P+nLrr/P7lYLDbS/2dT3Hv/7/1//f9+3v8f10f/v63/v0ib7ufn/vXr//X/7Lf6/n/3dx62/8/d/924pZP9DwAAAD3I3f+9uCX3/9ah/9I9AAAAMDG5+78ft/j1fwAAAGhG7v4fxC2d7H/9v/5/Kv1/8v7/uR/X1vv/11Sc2mf/f2X9lv5/vfT/4/ro/73/f7E23c/P/evX/+v/2W9q/X/u/h/GLZ3sfwAAAOhB7v7H4hb7HwAAAJqRu/9HcYv9DwAAAM3I3f/juKWT/a//b7X/zyJe/6//n0r/7/1/7/8fD/3/OP3/Evr/mff/8RNmof/X/zMVU+v/c/f/NAAA//8GEl6W")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x80)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

2m51.764180896s ago: executing program 6 (id=606):
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000043c0)=ANY=[@ANYBLOB="003b09000000e9"], 0x2, 0x1a2, &(0x7f0000000440)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x80)
open_by_handle_at(r0, &(0x7f0000000000)=@reiserfs_2={0x8, 0x2, {0x4, 0x5}}, 0x202400)

2m50.927832623s ago: executing program 34 (id=606):
syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000043c0)=ANY=[@ANYBLOB="003b09000000e9"], 0x2, 0x1a2, &(0x7f0000000440)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x80)
open_by_handle_at(r0, &(0x7f0000000000)=@reiserfs_2={0x8, 0x2, {0x4, 0x5}}, 0x202400)

2m26.681789192s ago: executing program 8 (id=807):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0x4})
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000140), 0x4)

2m26.436080904s ago: executing program 8 (id=810):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000240)={0x0, 0xfffffd02, 0x0, 0x0, &(0x7f0000000140)=""/55, 0x37}, 0x202)

2m26.069522598s ago: executing program 8 (id=811):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b85000000ae000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x90)
sched_getparam(0x0, &(0x7f0000000100))

2m25.811855729s ago: executing program 8 (id=814):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))

2m25.474317156s ago: executing program 8 (id=818):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$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")
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2m24.350178943s ago: executing program 8 (id=830):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', <r1=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x1d, r1}, 0x10, &(0x7f0000000140)={&(0x7f00000000c0)=@canfd={{}, 0x31, 0x1, 0x0, 0x0, "fb70c077cdeb680e049c123d64d069e94597eb4f55e5b3eeeac66f8b31187479ca7fbc796b3a982a7f711789d09ab44bffb30a00000020d181d84807380140bc"}, 0x48}, 0x2, 0x0, 0x0, 0x80}, 0x4000855)

2m12.670087802s ago: executing program 2 (id=929):
r0 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x80200)
ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000480)={"e4efbf1e", 0x0, 0x6, 0x7, 0x3, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca2fd13", '\x00', "0120317c", ["1af0b1ba1cb8fd54c9c9b587", '\x00', "33af343c60abc64f2fdc9ddf", "9b0342fc6384a97ab6eb1c3c"]})
ioctl$CEC_TRANSMIT(r0, 0xc0386105, &(0x7f0000000280)={0xbb81, 0x1, 0x4, 0x0, 0x0, 0x10, "57c1b39b5900000044eb32694b52baf5"})

2m12.273467494s ago: executing program 2 (id=933):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000140), r0)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r1, 0x1, 0x70bd2c, 0x25dfdbfb}, 0x14}}, 0x800)

2m11.875424279s ago: executing program 2 (id=935):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x5)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0xdd)

2m11.331843529s ago: executing program 2 (id=938):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000680), 0x3, 0x470, &(0x7f0000000dc0)="$eJzs3M1vG0UbAPBn13H65k0hoZSvlo9AQVQIkqYt0AMHQCBxKBISHOBoJaEqTQtqgkSrSKQcygkhJO6II/8CJ7ggxAmJK9xRpQr1QsvJaL27iZ3YTtPYcYt/P8ntM/vhmce7Y8/u2AlgaE1l/yQReyPi94iYyIutG0zl/12/tjJ349rKXBL1+tt/JY3t/r62MlduWu433lyIJA62qXfpwsUztcXFhfNFeWb57EczSxcuPnf6bO3UwqmFc0dPnDh+bPbFF44+35M8xyMtojfe++rNk1+05L8hjx6Z6rbyqXq9x9UN1l1N8cgA28H2VIrjVW30/4moNB29iXj9s7XCpwNqINA39Xq9Pt559Wod+A9LorWsy8OwKD/oy+vfdtfBL/dt9DF4V1/JL4CyvK8Xj3zNyNodg+qG69temoqId1f/+SZ7RH/uQwAAtPghG/88m412Vuayscf6+CON+5u2u7uYG5qMiHsiYl9E3BvnYn9E3BfR2PaBiHhwm/U3TZI0hpmbxz/plVtO7iZk47+Xirmt1vFfOfqLyUqjdCEvRDV5//TiwpHiNTkc1T1ZebZLHT++9tuXndY1j/+yR1Z/ORYs2nFlZE/rPvO15dqtZ9zq6qWIAyPt8k/WZgKSiHgoIg60e4J06zpOP/Pdw53WbZ1/Fz2YaKp/G/F0fvxXY0P+paT7/OTM/2Jx4chMeVZs9suvl9/qVP+O8u+B7Pj/v+35v5b/ZNI8X7u0/Tou//F5x2uaqWoRbOP8X60t10aTdxrxaLHsk9ry8vnZiNHkZN7o5uVH1/cty+X2Wf6HD7Xv//ti/ZU4GBHZSfxIRDwaEY8Vx+7xiHgiIg51yf/nV5/8YOOysTL/2+D4z2/r+K8Ho9G6JG2zTRZUzvz0fUulk+thkf+N7u9/xxvR4WLJzbz/bW5F+2Cnrx8AAADcCdKI2BtJOr0Wp+n0dP4d/v351Hfm43Pz+W8EJqOalne6Jpruh84Wl/V5+VJE5F8tKNcfi7Rx3/jrylijPD334eL8QDMHxjv0/8yflUG3Dug7P9iC4aX/w/Dq2v+ru9cOYPdt6v9d+/yevrYF2F1tPv/HBtEOYPe1G//7ez8wHDb0f9N+METc/4fhpf/D8NL/YSgtjcXWP5LvGpTPdIu7bxVMROy0hYMJonpbNKNvQaR9r2K0v6dW34LkDmzzpmBw70kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99G8AAAD//1KFzjw=")
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

2m10.542094169s ago: executing program 2 (id=946):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r1, 0xff0a, 0x0)

2m10.053507954s ago: executing program 2 (id=951):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8)
getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000001080)=0x7c9)

2m9.374513111s ago: executing program 35 (id=951):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8)
getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000001080)=0x7c9)

2m9.222594092s ago: executing program 36 (id=830):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', <r1=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x1d, r1}, 0x10, &(0x7f0000000140)={&(0x7f00000000c0)=@canfd={{}, 0x31, 0x1, 0x0, 0x0, "fb70c077cdeb680e049c123d64d069e94597eb4f55e5b3eeeac66f8b31187479ca7fbc796b3a982a7f711789d09ab44bffb30a00000020d181d84807380140bc"}, 0x48}, 0x2, 0x0, 0x0, 0x80}, 0x4000855)

40.495914969s ago: executing program 7 (id=1656):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x2})
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000004c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'y)\x00'}, 0x0, 0x1, {0x0}, 0xea})

40.188809714s ago: executing program 7 (id=1659):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)=0x9)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000080)=0xd6e9)

39.840193009s ago: executing program 7 (id=1664):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0x3}, 0x1c)

39.29253284s ago: executing program 7 (id=1667):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000001a00)=ANY=[@ANYBLOB='allow_utime=00000000000000000000302,namecase=1,errors=remount-ro,umask=00000000000000000000020,fmask=00000000000000000000005,iocharset=iso8859-14,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030000000002c646973636172642c7569643d020331dcd7706de469da08a27f989c2c8492e71601372cb14bdcaee57b93e3d030470bd060999c22775e7b5ed20cdc0d19238d47a5ad1a7e4bb598f5658bf54b4ca97cce85a6296d1725", @ANYRESHEX=0x0, @ANYBLOB=',allow_utime=00000000000000020000002,defcontext=user_u,obj_user=iocharset,\x00'], 0x1, 0x152a, &(0x7f0000000340)="$eJzs3AuYjtXaOPD7Xms9Y0h6m+QwrLXuhzc5LJMkOSTJIUmSJMkpIWmSLQmJIaekIQnJYUgOQ0gOE5PG+ZDzKSFJmiQJySlZ/2vC327X/vbe3+7Lvvbcv+t6r1n3u557Pet57/ewnuedmW+7DK3ZuFa1hkQE/xa88CMJAGIBYCAAXAMAAQCUiysXl9WfU2LSv7cT9sd6KPVKz4BdSVz/7I3rn71x/bM3rn/2xvXP3rj+2RvXP3vj+jOWnW2aXvBavmXfG1//z8748/+/SGbpsV+uLX19V4CYfzaF65+9cf3/awX/zEZc/+yN659dxV7pCbD/APz6zw5y/N0ern/2xvVnLDv7c683y/+47xsg8uc+Bgqu/DH/6vgZY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjLE/wWl/mQKAS+0rPS/GGGOMMcYYY4z9cXyOKz0DxhhjjDHGGGOM/d9DECBBQQAxkANiISfkAgEAV0MeuAYicC3EwXWQF66HfJAfCkBBiIdCUBg0GLBAEEIRKApRuAGKwY1QHEpASSgFDkpDAtwEZeBmKAu3QDm4FcrDbVABKkIlqAy3QxW4A6rCnVAN7oLqUANqQi24G2rDPVAH7oW6cB/Ug/uhPjwADeBBaAgPQSN4GBrDI9AEHoWm0AyaQwto+b/KfwF6wIvQE3pBEvSGPvAS9IV+0B8GwEB4GQbBKzAYXoVkGAJD4TUYBq/DcHgDRsBIGAVvwmh4C8bAWBgH4yEFJsBEeBsmwTswGabAVJgGqTAdZsC7MBNmwWx4D+bA+zAX5sF8WABp8AEshEWQDh/CYvgIMmAJLIVlsBxWwEpYBathDayFj2EdrIcNsBE2wWbYAlthG2yHHfAJ7IRPYRfshj3wGeyFz//F/FN/k98VAQEFClSoMAZjMBZjMRfmwtyYG/NgHoxgBOMwDvNiXsyH+bAAFsB4jMfCWBgNGiQkLIJFMIpRLIbFsDgWx5JYEh06TMAELIM3Y1ksi+WwHJbH8lgBK2JFrIyVsQpWwapYFathNayO1bEm1sS78W7sjXWwDtbFulgP6126PIUNsSE2wkbYGBtjE2yCTbEpNsfm2BJbYitsha2xNbbFttgO22F7bI+JmIgdsAN2xI7YCTthZ+yMXbALdsVu2C3zhRyAL+KL2Auri97YB/tgX0zO0R8H4AB8GQfhK/gKvorJOASH4mv4Gr6Ow/EkjsCROApHYRXxFo7BsUhiPKZgCk7EiTgJJ+FknIJTcBqm4nScgTNwJs7CWfgezsH38X2ch/NwAaZhGi7ERZiO6bgYT2EGLsGluAyX4wpcjqtwNa7CtfgxrsX1uB434kbcjJtxK27F7bgdP0EFgJ/ibtyNybgX9+I+3If7cT8ewAOYiZl4EA/iITyEh/EwHsEjeBSP4XE8hifwBJ7EU3gaT+NZPIvn8Ln4rxt9UmJNMogsSigRI2JErIgVuUQukVvkFnlEHhEREREn4kRekVfkE/lEAVFAxIt4UVgUFkYYQSKMAQARFVFRTBQTxUVxUVKUFE44kSASRBlRRpQVZUU5casoL24TFURF0cZJUVlUEW1dVXGnqCaqieqihqgpaolaoraoLeqIOqKuqCvqiXqivnhANBC9sT8+JLIq01gMwSZiKDYVzYS8+A7WSgzH1qKNaCueECNxBLYXrVyieFp0EGOwo/iLGIvPis5iPHYRz4uuopvoLl4QPURr11P0EpOxt+gjpmFf0U/0FwPETKwh3sM5OWuKV0WyGCKGitfEAnxdDBdviBFipBgl3hSjxVtijBgrxonxIkVMEBPF22KSeEdMFlPEVDFNpIrpYoZ4V8wUs8Rs8Z6YI94Xc8U8MV8sEGniA7FQLBLp4kOxWHwkMsQSsVQsE8vFCrFSrBKrxRqxVnws1on1YoPYKDaJzWKL2Cq2ie1ih/hE7BSfil1it9gjPhN7xedin/hC7BdfigPiK5EpvhYHxTfikPhWHBbfiSPie3FUHBPHxQ/ihPhRnBSnxGlxRpwVP4lz4mdxXngBEqWQUioZyBiZQ8bKnDKXvErmlsHFR/daGSevk3nl9TKfzC8LyIIyXhaShaWWRlpJMpRFZFEZlTfIYvJGWVyWkCVlKelkaZkgb5Jl5M2yrLxFlpO3yvLyNllBVpSVZGV5u6wi75AQubCP6rKGrClrybtlEtwj68h7ZV15n6wn75f15QOygXxQNpQPyUbyYdlYPiKbyEdlU9lMNpctZEv5mGwlH5etZRvZVj4h28knZXv5lEyUT8sO0l98ijwrO8vnZBf5vOwqu8nu8md5XnrZU/aS0BtkH/mS7Cv7yf5ygBwoX5aD5CtysHxVJsshcqh8TQ6Tr8vh8g05Qo6Uo+SbcrR8S46RY+U4OV6myAlyonxbTpLvyMlyipwqp8lUOV32vzjSbCn/Yf7bv5M/+Je9b5Sb5Ga5RW6V2+R2uUN+InfKnXKX3CX3yD1yr9wr98l9cr/cLw/IAzJTZsqD8qA8JA/Jw/KwPCKPyKPymDwjf5An5I/ypDwlT8kz8qw8K89dfAxAoRJKKqUCFaNyqFiVU+VSV6nc6mqVR12jIupaFaeuU3nV9Sqfyq8KqIIqXhVShZVWRllFKlRFVFEVVTfgxSeMKqlKKadKqwR107+Sr4qpG1VxVeJX+Zfml/R35tdStVStVCvVWrVWbVVb1U61U+1Ve5WoElUH1UF1VB1VJ9VJdVadVRfVRXVVXVV31V31UD1UT9VTJakk1Ue9pPqqfqq/GqAGqpfVIDVIDVaDVbJKVkPVUDVMDVPD1XA1Qo1Qo9QoNVqNVmPUGDVOjVMpKkVNVBPVJDVJTVaT1VQ1VaWqVDVDzVAz1Uw1W81Wc9QcNVfNVfPVfJWm0tRCtVClq3S1WC1WGWqJWqKWqWVqhVqhVqlVao1ao7LWX+vVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nLfsCEYhABSqICWKC2CA2yBXkCnIHuYM8QZ4gEkSCuCAuyBtcH+QL8gcFgoJBfFAoKBzowAQ2EBeLHg1uCIoFNwbFgxJByaBU4ILSQUJwU1AmuDkoG9wSlAtuDcoHtwUVgopBpaBycHtQJbgjqBrcGVQL7gqqBzWCmkGt4O6gdnBPUCe4N6gb3BfUC+4P6gcPBA2CB4OGwUNBo+DhoHHwSNAkeDRoGjQLmgctgpZ/6Pjen8z/uOupe+kk3Vv30S/pvrqf7q8H6IH6ZT1Iv6IH61d1sh6ih+rX9DD9uh6u39Aj9Eg9Sr+pR+u39Bg9Vo/T43WKnqAn6rf1JP2Onqyn6Kl6mk7V0/UM/a6eqWfp2fo9PUe/r+fqeXq+XqDT9Ad6oV6k0/WHerH+SGfoJXqpXqaX6xV6pV6lV+s1eq3+WK/T6/UGvVFv0pv1Fr1Vb9Pb9Q79id6pP9W79G69R3+m9+rP9T79hd6vv9QH9Fc6U3+tD+pv9CH9rT6sv9NH9Pf6qD6mj+sf9An9oz6pT+nT+ow+q3/S5/TP+rz2WYv7rI93o4wyMSbGxJpYk8vkMrlNbpPH5DEREzFxJs7kNXlNPpPPFDAFTLyJN4VNYZOFDJkipoiJmqgpZoqZ4qa4KWlKGmecSTAJpowpY8qasqacKWfKm/KmgqlgKplK5nZzu7nD3GHuNHeau8xdpoapYWqZWqa2qW3qmDqmrqlr6pl6pr6pbxqYBqahaWgamUamsWlsmpgmpqlpapqb5qalaWlamVamtWlt2pq2pp1pZ9qb9ibRJJoOpoPpaDqaTqaT6Ww6my6mi+lqupruprvpYXqYnqanSTJJpo/pY/qavqa/6W8GmoFmkBlkBpvBJtkkm6FmqBlmhpnhZrgZYUaaUVkLVfOWGWPGmnFmvEkxKWaimWgmmUlmsplsppqpJtWkmhlmhplpZprZZraZY+aYuWaumW/mmzSTZhaahSbdpJvFZrHJMBlmqVlqlpvlZqVZaVab1WatWWvWwTqzwWwwm8wms8VsMdvMNrPD7DA7zU6zy+wye8wes9fsNfvMPrPf7DcHzAGTaTLNQXPQHDKHzGFz2BwxR8xRc9QcN8fNCXPCnDQnzWlz2pw1+S9+XnoTa3PaXPYqm9tebfPYa+zfxgVsQRtvC9nCVtt8Nv+vYmOtLW5L2JK2lHW2tE2wN/0mrmAr2kq2sr3dVrF32Kq/iWvbe2wde6+ta++ztezdv4rr2fttffuIbYAIYJvZRraFbWwfsU3so7apbWab2xa2nX3StrdP2UT7tO1gn/lNvNAusqvtGrvWfmx32d32tD1jD9lv7Vn7k+1pe9mB9mU7yL5iB9tXbbId8pt4lH3TjrZv2TF2rB1nx/8mnmqn2VQ73c6w79qZdtZv4jT7gZ1j0+1cO8/Otwt+ibPmlG4/tIvtRzbDBrDULrPL7Qq70q76/3NdZtfbDXaj3Wk/tVvsVrvNbrc7Li2E7W67x35m99rP7UH7jd1vv7QH7GGbab/+Jc46vsP2O3vEfm+P2mP2uP3BnrA/qkvZWcf+g/3ZnrfeAiEBSVIUUAzloFjKSbnoKspNV1MeuoYidC3F0XWUl66nfJSfClBBiqdCVJg0GbJEFFIRKkpRuoEuTa8klSJHpSmBbqIydDOVpVuoHN1K5ek2qkAVqRJVptupCt1BVelOqkZ3UXWqQTWpFt1NtekeqkP3Ul26j+rR/VSfHqAG9CA1pIeoET1MjekRakKPUlNqRs2pBbWkx6gVPU6tqQ21pSeoHT1J7ekpSqSnqQM9Qx3pL9SJnqXO9Bx1oeepK3Wj7vQC9aAXqSf1oiTqTX3oJepL/ag/DaCB9DINoldoML1KyTSEhtJrNIxep+H0Bo2gkTSK3qTR9BaNobE0jsZTCk2gifQ2TaJ3aDJNoak0jVJpOs2gd2kmzaLZ9B7NofdpLs2j+bSA0ugDWkiLKJ0+pMX0EWXQElpKy2g5raCVtIpW0xpaSx/TOlpPG2gjbaLNtIW20jbaTjvoE9pJn9Iu2k176DPaS5/TPvqC9tOXdIC+okz6mg7SN3SIvqXD9J3vRd/TUTpGx+kHOkE/0kk6RafpDJ2ln+gc/UznyROEGIpQhioMwpgwRxgb5gxzhVeFucOrwzzhNWEkvDaMC68L84bXh/nC/GGBsGAYHxYKC4c6NKENKQzDImHRMBreEBYLbwyLhyXCkmGp0IWlw4TwprBMeHNYNrwlLBfeGpYPbwsrhBXDR+6rHN4eVgnvCKuGd4bVwrvC6mGNsGZYK7w7rB3eE9YJ7w3rhveFZcP7w/rhA2GD8MGwYfhQ2Ch8OGwcPhI2CR8Nm4bNwuZhi7Bl+FjYKnw8bB22CduGT4TtwifD9uFTYWL4dNghfOaX/vsX/f3+pLB32Cd8KXwp9P5eOT+6IJoW/SC6MLoomh79MLo4+lE0I7okujS6LLo8uiK6Mroqujq6Jro2+nF0XXR9dEN0Y9T7WjnAoRNOOuUCF+NyuFiX0+VyV7nc7mqXx13jIu5aF+euc3nd9S6fy+8KuIIu3hVyhZ12xllHLnRFXFEXdTe4Yu5GV9yVcCVdKedcaZfgWriWrqVr5R53rV0b19Y94Z5wT7on3VPuKfe06+CecR3dX1wn96zr7J5zz7nnXVfXzXV3L7gebkKeC6/JJNfH9XF9XV/X3/V3A91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfVTXWpLtXNcDPcTDfTVZl1YS9z3Vw33813aS7NLXRZa8Z0t9gtdhkuwy11S91yt9ytdCvdarfarXVr3Tq3zm1wG9wmt8ltcVvcNrfN7XA73E630+3y11wY1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5MiUyNTItEhqZHpkRuTdyMzIrMjsyHuROZH3I3Mj8yLzIwsiaZEPIgsjiyLpkQ8jiyMfRTIiSyJLI8siyyMrIt4X2hL6Ir6oj/obfDF/oy/uS/iSvpR3vrRP8Df5Mv5mX9bf4sv5W315f5uv4Cv6Sv5R39Q38819C9/SP+Zb+cd9a9/Gt/VP+Hb+Sd/eP+UT/dO+g3/Gd/R/8Z38s76zf8538c/7rr6b7+5f8D38i76n7+WTfG/fx7/k+/p+vr8f4Af6l/0g/4of7F/1yX6IH+pf88P86364f8OP8CP9qJg3/ehLp8gw3qf4CX6if9tP8u/4yX6Kn+qn+VQ/3c/w7/qZfpaf7d/zc/z7fq6f5+f7BT7Nf+AX+kU+3X/oF/uPfIZfcumisl/pV/nVfo1f6z/26/x6v8Fv9Jv8Zr/Fb/Xb/Ha/w3/id/pP/S6/2+/xn/m9/nO/z3/h9/sv/QH/lc/0X/uD/ht/yH/rD/vv/BH/vT/qj/nj/gd/wv/oT/pT/rQ/48/6n/w5/7M/z3+zxhhjjDH2T5lwuSl+3XPhcn7v38kRf7VxHwC4emvBzL/uz1pRrst3od1PxLeLAMDTvbo8dOlWvXpSUtLFbTMkBEXnAVz6JihLDFyOl0BbeBISoQ2U+d359xPdztI/GD96K0Cuv8qJhcvx5fG/AMCk3xn/sSdGLSwfno77H8afB1C86OWcnHA5XgJtf7m+0gbK/p3552/1D+af88sUgNZ/lZMbLseX558Aj8MzkPirLRljjDHGGGOMsQv6iUqdLp1/XvqNz987P49Xl3NywOX4H52fM8YYY4wxxhhj7Mp7tlv3px5LTGzT6V9vVP1fZf3TjSbwfzUyN3634T3ApXsUAPybAwJkNeSfeRSb/5R9JV986fxt1/IzPoD/jFL+EY0r/MbEGGOMMcYY+8NdXvT/+n51pSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQ3/GvxO70sfIGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMXWn/LwAA//9+qv+4")
chroot(&(0x7f0000000180)='./file0\x00')
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)

38.645947121s ago: executing program 7 (id=1671):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc222, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00220b0000001bdbc79ef4832a"], 0x0}, 0x0)

37.957664758s ago: executing program 7 (id=1678):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x2)
getsockopt$netlink(r0, 0x10e, 0x9, 0x0, &(0x7f0000000040))

37.05792282s ago: executing program 37 (id=1678):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x2)
getsockopt$netlink(r0, 0x10e, 0x9, 0x0, &(0x7f0000000040))

4.591684875s ago: executing program 4 (id=1910):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0xffff0018)
ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0)

4.325030484s ago: executing program 3 (id=1912):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000012c0)={0x3c, r1, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x80003}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

4.08516541s ago: executing program 4 (id=1914):
setresuid(0xee01, 0xee01, 0x0)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f0000000200)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)

3.991665462s ago: executing program 3 (id=1916):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x80, {0x0, 0x0, 0x0, 0x0, 0x1701}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)

3.682261321s ago: executing program 4 (id=1918):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000001c0)={0x0, 0x0, 0x0})
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000340)={0x0, 0x9, &(0x7f0000000040)='\x00\x00\x00\x00\x00\x00\x00\x00\x00'})

3.312817621s ago: executing program 4 (id=1920):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x3, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x2}, 0xe)

2.956818112s ago: executing program 3 (id=1923):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000100)={0x2c, &(0x7f0000000440)=ANY=[@ANYBLOB="00000100000004"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000340)={0x1c, &(0x7f0000000140)=ANY=[@ANYBLOB="40180e000000f310982653db"], 0x0, 0x0})

