program: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000540)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000680)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') symlink(&(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', &(0x7f0000000280)='./file0\x00') socket(0x1a, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x800000, &(0x7f0000000240)={[{@str_hash={'str_hash', 0x3d, 'siphash'}}, {@metadata_checksum={'metadata_checksum', 0x3d, 'none'}}, {@norecovery}, {@data_checksum={'data_checksum', 0x3d, 'crc64'}}, {@journal_flush_disabled}, {@noexcl}, {@direct_io}, {@reconstruct_alloc}, {@errors_continue}]}, 0x1, 0x594c, &(0x7f0000007400)="$eJzs3W2QXFXdIPBzu3synZlMMgkgEWQyBKIIaia8Fb6URte3AqRiYSlhozCQCUaTkEqCQEAJLrhQgIWWlqJ+QAupRaNFFawSKZGXTVhFKVaX2kJqdRf94FPIQ0ogD2X5OE/N9D2dmTt95/Z094QEfr9K5vY5fft/zz339O37P90zHQAAAHhN2HP91n3nHPWBX31x5KVrPvyzjdeG3vJ4fTWu0J8ur3ilWsiB1F1ZPL7Mjos3XfWDPw9e/L5f3t3z/Zd3rz123e/ff9jF93/mzF23ffuhF/vu/eczRXHjeDpxfzl5Lgmh+vO9X//S7seOHKtLQgjlpH9HCAuTRQ8tTDIhhv4eQlibFhZn7rznpVPWjS2vval7Uv2CzHrG+2tbNR1n2/ddflL4w3tXX/ebJT/+UdfOZ3fsXyWpThhPIcy/cOLju0IIc9P/Y+Joi+MxDtpVIYSeCY87o6BdxzXZ/uU55aPT5Zx02VsQJ96/NFMuZdbLlqOuzLKnYHvtymtHq+sVmZcpZ09G7cprZ6xfmC5/mi5PnGH8cvyfhFISKvXmb0j2j5Ew4bglIRk/ltV6uVQ/tiHd/0w5yZRLmXK5K7Nf49tNB1o5SSbXx/Uy9fF0XEnrj514rm7g3Jz616fLavpEfTmWQ/ZGTe+UG/X9GhfbtXeathwIpQnnoEb19QOfHozetK43WTTlMaMNxPt2r755WXnNw3v6c9qR3J2k8ZOW4m//9cJ5n/rhjZdlX9fr8S8spfFLLcX/41mPP3/+jd/7Vm78W2P8ckvxT36g57mzHrl+aW7/7I39U2kp/vAzj96y5PCLdua2//YYv9pS/JW7Hu/u2/fAg7ntH4r9M7el+E+/84N/uuvJ+57NjR9i/J6W4q/ZtfnL3QP7TsiN/2Dsn97Wxs8LO09/amDgL4N58Z+I8ftain/njtvecceCm87MPb6rYv/0txT/7OPvv27evvuOyTt3Jrd36pUT4LXpsPQa64a03Gqe2a4J+cI3Byu1a7556f++Tm4oc/E5tp35nYwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACGEI076nx/6/x/vf66SlrvTG0+XastYPyeEZG4IYeu24S3b1m+6ZPAzl162ZdPwhsHhbYMjm7ZtuXLw1LcMbhnZvGH4yrF7h956Su1xi0JSWybHTNl29+joaKl/cl3c3n86fucflp3xL38NYeiI3w1Uctu//LaNdxze4GdGsnL0PRsvO+d3p3033a/+tF39Ddo1Ojo6GnLa9a/n/eOOr+798wkhDL1uunY9+vS7fzGpQeMV++OkSt2h