2.886451096s ago: executing program 4 (id=1924):
syz_mount_image$xfs(&(0x7f00000000c0), &(0x7f0000009780)='./file0\x00', 0x0, &(0x7f0000000280), 0x5, 0x9730, &(0x7f0000012f40)="$eJzs3QeYJHWhcP1ZYMkZRERRVFSMRAkiShAQCRIVFBAkSw5KUJKIBEVBQMk555xzzjnnnHPOfM+yu4rrget93/t+3HvPOc+zO9PVVTXV/1931cxUT/eS8yw258DA6ANDm2JgxG69a86FNt5xziv33WmvU6cYc/zJh00etsCkwy5OOmjYx5EGBgZGGraeYdPGeuykk0caGOW96f9orDHGHDTOwMB0wy7OPuzjTEM/TPT48PneHaERN3TQ3y8O2n7ov/cab8iXGPLJ0rdcdO7AwMD471t+yCLT/MsNlbbkHPPO8w+rv7sNsRo87PP3/xt16L+JHhwYmOi+Ab5/vH/eQR/BTRryNcff8aHR1/0Ivvb/uJacY975RvAf8lgcedi0mYY8xkd8DBob8X5+yyqz7jFsCN+7vw0MDNnF/dNj5X9ES84xzwIDH7yfH3hkzHHPfPe9/eZYzw0MjPX8wMBYLwwMjPXiwMBYLw0MjPXyR+1S/3fNMef0cw55vA+/PIx9+H15fLpf7Lv6S/sMDAyMNnSesd4ZerwYe4rhx4Sqqqr6790cc04/Fxz/R/+w4/9WW89xW8f/qqqq/7nNN8ec0w85jo9w/B/7w47/P7jppjWG/u5/9pmGLvXOR3sjqqqq6j/VPPPh8X/8Dzv+j7fDDQd0/K+qqvqf26ILvnf8H3uE4//EH3b8X2P+uy4fNt/w7xveft8q33v+2LDpb75v+sjvm/7G+6YPft963j//qO+b/tr7po8+MDDWY8Omv/WPyWM9N2SZf13PWK/84/k4k47yvumvvm/6qO+b/tqwbRoyfbT3TX/7ffOP/o/pYw/5b4phX/f1Dxnqqqqq/zYtOv08cw2873n2wyYPf2I/Pi/02GO3vvuj2t6qqqqqqqqq+s/3ztNnnPOPv/n+9MD7/nb173/DOuz3AoOOO++66z6yDf3v0aB//X3IFh/1Nv3fNsR59COmGBhYa4mPelPqI+h/zN+q1/+T8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/cR9w/v/vf/8/cN9Xdhg26yyT3XX/Yv9YctKB1YZ9dutdcy602kew7R9B/1vP/w+sNmhgYJjv+EMsF5pj0cWnGhgYWOz+uyabceDv18085LpZJxz5vT/mHBiY6r3/B0/6AWse9i4L7725w8R/X8dx761/vnf3H3nQCBvxvmY794GDV13y1RlG/PilD74df39/iaVe2X/K4X/LMtIIM43+AQsPX//w2zKi87Btn2rItk+9wZrrTL3+xpt8fbU1l19lpVVWWmu66aadYfoZZ5jum7NMvfJqa6w0zdD/P2DMhr51xcj/zpiNPeKYPT3H+8dsxNs2wSkH45j967t6/NMq3lvj+bM9csXwMRvl3xyz4V9v5A8fsylWG/aFJh0YPLDce0MzaGBg0lEGD2w05MK0ow0MTDp42LyTDpn32xOONDCw4z9u6KBhLzY6dJ5BWwyZ57/Z+5bMMmxENh0+34ivsz7ihv5H71ty4ti73DXC+5b8v+r/6Pj/L14zD/r7QA1/A4Rh8wz1+ojfZ+JftneKUd47yH3Q9n7I6+K8F92/1lz18SX+q14Xh7Z37A/Z3g95Hb8P3N6ppn12z6Gr+i/b3hH2dQsMvfLf2dcNfPi+bmRafqWrJx9xXzf/B2/iPz2Oh4/RaCPM9EH7uh3nP3/zIesf+PB93QKrDXvxgH/s60YaGJh05OH7uiE7vlEHD+w45MJ0Qy6MNnjgsCEXpn/vwhgD5w258I0V1l5jxUHvvczAsPVOM2S9s084aOgD6OaDVx1tl3ffHWXYtrwy1j9v67D7xxTvP57PMeGwwRy27PD1Dpl1+Hpf22bodaMOW++r/4n1Dl+WtnfSs4deN9qw9b42wnoHf8h6hy/7L4+HqQb90xNVYX/zkb6vET1+R/+Q7f2Q1+HG+9t77lMu+8h/wetwD/qg7R3lw7f3g9435AO394krntzvv+p1w+l+dt++Q+8row+7n739n7j/Dl92xP3Y0BcCGbrbH/3f2Y9N8S/7sS1HHmmEwX5fH/R97oow/7BHxN/XtuJBr642fOwHj7De/+j73PfdlkGwHxt/hJ/nBm2+38AgGvPH1nhxw3d2/vAxHzzwzz9bDB/z4ct+2JiP9u+M+ac+fMxH/D75g8Z8qs8PvX7wCNv//jFfZLfZbx4+5qOOsN7/aMxH+/Bjx7+O+cDAYBrzHScbOm4ftj/9oDEfvuzwMR/ydWadcJSBuQcGBqYcNuaj/jtjPul/zf18TJh/6Ocr/X3SczMu/LXhYz7iGP9HYz7qf3LMN7vv7/fzKd+77nMjDYw66sBGy2+wwXrTDv1/+MXphv7P+6LnVhw6zh92LP0go+HLftjjYpR/x2j8f8to0H9kNNkoH2T0j4fWyAcv+vz/6b5olP+s0Xm8Lzpt3qHj9mHfF33QmA9flo6DE79v+RF/Dv2Q18/C2/Te+My/7fCf9/47vH7W8J93/0e+ftbw30muNuJOvv7d+v2/u/zd5e8uf3f5i/uA8/9TDD///+7YB04y7IfOwVfPfNvsH/X2fsT9rz7/P8z3n87/z37bzFcP+dFq2HUfen526Dz/Lc/PzjT0w0SPD59vxPODI27of3R+dt9dN7j6/6fzs/9HDX+s/hs/F7f/d5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+Yv7gPP/0wx/HsDDiy/0w2EnQgdvOu3Rm37U2/sR97/6/P8w3386/7/p0dNuOtLA36/70PP/Q+dxnP9/YMHNl/nvfP5/+GO18//1H5S/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+Yv7gPP/sw9/HsCRs839heHPB7hxu/33/Ki39yPuf+v5/97/31v7f3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+4Yef/B0Z4m8SFu19gcP7/f3Yf4L9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8f5Q/ZvH/cf6YxX/J/DGL/1L5Yxb/n+SPWfx/mj9m8V86f8ziv0z+mMV/2fwxi//P8scs/svlj1n8l88fs/j/PH/M4r9C/pjFf8X8MYv/SvljFv+V88cs/qvkj1n8V80fs/ivlj9m8f9F/pjFf/X8MYv/GvljFv8188cs/mvlj1n8184fs/ivkz9m8V83f8ziv17+mMV//fwxi/8G+WMW/1/mj1n8f5U/ZvHfMH/M4r9R/pjFf+P8MYv/JvljFv9f549Z/H+TP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP6/zR+z+G+VP2bx/13+mMV/6/wxi//v88cs/tvkj1n8t80fs/hvlz9m8d8+f8zi/4f8MYv/H/PHLP475I9Z/P+UP2bx/3P+mMV/x/wxi/9O+WMW/7/kj1n8d84fs/jvkj9m8d81f8zi/9f8MYv/3/LHLP675Y9Z/HfPH7P475E/ZvHfM3/M4r9X/pjFf+/8MYv/PvljFv9988cs/vvlj1n8988fs/gfkD9m8T8wf8zif1D+mMX/4Pwxi/8h+WMW/0Pzxyz+h+WPWfwPzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/+T8MYv/KfljFv9T88cs/qflj1n8T88fs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/85+WMW/3Pzxyz+5+WPWfzPzx+z+F+QP2bxvzB/zOJ/Uf6Yxf/i/DGL/yX5Yxb/S/PHLP6X5Y9Z/C/PH7P4X5E/ZvG/Mn/M4n9V/pjF/+r8MYv/NfljFv9r88cs/tflj1n8r88fs/jfkD9m8b8xf8zif1P+mMX/5vwxi/8t+WMW/1vzxyz+t+WPWfxvzx+z+N+RP2bxvzN/zOJ/V/6Yxf/u/DGL/z35Yxb/e/PHLP735Y9Z/O/PH7P4P5A/ZvF/MH/M4v9Q/pjF/+H8MYv/I/ljFv9H88cs/o/lj1n8H88fs/g/kT9m8X8yf8zi/1T+mMX/6fwxi/8z+WMW/2fzxyz+z+WPWfyfzx+z+L+QP2bxfzF/zOL/Uv6Yxf/l/DGL/yv5Yxb/V/PHLP6v5Y9Z/F/PH7P4v5E/ZvF/M3/M4v9W/pjF/+38MYv/O/ljFv9388ck/oMG8scs/oPyxyz+I+WPWfxHzh+z+I+SP2bxH5w/ZvEfNX/M4j9a/pjFf/T8MYv/GPljFv8x88cs/mPlj1n8x84fs/iPkz9m8R83f8ziP17+mMV//Pwxi/8E+WMW/wnzxyz+E+WPWfwnzh+z+H8sf8ziP0n+mMX/4/ljFv9J88cs/p/IH7P4T5Y/ZvH/ZP6Yxf9T+WMW/8nzxyz+n84fs/h/Jn/M4j9F/pjF/7P5Yxb/z+WPWfw/nz9m8Z8yf8zi/4X8MYv/F/PHLP5fyh+z+E+VP2bx/3L+mMX/K/ljFv+v5o9Z/L+WP2bx/3r+mMX/G/ljFv+p88cs/tPkj1n8p80fs/hPlz9m8Z8+f8ziP0P+mMX/m/ljFv8Z88cs/jPlj1n8Z84fs/jPkj9m8f9W/pjFf9b8MYv/t/PHLP6z5Y9Z/L+TP2bx/27+mMV/9vwxi/8c+WMW/znzxyz+c+WPWfy/lz9m8Z87f8ziP0/+mMV/3vwxi//388cs/vPlj1n8f5A/ZvGfP3/M4r9A/pjFf8H8MYv/QvljFv8f5o9Z/BfOH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv8f5Y9Z/H+cP2bxXzJ/zOK/VP6Yxf8n+WMW/5/mj1n8l84fs/gvkz9m8V82f8zi/7P8MYv/cvljFv/l88cs/j/PH7P4r5A/ZvFfMX/M4r9S/pjFf+X8MYv/KvljFv9V88cs/qvlj1n8f5E/ZvFfPX/M4r9G/pjFf838MYv/WvljFv+188cs/uvkj1n8180fs/ivlz9m8V8/f8ziv0H+mMX/l/ljFv9f5Y9Z/DfMH7P4b5Q/ZvHfOH/M4r9J/pjF/9f5Yxb/3+SPWfw3zR+z+G+WP2bx3zx/zOK/Rf6YxX/L/DGL/2/zxyz+W+WPWfx/lz9m8d86f8zi//v8MYv/NvljFv9t88cs/tvlj1n8t88fs/j/IX/M4v/H/DGL/w75Yxb/P+WPWfz/nD9m8d8xf8ziv1P+mMX/L/ljFv+d88cs/rvkj1n8d80fs/j/NX/M4v+3/DGL/275Yxb/3fPHLP575I9Z/PfMH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv/988cs/gfkj1n8D8wfs/gflD9m8T84f8zif0j+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP4n5I9Z/E/MH7P4n5Q/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/mfkj1n8z8wfs/iflT9m8T87f8zif07+mMX/3Pwxi/95+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOJ/Sf6Yxf/S/DGL/2X5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/dfljFv/r88cs/jfkj1n8b8wfs/jflD9m8b85f8zif0v+mMX/1vwxi/9t+WMW/9vzxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/B/MH7P4P5Q/ZvF/OH/M4v9I/pjF/9H8MYv/Y/ljFv/H88cs/k/kj1n8n8wfs/g/lT9m8X86f8zi/0z+mMX/2fwxi/9z+WMW/+fzxyz+L+SPWfxfzB+z+L+UP2bxfzl/zOL/Sv6Yxf/V/DGL/2v5Yxb/1/PHLP5v5I9Z/N/MH7P4v5U/ZvF/O3/M4v9O/pjF/938MYn/e5/m/69Z/Aflj1n8R8ofs/iPnD9m8R8lf8ziPzh/zOI/av6YxX+0/DGL/+j5Yxb/MfLHLP5j5o9Z/MfKH7P4j50/ZvEfJ3/M4j9u/pjFf7z8MYv/+PljFv8J8scs/hPmj1n8J8ofs/hPnD9m8f9Y/pjFf5L8MYv/x/PHLP6T5o9Z/D+RP2bxnyx/zOL/yfwxi/+n8scs/pPnj1n8P50/ZvH/TP6YxX+K/DGL/2fzxyz+n8sfs/h/Pn/M4j9l/pjF/wv5Yxb/L+aPWfy/lD9m8Z8qf8zi/+X8MYv/V/LHLP5fzR+z+H8tf8zi//X8MYv/N/LHLP5T549Z/KfJH7P4T5s/ZvGfLn/M4j99/pjFf4b8MYv/N/PHLP4z5o9Z/GfKH7P4z5w/ZvGfJX/M4v+t/DGL/6z5Yxb/b+ePWfxnyx+z+H8nf8zi/938MYv/7PljFv858scs/nPmj1n858ofs/h/L3/M4j93/pjFf578MYv/vPljFv/v549Z/OfLH7P4/yB/zOI/f/6YxX+B/DGL/4L5Yxb/hfLHLP4/zB+z+C+cP2bxXyR/zOK/aP6YxX+x/DGL/+L5Yxb/JfLHLP4/yh+z+P84f8ziv2T+mMV/qfwxi/9P8scs/j/NH7P4L50/ZvFfJn/M4r9s/pjF/2f5Yxb/5fLHLP7L549Z/H+eP2bxXyF/zOK/Yv6YxX+l/DGL/8r5Yxb/VfLHLP6r5o9Z/FfLH7P4/yJ/zOK/ev6YxX+N/DGL/5r5Yxb/tfLHLP5r549Z/NfJH7P4r5s/ZvFfL3/M4r9+/pjFf4P8MYv/L/PHLP6/yh+z+G+YP2bx3yh/zOK/cf6YxX+T/DGL/6/zxyz+v8kfs/hvmj9m8d8sf8ziv3n+mMV/i/wxi/+W+WMW/9/mj1n8t8ofs/j/Ln/M4r91/pjF//f5Yxb/bfLHLP7b5o9Z/LfLH7P4b58/ZvH/Q/6Yxf+P+WMW/x3yxyz+f8ofs/j/OX/M4r9j/pjFf6f8MYv/X/LHLP47549Z/HfJH7P475o/ZvH/a/6Yxf9v+WMW/93yxyz+u+ePWfz3yB+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+F+ZP2bxvyp/zOJ/df6Yxf+a/DGL/7X5Yxb/6/LHLP7X549Z/G/IH7P435g/ZvG/KX/M4n9z/pjF/5b8MYv/rfljFv/b8scs/rfnj1n878gfs/jfmT9m8b8rf8zif3f+mMX/nvwxi/+9+WMW//vyxyz+9+ePWfwfyB+z+D+YP2bxfyh/zOL/cP6Yxf+R/DGL/6P5Yxb/x/LHLP6P549Z/J/IH7P4P5k/ZvF/Kn/M4v90/pjF/5n8MYv/s/ljFv/n8scs/s/nj1n8X8gfs/i/mD9m8X8pf8zi/3L+mMX/lfwxi/+r+WMW/9fyxyz+r+ePWfzfyB+z+L+ZP2bxfyt/zOL/dv6Yxf+d/DGL/7v5YxL/kQfyxyz+g/LHLP4j5Y9Z/EfOH7P4j5I/ZvEfnD9m8R81f8ziP1r+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4fyx/zOI/Sf6Yxf/j+WMW/0nzxyz+n8gfs/hPlj9m8f9k/pjF/1P5Yxb/yfPHLP6fzh+z+H8mf8ziP0X+mMX/s/ljFv/P5Y9Z/D+fP2bxnzJ/zOL/hfwxi/8X88cs/l/KH7P4T5U/ZvH/cv6Yxf8r+WMW/6/mj1n8v5Y/ZvH/ev6Yxf8b+WMW/6nzxyz+0+SPWfynzR+z+E+XP2bxnz5/zOI/Q/6Yxf+b+WMW/xnzxyz+M+WPWfxnzh+z+M+SP2bx/1b+mMV/1vwxi/+388cs/rPlj1n8v5M/ZvH/bv6YxX/2/DGL/xz5Yxb/OfPHLP5z5Y9Z/L+XP2bxnzt/zOI/T/6YxX/e/DGL//fzxyz+8+WPWfx/kD9m8Z8/f8ziv0D+mMV/wfwxi/9C+WMW/x/mj1n8F84fs/gvkj9m8V80f8ziv1j+mMV/8fwxi/8S+WMW/x/lj1n8f5w/ZvFfMn/M4r9U/pjF/yf5Yxb/n+aPWfyXzh+z+C+TP2bxXzZ/zOL/s/wxi/9y+WMW/+Xzxyz+P88fs/ivkD9m8V8xf8ziv1L+mMV/5fwxi/8q+WMW/1Xzxyz+q+WPWfx/kT9m8V89f8ziv0b+mMV/zfwxi/9a+WMW/7Xzxyz+6+SPWfzXzR+z+K+XP2bxXz9/zOK/Qf6Yxf+X+WMW/1/lj1n8N8wfs/hvlD9m8d84f8ziv0n+mMX/1/ljFv/f5I9Z/DfNH7P4b5Y/ZvHfPH/M4r9F/pjFf8v8MYv/b/PHLP5b5Y9Z/H+XP2bx3zp/zOL/+/wxi/82+WMW/23zxyz+2+WPWfy3zx+z+P8hf8zi/8f8MYv/DvljFv8/5Y9Z/P+cP2bx3zF/zOK/U/6Yxf8v+WMW/53zxyz+u+SPWfx3zR+z+P81f8zi/7f8MYv/bvljFv/d88cs/nvkj1n898wfs/jvlT9m8d87f8ziv0/+mMV/3/wxi/9++WMW//3zxyz+B+SPWfwPzB+z+B+UP2bxPzh/zOJ/SP6Yxf/Q/DGL/2H5Yxb/w/PHLP5H5I9Z/I/MH7P4H5U/ZvE/On/M4n9M/pjF/9j8MYv/cfljFv/j88cs/ifkj1n8T8wfs/iflD9m8T85f8zif0r+mMX/1Pwxi/9p+WMW/9Pzxyz+Z+SPWfzPzB+z+J+VP2bxPzt/zOJ/Tv6Yxf/c/DGL/3n5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4n9J/pjF/9L8MYv/ZfljFv/L88cs/lfkj1n8r8wfs/hflT9m8b86f8zif03+mMX/2vwxi/91+WMW/+vzxyz+N+SPWfxvzB+z+N+UP2bxvzl/zOJ/S/6Yxf/W/DGL/235Yxb/2/PHLP535I9Z/O/MH7P435U/ZvG/O3/M4n9P/pjF/978MYv/ffljFv/788cs/g/kj1n8H8wfs/g/lD9m8X84f8zi/0j+mMX/0fwxi/9j+WMW/8fzxyz+T+SPWfyfzB+z+D+VP2bxfzp/zOL/TP6Yxf/Z/DGL/3P5Yxb/5/PHLP4v5I9Z/F/MH7P4v5Q/ZvF/OX/M4v9K/pjF/9X8MYv/a/ljFv/X88cs/m/kj1n838wfs/i/lT9m8X87f8zi/07+mMX/3fwxif8oA/ljFv9B+WMW/5Hyxyz+I+ePWfxHyR+z+A/OH7P4j5o/ZvEfLX/M4j96/pjFf4z8MYv/mPljFv+x8scs/mPnj1n8x8kfs/iPmz9m8R8vf8ziP37+mMV/gvwxi/+E+WMW/4nyxyz+E+ePWfw/lj9m8Z8kf8zi//H8MYv/pPljFv9P5I9Z/CfLH7P4fzJ/zOL/qfwxi//k+WMW/0/nj1n8P5M/ZvGfIn/M4v/Z/DGL/+fyxyz+n88fs/hPmT9m8f9C/pjF/4v5Yxb/L+WPWfynyh+z+H85f8zi/5X8MYv/V/PHLP5fyx+z+H89f8zi/438MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/838MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/K3/M4j9r/pjF/9v5Yxb/2fLHLP7fyR+z+H83f8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+38sfs/jPnT9m8Z8nf8ziP2/+mMX/+/ljFv/58scs/j/IH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/D/PHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/j/LHLP4/zh+z+C+ZP2bxXyp/zOL/k/wxi/9P88cs/kvnj1n8l8kfs/gvmz9m8f9Z/pjFf7n8MYv/8vljFv+f549Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/r/IH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/8v8MYv/r/LHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v/r/DGL/2/yxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf+3+WMW/63yxyz+v8sfs/hvnT9m8f99/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8/5A/ZvH/Y/6YxX+H/DGL/5/yxyz+f84fs/jvmD9m8d8pf8zi/5f8MYv/zvljFv9d8scs/rvmj1n8/5o/ZvH/W/6YxX+3/DGL/+75Yxb/PfLHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjFf7/8MYv//vljFv8D8scs/gfmj1n8D8ofs/gfnD9m8T8kf8zif2j+mMX/sPwxi//h+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/E/LHLP4n5o9Z/E/KH7P4n5w/ZvE/JX/M4n9q/pjF/7T8MYv/6fljFv8z8scs/mfmj1n8z8ofs/ifnT9m8T8nf8zif27+mMX/vPwxi//5+WMW/wvyxyz+F+aPWfwvyh+z+F+cP2bxvyR/zOJ/af6Yxf+y/DGL/+X5Yxb/K/LHLP5X5o9Z/K/KH7P4X50/ZvG/Jn/M4n9t/pjF/7r8MYv/9fljFv8b8scs/jfmj1n8b8ofs/jfnD9m8b8lf8zif2v+mMX/tvwxi//t+WMW/zvyxyz+d+aPWfzvyh+z+N+dP2bxvyd/zOJ/b/6Yxf++/DGL//35Yxb/B/LHLP4P5o9Z/B/KH7P4P5w/ZvF/JH/M4v9o/pjF/7H8MYv/4/ljFv8n8scs/k/mj1n8n8ofs/g/nT9m8X8mf8zi/2z+mMX/ufwxi//z+WMW/xfyxyz+L+aPWfxfyh+z+L+cP2bxfyV/zOL/av6Yxf+1/DGL/+v5Yxb/N/LHLP5v5o9Z/N/KH7P4v50/ZvF/J3/M4v9u/pjEf/BA/pjFf1D+mMV/pPwxi//I+WMW/1Hyxyz+g/PHLP6j5o9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9x8scs/uPmj1n8x8sfs/iPnz9m8Z8gf8ziP2H+mMV/ovwxi//E+WMW/4/lj1n8J8kfs/h/PH/M4j9p/pjF/xP5Yxb/yfLHLP6fzB+z+H8qf8ziP3n+mMX/0/ljFv/P5I9Z/KfIH7P4fzZ/zOL/ufwxi//n88cs/lPmj1n8v5A/ZvH/Yv6Yxf9L+WMW/6nyxyz+X84fs/h/JX/M4v/V/DGL/9fyxyz+X88fs/h/I3/M4j91/pjFf5r8MYv/tPljFv/p8scs/tPnj1n8Z8gfs/h/M3/M4j9j/pjFf6b8MYv/zPljFv9Z8scs/t/KH7P4z5o/ZvH/dv6YxX+2/DGL/3fyxyz+380fs/jPnj9m8Z8jf8ziP2f+mMV/rvwxi//38scs/nPnj1n858kfs/jPmz9m8f9+/pjFf778MYv/D/LHLP7z549Z/BfIH7P4L5g/ZvFfKH/M4v/D/DGL/8L5Yxb/RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4v+j/DGL/4/zxyz+S+aPWfyXyh+z+P8kf8zi/9P8MYv/0vljFv9l8scs/svmj1n8f5Y/ZvFfLn/M4r98/pjF/+f5Yxb/FfLHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/L/LHLP6r549Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv/18scs/uvnj1n8N8gfs/j/Mn/M4v+r/DGL/4b5Yxb/jfLHLP4b549Z/DfJH7P4/zp/zOL/m/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx/23+mMV/q/wxi//v8scs/lvnj1n8f58/ZvHfJn/M4r9t/pjFf7v8MYv/9vljFv8/5I9Z/P+YP2bx3yF/zOL/p/wxi/+f88cs/jvmj1n8d8ofs/j/JX/M4r9z/pjFf5f8MYv/rvljFv+/5o9Z/P+WP2bx3y1/zOK/e/6YxX+P/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mfljFv+z8scs/mfnj1n8z8kfs/ifmz9m8T8vf8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfwvyR+z+F+aP2bxvyx/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvG/Ln/M4n99/pjF/4b8MYv/jfljFv+b8scs/jfnj1n8b8kfs/jfmj9m8b8tf8zif3v+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfzvyR+z+N+bP2bxvy9/zOJ/f/6Yxf+B/DGL/4P5Yxb/h/LHLP4P549Z/B/JH7P4P5o/ZvF/LH/M4v94/pjF/4n8MYv/k/ljFv+n8scs/k/nj1n8n8kfs/g/mz9m8X8uf8zi/3z+mMX/hfwxi/+L+WMW/5fyxyz+L+ePWfxfyR+z+L+aP2bxfy1/zOL/ev6Yxf+N/DGL/5v5Yxb/t/LHLP5v549Z/N/JH7P4v5s/JvEfdSB/zOI/KH/M4j9S/pjFf+T8MYv/KPljFv/B+WMW/1Hzxyz+o+WPWfxHzx+z+I+RP2bxHzN/zOI/Vv6YxX/s/DGL/zj5Yxb/cfPHLP7j5Y9Z/MfPH7P4T5A/ZvGfMH/M4j9R/pjFf+L8MYv/x/LHLP6T5I9Z/D+eP2bxnzR/zOL/ifwxi/9k+WMW/0/mj1n8P5U/ZvGfPH/M4v/p/DGL/2fyxyz+U+SPWfw/mz9m8f9c/pjF//P5Yxb/KfPHLP5fyB+z+H8xf8zi/6X8MYv/VPljFv8v549Z/L+SP2bx/2r+mMX/a/ljFv+v549Z/L+RP2bxnzp/zOI/Tf6YxX/a/DGL/3T5Yxb/6fPHLP4z5I9Z/L+ZP2bxnzF/zOI/U/6YxX/m/DGL/yz5Yxb/b+WPWfxnzR+z+H87f8ziP1v+mMX/O/ljFv/v5o9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjF/3v5Yxb/ufPHLP7z5I9Z/OfNH7P4fz9/zOI/X/6Yxf8H+WMW//nzxyz+C+SPWfwXzB+z+C+UP2bx/2H+mMV/4fwxi/8i+WMW/0Xzxyz+i+WPWfwXzx+z+C+RP2bx/1H+mMX/x/ljFv8l88cs/kvlj1n8f5I/ZvH/af6YxX/p/DGL/zL5Yxb/ZfPHLP4/yx+z+C+XP2bxXz5/zOL/8/wxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+K+SP2bxXzV/zOK/Wv6Yxf8X+WMW/9Xzxyz+a+SPWfzXzB+z+K+VP2bxXzt/zOK/Tv6YxX/d/DGL/3r5Yxb/9fPHLP4b5I9Z/H+ZP2bx/1X+mMV/w/wxi/9G+WMW/43zxyz+m+SPWfx/nT9m8f9N/pjFf9P8MYv/ZvljFv/N88cs/lvkj1n8t8wfs/j/Nn/M4r9V/pjF/3f5Yxb/rfPHLP6/zx+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/x/yxyz+f8wfs/jvkD9m8f9T/pjF/8/5Yxb/HfPHLP475Y9Z/P+SP2bx3zl/zOK/S/6YxX/X/DGL/1/zxyz+f8sfs/jvlj9m8d89f8ziv0f+mMV/z/wxi/9e+WMW/73zxyz+++SPWfz3zR+z+O+XP2bx3z9/zOJ/QP6Yxf/A/DGL/0H5Yxb/g/PHLP6H5I9Z/A/NH7P4H5Y/ZvE/PH/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMW/7fzxyz+7+SPWfzfzR+T+I82kD9m8R+UP2bxHyl/zOI/cv6YxX+U/DGL/+D8MYv/qPljFv/R8scs/qPnj1n8x8gfs/iPmT9m8R8rf8ziP3b+mMV/nPwxi/+4+WMW//Hyxyz+4+ePWfwnyB+z+E+YP2bxnyh/zOI/cf6Yxf9j+WMW/0nyxyz+H88fs/hPmj9m8f9E/pjFf7L8MYv/J/PHLP6fyh+z+E+eP2bx/3T+mMX/M/ljFv8p8scs/p/NH7P4fy5/zOL/+fwxi/+U+WMW/y/kj1n8v5g/ZvH/Uv6YxX+q/DGL/5fzxyz+X8kfs/h/NX/M4v+1/DGL/9fzxyz+38gfs/hPnT9m8Z8mf8ziP23+mMV/uvwxi//0+WMW/xnyxyz+38wfs/jPmD9m8Z8pf8ziP3P+mMV/lvwxi/+38scs/rPmj1n8v50/ZvGfLX/M4v+d/DGL/3fzxyz+s+ePWfznyB+z+M+ZP2bxnyt/zOL/vfwxi//c+WMW/3nyxyz+8+aPWfy/nz9m8Z8vf8zi/4P8MYv//PljFv8F8scs/gvmj1n8F8ofs/j/MH/M4r9w/pjFf5H8MYv/ovljFv/F8scs/ovnj1n8l8gfs/j/KH/M4v/j/DGL/5L5Yxb/pfLHLP4/yR+z+P80f8ziv3T+mMV/mfwxi/+y+WMW/5/lj1n8l8sfs/gvnz9m8f95/pjFf4X8MYv/ivljFv+V8scs/ivnj1n8V8kfs/ivmj9m8V8tf8zi/4v8MYv/6vljFv818scs/mvmj1n818ofs/ivnT9m8V8nf8ziv27+mMV/vfwxi//6+WMW/w3yxyz+v8wfs/j/Kn/M4r9h/pjFf6P8MYv/xvljFv9N8scs/r/OH7P4/yZ/zOK/af6YxX+z/DGL/+b5Yxb/LfLHLP5b5o9Z/H+bP2bx3yp/zOL/u/wxi//W+WMW/9/nj1n8t8kfs/hvmz9m8d8uf8ziv33+mMX/D/ljFv8/5o9Z/HfIH7P4/yl/zOL/5/wxi/+O+WMW/53yxyz+f8kfs/jvnD9m8d8lf8ziv2v+mMX/r/ljFv+/5Y9Z/HfLH7P4754/ZvHfI3/M4r9n/pjFf6/8MYv/3vljFv998scs/vvmj1n898sfs/jvnz9m8T8gf8zif2D+mMX/oPwxi//B+WMW/0Pyxyz+h+aPWfwPyx+z+B+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvE/IX/M4n9i/pjF/6T8MYv/yfljFv9T8scs/qfmj1n8T8sfs/ifnj9m8T8jf8zif2b+mMX/rPwxi//Z+WMW/3Pyxyz+5+aPWfzPyx+z+J+fP2bxvyB/zOJ/Yf6Yxf+i/DGL/8X5Yxb/S/LHLP6X5o9Z/C/LH7P4X54/ZvG/In/M4n9l/pjF/6r8MYv/1fljFv9r8scs/tfmj1n8r8sfs/hfnz9m8b8hf8zif2P+mMX/pvwxi//N+WMW/1vyxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOJ/Z/6Yxf+u/DGL/935Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv9H8scs/o/mj1n8H8sfs/g/nj9m8X8if8zi/2T+mMX/qfwxi//T+WMW/2fyxyz+z+aPWfyfyx+z+D+fP2bxfyF/zOL/Yv6Yxf+l/DGL/8v5Yxb/V/LHLP6v5o9Z/F/LH7P4v54/ZvF/I3/M4v9m/pjF/638MYv/2/ljFv938scs/u/mj0n8Rx/IH7P4D8ofs/iPlD9m8R85f8ziP0r+mMV/cP6YxX/U/DGL/2j5Yxb/0fPHLP5j5I9Z/MfMH7P4j5U/ZvEfO3/M4j9O/pjFf9z8MYv/ePljFv/x88cs/hPkj1n8J8wfs/hPlD9m8Z84f8zi/7H8MYv/JPljFv+P549Z/CfNH7P4fyJ/zOI/Wf6Yxf+T+WMW/0/lj1n8J88fs/h/On/M4v+Z/DGL/xT5Yxb/z+aPWfw/lz9m8f98/pjFf8r8MYv/F/LHLP5fzB+z+H8pf8ziP1X+mMX/y/ljFv+v5I9Z/L+aP2bx/1r+mMX/6/ljFv9v5I9Z/KfOH7P4T5M/ZvGfNn/M4j9d/pjFf/r8MYv/DPljFv9v5o9Z/GfMH7P4z5Q/ZvGfOX/M4j9L/pjF/1v5Yxb/WfPHLP7fzh+z+M+WP2bx/07+mMX/u/ljFv/Z88cs/nPkj1n858wfs/jPlT9m8f9e/pjFf+78MYv/PPljFv9588cs/t/PH7P4z5c/ZvH/Qf6YxX/+/DGL/wL5Yxb/BfPHLP4L5Y9Z/H+YP2bxXzh/zOK/SP6YxX/R/DGL/2L5Yxb/xfPHLP5L5I9Z/H+UP2bx/3H+mMV/yfwxi/9S+WMW/5/kj1n8f5o/ZvFfOn/M4r9M/pjFf9n8MYv/z/LHLP7L5Y9Z/JfPH7P4/zx/zOK/Qv6YxX/F/DGL/0r5Yxb/lfPHLP6r5I9Z/FfNH7P4r5Y/ZvH/Rf6YxX/1/DGL/xr5Yxb/NfPHLP5r5Y9Z/NfOH7P4r5M/ZvFfN3/M4r9e/pjFf/38MYv/BvljFv9f5o9Z/H+VP2bx3zB/zOK/Uf6YxX/j/DGL/yb5Yxb/X+ePWfx/kz9m8d80f8ziv1n+mMV/8/wxi/8W+WMW/y3zxyz+v80fs/hvlT9m8f9d/pjFf+v8MYv/7/PHLP7b5I9Z/LfNH7P4b5c/ZvHfPn/M4v+H/DGL/x/zxyz+O+SPWfz/lD9m8f9z/pjFf8f8MYv/TvljFv+/5I9Z/HfOH7P475I/ZvHfNX/M4v/X/DGL/9/yxyz+u+WPWfx3zx+z+O+RP2bx3zN/zOK/V/6YxX/v/DGL/z75Yxb/ffPHLP775Y9Z/PfPH7P4H5A/ZvE/MH/M4n9Q/pjF/+D8MYv/IfljFv9D88cs/oflj1n8D88fs/gfkT9m8T8yf8zif1T+mMX/6Pwxi/8x+WMW/2Pzxyz+x+WPWfyPzx+z+J+QP2bxPzF/zOJ/Uv6Yxf/k/DGL/yn5Yxb/U/PHLP6n5Y9Z/E/PH7P4n5E/ZvE/M3/M4n9W/pjF/+z8MYv/OfljFv9z88cs/uflj1n8z88fs/hfkD9m8b8wf8zif1H+mMX/4vwxi/8l+WMW/0vzxyz+l+WPWfwvzx+z+F+RP2bxvzJ/zOJ/Vf6Yxf/q/DGL/zX5Yxb/a/PHLP7X5Y9Z/K/PH7P435A/ZvG/MX/M4n9T/pjF/+b8MYv/LfljFv9b88cs/rflj1n8b88fs/jfkT9m8b8zf8zif1f+mMX/7vwxi/89+WMW/3vzxyz+9+WPWfzvzx+z+D+QP2bxfzB/zOL/UP6Yxf/h/DGL/yP5Yxb/R/PHLP6P5Y9Z/B/PH7P4P5E/ZvF/Mn/M4v9U/pjF/+n8MYv/M/ljFv9n88cs/s/lj1n8n88fs/i/kD9m8X8xf8zi/1L+mMX/5fwxi/8r+WMW/1fzxyz+r+WPWfxfzx+z+L+RP2bxfzN/zOL/Vv6Yxf/t/DGL/zv5Yxb/d/PHJP5jDOSPWfwH5Y9Z/EfKH7P4j5w/ZvEfJX/M4j84f8ziP2r+mMV/tPwxi//o+WMW/zHyxyz+Y+aPWfzHyh+z+I+dP2bxHyd/zOI/bv6YxX+8/DGL//j5Yxb/CfLHLP4T5o9Z/CfKH7P4T5w/ZvH/WP6YxX+S/DGL/8fzxyz+k+aPWfw/kT9m8Z8sf8zi/8n8MYv/p/LHLP6T549Z/D+dP2bx/0z+mMV/ivwxi/9n88cs/p/LH7P4fz5/zOI/Zf6Yxf8L+WMW/y/mj1n8v5Q/ZvGfKn/M4v/l/DGL/1fyxyz+X80fs/h/LX/M4v/1/DGL/zfyxyz+U+ePWfynyR+z+E+bP2bxny5/zOI/ff6YxX+G/DGL/zfzxyz+M+aPWfxnyh+z+M+cP2bxnyV/zOL/rfwxi/+s+WMW/2/nj1n8Z8sfs/h/J3/M4v/d/DGL/+z5Yxb/OfLHLP5z5o9Z/OfKH7P4fy9/zOI/d/6YxX+e/DGL/7z5Yxb/7+ePWfznyx+z+P8gf8ziP3/+mMV/gfwxi/+C+WMW/4Xyxyz+P8wfs/gvnD9m8V8kf8ziv2j+mMV/sfwxi//i+WMW/yXyxyz+P8ofs/j/OH/M4r9k/pjFf6n8MYv/T/LHLP4/zR+z+C+dP2bxXyZ/zOK/bP6Yxf9n+WMW/+Xyxyz+y+ePWfx/nj9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1Xyxyz+q+aPWfxXyx+z+P8if8ziv3r+mMV/jfwxi/+a+WMW/7Xyxyz+a+ePWfzXyR+z+K+bP2bxXy9/zOK/fv6YxX+D/DGL/y/zxyz+v8ofs/hvmD9m8d8of8ziv3H+mMV/k/wxi/+v88cs/r/JH7P4b5o/ZvHfLH/M4r95/pjFf4v8MYv/lvljFv/f5o9Z/LfKH7P4/y5/zOK/df6Yxf/3+WMW/23yxyz+2+aPWfy3yx+z+G+fP2bx/0P+mMX/j/ljFv8d8scs/n/KH7P4/zl/zOK/Y/6YxX+n/DGL/1/yxyz+O+ePWfx3yR+z+O+aP2bx/2v+mMX/b/ljFv/d8scs/rvnj1n898gfs/jvmT9m8d8rf8ziv3f+mMV/n/wxi/+++WMW//3yxyz+++ePWfwPyB+z+B+YP2bxPyh/zOJ/cP6Yxf+Q/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMX/nfwxi/+7+WMS/zEH8scs/oPyxyz+I+WPWfxHzh+z+I+SP2bxH5w/ZvEfNX/M4j9a/pjFf/T8MYv/GPljFv8x88cs/mPlj1n8x84fs/iPkz9m8R83f8ziP17+mMV//Pwxi/8E+WMW/wnzxyz+E+WPWfwnzh+z+H8sf8ziP0n+mMX/4/ljFv9J88cs/p/IH7P4T5Y/ZvH/ZP6Yxf9T+WMW/8nzxyz+n84fs/h/Jn/M4j9F/pjF/7P5Yxb/z+WPWfw/nz9m8Z8yf8zi/4X8MYv/F/PHLP5fyh+z+E+VP2bx/3L+mMX/K/ljFv+v5o9Z/L+WP2bx/3r+mMX/G/ljFv+p88cs/tPkj1n8p80fs/hPlz9m8Z8+f8ziP0P+mMX/m/ljFv8Z88cs/jPlj1n8Z84fs/jPkj9m8f9W/pjFf9b8MYv/t/PHLP6z5Y9Z/L+TP2bx/27+mMV/9vwxi/8c+WMW/znzxyz+c+WPWfy/lz9m8Z87f8ziP0/+mMV/3vwxi//388cs/vPlj1n8f5A/ZvGfP3/M4r9A/pjFf8H8MYv/QvljFv8f5o9Z/BfOH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv8f5Y9Z/H+cP2bxXzJ/zOK/VP6Yxf8n+WMW/5/mj1n8l84fs/gvkz9m8V82f8zi/7P8MYv/cvljFv/l88cs/j/PH7P4r5A/ZvFfMX/M4r9S/pjFf+X8MYv/KvljFv9V88cs/qvlj1n8f5E/ZvFfPX/M4r9G/pjFf838MYv/WvljFv+188cs/uvkj1n8180fs/ivlz9m8V8/f8ziv0H+mMX/l/ljFv9f5Y9Z/DfMH7P4b5Q/ZvHfOH/M4r9J/pjF/9f5Yxb/3+SPWfw3zR+z+G+WP2bx3zx/zOK/Rf6YxX/L/DGL/2/zxyz+W+WPWfx/lz9m8d86f8zi//v8MYv/NvljFv9t88cs/tvlj1n8t88fs/j/IX/M4v/H/DGL/w75Yxb/P+WPWfz/nD9m8d8xf8ziv1P+mMX/L/ljFv+d88cs/rvkj1n8d80fs/j/NX/M4v+3/DGL/275Yxb/3fPHLP575I9Z/PfMH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv/988cs/gfkj1n8D8wfs/gflD9m8T84f8zif0j+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP4n5I9Z/E/MH7P4n5Q/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/mfkj1n8z8wfs/iflT9m8T87f8zif07+mMX/3Pwxi/95+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOJ/Sf6Yxf/S/DGL/2X5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/dfljFv/r88cs/jfkj1n8b8wfs/jflD9m8b85f8zif0v+mMX/1vwxi/9t+WMW/9vzxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/B/MH7P4P5Q/ZvF/OH/M4v9I/pjF/9H8MYv/Y/ljFv/H88cs/k/kj1n8n8wfs/g/lT9m8X86f8zi/0z+mMX/2fwxi/9z+WMW/+fzxyz+L+SPWfxfzB+z+L+UP2bxfzl/zOL/Sv6Yxf/V/DGL/2v5Yxb/1/PHLP5v5I9Z/N/MH7P4v5U/ZvF/O3/M4v9O/pjF/938MYn/WAP5Yxb/QfljFv+R8scs/iPnj1n8R8kfs/gPzh+z+I+aP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/MfJH7P4j5s/ZvEfL3/M4j9+/pjFf4L8MYv/hPljFv+J8scs/hPnj1n8P5Y/ZvGfJH/M4v/x/DGL/6T5Yxb/T+SPWfwnyx+z+H8yf8zi/6n8MYv/5PljFv9P549Z/D+TP2bxnyJ/zOL/2fwxi//n8scs/p/PH7P4T5k/ZvH/Qv6Yxf+L+WMW/y/lj1n8p8ofs/h/OX/M4v+V/DGL/1fzxyz+X8sfs/h/PX/M4v+N/DGL/9T5Yxb/afLHLP7T5o9Z/KfLH7P4T58/ZvGfIX/M4v/N/DGL/4z5Yxb/mfLHLP4z549Z/GfJH7P4fyt/zOI/a/6Yxf/b+WMW/9nyxyz+38kfs/h/N3/M4j97/pjFf478MYv/nPljFv+58scs/t/LH7P4z50/ZvGfJ3/M4j9v/pjF//v5Yxb/+fLHLP4/yB+z+M+fP2bxXyB/zOK/YP6YxX+h/DGL/w/zxyz+C+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL/4/yxyz+P84fs/gvmT9m8V8qf8zi/5P8MYv/T/PHLP5L549Z/JfJH7P4L5s/ZvH/Wf6YxX+5/DGL//L5Yxb/n+ePWfxXyB+z+K+YP2bxXyl/zOK/cv6YxX+V/DGL/6r5Yxb/1fLHLP6/yB+z+K+eP2bxXyN/zOK/Zv6YxX+t/DGL/9r5Yxb/dfLHLP7r5o9Z/NfLH7P4r58/ZvHfIH/M4v/L/DGL/6/yxyz+G+aPWfw3yh+z+G+cP2bx3yR/zOL/6/wxi/9v8scs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMX/t/ljFv+t8scs/r/LH7P4b50/ZvH/ff6YxX+b/DGL/7b5Yxb/7fLHLP7b549Z/P+QP2bx/2P+mMV/h/wxi/+f8scs/n/OH7P475g/ZvHfKX/M4v+X/DGL/875Yxb/XfLHLP675o9Z/P+aP2bx/1v+mMV/t/wxi//u+WMW/z3yxyz+e+aPWfz3yh+z+O+dP2bx3yd/zOK/b/6YxX+//DGL//75Yxb/A/LHLP4H5o9Z/A/KH7P4H5w/ZvE/JH/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+V+aPWfyvyh+z+F+dP2bxvyZ/zOJ/bf6Yxf+6/DGL//X5Yxb/G/LHLP435o9Z/G/KH7P435w/ZvG/JX/M4n9r/pjF/7b8MYv/7fljFv878scs/nfmj1n878ofs/jfnT9m8b8nf8zif2/+mMX/vvwxi//9+WMW/wfyxyz+D+aPWfwfyh+z+D+cP2bxfyR/zOL/aP6Yxf+x/DGL/+P5Yxb/J/LHLP5P5o9Z/J/KH7P4P50/ZvF/Jn/M4v9s/pjF/7n8MYv/8/ljFv8X8scs/i/mj1n8X8ofs/i/nD9m8X8lf8zi/2r+mMX/tfwxi//r+WMW/zfyxyz+b+aPWfzfyh+z+L+dP2bxfyd/zOL/bv6YxH/sgfwxi/+g/DGL/0j5Yxb/kfPHLP6j5I9Z/Afnj1n8R80fs/iPlj9m8R89f8ziP0b+mMV/zPwxi/9Y+WMW/7Hzxyz+4+SPWfzHzR+z+I+XP2bxHz9/zOI/Qf6YxX/C/DGL/0T5Yxb/ifPHLP4fyx+z+E+SP2bx/3j+mMV/0vwxi/8n8scs/pPlj1n8P5k/ZvH/VP6YxX/y/DGL/6fzxyz+n8kfs/hPkT9m8f9s/pjF/3P5Yxb/z+ePWfynzB+z+H8hf8zi/8X8MYv/l/LHLP5T5Y9Z/L+cP2bx/0r+mMX/q/ljFv+v5Y9Z/L+eP2bx/0b+mMV/6vwxi/80+WMW/2nzxyz+0+WPWfynzx+z+M+QP2bx/2b+mMV/xvwxi/9M+WMW/5nzxyz+s+SPWfy/lT9m8Z81f8zi/+38MYv/bPljFv/v5I9Z/L+bP2bxnz1/zOI/R/6YxX/O/DGL/1z5Yxb/7+WPWfznzh+z+M+TP2bxnzd/zOL//fwxi/98+WMW/x/kj1n8588fs/gvkD9m8V8wf8ziv1D+mMX/h/ljFv+F88cs/ovkj1n8F80fs/gvlj9m8V88f8ziv0T+mMX/R/ljFv8f549Z/JfMH7P4L5U/ZvH/Sf6Yxf+n+WMW/6Xzxyz+y+SPWfyXzR+z+P8sf8ziv1z+mMV/+fwxi//P88cs/ivkj1n8V8wfs/ivlD9m8V85f8ziv0r+mMV/1fwxi/9q+WMW/1/kj1n8V88fs/ivkT9m8V8zf8ziv1b+mMV/7fwxi/86+WMW/3Xzxyz+6+WPWfzXzx+z+G+QP2bx/2X+mMX/V/ljFv8N88cs/hvlj1n8N84fs/hvkj9m8f91/pjF/zf5Yxb/TfPHLP6b5Y9Z/DfPH7P4b5E/ZvHfMn/M4v/b/DGL/1b5Yxb/3+WPWfy3zh+z+P8+f8ziv03+mMV/2/wxi/92+WMW/+3zxyz+f8gfs/j/MX/M4r9D/pjF/0/5Yxb/P+ePWfx3zB+z+O+UP2bx/0v+mMV/5/wxi/8u+WMW/13zxyz+f80fs/j/LX/M4r9b/pjFf/f8MYv/HvljFv8988cs/nvlj1n8984fs/jvkz9m8d83f8ziv1/+mMV///wxi/8B+WMW/wPzxyz+B+WPWfwPzh+z+B+SP2bxPzR/zOJ/WP6Yxf/w/DGL/xH5Yxb/I/PHLP5H5Y9Z/I/OH7P4H5M/ZvE/Nn/M4n9c/pjF//j8MYv/CfljFv8T88cs/iflj1n8T84fs/ifkj9m8T81f8zif1r+mMX/9Pwxi/8Z+WMW/zPzxyz+Z+WPWfzPzh+z+J+TP2bxPzd/zOJ/Xv6Yxf/8/DGL/wX5Yxb/C/PHLP4X5Y9Z/C/OH7P4X5I/ZvG/NH/M4n9Z/pjF//L8MYv/FfljFv8r88cs/lflj1n8r84fs/hfkz9m8b82f8zif13+mMX/+vwxi/8N+WMW/xvzxyz+N+WPWfxvzh+z+N+SP2bxvzV/zOJ/W/6Yxf/2/DGL/x35Yxb/O/PHLP535Y9Z/O/OH7P435M/ZvG/N3/M4n9f/pjF//78MYv/A/ljFv8H88cs/g/lj1n8H84fs/g/kj9m8X80f8zi/1j+mMX/8fwxi/8T+WMW/yfzxyz+T+WPWfyfzh+z+D+TP2bxfzZ/zOL/XP6Yxf/5/DGL/wv5Yxb/F/PHLP4v5Y9Z/F/OH7P4v5I/ZvF/NX/M4v9a/pjF//X8MYv/G/ljFv8388cs/m/lj1n8384fs/i/kz9m8X83f0ziP85A/pjFf1D+mMV/pPwxi//I+WMW/1Hyxyz+g/PHLP6j5o9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9x8scs/uPmj1n8x8sfs/iPnz9m8Z8gf8ziP2H+mMV/ovwxi//E+WMW/4/lj1n8J8kfs/h/PH/M4j9p/pjF/xP5Yxb/yfLHLP6fzB+z+H8qf8ziP3n+mMX/0/ljFv/P5I9Z/KfIH7P4fzZ/zOL/ufwxi//n88cs/lPmj1n8v5A/ZvH/Yv6Yxf9L+WMW/6nyxyz+X84fs/h/JX/M4v/V/DGL/9fyxyz+X88fs/h/I3/M4j91/pjFf5r8MYv/tPljFv/p8scs/tPnj1n8Z8gfs/h/M3/M4j9j/pjFf6b8MYv/zPljFv9Z8scs/t/KH7P4z5o/ZvH/dv6YxX+2/DGL/3fyxyz+380fs/jPnj9m8Z8jf8ziP2f+mMV/rvwxi//38scs/nPnj1n858kfs/jPmz9m8f9+/pjFf778MYv/D/LHLP7z549Z/BfIH7P4L5g/ZvFfKH/M4v/D/DGL/8L5Yxb/RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4v+j/DGL/4/zxyz+S+aPWfyXyh+z+P8kf8zi/9P8MYv/0vljFv9l8scs/svmj1n8f5Y/ZvFfLn/M4r98/pjF/+f5Yxb/FfLHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/L/LHLP6r549Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv/18scs/uvnj1n8N8gfs/j/Mn/M4v+r/DGL/4b5Yxb/jfLHLP4b549Z/DfJH7P4/zp/zOL/m/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx/23+mMV/q/wxi//v8scs/lvnj1n8f58/ZvHfJn/M4r9t/pjFf7v8MYv/9vljFv8/5I9Z/P+YP2bx3yF/zOL/p/wxi/+f88cs/jvmj1n8d8ofs/j/JX/M4r9z/pjFf5f8MYv/rvljFv+/5o9Z/P+WP2bx3y1/zOK/e/6YxX+P/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mfljFv+z8scs/mfnj1n8z8kfs/ifmz9m8T8vf8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfwvyR+z+F+aP2bxvyx/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvG/Ln/M4n99/pjF/4b8MYv/jfljFv+b8scs/jfnj1n8b8kfs/jfmj9m8b8tf8zif3v+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfzvyR+z+N+bP2bxvy9/zOJ/f/6Yxf+B/DGL/4P5Yxb/h/LHLP4P549Z/B/JH7P4P5o/ZvF/LH/M4v94/pjF/4n8MYv/k/ljFv+n8scs/k/nj1n8n8kfs/g/mz9m8X8uf8zi/3z+mMX/hfwxi/+L+WMW/5fyxyz+L+ePWfxfyR+z+L+aP2bxfy1/zOL/ev6Yxf+N/DGL/5v5Yxb/t/LHLP5v549Z/N/JH7P4v5s/JvEfdyB/zOI/KH/M4j9S/pjFf+T8MYv/KPljFv/B+WMW/1Hzxyz+o+WPWfxHzx+z+I+RP2bxHzN/zOI/Vv6YxX/s/DGL/zj5Yxb/cfPHLP7j5Y9Z/MfPH7P4T5A/ZvGfMH/M4j9R/pjFf+L8MYv/x/LHLP6T5I9Z/D+eP2bxnzR/zOL/ifwxi/9k+WMW/0/mj1n8P5U/ZvGfPH/M4v/p/DGL/2fyxyz+U+SPWfw/mz9m8f9c/pjF//P5Yxb/KfPHLP5fyB+z+H8xf8zi/6X8MYv/VPljFv8v549Z/L+SP2bx/2r+mMX/a/ljFv+v549Z/L+RP2bxnzp/zOI/Tf6YxX/a/DGL/3T5Yxb/6fPHLP4z5I9Z/L+ZP2bxnzF/zOI/U/6YxX/m/DGL/yz5Yxb/b+WPWfxnzR+z+H87f8ziP1v+mMX/O/ljFv/v5o9Z/GfPH7P4z5E/ZvGfM3/M4j9X/pjF/3v5Yxb/ufPHLP7z5I9Z/OfNH7P4fz9/zOI/X/6Yxf8H+WMW//nzxyz+C+SPWfwXzB+z+C+UP2bx/2H+mMV/4fwxi/8i+WMW/0Xzxyz+i+WPWfwXzx+z+C+RP2bx/1H+mMX/x/ljFv8l88cs/kvlj1n8f5I/ZvH/af6YxX/p/DGL/zL5Yxb/ZfPHLP4/yx+z+C+XP2bxXz5/zOL/8/wxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+K+SP2bxXzV/zOK/Wv6Yxf8X+WMW/9Xzxyz+a+SPWfzXzB+z+K+VP2bxXzt/zOK/Tv6YxX/d/DGL/3r5Yxb/9fPHLP4b5I9Z/H+ZP2bx/1X+mMV/w/wxi/9G+WMW/43zxyz+m+SPWfx/nT9m8f9N/pjFf9P8MYv/ZvljFv/N88cs/lvkj1n8t8wfs/j/Nn/M4r9V/pjF/3f5Yxb/rfPHLP6/zx+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/x/yxyz+f8wfs/jvkD9m8f9T/pjF/8/5Yxb/HfPHLP475Y9Z/P+SP2bx3zl/zOK/S/6YxX/X/DGL/1/zxyz+f8sfs/jvlj9m8d89f8ziv0f+mMV/z/wxi/9e+WMW/73zxyz+++SPWfz3zR+z+O+XP2bx3z9/zOJ/QP6Yxf/A/DGL/0H5Yxb/g/PHLP6H5I9Z/A/NH7P4H5Y/ZvE/PH/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMW/7fzxyz+7+SPWfzfzR+T+I83kD9m8R+UP2bxHyl/zOI/cv6YxX+U/DGL/+D8MYv/qPljFv/R8scs/qPnj1n8x8gfs/iPmT9m8R8rf8ziP3b+mMV/nPwxi/+4+WMW//Hyxyz+4+ePWfwnyB+z+E+YP2bxnyh/zOI/cf6Yxf9j+WMW/0nyxyz+H88fs/hPmj9m8f9E/pjFf7L8MYv/J/PH/j/26MEADAQAAtjbGuBt27Zt27Zt27Zt27ZtW3UXuAl6yQpp+Z/Yf9TyP4n/qOV/Uv9Ry/9k/qOW/8n9Ry3/U/iPWv6n9B+1/E/lP2r5n9p/1PI/jf+o5X9a/1HL/3T+o5b/6f1HLf8z+I9a/mf0H7X8z+Q/avmf2X/U8j+L/6jlf1b/Ucv/bP6jlv/Z/Uct/3P4j1r+5/QftfzP5T9q+Z/bf9TyP4//qOV/Xv9Ry/98/qOW//n9Ry3/C/iPWv4X9B+1/C/kP2r5X9h/1PK/iP+o5X9R/1HL/2L+o5b/xf1HLf9L+I9a/pf0H7X8L+U/avlf2n/U8r+M/6jlf1n/Ucv/cv6jlv/l/Uct/yv4j1r+V/Qftfyv5D9q+V/Zf9Tyv4r/qOV/Vf9Ry/9q/qOW/9X9Ry3/a/iPWv7X9B+1/K/lP2r5X9t/1PK/jv+o5X9d/1HL/3r+o5b/9f1HLf8b+I9a/jf0H7X8b+Q/avnf2H/U8r+J/6jlf1P/Ucv/Zv6jlv/N/Uct/1v4j1r+t/Qftfxv5T9q+d/af9Tyv43/qOV/W/9Ry/92/qOW/+39Ry3/O/iPWv539B+1/O/kP2r539l/1PK/i/+o5X9X/1HL/27+o5b/3f1HLf97+I9a/vf0H7X87+U/avnf23/U8r+P/6jlf1//Ucv/fv6jlv/9/Uct/wf4j1r+D/Qftfwf5D9q+T/Yf9Tyf4j/qOX/UP9Ry/9h/qOW/8P9Ry3/R/iPWv6P9B+1/B/lP2r5P9p/1PJ/jP+o5f9Y/1HL/3H+o5b/4/1HLf8n+I9a/k/0H7X8n+Q/avk/2X/U8n+K/6jl/1T/Ucv/af6jlv/T/Uct/2f4j1r+z/Qftfyf5T9q+T/bf9Tyf47/qOX/XP9Ry/95/qOW//P9Ry3/F/iPWv4v9B+1/F/kP2r5v9h/1PJ/if+o5f9S/1HL/2X+o5b/y/1HLf9X+I9a/q/0H7X8X+U/avm/2n/U8n+N/6jl/1r/Ucv/df6jlv/r/Uct/zf4j1r+b/Qftfzf5D9q+b/Zf9Tyf4v/qOX/Vv9Ry/9t/qOW/9v9Ry3/d/iPWv7v9B+1/N/lP2r5v9t/1PJ/j/+o5f9e/1HL/33+o5b/+/1HLf8P+I9a/h/0H7X8P+Q/avl/2H/U8v+I/6jl/1H/Ucv/Y/6jlv/H/Uct/0/4j1r+n/Qftfw/5T9q+X/af9Ty/4z/qOX/Wf9Ry/9z/qOW/+f9Ry3/L/iPWv5f9B+1/L/kP2r5f9l/1PL/iv+o5f9V/1HL/2v+o5b/1/1HLf9v+I9a/t/0H7X8v+U/avl/23/U8v+O/6jl/13/Ucv/e/6jlv/3/Uct/x/4j1r+P/Qftfx/5D9q+f/Yf9Ty/4n/qOX/U/9Ry/9n/qOW/8/9Ry3/X/iPWv6/9B+1/H/lP2r5/9p/1PL/jf+o5f9b/1HL/3f+o5b/7/1HLf8/+I9a/n/0H7X8/+Q/avn/2X/U8v+L/6jl/1f/Ucv/b/6jlv/f/Uct/3/4j1r+//Qftfz/5T9q+f/bf9Ty/4//qOX/X/9Ry/9//qOW///9Ry3/A/xHLf8D/Uct/4P8Ry3/g/1HLf9D/Ect/0P9Ry3/w/xHJf8TjeQ/avkf2X/U8j+K/6jlf1T/Ucv/aP6jlv/R/Uct/2P4j1r+x/QftfyP5T9q+R/bf9TyP47/qOV/XP9Ry/94/qOW//H9Ry3/E/iPWv4n9B+NcP8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADCcvbuNzass/Dh+urZ7+rN/N+fwGjIYbLqJK1u7MhlsPtTHgqk6FgMmkC2sjEph7iG4gVoNSgzGMBkJIuo2dRNIjBkvhgkIK4lKnIrGiWiIQ1AXMTVMZETjUnO3vUt7r23Wq17XXuzzedHe55Tf6bbku3PK1gwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgpc3bbrlhbUdH2yYvvPDCi4EXp/p3JiC116I/1T8SAAAAAAAAAAAAAABgJDm+nehU/xwBAAAAAOB009L6ru7qqiGnqgcfzPl5W+/7plevvH7P84+vLL/v//Dlw1xywuCDnp6enpeau2b2H04qiqL02ab3H0+uHJeu39l1+fa+o1D89tnm1m3bmw/u/MrXH547dfqc2t6ztcWa69o72pZMKIpQXVtsLR00VBVFmFhbbC8dNJYOJtUW95cOlvYeTCkOlA4uvHZDx7rSiRM+NZx2Wlo/W1QPKbYY8rvB4P47uzbtKr8f5ZLlq9UU/f3XNf9wb8XHykbov3z9UFXZ/5h/gsCIxtb/7QvL70e55An3/0fb61YN97GR+y9fP0zQP6QzzPP/kEZ7n/f37J8xwvP/3GEuObD/6V9WdpX6v+mXL9T3n6o5mef/0ufrOwrVlf1PGPL8X3qOryk//08qilA7zl8OOK20tH6ue7T7f2X3Q/uvOatiUzW4/6Or9lSX+j981wPv7z9Ve1L9D1w/1Ixy/6/6zIGhP1ZgbFpad/dU3P/H0H+xYJhLDvQ/f/exq0r9n7HzyL5BHxtL/7WV/S/ecuMnFm/edkt9+41r17etb7upsbGhaemypsaLli/ufSToezvOXxU4PYzv/l9MrdhUFUXbwH7Rh5e9VOr/4Ln/+Fv/qclj7H/iqPf/59z/YVjnTygmTiy2rt2yZVND39vyYWPf277/bJj+T/z6f8T+55X/P2D56+7SF+QD+9+886sfKfV/76RVD/SfmjjG/ieN1n/na58XiDDO+/+6is2Q/ttf/c66Uv9/euX4of5TY/36f/Ko/e9y/4fxaGmt+As//2Ol/lf/6/Bwf05wEsIUf/4H6eTof+u0X3wzbh2m6h/SydH/0s1tkX/ZNvyf/iGdHP3/akfVkbh1OEP/kE6O/r/W/eDGuHWYpn9IJ0f/+2c/8lTcOvy//iGdHP0fXz/9qrh1qNM/pJOj/8u+tHd13DpM1z+kk6P/qlemPRG3DjP0D+nk6L++6uxPxa3D6/QP6eTo/7rOh1+MW4eZ+od0cvT/+Z2/jvw+nfB6/UM6Ofp/6o9bd8Stwyz9Qzo5+n9hVnt93DqcqX9IJ0f/99/wxCNx6/AG/UM6Ofp/+lsfPBa3DkH/kE6O/r/x7JE1ceswW/+QTo7+9y089oe4dThL/5BOjv7//dGrPxC3Dm/UP6STo/+wf/l349bhbP1DOjn6v+LJuxri1mGO/iGdHP13rrjtzrh1OEf/kE6O/puaF86OW4dz9Q/p5Oh/xp//fnfcOszVP6STo/+P3ffeyn/3+ySF8/QP6eTo/+YNqx+NW4fz9Q/p5Oh/5YyeC+LWYZ7+IZ0c/R8+et+P4tZhvv4hnRz9333nkivi1uFN+od0cvT/g1vP645bhzfrH9LJ0f/LtXfcGrcOC/QP6eTo/8s/q1kWtw4L9Q/p5Oj/xw99f1fcOrxF/5BOjv5ffN9j58StwwX6h3Ry9L/74llfjFuHt+of0snR/7uf2bg+bh0W6R/SydH/5L2/Pxq3DvX6h3Ry9D9/1cEPxa3DhfqHdHL0v2HRmt/FrcNi/UM6Ofp/5sDTh+LWYYn+IZ0c/e947NPNcevQoH9IJ0f/j1/W8Z+4dWjUP6STo/9/Nv3k43HrsFT/kE6O/s889O0vxK1Dk/4hnRz9X/3g5Jlx63CR/iGdHP1vvGb29+LWYZn+IZ0c/V8y96FL49bhbfqHdHL0/56/rrg5bh0u1j+kk6P/unvueS5uHZbrH9LJ0f+8a2+/Jm4dLtE/pJOj/+vn1D8Ztw6X6h/SydH/HcdbFsStwwr9Qzo5+u+67fl9ceuwUv+QTo7+uz/5cl3cOrxd/5BOjv73Trny3rh1eIf+AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDmQAAAAAhPlb59F+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAnwIAAP//r0PLXg==")
r0 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x2, 0x0, 0x0, 0x0, 0xf001}, {0xffffffff, 0x4, 0x0, 0x0, 0xc64}]})

2.836402528s ago: executing program 1 (id=1925):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x2004000, &(0x7f0000000040)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@usrjquota}]}, 0xfe, 0x563, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x1)
unlinkat(r0, &(0x7f0000000000)='./file1\x00', 0x0)

2.496718718s ago: executing program 5 (id=1928):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0xf0b, 0x3, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff3, 0xfff2}, {0x2, 0xffff}, {0xfff9, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0x4c}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x44045}, 0x24000895)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

2.339541117s ago: executing program 9 (id=1930):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="540000004900010928bd700018dcdf250a001c00", @ANYRES32, @ANYBLOB="0000000014000100fe80000000000000000000000000001f14000100fe8000000000000000000000000000bb080002"], 0x54}}, 0x0)

2.219534969s ago: executing program 9 (id=1931):
r0 = eventfd2(0x0, 0x0)
io_setup(0x81, &(0x7f0000000400)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000440)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2, 0x1fb, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}])

2.128384798s ago: executing program 1 (id=1932):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x8, 0x1c, &(0x7f0000001340)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x2, 0xfff0}, {0x6, 0x0, 0xd, 0x9, 0x0, 0x8}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfff4, 0xe1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r0}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1000000}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)

1.925574099s ago: executing program 0 (id=1933):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)

1.912226897s ago: executing program 5 (id=1934):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x9, &(0x7f0000000040)=0x181, 0x4)

1.738764739s ago: executing program 9 (id=1935):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="17090000000000000000010000000500070000000000080009000000000008000a0000000000060002000000000014001f00a277cb7642410aec0000000000001600140020"], 0x64}}, 0x0)

1.55254504s ago: executing program 5 (id=1936):
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x6c)
fcntl$notify(r0, 0x402, 0x8)
preadv(r0, 0x0, 0x0, 0x0, 0x1000)

1.475705056s ago: executing program 0 (id=1937):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000080), r0)
sendmsg$NFC_CMD_LLC_SET_PARAMS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x4}, @NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48854}, 0x24000040)

1.475297781s ago: executing program 1 (id=1938):
r0 = socket$inet(0x2, 0x3, 0x33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)

1.226215819s ago: executing program 5 (id=1939):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, &(0x7f0000000000)=0x9, 0x3fffff)

1.20660177s ago: executing program 9 (id=1940):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$sock_int(r0, 0x1, 0x35, &(0x7f0000000040)=0x1, 0x4)

1.145131976s ago: executing program 0 (id=1941):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x3, 0x0, 0x0, 0x0, {0xa, 0x0, 0x6c02, @private1}}}, 0x32)

1.134889997s ago: executing program 1 (id=1942):
io_setup(0x7, &(0x7f0000000280)=<r0=>0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000140)='-3', 0x2}])

918.288824ms ago: executing program 3 (id=1943):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000000000000c000000200001801400020073797a5f74756e00000000000000000008000300020000001800038014000380"], 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)

911.560415ms ago: executing program 5 (id=1944):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000001}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f000000a280)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=@newtaction={0x18, 0x5a, 0x1, 0x70bd25, 0x40000, {0x2}, [{0x4, 0x3}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000004}, 0x8000)

875.134405ms ago: executing program 9 (id=1945):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r1=>0x0})
sendto$packet(r0, 0x0, 0x0, 0x20008080, &(0x7f0000000400)={0x11, 0x888e, r1, 0x1, 0x7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}}, 0x14)

845.222218ms ago: executing program 0 (id=1946):
r0 = socket$packet(0x11, 0x3, 0x300)
io_setup(0xb2, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000080)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x6, r0, 0x0}])

732.488211ms ago: executing program 1 (id=1947):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TCFLSH(r0, 0x540b, 0x0)

511.769328ms ago: executing program 5 (id=1948):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000001480)='./file1\x00', 0xc00a, &(0x7f0000000040)=ANY=[], 0x11, 0x6ae, &(0x7f0000000400)="$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")
truncate(&(0x7f0000000900)='./file1\x00', 0x7)
truncate(&(0x7f0000000080)='./file1\x00', 0x4)

497.886042ms ago: executing program 3 (id=1949):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x6, &(0x7f0000000040)=0x24, 0x4)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000000)=0x1001, 0x4)

496.656206ms ago: executing program 9 (id=1950):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4}, 0x38)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

406.565046ms ago: executing program 4 (id=1951):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000040)=0x11, 0xd)

385.302121ms ago: executing program 0 (id=1952):
unshare(0x20000400)
r0 = socket$xdp(0x2c, 0x3, 0x0)
bind$xdp(r0, &(0x7f0000000540)={0x2c, 0x20, 0x0, 0x34}, 0x10)

307.277459ms ago: executing program 1 (id=1953):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000140003800800014000000000080002400000000050000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000001c0003801d000380140001007465616d300000000000000000000000080007"], 0xd8}}, 0x20000000)

105.572244ms ago: executing program 3 (id=1954):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c0000001800ffffffff7bfbfcdbdf250a148000ff01fd07"], 0x1c}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

0s ago: executing program 0 (id=1955):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
pipe2$watch_queue(&(0x7f00000000c0)={<r0=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000100)=ANY=[@ANYBLOB='\b'])

kernel console output (not intermixed with test programs):

th parent 'hsr' already present!
[  233.596855][ T9003] Cannot create hsr debugfs directory
[  233.620795][ T5855] Bluetooth: hci6: command tx timeout
[  233.660264][ T9245] loop4: detected capacity change from 0 to 16
[  233.747710][ T9245] erofs (device loop4): mounted with root inode @ nid 36.
[  233.897267][ T9015] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.932325][ T9015] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.972629][ T9015] bridge_slave_0: entered allmulticast mode
[  234.022326][ T9015] bridge_slave_0: entered promiscuous mode
[  234.107304][ T9222] loop5: detected capacity change from 0 to 40427
[  234.113358][ T9015] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.145274][ T9015] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.171869][ T9015] bridge_slave_1: entered allmulticast mode
[  234.194184][ T9015] bridge_slave_1: entered promiscuous mode
[  234.497428][ T9015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.521384][ T9222] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  234.594128][ T9015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.691149][ T5856] syz-executor: attempt to access beyond end of device
[  234.691149][ T5856] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  234.735682][ T5856] CPU: 0 UID: 0 PID: 5856 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  234.735717][ T5856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.735732][ T5856] Call Trace:
[  234.735741][ T5856]  <TASK>
[  234.735752][ T5856]  dump_stack_lvl+0x189/0x250
[  234.735792][ T5856]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.735821][ T5856]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  234.735860][ T5856]  ? __pfx_queue_work_on+0x10/0x10
[  234.735894][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.735928][ T5856]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  234.735966][ T5856]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  234.736005][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736034][ T5856]  ? f2fs_hw_is_readonly+0x39b/0x470
[  234.736077][ T5856]  f2fs_handle_critical_error+0x37c/0x540
[  234.736123][ T5856]  f2fs_write_end_io+0x495/0x810
[  234.736146][ T5856]  ? blkg_put+0x22/0x240
[  234.736197][ T5856]  __submit_merged_bio+0x27a/0x6a0
[  234.736242][ T5856]  __submit_merged_write_cond+0x255/0x530
[  234.736286][ T5856]  f2fs_write_data_pages+0x261d/0x3000
[  234.736325][ T5856]  ? __lock_acquire+0xab9/0xd20
[  234.736391][ T5856]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  234.736483][ T5856]  ? __mod_zone_page_state+0xd7/0x140
[  234.736524][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736557][ T5856]  ? folios_put_refs+0x560/0x640
[  234.736611][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736640][ T5856]  ? __lock_acquire+0xab9/0xd20
[  234.736676][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736705][ T5856]  ? do_raw_spin_lock+0x121/0x290
[  234.736749][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736783][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736812][ T5856]  ? do_raw_spin_unlock+0x122/0x240
[  234.736850][ T5856]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  234.736892][ T5856]  do_writepages+0x32e/0x550
[  234.736927][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736961][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.736990][ T5856]  ? do_raw_spin_unlock+0x122/0x240
[  234.737033][ T5856]  filemap_fdatawrite+0x191/0x230
[  234.737064][ T5856]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  234.737144][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.737179][ T5856]  ? do_raw_spin_unlock+0x122/0x240
[  234.737222][ T5856]  f2fs_sync_dirty_inodes+0x31f/0x830
[  234.737267][ T5856]  f2fs_write_checkpoint+0x94a/0x1de0
[  234.737321][ T5856]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  234.737404][ T5856]  ? kill_f2fs_super+0x298/0x6c0
[  234.737437][ T5856]  kill_f2fs_super+0x2c3/0x6c0
[  234.737470][ T5856]  ? __pfx_kill_f2fs_super+0x10/0x10
[  234.737493][ T5856]  ? radix_tree_delete_item+0x2b6/0x400
[  234.737541][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.737574][ T5856]  ? shrinker_free+0x2ce/0x3e0
[  234.737616][ T5856]  deactivate_locked_super+0xbc/0x130
[  234.737645][ T5856]  cleanup_mnt+0x425/0x4c0
[  234.737667][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.737696][ T5856]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.737741][ T5856]  task_work_run+0x1d4/0x260
[  234.737786][ T5856]  ? __pfx_task_work_run+0x10/0x10
[  234.737823][ T5856]  ? __x64_sys_umount+0x122/0x160
[  234.737861][ T5856]  ? exit_to_user_mode_loop+0x40/0x110
[  234.737893][ T5856]  exit_to_user_mode_loop+0xec/0x110
[  234.737921][ T5856]  do_syscall_64+0x2bd/0x3b0
[  234.737944][ T5856]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.737984][ T5856]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.738008][ T5856]  ? srso_alias_return_thunk+0x5/0xfbef5
[  234.738037][ T5856]  ? exc_page_fault+0x9f/0xf0
[  234.738079][ T5856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.738103][ T5856] RIP: 0033:0x7fbec138fc57
[  234.738125][ T5856] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  234.738147][ T5856] RSP: 002b:00007fff16b684a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  234.738172][ T5856] RAX: 0000000000000000 RBX: 00007fbec1410925 RCX: 00007fbec138fc57
[  234.738190][ T5856] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff16b68560
[  234.738206][ T5856] RBP: 00007fff16b68560 R08: 0000000000000000 R09: 0000000000000000
[  234.738222][ T5856] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff16b695f0
[  234.738239][ T5856] R13: 00007fbec1410925 R14: 000000000003945e R15: 00007fff16b69630
[  234.738278][ T5856]  </TASK>
[  234.738289][ T5856] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  235.533054][ T9270] loop4: detected capacity change from 0 to 65536
[  235.560754][ T9266] loop7: detected capacity change from 0 to 32768
[  235.648775][ T9015] team0: Port device team_slave_0 added
[  235.653233][ T9270] XFS (loop4): log sector size in bytes/log2 (0x0/0x1) are not zero
[  235.663825][ T9270] XFS (loop4): Metadata corruption detected at xfs_sb_read_verify+0x2ec/0x400, xfs_sb block 0x0 
[  235.675122][ T9270] XFS (loop4): Unmount and run xfs_repair
[  235.681518][ T9270] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  235.688926][ T9270] 00000000: 58 46 53 42 00 00 02 00 00 00 00 00 00 01 00 00  XFSB............
[  235.698504][ T9270] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  235.710579][ T9270] 00000020: e6 3a d8 4b 68 1a 44 ea 8f 8e 21 0c be 25 14 91  .:.Kh.D...!..%..
[  235.720120][ T9270] 00000030: 00 00 00 00 00 00 80 80 00 00 00 00 00 00 00 20  ............... 
[  235.729683][ T9270] 00000040: 00 00 00 00 00 00 00 21 00 00 00 00 00 00 00 22  .......!......."
[  235.739281][ T9270] 00000050: 00 00 00 08 00 00 80 00 00 00 00 02 00 00 00 00  ................
[  235.748816][ T9270] 00000060: 00 00 10 80 b4 b4 02 00 01 00 00 02 00 00 00 00  ................
[  235.758373][ T9270] 00000070: 00 00 00 00 00 00 00 00 09 09 08 01 0f 00 00 19  ................
[  235.767977][ T9270] XFS (loop4): SB validate failed with error -117.
[  235.850348][ T9015] team0: Port device team_slave_1 added
[  236.123584][ T9015] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.149047][ T9015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.238300][ T9015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.549346][ T9015] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.590660][ T9015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.721609][ T9015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.199835][ T9015] hsr_slave_0: entered promiscuous mode
[  237.232246][ T9015] hsr_slave_1: entered promiscuous mode
[  237.268196][ T9015] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  237.304987][ T9015] Cannot create hsr debugfs directory
[  237.555450][ T9003] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  237.564292][ T9305] sctp: [Deprecated]: syz.5.1071 (pid 9305) Use of struct sctp_assoc_value in delayed_ack socket option.
[  237.564292][ T9305] Use struct sctp_sack_info instead
[  237.705861][ T9003] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  237.781917][ T9287] loop0: detected capacity change from 0 to 32768
[  237.788302][ T9308] loop7: detected capacity change from 0 to 1764
[  237.811117][ T9287] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1065 (9287)
[  237.839013][ T9003] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  237.937153][ T9287] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  237.998805][ T9287] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[  238.024336][ T9287] BTRFS info (device loop0): using free-space-tree
[  238.094475][ T9003] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  238.364461][   T30] audit: type=1800 audit(1752267078.637:69): pid=9287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1065" name="file1" dev="loop0" ino=260 res=0 errno=0
[  238.451119][ T9295] loop4: detected capacity change from 0 to 32768
[  238.568331][ T9295] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  238.695003][ T9003] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.735179][ T9003] 8021q: adding VLAN 0 to HW filter on device team0
[  238.807628][ T2958] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.814841][ T2958] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.838541][ T9295] XFS (loop4): Ending clean mount
[  238.839414][ T5846] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  238.913764][ T2958] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.920981][ T2958] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.978550][ T9358] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1079'.
[  238.998591][ T9358] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1079'.
[  239.036190][ T9361] loop5: detected capacity change from 0 to 256
[  239.042629][ T9358] netlink: 'syz.7.1079': attribute type 13 has an invalid length.
[  239.209360][ T9361] FAT-fs (loop5): Directory bread(block 64) failed
[  239.283590][ T9361] FAT-fs (loop5): Directory bread(block 65) failed
[  239.288306][ T5843] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  239.319605][ T9361] FAT-fs (loop5): Directory bread(block 66) failed
[  239.416708][ T9361] FAT-fs (loop5): Directory bread(block 67) failed
[  239.441757][ T9361] FAT-fs (loop5): Directory bread(block 68) failed
[  239.448300][ T9361] FAT-fs (loop5): Directory bread(block 69) failed
[  239.504621][ T9361] FAT-fs (loop5): Directory bread(block 70) failed
[  239.532350][ T9361] FAT-fs (loop5): Directory bread(block 71) failed
[  239.538972][ T9361] FAT-fs (loop5): Directory bread(block 72) failed
[  239.618234][ T9361] FAT-fs (loop5): Directory bread(block 73) failed
[  240.172223][ T9378] loop4: detected capacity change from 0 to 512
[  240.293110][ T9378] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  240.494824][ T5843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.801159][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  240.984851][    T9] usb 8-1: Using ep0 maxpacket: 8
[  240.992365][    T9] usb 8-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  241.034297][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  241.054660][    T9] usb 8-1: New USB device found, idVendor=28bd, idProduct=0909, bcdDevice= 0.00
[  241.080657][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.094194][ T9003] 8021q: adding VLAN 0 to HW filter on device batadv0
[  241.100001][    T9] usb 8-1: config 0 descriptor??
[  241.172278][ T9407] loop4: detected capacity change from 0 to 1024
[  241.379356][   T13] hfsplus: b-tree write err: -5, ino 4
[  241.524040][ T9415] tipc: Enabling of bearer <‰ý‘eth:g> rejected, media not registered
[  241.568540][    T9] input: HID 28bd:0909 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:28BD:0909.0018/input/input7
[  241.758680][    T9] uclogic 0003:28BD:0909.0018: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0909] on usb-dummy_hcd.7-1/input0
[  241.871139][    T9] usb 8-1: USB disconnect, device number 5
[  241.875820][ T9425] loop5: detected capacity change from 0 to 64
[  242.186931][ T9015] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  242.322113][ T9428] fido_id[9428]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  242.423782][ T9015] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  242.537265][ T9015] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  242.684131][ T9015] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  242.839176][ T9452] loop4: detected capacity change from 0 to 256
[  242.853484][ T9453] loop0: detected capacity change from 0 to 512
[  242.932631][ T9452] exfat: Deprecated parameter 'namecase'
[  242.941135][ T9452] exfat: Deprecated parameter 'utf8'
[  242.947160][ T9453] EXT4-fs: Ignoring removed nobh option
[  243.001695][ T9453] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  243.010101][ T9003] veth0_vlan: entered promiscuous mode
[  243.042876][ T9003] veth1_vlan: entered promiscuous mode
[  243.096249][ T9452] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  243.106272][ T9453] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[  243.131307][ T9453] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #13: comm syz.0.1106: casefold flag without casefold feature
[  243.224556][ T9453] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1106: couldn't read orphan inode 13 (err -117)
[  243.298534][ T9453] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  243.419231][ T9015] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.440000][ T9003] veth0_macvtap: entered promiscuous mode
[  243.447978][ T9453] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  243.503472][ T9003] veth1_macvtap: entered promiscuous mode
[  243.511433][ T9466] loop7: detected capacity change from 0 to 512
[  243.556943][ T9466] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  243.567978][ T9015] 8021q: adding VLAN 0 to HW filter on device team0
[  243.616079][ T9003] batman_adv: batadv0: Interface activated: batadv_slave_0
[  243.642635][ T2973] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.649782][ T2973] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.654500][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.668312][ T9003] batman_adv: batadv0: Interface activated: batadv_slave_1
[  243.670020][ T9466] EXT4-fs (loop7): 1 truncate cleaned up
[  243.685393][ T2973] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.692579][ T2973] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.758046][ T9003] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  243.774494][ T9003] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  243.793182][ T9003] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  243.804985][ T9003] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  243.819493][ T9466] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.012227][ T9466] EXT4-fs error (device loop7): ext4_ext_precache:632: inode #15: comm syz.7.1111: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964)
[  244.258919][ T7581] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.356821][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.380851][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.547777][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  244.577389][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  244.815339][ T9495] loop4: detected capacity change from 0 to 64
[  245.017389][ T9015] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.344133][ T9015] veth0_vlan: entered promiscuous mode
[  245.427176][ T9015] veth1_vlan: entered promiscuous mode
[  245.634789][ T9015] veth0_macvtap: entered promiscuous mode
[  245.667202][ T9015] veth1_macvtap: entered promiscuous mode
[  245.773809][ T9015] batman_adv: batadv0: Interface activated: batadv_slave_0
[  245.779235][ T9515] loop0: detected capacity change from 0 to 64
[  245.824208][ T9015] batman_adv: batadv0: Interface activated: batadv_slave_1
[  245.884800][ T9015] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.951457][ T9015] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.980534][ T9015] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  246.006234][ T9015] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  246.354290][ T9524] loop0: detected capacity change from 0 to 256
[  246.460893][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.481793][ T9524] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011d5f, chksum : 0xc5863518, utbl_chksum : 0x000cd30d)
[  246.508039][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.524781][ T9527] loop7: detected capacity change from 0 to 64
[  246.572377][ T9524] exFAT-fs (loop0): error, data size is invalid(150994954)
[  246.644778][ T9527] hfs: bad catalog folder thread
[  246.695793][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.731233][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.930072][ T9506] loop4: detected capacity change from 0 to 32768
[  247.118862][ T9506] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  247.342885][ T9506] XFS (loop4): Ending clean mount
[  247.377428][ T9548] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1143'.
[  247.547271][ T5843] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  247.595692][ T9511] loop9: detected capacity change from 0 to 40427
[  247.767989][ T9511] F2FS-fs (loop9): build fault injection rate: 690
[  247.825200][   T30] audit: type=1326 audit(1752267088.107:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.7.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  247.876642][ T9511] F2FS-fs (loop9): invalid crc value
[  247.980335][ T9559] loop0: detected capacity change from 0 to 2048
[  248.024913][   T30] audit: type=1326 audit(1752267088.107:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.7.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  248.188236][   T30] audit: type=1326 audit(1752267088.107:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.7.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  248.283339][   T30] audit: type=1326 audit(1752267088.107:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.7.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  248.309337][   T30] audit: type=1326 audit(1752267088.107:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9556 comm="syz.7.1150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  248.378588][ T9559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  248.452650][ T9557] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  248.542589][ T9557] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  248.602288][ T9557] EXT4-fs (loop0): This should not happen!! Data will be lost
[  248.602288][ T9557] 
[  248.671687][ T9557] EXT4-fs (loop0): Total free blocks count 0
[  248.677894][ T9557] EXT4-fs (loop0): Free/Dirty block details
[  248.721129][ T9557] EXT4-fs (loop0): free_blocks=2415919104
[  248.743851][ T9557] EXT4-fs (loop0): dirty_blocks=16
[  248.748985][ T9557] EXT4-fs (loop0): Block reservation details
[  248.793736][ T9557] EXT4-fs (loop0): i_reserved_data_blocks=1
[  249.045923][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.079352][ T9586] nbd: couldn't find a device at index 17
[  249.116613][ T9588] loop5: detected capacity change from 0 to 1024
[  249.139364][ T9590] sp0: Synchronizing with TNC
[  249.243979][ T9589] [U] è
[  249.371342][ T9594] loop0: detected capacity change from 0 to 512
[  249.411037][ T9594] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  249.433082][ T2952] hfsplus: b-tree write err: -5, ino 4
[  249.475013][ T9594] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1159: bg 0: block 384: padding at end of block bitmap is not set
[  249.535758][ T9594] EXT4-fs (loop0): Remounting filesystem read-only
[  249.549327][ T9594] EXT4-fs (loop0): 1 truncate cleaned up
[  249.570567][ T9594] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.147255][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.357132][ T9575] loop1: detected capacity change from 0 to 32768
[  250.449900][ T9575] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  250.505562][ T5923] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  250.651546][ T9575] XFS (loop1): Ending clean mount
[  250.686023][ T9575] XFS (loop1): Quotacheck needed: Please wait.
[  250.714887][ T5923] usb 6-1: Using ep0 maxpacket: 8
[  250.752919][ T5923] usb 6-1: unable to get BOS descriptor or descriptor too short
[  250.793621][ T5923] usb 6-1: config 4 interface 0 has no altsetting 0
[  250.804290][ T5923] usb 6-1: string descriptor 0 read error: -22
[  250.851177][ T5923] usb 6-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  250.893887][ T5923] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.946250][ T9575] XFS (loop1): Quotacheck: Done.
[  250.999494][ T5923] usb 6-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  251.113977][ T5923] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  251.191443][ T5923] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  251.241895][ T5923] usb 6-1: media controller created
[  251.253366][ T9015] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  251.493990][ T5923] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  252.266474][ T5923] zl10353_read_register: readreg error (reg=127, ret==0)
[  252.321327][ T9675] siw: device registration error -23
[  252.612173][ T5923] usb 6-1: USB disconnect, device number 11
[  253.008061][ T9695] xt_NFQUEUE: number of total queues is 0
[  253.044987][ T9694] loop4: detected capacity change from 0 to 2048
[  253.102550][ T9694] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  253.179335][ T9694] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  253.668651][   T30] audit: type=1326 audit(1752267093.937:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  253.710869][ T9717] netlink: 'syz.1.1202': attribute type 9 has an invalid length.
[  253.719029][   T30] audit: type=1326 audit(1752267093.937:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  253.781802][   T30] audit: type=1326 audit(1752267094.037:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=444 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  253.891346][   T30] audit: type=1326 audit(1752267094.047:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  254.020699][   T30] audit: type=1326 audit(1752267094.047:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=446 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  254.048030][ T9726] loop1: detected capacity change from 0 to 1024
[  254.106438][   T30] audit: type=1326 audit(1752267094.047:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.4.1201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb5078e929 code=0x7ffc0000
[  254.412068][ T1022] hfsplus: b-tree write err: -5, ino 4
[  254.527940][ T9744] loop9: detected capacity change from 0 to 256
[  254.709510][ T9744] FAT-fs (loop9): Directory bread(block 64) failed
[  254.751082][ T9744] FAT-fs (loop9): Directory bread(block 65) failed
[  254.808787][ T9744] FAT-fs (loop9): Directory bread(block 66) failed
[  254.852334][ T9744] FAT-fs (loop9): Directory bread(block 67) failed
[  254.888219][ T9744] FAT-fs (loop9): Directory bread(block 68) failed
[  254.909578][ T9744] FAT-fs (loop9): Directory bread(block 69) failed
[  254.917596][ T9744] FAT-fs (loop9): Directory bread(block 70) failed
[  254.933422][ T9744] FAT-fs (loop9): Directory bread(block 71) failed
[  254.940166][ T9744] FAT-fs (loop9): Directory bread(block 72) failed
[  254.953294][ T9744] FAT-fs (loop9): Directory bread(block 73) failed
[  254.990635][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  254.997701][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  255.346670][ T9722] loop5: detected capacity change from 0 to 32768
[  255.466850][ T9722] ialloc: diAlloc returned -5!
[  255.823134][ T9768] loop9: detected capacity change from 0 to 4096
[  255.913404][ T5923] kernel write not supported for file /sg0 (pid: 5923 comm: kworker/0:4)
[  255.938782][ T9783] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 1, id = 0
[  255.939309][ T9779] IPVS: stopping backup sync thread 9783 ...
[  256.104721][ T9785] ntfs3(loop9): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" attr_set_size
[  256.110842][   T30] audit: type=1800 audit(1752267096.387:81): pid=9785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1218" name="file1" dev="loop9" ino=30 res=0 errno=0
[  256.153668][    C0] vkms_vblank_simulate: vblank timer overrun
[  257.256767][ T9819] netdevsim netdevsim4: Firmware load for '/../file0' refused, path contains '..' component
[  257.466901][ T9821] loop0: detected capacity change from 0 to 4096
[  257.506928][ T9828] loop5: detected capacity change from 0 to 512
[  257.550757][ T9821] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  257.587843][ T9821] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096)
[  257.608674][ T9828] EXT4-fs (loop5): orphan cleanup on readonly fs
[  257.710429][ T9828] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  257.772472][ T9828] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  257.820163][ T9794] loop1: detected capacity change from 0 to 32768
[  257.823946][ T5858] udevd[5858]: incorrect nilfs2 checksum on /dev/loop0
[  257.876744][ T9794] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1231 (9794)
[  257.886868][ T9828] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.1243: attempt to clear invalid blocks 2 len 1
[  258.015112][ T9794] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  258.027449][ T9828] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1243: invalid indirect mapped block 1819239214 (level 0)
[  258.112203][ T9794] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  258.144206][ T5858] udevd[5858]: incorrect nilfs2 checksum on /dev/loop0
[  258.159572][ T9839] loop7: detected capacity change from 0 to 2048
[  258.172687][ T9828] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1243: invalid indirect mapped block 1819239214 (level 1)
[  258.174035][ T9794] BTRFS info (device loop1): using free-space-tree
[  258.257064][ T9828] EXT4-fs (loop5): 1 truncate cleaned up
[  258.313654][ T9839] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[  258.326371][ T9828] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  258.483279][ T9856] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  258.485171][ T9828] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  258.532590][ T9828] EXT4-fs error (device loop5): __ext4_remount:6736: comm syz.5.1243: Abort forced by user
[  258.551633][ T5862] udevd[5862]: incorrect nilfs2 checksum on /dev/loop7
[  258.557385][ T9828] EXT4-fs (loop5): Remounting filesystem read-only
[  258.634216][ T9828] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  258.713216][ T9794] BTRFS info (device loop1): rebuilding free space tree
[  258.776266][ T9866] loop4: detected capacity change from 0 to 256
[  258.968857][ T9866] FAT-fs (loop4): Directory bread(block 64) failed
[  259.014234][ T9866] FAT-fs (loop4): Directory bread(block 65) failed
[  259.083434][ T5856] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.098554][ T9866] FAT-fs (loop4): Directory bread(block 66) failed
[  259.126374][ T9794] BTRFS info (device loop1): balance: start -susage=34359738372,drange=7..526332,limit=10..0
[  259.143416][ T9866] FAT-fs (loop4): Directory bread(block 67) failed
[  259.150045][ T9866] FAT-fs (loop4): Directory bread(block 68) failed
[  259.206939][ T9794] BTRFS info (device loop1): balance: ended with status: 0
[  259.250178][ T9866] FAT-fs (loop4): Directory bread(block 69) failed
[  259.290909][ T9866] FAT-fs (loop4): Directory bread(block 70) failed
[  259.334136][ T9866] FAT-fs (loop4): Directory bread(block 71) failed
[  259.387112][ T9866] FAT-fs (loop4): Directory bread(block 72) failed
[  259.442486][ T9866] FAT-fs (loop4): Directory bread(block 73) failed
[  259.506530][ T9015] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  259.801859][ T9836] loop9: detected capacity change from 0 to 32768
[  259.851399][ T9836] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.1246 (9836)
[  259.898789][ T9890] gfs2: path_lookup on c::: returned error -2
[  259.980902][ T9836] BTRFS info (device loop9): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  259.995603][ T9893] netlink: 44 bytes leftover after parsing attributes in process `syz.7.1258'.
[  260.056389][ T9836] BTRFS info (device loop9): using sha256 (sha256-x86_64) checksum algorithm
[  260.139478][ T9836] BTRFS info (device loop9): using free-space-tree
[  260.509267][ T9919] IPVS: set_ctl: invalid protocol: 136 10.1.1.2:20004
[  260.531673][ T5923] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  260.751219][ T5923] usb 2-1: Using ep0 maxpacket: 8
[  260.764245][ T5923] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  260.820797][ T5923] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.888773][ T5923] usb 2-1: config 0 descriptor??
[  260.967438][ T9931] loop0: detected capacity change from 0 to 512
[  260.975027][ T9003] BTRFS info (device loop9): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  261.108260][ T9931] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  261.141331][ T9931] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  261.188463][ T9931] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  261.241639][ T9936] loop4: detected capacity change from 0 to 256
[  261.271818][ T9931] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  261.280046][ T9931] System zones: 0-2, 18-18, 34-35
[  261.453032][ T9931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.519042][ T9936] FAT-fs (loop4): Directory bread(block 64) failed
[  261.570215][ T5923] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  261.583299][ T9936] FAT-fs (loop4): Directory bread(block 65) failed
[  261.606534][ T9936] FAT-fs (loop4): Directory bread(block 66) failed
[  261.617635][ T5923] asix 2-1:0.0: probe with driver asix failed with error -71
[  261.670266][ T9936] FAT-fs (loop4): Directory bread(block 67) failed
[  261.688291][   T30] audit: type=1326 audit(1752267101.967:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  261.720127][ T5923] usb 2-1: USB disconnect, device number 2
[  261.743847][ T9936] FAT-fs (loop4): Directory bread(block 68) failed
[  261.788769][ T9936] FAT-fs (loop4): Directory bread(block 69) failed
[  261.822998][   T30] audit: type=1326 audit(1752267101.967:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd098fc11e5 code=0x7ff00000
[  261.846164][ T9936] FAT-fs (loop4): Directory bread(block 70) failed
[  261.876908][ T9936] FAT-fs (loop4): Directory bread(block 71) failed
[  261.899432][ T9936] FAT-fs (loop4): Directory bread(block 72) failed
[  261.925083][ T9936] FAT-fs (loop4): Directory bread(block 73) failed
[  261.938975][   T30] audit: type=1326 audit(1752267101.967:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd098fc11e5 code=0x7ff00000
[  262.006432][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.017365][ T9952] loop7: detected capacity change from 0 to 164
[  262.084422][   T30] audit: type=1326 audit(1752267102.007:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.106690][    C0] vkms_vblank_simulate: vblank timer overrun
[  262.194576][ T9952] iso9660: Corrupted directory entry in block 2 of inode 1920
[  262.278955][   T30] audit: type=1326 audit(1752267102.007:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.420315][   T30] audit: type=1326 audit(1752267102.007:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.588372][   T30] audit: type=1326 audit(1752267102.007:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.667324][ T9964] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  262.745043][   T30] audit: type=1326 audit(1752267102.007:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.858602][   T30] audit: type=1326 audit(1752267102.007:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.930828][   T30] audit: type=1326 audit(1752267102.007:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9941 comm="syz.9.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd098f8e929 code=0x7ff00000
[  262.953027][    C0] vkms_vblank_simulate: vblank timer overrun
[  263.449991][ T9989] loop1: detected capacity change from 0 to 512
[  263.536509][ T9989] EXT4-fs: Ignoring removed nobh option
[  263.571631][ T9989] EXT4-fs: Ignoring removed mblk_io_submit option
[  263.656101][ T9989] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1286: corrupted in-inode xattr: overlapping e_value 
[  263.757736][ T9989] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1286: couldn't read orphan inode 15 (err -117)
[  263.827072][ T9989] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.875805][ T9992] loop5: detected capacity change from 0 to 4096
[  263.932602][ T9989] EXT4-fs error (device loop1): htree_dirblock_to_tree:1051: inode #2: comm syz.1.1286: Directory hole found for htree leaf block 0
[  263.977706][ T9992] ntfs3: Bad value for 'uid'
[  264.027115][ T9992] ntfs3: Bad value for 'uid'
[  264.154901][ T9955] loop0: detected capacity change from 0 to 32768
[  264.269153][ T9015] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.286483][ T9955] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  264.745504][ T9974] loop4: detected capacity change from 0 to 32768
[  264.751405][ T9955] XFS (loop0): Ending clean mount
[  264.782401][ T9955] XFS (loop0): Quotacheck needed: Please wait.
[  264.881468][ T9974] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1281 (9974)
[  264.964442][ T9955] XFS (loop0): Quotacheck: Done.
[  264.982232][T10020] loop9: detected capacity change from 0 to 1024
[  265.065028][ T9974] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  265.131521][ T9974] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm
[  265.140383][ T9974] BTRFS info (device loop4): using free-space-tree
[  265.296488][ T5846] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  265.562300][ T1149] hfsplus: b-tree write err: -5, ino 3
[  265.576216][T10050] loop7: detected capacity change from 0 to 1024
[  265.590496][T10050] EXT4-fs: Ignoring removed orlov option
[  265.664111][T10050] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  265.881779][T10050] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.969430][T10061] macvlan2: entered promiscuous mode
[  265.982191][ T5843] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  266.053278][T10061] macvlan2: entered allmulticast mode
[  266.239583][ T7581] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.538812][T10099] loop7: detected capacity change from 0 to 64
[  268.067997][   T30] kauditd_printk_skb: 1460 callbacks suppressed
[  268.068019][   T30] audit: type=1326 audit(1752267108.347:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.098420][T10071] loop9: detected capacity change from 0 to 32768
[  268.257541][   T30] audit: type=1326 audit(1752267108.407:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.378080][   T30] audit: type=1326 audit(1752267108.407:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.401521][   T30] audit: type=1326 audit(1752267108.407:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.403914][T10071] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  268.423936][    C0] vkms_vblank_simulate: vblank timer overrun
[  268.424846][   T30] audit: type=1326 audit(1752267108.407:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.424903][   T30] audit: type=1326 audit(1752267108.417:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.424956][   T30] audit: type=1326 audit(1752267108.417:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.425007][   T30] audit: type=1326 audit(1752267108.417:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10107 comm="syz.7.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb52e38e929 code=0x7ffc0000
[  268.704015][T10073] loop1: detected capacity change from 0 to 32768
[  268.792587][T10073] XFS: noikeep mount option is deprecated.
[  268.804474][T10082] loop5: detected capacity change from 0 to 32768
[  268.909296][T10082] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  268.978204][T10073] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  269.011986][ T9003] ocfs2: Unmounting device (7,9) on (node local)
[  269.073125][T10082] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  269.304446][T10073] XFS (loop1): Ending clean mount
[  269.366514][T10073] XFS (loop1): Quotacheck needed: Please wait.
[  269.609999][ T5856] ocfs2: Unmounting device (7,5) on (node local)
[  269.652584][T10073] XFS (loop1): Quotacheck: Done.
[  269.675650][T10149] loop7: detected capacity change from 0 to 64
[  269.897807][   T30] audit: type=1800 audit(1752267110.177:1560): pid=10149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1328" name="file1" dev="loop7" ino=18 res=0 errno=0
[  269.931576][ T9015] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[  270.337654][T10162] loop5: detected capacity change from 0 to 512
[  270.404954][T10165] netlink: 3 bytes leftover after parsing attributes in process `syz.7.1336'.
[  270.498918][T10162] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.1333: bg 0: block 5: invalid block bitmap
[  270.541504][T10162] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  270.651214][T10162] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.1333: invalid indirect mapped block 3 (level 2)
[  270.816431][T10162] EXT4-fs (loop5): 1 orphan inode deleted
[  270.852529][T10162] EXT4-fs (loop5): 1 truncate cleaned up
[  270.860075][T10162] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.988946][T10178] loop4: detected capacity change from 0 to 64
[  271.105967][T10178] hfs: filesystem is marked locked, mounting read-only.
[  271.212243][T10178] hfs: filesystem is marked locked, leaving read-only.
[  271.290462][ T5856] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.117593][T10156] loop0: detected capacity change from 0 to 32768
[  272.169424][T10202] loop1: detected capacity change from 0 to 512
[  272.250439][T10202] EXT4-fs: Ignoring removed mblk_io_submit option
[  272.311178][T10202] EXT4-fs: Ignoring removed mblk_io_submit option
[  272.387705][T10202] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  272.528213][T10202] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  272.637633][T10202] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1347: corrupted in-inode xattr: e_value size too large
[  272.681114][T10156] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,read_only,reconstruct_alloc
[  272.681150][T10156]   allowing incompatible features above 0.0: (unknown version)
[  272.681166][T10156]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  272.704733][    C0] vkms_vblank_simulate: vblank timer overrun
[  272.757426][T10202] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1347: couldn't read orphan inode 15 (err -117)
[  272.764324][T10202] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.900329][T10227] loop4: detected capacity change from 0 to 64
[  273.013599][   T30] audit: type=1800 audit(1752267113.297:1561): pid=10227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1354" name="file1" dev="loop4" ino=5 res=0 errno=0
[  273.144433][ T9015] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.194894][T10156] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[  273.241667][T10156] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  273.259202][T10156] bcachefs (loop0): Version upgrade required:
[  273.259202][T10156] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  273.259202][T10156] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  273.259202][T10156]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  273.728296][T10156] bcachefs (loop0): dropping and reconstructing all alloc info
[  273.807701][T10156] syz.0.1330: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  273.897372][T10249] loop7: detected capacity change from 0 to 1024
[  273.925063][T10156] CPU: 1 UID: 0 PID: 10156 Comm: syz.0.1330 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  273.925097][T10156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  273.925113][T10156] Call Trace:
[  273.925122][T10156]  <TASK>
[  273.925132][T10156]  dump_stack_lvl+0x189/0x250
[  273.925175][T10156]  ? __pfx_dump_stack_lvl+0x10/0x10
[  273.925207][T10156]  ? __pfx__printk+0x10/0x10
[  273.925244][T10156]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  273.925280][T10156]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  273.925317][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.925355][T10156]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  273.925393][T10156]  warn_alloc+0x214/0x310
[  273.925438][T10156]  ? __pfx_warn_alloc+0x10/0x10
[  273.925483][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.925513][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.925542][T10156]  ? __get_vm_area_node+0x28f/0x300
[  273.925576][T10156]  ? bch2_fs_journal_start+0x2b4/0x12b0
[  273.925622][T10156]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  273.925693][T10156]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  273.925733][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.925762][T10156]  ? rcu_is_watching+0x15/0xb0
[  273.925794][T10156]  ? bch2_fs_journal_start+0x2b4/0x12b0
[  273.925833][T10156]  ? bch2_fs_journal_start+0x2b4/0x12b0
[  273.925871][T10156]  __kvmalloc_node_noprof+0x3b8/0x5f0
[  273.925904][T10156]  ? bch2_fs_journal_start+0x2b4/0x12b0
[  273.925953][T10156]  bch2_fs_journal_start+0x2b4/0x12b0
[  273.926013][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926041][T10156]  ? bch2_journal_log_msg+0xd9/0x120
[  273.926071][T10156]  ? __pfx_bch2_fs_journal_start+0x10/0x10
[  273.926112][T10156]  ? __pfx_bch2_journal_log_msg+0x10/0x10
[  273.926139][T10156]  ? bch2_reconstruct_alloc+0x32b/0x360
[  273.926180][T10156]  bch2_fs_recovery+0x2298/0x3a50
[  273.926207][T10156]  ? check_noncircular+0xe0/0x160
[  273.926263][T10156]  ? __pfx_bch2_fs_recovery+0x10/0x10
[  273.926310][T10156]  ? __lock_acquire+0xab9/0xd20
[  273.926357][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926386][T10156]  ? __lock_acquire+0xab9/0xd20
[  273.926422][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926451][T10156]  ? __lock_acquire+0xab9/0xd20
[  273.926503][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926535][T10156]  ? bch2_fs_start+0xa0f/0xda0
[  273.926574][T10156]  ? up_write+0x1c4/0x420
[  273.926606][T10156]  ? bch2_fs_start+0x5e7/0xda0
[  273.926642][T10156]  bch2_fs_start+0xaaf/0xda0
[  273.926678][T10156]  ? bch2_fs_start+0x5e7/0xda0
[  273.926714][T10156]  ? __pfx_bch2_fs_start+0x10/0x10
[  273.926773][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926802][T10156]  ? sget+0x267/0x620
[  273.926836][T10156]  bch2_fs_get_tree+0xb39/0x1520
[  273.926901][T10156]  ? __pfx_bch2_fs_get_tree+0x10/0x10
[  273.926954][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.926983][T10156]  ? aa_get_newest_label+0xf7/0x5d0
[  273.927022][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927051][T10156]  ? vfs_parse_monolithic_sep+0x2df/0x310
[  273.927102][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927131][T10156]  ? apparmor_capable+0x137/0x1b0
[  273.927162][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927197][T10156]  vfs_get_tree+0x92/0x2b0
[  273.927231][T10156]  do_new_mount+0x24a/0xa40
[  273.927277][T10156]  __se_sys_mount+0x317/0x410
[  273.927320][T10156]  ? __pfx___se_sys_mount+0x10/0x10
[  273.927359][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927396][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927425][T10156]  ? __x64_sys_mount+0x20/0xc0
[  273.927463][T10156]  do_syscall_64+0xfa/0x3b0
[  273.927489][T10156]  ? lockdep_hardirqs_on+0x9c/0x150
[  273.927530][T10156]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.927554][T10156]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.927583][T10156]  ? exc_page_fault+0x9f/0xf0
[  273.927629][T10156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.927655][T10156] RIP: 0033:0x7f55243900ca
[  273.927677][T10156] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.927699][T10156] RSP: 002b:00007f5525209e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  273.927725][T10156] RAX: ffffffffffffffda RBX: 00007f5525209ef0 RCX: 00007f55243900ca
[  273.927744][T10156] RDX: 00002000000058c0 RSI: 0000200000005900 RDI: 00007f5525209eb0
[  273.927763][T10156] RBP: 00002000000058c0 R08: 00007f5525209ef0 R09: 0000000000000011
[  273.927781][T10156] R10: 0000000000000011 R11: 0000000000000246 R12: 0000200000005900
[  273.927798][T10156] R13: 00007f5525209eb0 R14: 000000000000593e R15: 0000200000000180
[  273.927836][T10156]  </TASK>
[  273.927846][T10156] Mem-Info:
[  274.449920][T10210] loop9: detected capacity change from 0 to 32768
[  274.909084][T10156] active_anon:16099 inactive_anon:0 isolated_anon:0
[  274.909084][T10156]  active_file:1227 inactive_file:40983 isolated_file:0
[  274.909084][T10156]  unevictable:768 dirty:365 writeback:0
[  274.909084][T10156]  slab_reclaimable:8467 slab_unreclaimable:107956
[  274.909084][T10156]  mapped:40541 shmem:9753 pagetables:1373
[  274.909084][T10156]  sec_pagetables:0 bounce:0
[  274.909084][T10156]  kernel_misc_reclaimable:0
[  274.909084][T10156]  free:1285850 free_pcp:12823 free_cma:0
[  275.069847][T10156] Node 0 active_anon:65696kB inactive_anon:0kB active_file:4908kB inactive_file:163728kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:162064kB dirty:1460kB writeback:0kB shmem:39176kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12960kB pagetables:5540kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  275.281523][T10156] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  275.449226][T10156] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  275.651340][T10156] lowmem_reserve[]: 0 2498 2500 2500 2500
[  275.651406][T10156] Node 0 DMA32 free:1229304kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:62776kB inactive_anon:0kB active_file:4908kB inactive_file:161852kB unevictable:1536kB writepending:1488kB present:3129332kB managed:2558396kB mlocked:0kB bounce:0kB free_pcp:36096kB local_pcp:14988kB free_cma:0kB
[  275.651487][T10156] lowmem_reserve[]: 0 0 1 1 1
[  275.651544][T10156] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  275.651627][T10156] lowmem_reserve[]: 0 0 0 0 0
[  275.651684][T10156] Node 1 Normal free:3902340kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17536kB local_pcp:9888kB free_cma:0kB
[  275.651764][T10156] lowmem_reserve[]: 0 0 0 0 0
[  275.651822][T10156] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  275.652002][T10156] Node 0 DMA32: 93*4kB (UME) 26*8kB (UM) 353*16kB (UM) 347*32kB (UME) 133*64kB (UME) 28*128kB (ME) 49*256kB (UME) 15*512kB (UM) 16*1024kB (UME) 2*2048kB (ME) 283*4096kB (UM) = 1229300kB
[  275.652251][T10156] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  275.652422][T10156] Node 1 Normal: 183*4kB (UE) 49*8kB (UME) 38*16kB (UME) 122*32kB (UME) 38*64kB (UME) 8*128kB (UME) 2*256kB (M) 3*512kB (UM) 2*1024kB (ME) 1*2048kB (E) 949*4096kB (M) = 3902340kB
[  275.652677][T10156] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  275.652700][T10156] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  275.652724][T10156] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  275.652746][T10156] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  275.652769][T10156] 51338 total pagecache pages
[  275.652781][T10156] 0 pages in swap cache
[  275.652792][T10156] Free swap  = 124996kB
[  275.652804][T10156] Total swap = 124996kB
[  275.652816][T10156] 2097051 pages RAM
[  275.652827][T10156] 0 pages HighMem/MovableOnly
[  275.652838][T10156] 425410 pages reserved
[  275.652850][T10156] 0 pages cma reserved
[  275.709693][    C0] vkms_vblank_simulate: vblank timer overrun
[  275.724853][T10282] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  275.749000][T10156] bcachefs (loop0): error reallocating journal fifo (32768 open entries)
[  275.749515][T10156] bcachefs (loop0): error in recovery: ENOMEM_journal_pin_fifo
[  275.749533][T10156]   emergency read only at seq 0
[  275.749576][T10156] bcachefs (loop0): bch2_fs_start(): error starting filesystem ENOMEM_journal_pin_fifo
[  275.749595][T10156] bcachefs (loop0): shutting down
[  275.910056][T10156] bcachefs (loop0): shutdown complete
[  275.943556][T10292] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1378'.
[  276.119651][T10262] loop5: detected capacity change from 0 to 32768
[  276.145919][T10262] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1368 (10262)
[  276.243872][T10262] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  276.243960][T10262] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  276.243998][T10262] BTRFS info (device loop5): using free-space-tree
[  276.847915][ T5856] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  276.920014][T10327] loop7: detected capacity change from 0 to 512
[  276.983056][T10327] EXT4-fs: Ignoring removed nobh option
[  277.138316][T10327] EXT4-fs error (device loop7): ext4_orphan_get:1393: inode #15: comm syz.7.1385: iget: bad i_size value: 38620345925642
[  277.138787][T10327] EXT4-fs error (device loop7): ext4_orphan_get:1398: comm syz.7.1385: couldn't read orphan inode 15 (err -117)
[  277.149097][T10327] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.346503][ T7581] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.801377][ T5855] Bluetooth: hci0: command tx timeout
[  277.977074][T10349] loop5: detected capacity change from 0 to 512
[  278.075963][T10349] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  278.170375][T10349] ext4 filesystem being mounted at /295/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  278.433904][ T5856] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.444477][T10156] bcachefs: bch2_fs_get_tree() error: ENOMEM_journal_pin_fifo
[  278.857519][T10334] loop1: detected capacity change from 0 to 32768
[  279.043334][T10334] ERROR: (device loop1): dbAllocAG: Corrupt dmapctl page
[  279.043334][T10334] 
[  279.125371][T10334] ERROR: (device loop1): remounting filesystem as read-only
[  279.186846][T10334] jfs_create: dtInsert returned -EIO
[  279.238659][T10334] ERROR: (device loop1): jfs_create: 
[  279.238659][T10334] 
[  279.364113][ T5989] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  279.504355][T10388] loop5: detected capacity change from 0 to 256
[  279.557598][ T5989] usb 10-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  279.580504][T10388] exfat: Deprecated parameter 'utf8'
[  279.595979][ T5989] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.658511][ T5989] usb 10-1: Product: syz
[  279.678053][ T5989] usb 10-1: Manufacturer: syz
[  279.721524][ T5989] usb 10-1: SerialNumber: syz
[  279.727793][T10388] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  279.770949][ T5989] usb 10-1: config 0 descriptor??
[  279.814173][ T5989] ch341 10-1:0.0: ch341-uart converter detected
[  280.425263][ T5989] usb 10-1: failed to send control message: -71
[  280.448212][ T5989] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  280.473996][T10404] loop5: detected capacity change from 0 to 4096
[  280.505219][ T5989] usb 10-1: USB disconnect, device number 2
[  280.553246][ T5989] ch341 10-1:0.0: device disconnected
[  280.671606][T10409] loop7: detected capacity change from 0 to 4096
[  280.715310][T10409] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  280.740475][T10417] loop0: detected capacity change from 0 to 512
[  280.784835][T10417] EXT4-fs: Ignoring removed mblk_io_submit option
[  280.813214][T10417] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  280.972125][T10417] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.1416: iget: bad extended attribute block 1
[  281.000694][ T5960] IPVS: starting estimator thread 0...
[  281.063673][T10417] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1416: couldn't read orphan inode 15 (err -117)
[  281.111825][T10423] IPVS: using max 24 ests per chain, 57600 per kthread
[  281.204912][T10417] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  281.369183][T10417] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  281.718033][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.851525][ T5989] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  282.055625][ T5989] usb 6-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  282.076407][ T5989] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.122324][ T5989] usb 6-1: Product: syz
[  282.144843][ T5989] usb 6-1: Manufacturer: syz
[  282.173299][ T5989] usb 6-1: SerialNumber: syz
[  282.219616][ T5989] usb 6-1: config 0 descriptor??
[  282.261560][ T5986] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  282.273317][ T5989] gspca_main: sq905c-2.14.0 probing 2770:9052
[  282.436033][T10459] loop9: detected capacity change from 0 to 64
[  282.453502][ T5986] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  282.494478][ T5986] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  282.564531][T10414] loop4: detected capacity change from 0 to 32768
[  282.565594][ T5986] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  282.637555][ T5986] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  282.658419][T10465] loop1: detected capacity change from 0 to 512
[  282.676937][ T5986] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  282.689937][T10465] EXT4-fs: Ignoring removed nomblk_io_submit option
[  282.704233][ T5986] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  282.717565][ T5986] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  282.739278][ T5986] usb 8-1: Product: syz
[  282.755035][T10414] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  282.766318][T10465] EXT4-fs: Ignoring removed i_version option
[  282.823755][ T5986] usb 8-1: Manufacturer: syz
[  282.842271][T10465] EXT4-fs (loop1): 1 orphan inode deleted
[  282.857255][ T5986] cdc_wdm 8-1:1.0: skipping garbage
[  282.872012][ T5986] cdc_wdm 8-1:1.0: skipping garbage
[  282.895885][ T5986] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  282.897548][T10414] XFS (loop4): Ending clean mount
[  282.902918][ T5986] cdc_wdm 8-1:1.0: Unknown control protocol
[  282.928372][ T5989] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[  282.929107][T10465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.943267][ T5989] sq905c 6-1:0.0: probe with driver sq905c failed with error -71
[  282.961734][ T5989] usb 6-1: USB disconnect, device number 12
[  283.129289][T10482] loop9: detected capacity change from 0 to 1024
[  283.227451][ T5843] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  283.263297][ T9015] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.276683][ T5850] usb 8-1: USB disconnect, device number 6
[  284.307258][T10508] loop5: detected capacity change from 0 to 128
[  284.401544][ T5850] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  284.419396][T10508] EXT4-fs (loop5): Test dummy encryption mode enabled
[  284.546632][T10508] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  284.601390][ T5850] usb 8-1: Using ep0 maxpacket: 32
[  284.612802][ T5850] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  284.621750][ T5850] usb 8-1: config 0 has no interface number 0
[  284.640749][ T5850] usb 8-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  284.661592][ T5850] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  284.669697][T10508] ext4 filesystem being mounted at /302/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  284.719522][ T5850] usb 8-1: Product: syz
[  284.729053][ T5850] usb 8-1: Manufacturer: syz
[  284.771748][ T5850] usb 8-1: SerialNumber: syz
[  284.809734][ T5850] usb 8-1: config 0 descriptor??
[  284.820035][T10508] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  284.866059][ T5850] usb 8-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  284.907213][ T5850] usb 8-1: selecting invalid altsetting 1
[  284.936431][ T5850] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  285.020700][ T5850] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  285.080044][ T5850] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  285.108837][ T5856] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  285.152620][ T5850] usb 8-1: media controller created
[  285.236119][T10492] loop4: detected capacity change from 0 to 32768
[  285.249672][ T5850] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  285.308319][T10492] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1435 (10492)
[  285.399936][T10530] loop9: detected capacity change from 0 to 4096
[  285.411985][T10492] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  285.442139][ T5850] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  285.451861][T10492] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm
[  285.476926][ T5850] zl10353_read_register: readreg error (reg=127, ret==-71)
[  285.491514][T10530] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512).
[  285.516813][T10492] BTRFS info (device loop4): using free-space-tree
[  285.526280][ T5850] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  285.665790][ T5850] usb 8-1: USB disconnect, device number 7
[  285.815268][T10530] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  285.901480][T10530] ntfs3(loop9): ino=1a, mi_enum_attr
[  285.907734][T10530] ntfs3(loop9): Failed to initialize $Extend/$ObjId.
[  286.042175][T10530] ntfs3(loop9): ino=5, "/" ntfs_readdir
[  286.355353][T10571] binder: 10569:10571 ioctl c00c620f 200000000040 returned -22
[  286.522013][T10577] loop9: detected capacity change from 0 to 256
[  286.691115][T10577] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  286.767246][   T13] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  286.797828][T10583] loop5: detected capacity change from 0 to 16
[  286.870448][T10583] erofs (device loop5): mounted with root inode @ nid 36.
[  286.954938][ T5843] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  286.968098][T10583] erofs (device loop5): bogus lookback distance 1388 @ lcn 42 of nid 36
[  287.015302][T10583] erofs (device loop5): failed to decompress -57 in[61, 4035] out[1851]
[  287.099046][T10579] loop0: detected capacity change from 0 to 4096
[  287.142775][T10583] erofs (device loop5): read error -117 @ 43 of nid 36
[  287.234686][T10579] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  287.410679][T10579] ntfs3(loop0): ino=19, mi_enum_attr
[  287.465741][T10579] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  287.473889][ T5986] usb 8-1: new full-speed USB device number 8 using dummy_hcd
[  287.721718][ T5986] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  287.774445][ T5986] usb 8-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  287.839759][ T5986] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.046822][ T5986] usb 8-1: config 0 descriptor??
[  288.552677][ T5986] nintendo 0003:057E:200E.0019: unbalanced collection at end of report description
[  288.635316][ T5986] nintendo 0003:057E:200E.0019: HID parse failed
[  288.740553][ T5986] nintendo 0003:057E:200E.0019: probe - fail = -22
[  288.793468][ T5986] nintendo 0003:057E:200E.0019: probe with driver nintendo failed with error -22
[  288.853534][ T5986] usb 8-1: USB disconnect, device number 8
[  289.265804][T10644] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1489'.
[  289.309090][T10644] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1489'.
[  289.424996][T10644] netlink: 'syz.5.1489': attribute type 18 has an invalid length.
[  289.511398][T10644] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1489'.
[  289.828894][T10655] loop0: detected capacity change from 0 to 64
[  289.870768][ T5944] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  289.922238][T10634] loop1: detected capacity change from 0 to 32768
[  289.973267][T10634] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1485 (10634)
[  290.053343][ T5944] usb 8-1: config 0 interface 0 altsetting 185 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.115156][T10634] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  290.120229][ T5944] usb 8-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[  290.177287][T10634] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  290.229480][ T5944] usb 8-1: config 0 interface 0 has no altsetting 0
[  290.255101][T10634] BTRFS info (device loop1): using free-space-tree
[  290.267937][ T5944] usb 8-1: New USB device found, idVendor=05ac, idProduct=029f, bcdDevice= 0.00
[  290.370999][ T5944] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.464539][ T5944] usb 8-1: config 0 descriptor??
[  290.620533][T10688] loop9: detected capacity change from 0 to 64
[  290.790213][T10688] Trying to free block not in datazone
[  290.847162][T10688] Trying to free block not in datazone
[  290.866622][ T9015] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  290.878212][T10688] Trying to free block not in datazone
[  290.905248][T10688] Trying to free block not in datazone
[  290.951482][T10688] Trying to free block not in datazone
[  290.962412][T10692] loop5: detected capacity change from 0 to 1024
[  290.968143][T10639] loop4: detected capacity change from 0 to 32768
[  290.983572][ T5944] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  290.999906][ T5944] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  291.041021][ T5944] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  291.047919][ T5944] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  291.057699][T10688] minix_free_block (loop9:6): bit already cleared
[  291.093774][T10688] Trying to free block not in datazone
[  291.131237][ T5944] apple 0003:05AC:029F.001A: unknown main item tag 0x0
[  291.143812][T10688] Trying to free block not in datazone
[  291.201185][ T5944] apple 0003:05AC:029F.001A: hidraw0: USB HID v8.00 Device [HID 05ac:029f] on usb-dummy_hcd.7-1/input0
[  291.358217][ T5944] usb 8-1: USB disconnect, device number 9
[  291.594091][T10696] fido_id[10696]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  291.909539][T10706] loop5: detected capacity change from 0 to 1024
[  292.206516][T10706] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  292.372926][T10722] loop9: detected capacity change from 0 to 1024
[  292.909542][ T5849] Bluetooth: hci1: command 0x0406 tx timeout
[  293.075319][ T5856] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.362420][   T30] audit: type=1326 audit(1752267133.647:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  293.482938][   T30] audit: type=1326 audit(1752267133.687:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  293.538686][T10749] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1518'.
[  293.548189][T10752] loop9: detected capacity change from 0 to 8
[  293.590309][T10752] MTD: Attempt to mount non-MTD device "/dev/loop9"
[  293.598950][T10749] netlink: 'syz.0.1518': attribute type 2 has an invalid length.
[  293.609669][   T30] audit: type=1326 audit(1752267133.687:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  293.657322][T10749] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1518'.
[  293.743480][   T30] audit: type=1326 audit(1752267133.687:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  293.898092][T10762] Illegal XDP return value 4294967274 on prog  (id 109) dev N/A, expect packet loss!
[  293.913044][   T30] audit: type=1326 audit(1752267133.697:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  294.036916][   T30] audit: type=1326 audit(1752267133.697:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  294.168970][   T30] audit: type=1326 audit(1752267133.697:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f274998e929 code=0x7ffc0000
[  294.452805][ T5855] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  294.452875][ T5855] Bluetooth: hci1: Malformed LE Event: 0x0d
[  294.625611][T10777] loop4: detected capacity change from 0 to 4096
[  295.023510][T10787] loop9: detected capacity change from 0 to 1024
[  295.553207][T10803] loop9: detected capacity change from 0 to 64
[  295.626544][T10803] hfs: unable to locate alternate MDB
[  295.639506][T10803] hfs: continuing without an alternate MDB
[  296.467729][T10821] ALSA: seq fatal error: cannot create timer (-19)
[  296.819194][T10788] loop4: detected capacity change from 0 to 32768
[  296.987879][T10788] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  297.183915][T10793] loop1: detected capacity change from 0 to 40427
[  297.244375][T10788] XFS (loop4): Ending clean mount
[  297.284912][T10793] F2FS-fs (loop1): invalid crc value
[  297.304200][T10788] XFS (loop4): Quotacheck needed: Please wait.
[  297.467299][T10788] XFS (loop4): Quotacheck: Done.
[  297.562236][T10850] loop0: detected capacity change from 0 to 4096
[  297.636323][ T5843] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  297.757045][T10793] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  297.918862][T10836] loop5: detected capacity change from 0 to 32768
[  298.050852][T10836] 
[  298.050852][T10836]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  298.050852][T10836] 
[  298.211478][T10836] ERROR: (device loop5): diWrite: ixpxd invalid
[  298.211478][T10836] 
[  298.236381][T10817] loop9: detected capacity change from 0 to 40427
[  298.342878][T10817] F2FS-fs (loop9): Wrong segment_count / block_count (64 > 16384)
[  298.402711][T10817] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  298.473989][T10836] ERROR: (device loop5): remounting filesystem as read-only
[  298.538553][T10836] ERROR: (device loop5): txCommit: 
[  298.538553][T10836] 
[  299.267254][T10882] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.1563'.
[  299.749295][T10854] loop7: detected capacity change from 0 to 32768
[  299.790911][T10894] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1557'.
[  299.859780][T10894] tipc: Started in network mode
[  299.889492][T10854] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  299.932761][T10894] tipc: Node identity aaaaaaaaaa32, cluster identity 4711
[  299.971838][T10894] tipc: Enabled bearer <eth:vlan0>, priority 10
[  300.287467][T10854] XFS (loop7): Ending clean mount
[  300.359487][T10854] XFS (loop7): Quotacheck needed: Please wait.
[  300.585549][T10876] loop4: detected capacity change from 0 to 32768
[  300.675760][T10854] XFS (loop7): Quotacheck: Done.
[  300.769902][T10876] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  300.923684][ T7581] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  301.050912][T10876] XFS (loop4): Ending clean mount
[  301.104809][ T5986] tipc: Node number set to 10005162
[  301.119718][T10876] XFS (loop4): Quotacheck needed: Please wait.
[  301.224153][ T5944] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  301.255723][T10876] XFS (loop4): Quotacheck: Done.
[  301.272814][ T5850] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  301.458227][ T5944] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  301.492695][ T5850] usb 6-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 16
[  301.511724][ T5944] usb 2-1: config 0 has no interface number 0
[  301.525313][ T5850] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[  301.531541][ T5944] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  301.596244][ T5850] usb 6-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  301.605036][ T5843] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  301.614353][ T5944] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.615449][ T5850] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.649999][ T5944] usb 2-1: config 0 descriptor??
[  301.680303][ T5944] usb 2-1: selecting invalid altsetting 1
[  301.696088][ T5944] dvb_ttusb_budget: ttusb_init_controller: error
[  301.708796][ T5944] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  301.743315][ T5850] usb 6-1: Product: syz
[  301.747515][ T5850] usb 6-1: Manufacturer: syz
[  301.799746][ T5850] usb 6-1: SerialNumber: syz
[  301.900257][ T5850] usb 6-1: config 0 descriptor??
[  301.958494][ T5944] DVB: Unable to find symbol cx22700_attach()
[  301.966048][ T5850] usb-storage 6-1:0.0: USB Mass Storage device detected
[  302.009234][ T5850] usb-storage 6-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[  302.253832][ T5850] usb 6-1: USB disconnect, device number 13
[  302.319826][ T5944] DVB: Unable to find symbol tda10046_attach()
[  302.373232][ T5944] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  302.406976][T10961] loop0: detected capacity change from 0 to 128
[  302.441786][ T5944] usb 2-1: USB disconnect, device number 3
[  302.519900][T10924] loop9: detected capacity change from 0 to 32768
[  302.569228][T10924] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.1567 (10924)
[  302.684758][T10924] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  302.757587][T10924] BTRFS info (device loop9): using crc32c (crc32c-x86_64) checksum algorithm
[  302.805613][T10924] BTRFS info (device loop9): disk space caching is enabled
[  302.841383][T10924] BTRFS warning (device loop9): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  303.196124][T10924] BTRFS info (device loop9): rebuilding free space tree
[  303.312051][T10924] BTRFS info (device loop9): disabling free space tree
[  303.319014][T10924] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  303.334809][T10995] loop1: detected capacity change from 0 to 2048
[  303.428865][T10924] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  303.432474][T10995] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  303.788340][ T9003] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  303.796397][T11004] netlink: 47 bytes leftover after parsing attributes in process `syz.5.1592'.
[  304.555199][T11021] loop7: detected capacity change from 0 to 256
[  304.614802][T11021] exfat: Deprecated parameter 'utf8'
[  304.620139][T11021] exfat: Deprecated parameter 'utf8'
[  304.746975][T11021] exfat: Deprecated parameter 'utf8'
[  304.884184][T11020] loop9: detected capacity change from 0 to 8192
[  304.920214][T11020] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  304.927439][T11021] exFAT-fs (loop7): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  305.071555][T11021] exFAT-fs (loop7): error, exfat_zeroed_cluster: out of range(sect:184 len:8)
[  305.130894][T11021] exFAT-fs (loop7): Filesystem has been set read-only
[  305.738683][T11036] loop4: detected capacity change from 0 to 4096
[  305.793644][T11036] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  305.912373][T11036] ntfs3(loop4): ino=1a, mi_enum_attr
[  305.923124][T11042] loop9: detected capacity change from 0 to 2048
[  305.947222][T11036] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  305.963261][T11042] EXT4-fs: Ignoring removed bh option
[  305.978237][T11036] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  306.102937][T11042] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.213976][   T30] audit: type=1800 audit(1752267146.497:1569): pid=11042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1606" name="file1" dev="loop9" ino=15 res=0 errno=0
[  306.529742][T11024] loop5: detected capacity change from 0 to 32768
[  306.575920][T11042] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  306.588219][T11042] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 640 with error 28
[  306.588254][T11042] EXT4-fs (loop9): This should not happen!! Data will be lost
[  306.588254][T11042] 
[  306.588273][T11042] EXT4-fs (loop9): Total free blocks count 0
[  306.588290][T11042] EXT4-fs (loop9): Free/Dirty block details
[  306.588307][T11042] EXT4-fs (loop9): free_blocks=2415919104
[  306.588326][T11042] EXT4-fs (loop9): dirty_blocks=656
[  306.588343][T11042] EXT4-fs (loop9): Block reservation details
[  306.588359][T11042] EXT4-fs (loop9): i_reserved_data_blocks=41
[  306.699282][T11059] loop0: detected capacity change from 0 to 256
[  306.913158][T11059] FAT-fs (loop0): Directory bread(block 64) failed
[  306.913198][T11059] FAT-fs (loop0): Directory bread(block 65) failed
[  306.913283][T11059] FAT-fs (loop0): Directory bread(block 66) failed
[  306.913312][T11059] FAT-fs (loop0): Directory bread(block 67) failed
[  306.913408][T11059] FAT-fs (loop0): Directory bread(block 68) failed
[  306.913437][T11059] FAT-fs (loop0): Directory bread(block 69) failed
[  306.913522][T11059] FAT-fs (loop0): Directory bread(block 70) failed
[  306.913550][T11059] FAT-fs (loop0): Directory bread(block 71) failed
[  306.913634][T11059] FAT-fs (loop0): Directory bread(block 72) failed
[  306.913662][T11059] FAT-fs (loop0): Directory bread(block 73) failed
[  306.978503][T11062] netlink: 'syz.7.1613': attribute type 10 has an invalid length.
[  307.005432][ T2952] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  307.185388][T11062] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  307.245771][T11061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  307.492265][T11072] loop4: detected capacity change from 0 to 128
[  307.530102][T11072] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  307.530210][T11072] System zones: 1-3, 19-19, 35-36
[  307.533199][T11072] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  307.545780][T11072] ext4 filesystem being mounted at /301/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  307.625797][T11077] netlink: 27 bytes leftover after parsing attributes in process `syz.5.1619'.
[  307.631635][T11072] EXT4-fs warning (device loop4): ext4_group_extend:1891: can't read last block, resize aborted
[  307.945807][ T5843] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  308.025171][ T5855] Bluetooth: hci1: command 0x0406 tx timeout
[  308.076683][T11089] loop9: detected capacity change from 0 to 64
[  308.372236][T11089] syz.9.1624: attempt to access beyond end of device
[  308.372236][T11089] loop9: rw=2049, sector=65, nr_sectors = 1 limit=64
[  308.490901][T11089] Buffer I/O error on dev loop9, logical block 65, lost async page write
[  308.491057][T11089] syz.9.1624: attempt to access beyond end of device
[  308.491057][T11089] loop9: rw=2049, sector=66, nr_sectors = 1 limit=64
[  308.491087][T11089] Buffer I/O error on dev loop9, logical block 66, lost async page write
[  308.491192][T11089] syz.9.1624: attempt to access beyond end of device
[  308.491192][T11089] loop9: rw=2049, sector=67, nr_sectors = 1 limit=64
[  308.491221][T11089] Buffer I/O error on dev loop9, logical block 67, lost async page write
[  308.491303][T11089] syz.9.1624: attempt to access beyond end of device
[  308.491303][T11089] loop9: rw=2049, sector=68, nr_sectors = 1 limit=64
[  308.491331][T11089] Buffer I/O error on dev loop9, logical block 68, lost async page write
[  308.628533][T11089] syz.9.1624: attempt to access beyond end of device
[  308.628533][T11089] loop9: rw=2049, sector=72, nr_sectors = 1 limit=64
[  308.701703][T11089] Buffer I/O error on dev loop9, logical block 72, lost async page write
[  308.738370][T11089] syz.9.1624: attempt to access beyond end of device
[  308.738370][T11089] loop9: rw=2049, sector=73, nr_sectors = 1 limit=64
[  308.842521][T11089] Buffer I/O error on dev loop9, logical block 73, lost async page write
[  308.871170][T11089] syz.9.1624: attempt to access beyond end of device
[  308.871170][T11089] loop9: rw=2049, sector=76, nr_sectors = 1 limit=64
[  308.906981][T11109] loop5: detected capacity change from 0 to 256
[  308.968405][T11109] FAT-fs (loop5): Directory bread(block 64) failed
[  308.999345][T11109] FAT-fs (loop5): Directory bread(block 65) failed
[  309.051257][T11109] FAT-fs (loop5): Directory bread(block 66) failed
[  309.057826][T11109] FAT-fs (loop5): Directory bread(block 67) failed
[  309.070724][T11089] Buffer I/O error on dev loop9, logical block 76, lost async page write
[  309.118638][T11089] syz.9.1624: attempt to access beyond end of device
[  309.118638][T11089] loop9: rw=2049, sector=77, nr_sectors = 1 limit=64
[  309.141563][T11109] FAT-fs (loop5): Directory bread(block 68) failed
[  309.148107][T11109] FAT-fs (loop5): Directory bread(block 69) failed
[  309.217377][T11089] Buffer I/O error on dev loop9, logical block 77, lost async page write
[  309.261508][T11109] FAT-fs (loop5): Directory bread(block 70) failed
[  309.268454][T11109] FAT-fs (loop5): Directory bread(block 71) failed
[  309.283578][T11089] syz.9.1624: attempt to access beyond end of device
[  309.283578][T11089] loop9: rw=2049, sector=78, nr_sectors = 760 limit=64
[  309.293558][T11123] overlayfs: workdir and upperdir must be separate subtrees
[  309.305882][T11109] FAT-fs (loop5): Directory bread(block 72) failed
[  309.322967][T11122] loop1: detected capacity change from 0 to 1024
[  309.358898][T11109] FAT-fs (loop5): Directory bread(block 73) failed
[  309.574210][   T49] hfsplus: b-tree write err: -5, ino 4
[  309.901826][T11138] program syz.5.1644 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  310.224344][T11146] tmpfs: Cannot change global quota limit on remount
[  310.779279][T11159] loop9: detected capacity change from 0 to 4096
[  310.917005][   T30] audit: type=1800 audit(1752267151.197:1570): pid=11159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1653" name="file2" dev="loop9" ino=16 res=0 errno=0
[  311.040697][ T5944] usb 6-1: new full-speed USB device number 14 using dummy_hcd
[  311.052051][T11181] loop4: detected capacity change from 0 to 256
[  311.250474][T11184] loop0: detected capacity change from 0 to 64
[  311.271993][ T5944] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  311.316800][ T5944] usb 6-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00
[  311.337599][   T30] audit: type=1800 audit(1752267151.617:1571): pid=11184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1662" name="file1" dev="loop0" ino=18 res=0 errno=0
[  311.395077][ T5944] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.438094][T11181] FAT-fs (loop4): Directory bread(block 64) failed
[  311.473927][ T5944] usb 6-1: config 0 descriptor??
[  311.481456][T11181] FAT-fs (loop4): Directory bread(block 65) failed
[  311.490175][T11181] FAT-fs (loop4): Directory bread(block 66) failed
[  311.571332][T11181] FAT-fs (loop4): Directory bread(block 67) failed
[  311.578077][T11181] FAT-fs (loop4): Directory bread(block 68) failed
[  311.628414][T11181] FAT-fs (loop4): Directory bread(block 69) failed
[  311.681089][T11181] FAT-fs (loop4): Directory bread(block 70) failed
[  311.769421][T11181] FAT-fs (loop4): Directory bread(block 71) failed
[  311.822110][T11181] FAT-fs (loop4): Directory bread(block 72) failed
[  311.848082][T11181] FAT-fs (loop4): Directory bread(block 73) failed
[  311.963344][T11199] loop7: detected capacity change from 0 to 256
[  311.975158][T11199] exfat: Deprecated parameter 'namecase'
[  312.015149][ T5944] holtek_mouse 0003:04D9:A067.001B: hidraw0: USB HID v0.01 Device [HID 04d9:a067] on usb-dummy_hcd.5-1/input0
[  312.100782][T11199] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  312.170341][ T5944] usb 6-1: USB disconnect, device number 14
[  312.255533][T11207] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1669'.
[  312.430023][T11204] fido_id[11204]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  312.745021][T11217] loop4: detected capacity change from 0 to 65
[  312.801649][T11217] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  312.918452][T11219] loop9: detected capacity change from 0 to 1024
[  312.954157][T11219] EXT4-fs: Ignoring removed bh option
[  313.037050][T11219] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  313.395357][   T77] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.469331][ T9003] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  313.723538][   T77] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.854472][   T77] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.989033][T11223] loop5: detected capacity change from 0 to 32768
[  314.013174][T11241] loop1: detected capacity change from 0 to 512
[  314.036223][T11223] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1677 (11223)
[  314.098296][T11223] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  314.118397][T11223] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  314.128226][T11223] BTRFS info (device loop5): using free-space-tree
[  314.135332][T11246] devtmpfs: Too few inodes for current use
[  314.167535][T11241] EXT4-fs (loop1): 1 truncate cleaned up
[  314.213411][T11241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.230888][   T77] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.445987][ T9015] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.917572][   T77] bridge_slave_1: left allmulticast mode
[  314.960365][ T5856] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  314.965584][   T77] bridge_slave_1: left promiscuous mode
[  314.984197][   T77] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.121995][   T77] bridge_slave_0: left allmulticast mode
[  315.130864][   T77] bridge_slave_0: left promiscuous mode
[  315.136683][   T77] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.165869][T11280] loop1: detected capacity change from 0 to 256
[  315.298900][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  315.316499][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  315.324922][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  315.337616][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  315.347496][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  315.463035][T11280] FAT-fs (loop1): Directory bread(block 64) failed
[  315.469612][T11280] FAT-fs (loop1): Directory bread(block 65) failed
[  315.575895][T11280] FAT-fs (loop1): Directory bread(block 66) failed
[  315.629165][T11280] FAT-fs (loop1): Directory bread(block 67) failed
[  315.677988][T11280] FAT-fs (loop1): Directory bread(block 68) failed
[  315.757039][T11280] FAT-fs (loop1): Directory bread(block 69) failed
[  315.813545][T11280] FAT-fs (loop1): Directory bread(block 70) failed
[  315.838131][T11280] FAT-fs (loop1): Directory bread(block 71) failed
[  315.850354][T11280] FAT-fs (loop1): Directory bread(block 72) failed
[  315.919629][T11280] FAT-fs (loop1): Directory bread(block 73) failed
[  315.952389][T11294] loop4: detected capacity change from 0 to 2048
[  316.039511][T11294] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  316.082113][T11294] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  316.436296][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  316.445583][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  316.745462][T11307] loop4: detected capacity change from 0 to 2048
[  316.864542][T11307] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  317.021739][T11312] loop1: detected capacity change from 0 to 4096
[  317.075553][   T77] team0: Port device bridge1 removed
[  317.179719][T11312] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  317.426075][ T9015] ntfs3(loop1): ino=9, ntfs_sync_fs failed, -22.
[  317.462379][ T5855] Bluetooth: hci1: command tx timeout
[  317.507759][T11320] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1701'.
[  317.868834][   T77] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  317.953508][   T77] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  318.017298][   T77] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  318.088339][   T77] bond0 (unregistering): Released all slaves
[  318.177711][   T77] bond1 (unregistering): Released all slaves
[  318.979787][T11357] loop9: detected capacity change from 0 to 1024
[  319.440907][ T2958] hfsplus: b-tree write err: -5, ino 4
[  319.541389][ T5855] Bluetooth: hci1: command tx timeout
[  319.597709][T11366] loop1: detected capacity change from 0 to 4096
[  319.844739][T11366] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  319.892556][T11366] ntfs3(loop1): Failed to load $Extend (-22).
[  319.904779][T11360] loop4: detected capacity change from 0 to 32768
[  319.914209][T11366] ntfs3(loop1): Failed to initialize $Extend.
[  319.935700][   T77] hsr_slave_0: left promiscuous mode
[  319.979171][   T77] hsr_slave_1: left promiscuous mode
[  320.045100][   T77] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  320.078971][   T77] batman_adv: batadv0: Removing interface: batadv_slave_0
[  320.132481][   T77] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  320.167509][   T77] batman_adv: batadv0: Removing interface: batadv_slave_1
[  320.297304][   T77] veth1_macvtap: left promiscuous mode
[  320.334151][   T77] veth0_macvtap: left promiscuous mode
[  320.339833][   T77] veth1_vlan: left promiscuous mode
[  320.387568][   T77] veth0_vlan: left promiscuous mode
[  321.275562][T11408] loop9: detected capacity change from 0 to 512
[  321.563237][T11412] loop4: detected capacity change from 0 to 256
[  321.583953][T11412] exfat: Deprecated parameter 'utf8'
[  321.589325][T11412] exfat: Deprecated parameter 'utf8'
[  321.621762][ T5855] Bluetooth: hci1: command tx timeout
[  321.627880][T11412] exfat: Deprecated parameter 'namecase'
[  321.698932][T11412] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  322.200460][T11432] netlink: 'syz.4.1732': attribute type 2 has an invalid length.
[  322.223592][T11432] netlink: 1184 bytes leftover after parsing attributes in process `syz.4.1732'.
[  322.390263][T11439] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1734'.
[  322.555403][   T77] team0 (unregistering): Port device team_slave_1 removed
[  322.641892][T11443] loop1: detected capacity change from 0 to 8
[  322.662493][T11443] SQUASHFS error: lzo decompression failed, data probably corrupt
[  322.680210][T11443] SQUASHFS error: Failed to read block 0x91: -5
[  322.687138][T11443] SQUASHFS error: Unable to read metadata cache entry [8f]
[  322.694738][T11443] SQUASHFS error: Unable to read inode 0x11f
[  322.708777][   T77] team0 (unregistering): Port device team_slave_0 removed
[  322.960710][ T5930] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  323.115113][ T5930] usb 2-1: Using ep0 maxpacket: 16
[  323.144004][ T5930] usb 2-1: config 28 has an invalid interface number: 98 but max is 0
[  323.159973][ T5930] usb 2-1: config 28 has no interface number 0
[  323.170547][ T5930] usb 2-1: config 28 interface 98 has no altsetting 0
[  323.196173][ T5930] usb 2-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=bb.eb
[  323.209369][ T5930] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.228238][ T5930] usb 2-1: Product: syz
[  323.232740][ T5930] usb 2-1: Manufacturer: syz
[  323.241995][ T5930] usb 2-1: SerialNumber: syz
[  323.335690][T11385] tipc: Started in network mode
[  323.345949][T11385] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  323.356615][T11385] tipc: Enabled bearer <udp:syz0>, priority 10
[  323.546996][ T5930] usb 2-1: USB disconnect, device number 4
[  323.702227][ T5855] Bluetooth: hci1: command tx timeout
[  323.744960][T11453] loop9: detected capacity change from 0 to 1024
[  323.800972][ T5944] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  323.801824][T11281] chnl_net:caif_netlink_parms(): no params data found
[  323.916484][ T5858] udevd[5858]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:28.98/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  323.964665][ T2958] hfsplus: b-tree write err: -5, ino 4
[  323.972407][ T5944] usb 5-1: Using ep0 maxpacket: 16
[  324.031122][ T5944] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.072317][ T5944] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  324.157625][ T5944] usb 5-1: config 0 interface 0 has no altsetting 0
[  324.185211][ T5944] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  324.280727][ T5944] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.367261][ T5944] usb 5-1: config 0 descriptor??
[  324.476593][    T9] tipc: Node number set to 1
[  324.776573][T11281] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.821008][T11281] bridge0: port 1(bridge_slave_0) entered disabled state
[  324.855811][T11281] bridge_slave_0: entered allmulticast mode
[  324.889818][T11281] bridge_slave_0: entered promiscuous mode
[  324.975362][T11281] bridge0: port 2(bridge_slave_1) entered blocking state
[  325.008592][T11281] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.061351][T11281] bridge_slave_1: entered allmulticast mode
[  325.069645][T11281] bridge_slave_1: entered promiscuous mode
[  325.084234][ T5923] usb 5-1: USB disconnect, device number 9
[  325.169389][T11491] loop9: detected capacity change from 0 to 128
[  325.253922][T11491] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  325.357858][T11491] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  325.380569][T11281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  325.416955][T11498] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1755'.
[  325.443647][T11281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  325.815727][T11501] can0: slcan on ptm0.
[  325.844507][T11281] team0: Port device team_slave_0 added
[  326.036407][T11281] team0: Port device team_slave_1 added
[  326.132328][T11500] can0 (unregistered): slcan off ptm0.
[  326.231576][ T5986] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  326.320713][T11281] batman_adv: batadv0: Adding interface: batadv_slave_0
[  326.327697][T11281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.353629][    C0] vkms_vblank_simulate: vblank timer overrun
[  326.447466][T11281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  326.465718][ T5986] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.505993][ T5986] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.513101][T11281] batman_adv: batadv0: Adding interface: batadv_slave_1
[  326.551954][ T5986] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  326.561087][T11281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.590610][    C0] vkms_vblank_simulate: vblank timer overrun
[  326.617129][ T5989] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  326.619866][T11281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  326.635584][ T5986] usb 6-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00
[  326.681487][ T5986] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.749730][ T5986] usb 6-1: config 0 descriptor??
[  326.779641][ T5989] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.826732][ T5989] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  326.855328][ T5989] usb 10-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  326.868189][ T5989] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.893650][ T5989] usb 10-1: config 0 descriptor??
[  327.096018][T11281] hsr_slave_0: entered promiscuous mode
[  327.126391][T11281] hsr_slave_1: entered promiscuous mode
[  327.141654][T11281] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  327.165404][T11281] Cannot create hsr debugfs directory
[  327.251407][ T5986] dragonrise 0003:0079:0011.001D: invalid report_count 1692109294
[  327.290294][ T5986] dragonrise 0003:0079:0011.001D: item 0 4 1 9 parsing failed
[  327.300892][ T5986] dragonrise 0003:0079:0011.001D: parse failed
[  327.307154][ T5986] dragonrise 0003:0079:0011.001D: probe with driver dragonrise failed with error -22
[  327.339527][ T5989] cypress 0003:04B4:DE61.001E: unknown main item tag 0x0
[  327.369450][ T5989] cypress 0003:04B4:DE61.001E: unknown main item tag 0x0
[  327.412220][ T5989] cypress 0003:04B4:DE61.001E: unknown main item tag 0x0
[  327.485631][ T5850] usb 6-1: USB disconnect, device number 15
[  327.497037][ T5989] cypress 0003:04B4:DE61.001E: hidraw0: USB HID v0.00 Device [HID 04b4:de61] on usb-dummy_hcd.9-1/input0
[  327.589883][ T5989] usb 10-1: USB disconnect, device number 3
[  327.595075][T11516] loop4: detected capacity change from 0 to 32768
[  327.749083][T11516] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  327.860027][T11554] fido_id[11554]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  328.041572][T11516] XFS (loop4): Ending clean mount
[  328.093935][T11516] XFS (loop4): Quotacheck needed: Please wait.
[  328.271304][T11578] loop1: detected capacity change from 0 to 256
[  328.279530][T11516] XFS (loop4): Quotacheck: Done.
[  328.453227][ T5843] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  328.496048][T11578] FAT-fs (loop1): Directory bread(block 64) failed
[  328.517678][T11578] FAT-fs (loop1): Directory bread(block 65) failed
[  328.552264][T11578] FAT-fs (loop1): Directory bread(block 66) failed
[  328.559505][T11578] FAT-fs (loop1): Directory bread(block 67) failed
[  328.586568][T11578] FAT-fs (loop1): Directory bread(block 68) failed
[  328.645842][T11578] FAT-fs (loop1): Directory bread(block 69) failed
[  328.686692][T11578] FAT-fs (loop1): Directory bread(block 70) failed
[  328.700962][T11585] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1777'.
[  328.720668][T11578] FAT-fs (loop1): Directory bread(block 71) failed
[  328.751007][T11578] FAT-fs (loop1): Directory bread(block 72) failed
[  328.786795][T11578] FAT-fs (loop1): Directory bread(block 73) failed
[  329.071009][T11536] loop0: detected capacity change from 0 to 40427
[  329.146555][T11536] F2FS-fs (loop0): build fault injection type: 0x7
[  329.178951][T11536] F2FS-fs (loop0): invalid crc value
[  329.649507][T11536] F2FS-fs (loop0): Start checkpoint disabled!
[  329.676335][T11536] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  329.742541][   T30] audit: type=1800 audit(1752267170.027:1572): pid=11536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1769" name="file1" dev="loop0" ino=10 res=0 errno=0
[  329.906544][   T36] kworker/u8:2: attempt to access beyond end of device
[  329.906544][   T36] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  329.956194][   T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  329.956230][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  329.956247][   T36] Workqueue: writeback wb_workfn (flush-7:0)
[  329.956296][   T36] Call Trace:
[  329.956306][   T36]  <TASK>
[  329.956316][   T36]  dump_stack_lvl+0x189/0x250
[  329.956357][   T36]  ? __pfx_dump_stack_lvl+0x10/0x10
[  329.956385][   T36]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  329.956426][   T36]  ? __pfx_queue_work_on+0x10/0x10
[  329.956461][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.956490][   T36]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  329.956529][   T36]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  329.956570][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.956598][   T36]  ? f2fs_hw_is_readonly+0x39b/0x470
[  329.956644][   T36]  f2fs_handle_critical_error+0x37c/0x540
[  329.956692][   T36]  f2fs_write_end_io+0x495/0x810
[  329.956720][   T36]  ? blkg_put+0x22/0x240
[  329.956776][   T36]  __submit_merged_bio+0x27a/0x6a0
[  329.956824][   T36]  __submit_merged_write_cond+0x255/0x530
[  329.956872][   T36]  f2fs_write_data_pages+0x261d/0x3000
[  329.956965][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  329.957027][   T36]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  329.957109][   T36]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  329.957147][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957198][   T36]  ? trace_f2fs_writepages+0x7f/0x200
[  329.957239][   T36]  ? f2fs_write_node_pages+0x478/0x6e0
[  329.957296][   T36]  ? sched_clock+0x3f/0x60
[  329.957334][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957364][   T36]  ? sched_clock_cpu+0x74/0x430
[  329.957392][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957429][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  329.957472][   T36]  do_writepages+0x32e/0x550
[  329.957509][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957538][   T36]  ? reacquire_held_locks+0x127/0x1d0
[  329.957570][   T36]  ? writeback_sb_inodes+0x372/0x1000
[  329.957614][   T36]  __writeback_single_inode+0x145/0xff0
[  329.957642][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957671][   T36]  ? do_raw_spin_unlock+0x122/0x240
[  329.957721][   T36]  writeback_sb_inodes+0x6b5/0x1000
[  329.957749][   T36]  ? lockdep_hardirqs_on+0x9c/0x150
[  329.957799][   T36]  ? rcu_is_watching+0x15/0xb0
[  329.957835][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.957884][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  329.957975][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958004][   T36]  ? rcu_is_watching+0x15/0xb0
[  329.958035][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958078][   T36]  wb_writeback+0x43b/0xaf0
[  329.958119][   T36]  ? queue_io+0x3a1/0x590
[  329.958153][   T36]  ? __pfx_wb_writeback+0x10/0x10
[  329.958195][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  329.958242][   T36]  wb_workfn+0x409/0xef0
[  329.958305][   T36]  ? __pfx_wb_workfn+0x10/0x10
[  329.958353][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958382][   T36]  ? __lock_acquire+0xab9/0xd20
[  329.958425][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958459][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958494][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  329.958530][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  329.958560][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[  329.958593][   T36]  process_scheduled_works+0xae1/0x17b0
[  329.958670][   T36]  ? __pfx_process_scheduled_works+0x10/0x10
[  329.958716][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.958758][   T36]  worker_thread+0x8a0/0xda0
[  329.958795][   T36]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  329.958847][   T36]  ? __kthread_parkme+0x7b/0x200
[  329.958896][   T36]  kthread+0x711/0x8a0
[  329.958939][   T36]  ? __pfx_worker_thread+0x10/0x10
[  329.958970][   T36]  ? __pfx_kthread+0x10/0x10
[  329.959004][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.959039][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[  329.959076][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.959105][   T36]  ? lockdep_hardirqs_on+0x9c/0x150
[  329.959142][   T36]  ? __pfx_kthread+0x10/0x10
[  329.959183][   T36]  ret_from_fork+0x3fc/0x770
[  329.959216][   T36]  ? __pfx_ret_from_fork+0x10/0x10
[  329.959254][   T36]  ? __switch_to_asm+0x39/0x70
[  329.959288][   T36]  ? __switch_to_asm+0x33/0x70
[  329.959321][   T36]  ? __pfx_kthread+0x10/0x10
[  329.959361][   T36]  ret_from_fork_asm+0x1a/0x30
[  329.959422][   T36]  </TASK>
[  330.394323][   T36] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  331.482279][T11612] loop9: detected capacity change from 0 to 32768
[  331.631541][T11612] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  331.640171][T11605] loop5: detected capacity change from 0 to 32768
[  331.834435][T11605] XFS (loop5): DAX unsupported by block device. Turning off DAX.
[  331.879742][T11623] loop1: detected capacity change from 0 to 32768
[  332.001958][T11605] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  332.029089][T11612] XFS (loop9): Ending clean mount
[  332.070518][T11623] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  332.340108][T11605] XFS (loop5): Ending clean mount
[  332.404398][T11659] loop0: detected capacity change from 0 to 1024
[  332.418989][T11605] XFS (loop5): Quotacheck needed: Please wait.
[  332.428423][ T9003] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  332.447075][T11659] EXT4-fs: Ignoring removed orlov option
[  332.508495][ T9015] ocfs2: Unmounting device (7,1) on (node local)
[  332.515856][T11659] EXT4-fs: Ignoring removed nomblk_io_submit option
[  332.621098][T11605] XFS (loop5): Quotacheck: Done.
[  332.644590][T11659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  332.924079][T11671] program syz.1.1795 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  332.995343][T11281] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  333.029208][ T5856] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  333.062377][ T5846] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.129018][T11281] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  333.227747][T11281] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  333.344420][T11281] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  333.917087][T11690] loop9: detected capacity change from 0 to 4096
[  334.008478][T11690] NILFS (loop9): invalid segment: Checksum error in segment payload
[  334.019802][T11281] 8021q: adding VLAN 0 to HW filter on device bond0
[  334.056060][T11690] NILFS (loop9): trying rollback from an earlier position
[  334.078073][T11699] loop1: detected capacity change from 0 to 256
[  334.172674][T11281] 8021q: adding VLAN 0 to HW filter on device team0
[  334.239382][T11690] NILFS (loop9): recovery complete
[  334.252026][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.259203][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  334.269597][T11699] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  334.314109][T11708] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  334.438820][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.446027][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  335.717116][T11751] loop5: detected capacity change from 0 to 2048
[  335.812677][T11751] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  335.890881][T11281] 8021q: adding VLAN 0 to HW filter on device batadv0
[  335.964906][T11757] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  336.130032][T11281] veth0_vlan: entered promiscuous mode
[  336.240431][T11281] veth1_vlan: entered promiscuous mode
[  336.459333][T11281] veth0_macvtap: entered promiscuous mode
[  336.526157][T11281] veth1_macvtap: entered promiscuous mode
[  336.645356][T11281] batman_adv: batadv0: Interface activated: batadv_slave_0
[  336.698996][T11281] batman_adv: batadv0: Interface activated: batadv_slave_1
[  336.762287][T11281] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  336.821936][T11281] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  336.865218][T11281] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  336.914567][T11281] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  336.961948][T11726] loop4: detected capacity change from 0 to 32768
[  337.047770][T11726] XFS (loop4): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  337.283733][T11726] XFS (loop4): Ending clean mount
[  337.341613][ T5986] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  337.395194][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.431214][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.523313][ T5986] usb 10-1: Using ep0 maxpacket: 8
[  337.532017][ T5843] XFS (loop4): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  337.595852][ T1022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.606129][ T5986] usb 10-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  337.635286][ T1022] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.663954][ T5986] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.709450][ T5986] usb 10-1: Product: syz
[  337.730849][ T5986] usb 10-1: Manufacturer: syz
[  337.754241][ T5986] usb 10-1: SerialNumber: syz
[  337.805199][ T5986] usb 10-1: config 0 descriptor??
[  338.078246][ T5986] usb 10-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  338.482009][ T5986] usb write operation failed. (-71)
[  338.502009][ T5986] usb 10-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  338.527978][T11784] loop0: detected capacity change from 0 to 40427
[  338.564119][ T5986] dvbdev: DVB: registering new adapter (Terratec H7)
[  338.590771][T11816] loop1: detected capacity change from 0 to 2048
[  338.611408][ T5986] usb 10-1: media controller created
[  338.641385][T11784] F2FS-fs (loop0): invalid crc value
[  338.661530][ T5986] usb read operation failed. (-71)
[  338.677308][ T5986] usb write operation failed. (-71)
[  338.706855][T11816] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  338.719442][ T5986] dvb_usb_az6007 10-1:0.0: probe with driver dvb_usb_az6007 failed with error -5
[  338.773292][ T5986] usb 10-1: USB disconnect, device number 4
[  339.307983][T11784] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  339.935258][T11856] loop4: detected capacity change from 0 to 64
[  340.837523][T11873] loop9: detected capacity change from 0 to 4096
[  340.891293][T11873] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512).
[  341.176210][T11873] ntfs3(loop9): ino=1e, "file1" fallocate(0x10) is not supported
[  341.187724][T11832] loop3: detected capacity change from 0 to 40427
[  341.251668][T11832] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  341.258671][T11832] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  341.325607][T11832] F2FS-fs (loop3): build fault injection rate: 17008
[  341.421356][T11832] F2FS-fs (loop3): invalid crc value
[  342.009293][T11832] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  342.081132][T11832] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  342.275170][T11917] pim6reg9: entered allmulticast mode
[  343.109168][T11940] loop1: detected capacity change from 0 to 256
[  343.311899][T11892] loop0: detected capacity change from 0 to 32768
[  343.366044][T11940] FAT-fs (loop1): Directory bread(block 64) failed
[  343.397412][T11940] FAT-fs (loop1): Directory bread(block 65) failed
[  343.453711][T11940] FAT-fs (loop1): Directory bread(block 66) failed
[  343.504230][T11892] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  343.516961][T11944] loop4: detected capacity change from 0 to 4096
[  343.521208][T11940] FAT-fs (loop1): Directory bread(block 67) failed
[  343.529989][T11944] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  343.608490][T11940] FAT-fs (loop1): Directory bread(block 68) failed
[  343.647252][T11940] FAT-fs (loop1): Directory bread(block 69) failed
[  343.781581][T11940] FAT-fs (loop1): Directory bread(block 70) failed
[  343.821313][T11940] FAT-fs (loop1): Directory bread(block 71) failed
[  343.828510][T11940] FAT-fs (loop1): Directory bread(block 72) failed
[  343.844900][T11961] loop9: detected capacity change from 0 to 1024
[  343.871632][T11940] FAT-fs (loop1): Directory bread(block 73) failed
[  343.888504][T11961] EXT4-fs: inline encryption not supported
[  343.906288][T11892] XFS (loop0): Ending clean mount
[  343.948041][T11961] EXT4-fs: Ignoring removed bh option
[  344.068677][T11892] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  344.101840][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  344.112437][T11961] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.277645][ T9003] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.802838][T11978] loop3: detected capacity change from 0 to 2048
[  344.843442][T11956] loop5: detected capacity change from 0 to 32768
[  344.890857][T11956] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1891 (11956)
[  344.902051][T11982] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  345.041319][T11956] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  345.120431][T11956] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[  345.441387][T11956] BTRFS info (device loop5): rebuilding free space tree
[  345.600181][T11956] BTRFS info (device loop5): disabling free space tree
[  345.671743][T11956] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  345.741874][T11956] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  346.067712][T12020] loop0: detected capacity change from 0 to 4096
[  346.202096][ T5856] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  347.141114][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  347.241589][T12045] loop9: detected capacity change from 0 to 64
[  347.312479][T12047] bridge0: entered promiscuous mode
[  347.318321][T12047] macsec1: entered promiscuous mode
[  347.392815][T12045] hfs: bad catalog entry type 0
[  347.402351][T12047] macsec1: entered allmulticast mode
[  347.438032][T12047] bridge0: entered allmulticast mode
[  347.473524][T12047] bridge0: port 3(macsec1) entered blocking state
[  347.498299][T12047] bridge0: port 3(macsec1) entered disabled state
[  347.542938][T12047] bridge0: left allmulticast mode
[  347.553349][T12047] bridge0: left promiscuous mode
[  347.555321][T12017] loop1: detected capacity change from 0 to 32768
[  347.981950][T12064] loop5: detected capacity change from 0 to 2048
[  348.026993][T12064] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  348.253911][T12074] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  348.439580][T12078] loop1: detected capacity change from 0 to 1024
[  348.454213][ T5989] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  348.616672][T12078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.634390][ T5989] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  348.651275][ T5989] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.695951][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1928'.
[  348.714703][T12090] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1930'.
[  348.763537][ T5989] usb 4-1: config 0 descriptor??
[  348.772336][ T5989] cp210x 4-1:0.0: cp210x converter detected
[  348.804326][T12088] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1928'.
[  348.886188][ T9015] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.898742][T12088] netlink: 'syz.5.1928': attribute type 14 has an invalid length.
[  349.225846][ T5855] Bluetooth: hci4: command 0x0406 tx timeout
[  349.247357][ T5989] usb 4-1: cp210x converter now attached to ttyUSB0
[  349.425310][ T5944] usb 4-1: USB disconnect, device number 3
[  349.502127][ T5944] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  349.546286][T12106] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1935'.
[  349.570997][ T5944] cp210x 4-1:0.0: device disconnected
[  350.042703][T12075] loop4: detected capacity change from 0 to 32768
[  350.158188][T12132] netlink: 'syz.5.1944': attribute type 3 has an invalid length.
[  350.173656][T12075] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  350.430940][T12075] XFS (loop4): Ending clean mount
[  350.631353][ T5843] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  350.781242][T12150] loop5: detected capacity change from 0 to 1024
[  350.899134][T12156] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1953'.
[  350.932975][T12150] syz.5.1948: attempt to access beyond end of device
[  350.932975][T12150] loop5: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  350.981892][   T31] INFO: task syz-executor:7926 blocked for more than 143 seconds.
[  350.991267][   T31]       Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0
[  351.019654][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  351.040393][T12150] syz.5.1948: attempt to access beyond end of device
[  351.040393][T12150] loop5: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  351.071708][   T24] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  351.085230][   T31] task:syz-executor    state:D stack:21960 pid:7926  tgid:7926  ppid:1      task_flags:0x400140 flags:0x00004004
[  351.139020][   T31] Call Trace:
[  351.160332][   T31]  <TASK>
[  351.177780][   T31]  __schedule+0x16f5/0x4d00
[  351.207355][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.236887][   T31]  ? schedule+0x165/0x360
[  351.248259][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.261460][   T24] usb 10-1: Using ep0 maxpacket: 16
[  351.276918][   T31]  ? __pfx___schedule+0x10/0x10
[  351.281251][   T24] usb 10-1: config 0 has an invalid interface number: 8 but max is 0
[  351.295490][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.314112][   T31]  ? schedule+0x91/0x360
[  351.327919][   T31]  schedule+0x165/0x360
[  351.330616][   T24] usb 10-1: config 0 has no interface number 0
[  351.337026][   T31]  io_schedule+0x80/0xd0
[  351.338332][   T24] usb 10-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  351.346889][   T31]  folio_wait_bit_common+0x6b0/0xb90
[  351.390157][   T24] usb 10-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  351.410375][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  351.423687][   T24] usb 10-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  351.435952][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  351.440645][   T24] usb 10-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  351.457507][   T31]  ? folios_put_refs+0x559/0x640
[  351.459911][   T24] usb 10-1: Product: syz
[  351.479834][   T31]  ? __pfx_find_lock_entries+0x10/0x10
[  351.480299][   T24] usb 10-1: SerialNumber: syz
[  351.502176][   T24] usb 10-1: config 0 descriptor??
[  351.505848][   T31]  __filemap_get_folio+0x139/0xaf0
[  351.526910][   T24] input: CM109 USB driver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.8/input/input9
[  351.537038][   T31]  ? mlock_drain_local+0x28e/0x490
[  351.537096][   T31]  truncate_inode_pages_range+0x3ed/0xda0
[  351.537127][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.537158][   T31]  ? kasan_save_stack+0x4d/0x60
[  351.537186][   T31]  ? kasan_save_stack+0x3e/0x60
[  351.537219][   T31]  ? deactivate_locked_super+0xbc/0x130
[  351.537244][   T31]  ? cleanup_mnt+0x425/0x4c0
[  351.537266][   T31]  ? task_work_run+0x1d4/0x260
[  351.537306][   T31]  ? exit_to_user_mode_loop+0xec/0x110
[  351.537333][   T31]  ? do_syscall_64+0x2bd/0x3b0
[  351.537363][   T31]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  351.537428][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.537458][   T31]  ? __lock_acquire+0xab9/0xd20
[  351.537582][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  351.537622][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.537678][   T31]  evict+0x517/0x9c0
[  351.537716][   T31]  ? __pfx_evict+0x10/0x10
[  351.682998][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.688756][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.694848][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  351.700203][   T31]  evict_inodes+0x636/0x6c0
[  351.706213][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.712553][   T31]  ? __pfx_evict_inodes+0x10/0x10
[  351.717650][   T31]  generic_shutdown_super+0x9a/0x2c0
[  351.723344][   T31]  kill_block_super+0x44/0x90
[  351.730146][   T31]  deactivate_locked_super+0xbc/0x130
[  351.736051][   T31]  cleanup_mnt+0x425/0x4c0
[  351.740489][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.747740][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.753250][   T31]  task_work_run+0x1d4/0x260
[  351.757886][   T31]  ? __pfx_task_work_run+0x10/0x10
[  351.763384][   T31]  ? __x64_sys_umount+0x122/0x160
[  351.768463][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  351.775504][    C1] cm109 10-1:0.8: cm109_urb_irq_callback: urb status -71
[  351.782091][   T31]  exit_to_user_mode_loop+0xec/0x110
[  351.790774][   T31]  do_syscall_64+0x2bd/0x3b0
[  351.810888][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  351.816322][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.826199][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  351.839935][   T31]  ? exc_page_fault+0x9f/0xf0
[  351.850061][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.859624][   T31] RIP: 0033:0x7f3be758fc57
[  351.874352][   T31] RSP: 002b:00007ffe1170ab68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  351.885540][   T31] RAX: 0000000000000000 RBX: 00007f3be7610925 RCX: 00007f3be758fc57
[  351.897626][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe1170ac20
[  351.908426][   T31] RBP: 00007ffe1170ac20 R08: 0000000000000000 R09: 0000000000000000
[  351.925425][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe1170bcb0
[  351.940336][   T31] R13: 00007f3be7610925 R14: 0000000000032675 R15: 00007ffe1170bcf0
[  351.960395][   T31]  </TASK>
[  351.965073][   T31] 
[  351.965073][   T31] Showing all locks held in the system:
[  351.978273][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  351.982647][   T31] 1 lock held by pool_workqueue_/3:
[  351.986141][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  351.997676][   T31]  #0: ffffffff8e144c78 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x3b9/0x730
[  351.998406][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.009096][   T31] 1 lock held by khungtaskd/31:
[  352.016591][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.029706][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.038556][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.047262][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.054676][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.062047][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.069312][    C1] cm109 10-1:0.8: cm109_urb_ctl_callback: urb status -71
[  352.070410][   T31]  #0: 
[  352.078432][   T24] usb 10-1: USB disconnect, device number 5
[  352.081876][    C1] cm109 10-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  352.157476][   T31] ffffffff8e13f160 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  352.190268][   T31] 2 locks held by udevd/5212:
[  352.210395][   T31] 2 locks held by getty/5603:
[  352.225332][   T31]  #0: ffff888034cba0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  352.286114][   T31]  #1: ffffc9000333b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  352.322465][   T31] 4 locks held by udevd/5858:
[  352.337374][   T31] 4 locks held by udevd/5862:
[  352.348991][   T31]  #0: ffff888046ebd0a0 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xb7/0xe10
[  352.362691][   T31]  #1: ffff8880497c2c88 (&of->mutex#2){+.+.}-{4:4}, at: kernfs_seq_start+0x55/0x3c0
[  352.372633][   T31]  #2: ffff88806716f0f8 (kn->active#25){.+.+}-{0:0}, at: kernfs_seq_start+0x75/0x3c0
[  352.383040][   T31]  #3: ffff888024ffb198 (&dev->mutex){....}-{4:4}, at: product_show+0x26/0xa0
[  352.393683][   T31] 1 lock held by syz-executor/7926:
[  352.398998][   T31]  #0: ffff888030bf20e0 (&type->s_umount_key#97){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0
[  352.409851][   T31] 1 lock held by dhcpcd-run-hook/12174:
[  352.416244][   T31] 
[  352.418705][   T31] =============================================
[  352.418705][   T31] 
[  352.424852][   T24] cm109 10-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  352.466561][   T31] NMI backtrace for cpu 0
[  352.466588][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  352.466618][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.466633][   T31] Call Trace:
[  352.466642][   T31]  <TASK>
[  352.466653][   T31]  dump_stack_lvl+0x189/0x250
[  352.466686][   T31]  ? __wake_up_klogd+0xd9/0x110
[  352.466723][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.466755][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.466785][   T31]  ? __pfx__printk+0x10/0x10
[  352.466835][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  352.466872][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  352.466903][   T31]  ? _printk+0xcf/0x120
[  352.466942][   T31]  ? __pfx__printk+0x10/0x10
[  352.466980][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  352.467008][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  352.467046][   T31]  watchdog+0xfee/0x1030
[  352.467072][   T31]  ? watchdog+0x1de/0x1030
[  352.467105][   T31]  kthread+0x711/0x8a0
[  352.467145][   T31]  ? __pfx_watchdog+0x10/0x10
[  352.467167][   T31]  ? __pfx_kthread+0x10/0x10
[  352.467199][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.467232][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  352.467267][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.467295][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.467332][   T31]  ? __pfx_kthread+0x10/0x10
[  352.467369][   T31]  ret_from_fork+0x3fc/0x770
[  352.467399][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  352.467432][   T31]  ? __switch_to_asm+0x39/0x70
[  352.467464][   T31]  ? __switch_to_asm+0x33/0x70
[  352.467506][   T31]  ? __pfx_kthread+0x10/0x10
[  352.467545][   T31]  ret_from_fork_asm+0x1a/0x30
[  352.467596][   T31]  </TASK>
[  352.467624][   T31] Sending NMI from CPU 0 to CPUs 1:
[  352.648175][    C1] NMI backtrace for cpu 1
[  352.648194][    C1] CPU: 1 UID: 0 PID: 12177 Comm: dhcpcd-run-hook Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  352.648222][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.648236][    C1] RIP: 0010:check_preemption_disabled+0x45/0x120
[  352.648266][    C1] Code: 0e 31 07 65 8b 0d 0b 0e 31 07 f7 c1 ff ff ff 7f 74 23 65 48 8b 0d eb 0d 31 07 48 3b 4c 24 08 0f 85 cc 00 00 00 48 83 c4 10 5b <41> 5e 41 5f 5d e9 bc fe a0 f5 cc 48 c7 04 24 00 00 00 00 9c 8f 04
[  352.648285][    C1] RSP: 0018:ffffc90000a08398 EFLAGS: 00000286
[  352.648304][    C1] RAX: 0000000000000001 RBX: ffffffff903d4f01 RCX: 07fcc1d520577f00
[  352.648320][    C1] RDX: ffffc90000a08401 RSI: ffffffff8be29da0 RDI: ffffffff8be29d60
[  352.648337][    C1] RBP: dffffc0000000000 R08: ffffc900047afc18 R09: ffffc90000a084f8
[  352.648354][    C1] R10: dffffc0000000000 R11: fffff520001410a1 R12: ffffc900047afc28
[  352.648371][    C1] R13: ffffc900047a8000 R14: ffffc90000a084a8 R15: ffffffff8172aae5
[  352.648390][    C1] FS:  0000000000000000(0000) GS:ffff888125d1b000(0000) knlGS:0000000000000000
[  352.648409][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  352.648424][    C1] CR2: 00007ffeb8ee00a8 CR3: 00000000790de000 CR4: 0000000000350ef0
[  352.648441][    C1] Call Trace:
[  352.648449][    C1]  <IRQ>
[  352.648458][    C1]  ? unwind_next_frame+0xa5/0x2390
[  352.648485][    C1]  rcu_is_watching+0x15/0xb0
[  352.648513][    C1]  ? unwind_next_frame+0xa5/0x2390
[  352.648538][    C1]  unwind_next_frame+0x1965/0x2390
[  352.648569][    C1]  ? unwind_next_frame+0xa5/0x2390
[  352.648595][    C1]  ? exit_mmap+0x248/0xb50
[  352.648627][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  352.648661][    C1]  arch_stack_walk+0x11c/0x150
[  352.648693][    C1]  ? __mmput+0x118/0x420
[  352.648721][    C1]  stack_trace_save+0x9c/0xe0
[  352.648755][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  352.648787][    C1]  ? stack_trace_save+0x9c/0xe0
[  352.648819][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.648845][    C1]  ? stack_depot_save_flags+0x40/0x900
[  352.648882][    C1]  kasan_save_track+0x3e/0x80
[  352.648906][    C1]  ? kasan_save_track+0x3e/0x80
[  352.648928][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  352.648952][    C1]  ? kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[  352.648979][    C1]  ? kmalloc_reserve+0xbd/0x290
[  352.649004][    C1]  ? __alloc_skb+0x142/0x2d0
[  352.649028][    C1]  ? __netdev_alloc_skb+0x108/0x970
[  352.649054][    C1]  ? __ieee80211_beacon_get+0xeeb/0x17b0
[  352.649084][    C1]  ? ieee80211_beacon_get_tim+0xb4/0x2b0
[  352.649114][    C1]  ? mac80211_hwsim_beacon_tx+0x3ce/0x860
[  352.649137][    C1]  ? __iterate_interfaces+0x2ab/0x590
[  352.649162][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  352.649192][    C1]  ? mac80211_hwsim_beacon+0xbb/0x1c0
[  352.649221][    C1]  ? __hrtimer_run_queues+0x52c/0xc60
[  352.649246][    C1]  ? hrtimer_run_softirq+0x187/0x2b0
[  352.649272][    C1]  ? handle_softirqs+0x286/0x870
[  352.649296][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  352.649320][    C1]  ? irq_exit_rcu+0x9/0x30
[  352.649343][    C1]  ? sysvec_apic_timer_interrupt+0xa6/0xc0
[  352.649376][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  352.649398][    C1]  ? unmap_page_range+0x180b/0x41c0
[  352.649431][    C1]  ? unmap_vmas+0x399/0x580
[  352.649462][    C1]  ? exit_mmap+0x248/0xb50
[  352.649512][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.649540][    C1]  __kasan_slab_alloc+0x6c/0x80
[  352.649567][    C1]  kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[  352.649595][    C1]  ? kmalloc_reserve+0xbd/0x290
[  352.649624][    C1]  kmalloc_reserve+0xbd/0x290
[  352.649653][    C1]  __alloc_skb+0x142/0x2d0
[  352.649682][    C1]  __netdev_alloc_skb+0x108/0x970
[  352.649708][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.649736][    C1]  ? __pfx___netdev_alloc_skb+0x10/0x10
[  352.649774][    C1]  __ieee80211_beacon_get+0xeeb/0x17b0
[  352.649806][    C1]  ? __ieee80211_beacon_get+0x36/0x17b0
[  352.649836][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.649869][    C1]  ieee80211_beacon_get_tim+0xb4/0x2b0
[  352.649904][    C1]  ? __pfx_ieee80211_beacon_get_tim+0x10/0x10
[  352.649938][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.649970][    C1]  mac80211_hwsim_beacon_tx+0x3ce/0x860
[  352.649993][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.650023][    C1]  __iterate_interfaces+0x2ab/0x590
[  352.650051][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  352.650073][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  352.650104][    C1]  ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10
[  352.650126][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  352.650160][    C1]  mac80211_hwsim_beacon+0xbb/0x1c0
[  352.650191][    C1]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  352.650221][    C1]  __hrtimer_run_queues+0x52c/0xc60
[  352.650248][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.650286][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  352.650312][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.650338][    C1]  ? __pfx_tasklet_action_common+0x10/0x10
[  352.650373][    C1]  hrtimer_run_softirq+0x187/0x2b0
[  352.650403][    C1]  handle_softirqs+0x286/0x870
[  352.650431][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  352.650460][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  352.650489][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.650515][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[  352.650552][    C1]  __irq_exit_rcu+0xca/0x1f0
[  352.650581][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  352.650613][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.650643][    C1]  irq_exit_rcu+0x9/0x30
[  352.650668][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  352.650704][    C1]  </IRQ>
[  352.650711][    C1]  <TASK>
[  352.650720][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  352.650745][    C1] RIP: 0010:unmap_page_range+0x180b/0x41c0
[  352.650788][    C1] Code: bc 24 08 01 00 00 e8 74 b4 19 00 48 8b 94 24 08 01 00 00 48 8b 1a be 00 80 01 00 48 21 de 31 ff e8 8a 36 b6 ff b8 00 80 01 00 <48> 21 c3 0f 84 8e 00 00 00 e8 97 31 b6 ff e9 52 04 00 00 48 8b bc
[  352.650807][    C1] RSP: 0018:ffffc900047af5e0 EFLAGS: 00000293
[  352.650827][    C1] RAX: 0000000000018000 RBX: 0000000008000071 RCX: ffff8880641cbc00
[  352.650843][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  352.650857][    C1] RBP: ffffc900047af890 R08: ffff88801ad1516f R09: 1ffff110035a2a2d
[  352.650874][    C1] R10: dffffc0000000000 R11: ffffed10035a2a2e R12: ffffea00002dda98
[  352.650892][    C1] R13: 1ffffd400005bb53 R14: ffff8880290bdd00 R15: 800000000b76a025
[  352.650961][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  352.651002][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651031][    C1]  ? unmap_vmas+0x144/0x580
[  352.651068][    C1]  unmap_vmas+0x399/0x580
[  352.651102][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651137][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  352.651191][    C1]  exit_mmap+0x248/0xb50
[  352.651221][    C1]  ? uprobe_clear_state+0x20f/0x290
[  352.651262][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  352.651290][    C1]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  352.651324][    C1]  ? __pfx_exit_aio+0x10/0x10
[  352.651356][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651387][    C1]  ? uprobe_clear_state+0x274/0x290
[  352.651422][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651455][    C1]  __mmput+0x118/0x420
[  352.651484][    C1]  exit_mm+0x1da/0x2c0
[  352.651519][    C1]  ? __pfx_exit_mm+0x10/0x10
[  352.651551][    C1]  ? hrtimer_try_to_cancel+0x3d9/0x420
[  352.651581][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651607][    C1]  ? rcu_is_watching+0x15/0xb0
[  352.651640][    C1]  do_exit+0x648/0x22e0
[  352.651674][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651705][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  352.651743][    C1]  ? __pfx_do_exit+0x10/0x10
[  352.651787][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651817][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  352.651851][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.651878][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.651915][    C1]  do_group_exit+0x21c/0x2d0
[  352.651952][    C1]  __x64_sys_exit_group+0x3f/0x40
[  352.651986][    C1]  x64_sys_call+0x21ba/0x21c0
[  352.652017][    C1]  do_syscall_64+0xfa/0x3b0
[  352.652038][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.652073][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.652094][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.652119][    C1]  ? exc_page_fault+0x9f/0xf0
[  352.652155][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.652176][    C1] RIP: 0033:0x7f15f26f96c5
[  352.652193][    C1] Code: Unable to access opcode bytes at 0x7f15f26f969b.
[  352.652204][    C1] RSP: 002b:00007ffeb8edffb8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[  352.652225][    C1] RAX: ffffffffffffffda RBX: 00007ffeb8ee0204 RCX: 00007f15f26f96c5
[  352.652241][    C1] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000000
[  352.652256][    C1] RBP: 0000000000000003 R08: 00007ffeb8ee00b0 R09: 0000000000000002
[  352.652270][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  352.652283][    C1] R13: 00007ffeb8ee02f0 R14: 00007f15f2909000 R15: 0000563744e74d98
[  352.652312][    C1]  </TASK>
[  352.708148][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  352.708172][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[  352.708202][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  352.708218][   T31] Call Trace:
[  352.708229][   T31]  <TASK>
[  352.708240][   T31]  dump_stack_lvl+0x99/0x250
[  352.708277][   T31]  ? __asan_memcpy+0x40/0x70
[  352.708304][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  352.708336][   T31]  ? __pfx__printk+0x10/0x10
[  352.708381][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708416][   T31]  panic+0x2db/0x790
[  352.708445][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708481][   T31]  ? __pfx_panic+0x10/0x10
[  352.708513][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708544][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[  352.708580][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708609][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  352.708636][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  352.708674][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708709][   T31]  watchdog+0x102d/0x1030
[  352.708736][   T31]  ? watchdog+0x1de/0x1030
[  352.708769][   T31]  kthread+0x711/0x8a0
[  352.708811][   T31]  ? __pfx_watchdog+0x10/0x10
[  352.708833][   T31]  ? __pfx_kthread+0x10/0x10
[  352.708867][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708901][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  352.708937][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  352.708966][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  352.709003][   T31]  ? __pfx_kthread+0x10/0x10
[  352.709041][   T31]  ret_from_fork+0x3fc/0x770
[  352.709072][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  352.709107][   T31]  ? __switch_to_asm+0x39/0x70
[  352.709142][   T31]  ? __switch_to_asm+0x33/0x70
[  352.709175][   T31]  ? __pfx_kthread+0x10/0x10
[  352.709213][   T31]  ret_from_fork_asm+0x1a/0x30
[  352.709266][   T31]  </TASK>
[  353.706528][   T31] Kernel Offset: disabled
[  353.710846][   T31] Rebooting in 86400 seconds..