1qDupKdhO+qtTtsT+6uybv2GkaHp+3fs8eWc/fjPVz3793VXfOUftf6t5u5Hk/07d+XohtI3Vp/979+4ulZR1K5X6rgX9Xfci9i+2H/VtL/np/s1v/F+Jdm6uAfX/+bBJ39+1I0v7ghDlReWTN120X51pQOgK3l9w3ZXMv0Zt9CTLJxUX03Xj0c8Pm75to2bl2+9cvtb128cvmTkkpFNb19x6orTh047/bTl43u+vLn9n9KOvP2P239jk/t/YMbTgs/t+Gn82dx4KmpXUX+Mtau4Pya2KO/513Pul7729tseOadWUTTO49r180m67Bk7zivChPE2ta8a7VdRP4QQBvfXdNdvPf/imeHI/7P+uqLz0MQjM/FnRrJy9LGlf/vuGd9Z/K5axQE5z09sUIvn+Xqr97dnvL+q6fEYnVH/7t/+bPdvdyin+9XbsF0rHnuk6+Y9f/18vX1z5oQrhrdt27Ki9nNe2tJ5ydEN25Wtjfu1ZPxnOaTdEurDtMF4HdMVau3Lnj/j6tle7U3v600WNdyvrHjf7tU3LyuveXhPXk8nd9e2ODf01ZbJG3LW3JB5YLne4Ebbn9nz7+AZHwMf+s69H7/3J6dOGR8n134W7VeSs18/fvLOr33/K//1J53brw+9+/H+v/3fTy+rVRwq55V6q9P2JBPPKyeHUPT8WxIa70fu86/UeH+Knn/Z7exfv3G8wUy5N5Rber6e/EDPc2c9cv3S3Ofr3mafr1dPKpULnq8Hy/jJPr+SyuR2zN7za9JASVaO/vKGw3Y8dM2qo2oVReO6vnajcX1KE/lHzn794vynBi4d/C//u3PnjR+85Z4Lfj+88gu1itaPe2xLZ457Ne3fak7/1lsd886J/fu2iy/dsLZWf/Be/6bLgvwnnkq2Xrn9s8MbNoxs2drcfjX7ehq3k+3lVl9P49ltUcF+labs1+zdaKa/mn2+xfavbbm/Jj/fekPS0uvC9l8vnPepH954Wf+UR6UburCUxi+1FP+PZz3+/Pk3fu9bufFvjfErLcUffubRW5YcftHO3Pi3J2n8akvxV+56vLtv3wMP5sYfiu2f21L8p9/5wT/d9eR9z+bGDzF+b2v9/8LO058aGPhLbvwnknQ7Y9dIIdzz0inrauUkdKXPt9iOrkntCtlykimXMuXyxHKpNtda30A5SSbXx/XS+mMntKWRT+TUx6uw6uLa8uVYDtkb09cfbEqTZhem1hddpwIAvNrF9//jNWh8/38kvVDKn2mA/drNwxbnxI152P75nDmT7l+cxo+Pj/OAA28LQ2PLawdrF/ozfR8hPh+y85xxOyccNzlGq/OcRfPvSzPl2K7afHllQh6amprXVEIT8+9TtzP9/Htm94vnxwdvmNKswQnzVtnj15XOmDX6vEOmvZWxCHnjIzsvFj/PMTA/rBrfXpPjI/s5mngcsp+jids5KnPibPVzNO2Oj9jsacbHeJOL39+YevzCNP27//g1jpY9fjM43tWx9Wf7/dkOzBs2PKUduHnD2X0/zLxkTvz0CXawzxvG+rgflSbnEz+eU9+p+cR4uojt2jtNWw4E84nAq1XM/+NrxFj+P3YB/m+Z9YquQ7NXjTFe7ueEyo3bU5R3TP2cXk9Lr+Nrdm3+cvfAvhNyr3MebPZzP5snlXoKPvdT1I/LMuXCfsyZoCnK97LbKer37OcyekNfS/1+547b3nHHgpvOzO33VbUX0uJ+/9qkUl9Bvx8C+ULj+PKF10S+MNvzZ69YPpJ+8Gm28pGP5dTPNB/pmXKjvl/jDrl8pOvAtgsAOHTE/L/+/lma//+/uEJ6HVGUt56YKcd4uXlrzvVJXt76kXR5RWb93vQ3KmZ63Xz28fdfN2/ffcfk5i23N5uH/rdJpf7CPLS9vDk3j1jVmc+L5+YR9Tyr1TxxTk7kNH49T2wvT8/tn3qe3l4ends/9Ty6vXmA3Pj1eYBDPc8tmK/LbCwWm52ve9Xm0emvz85WHn1uTv1M8+jeKTfq+zVOHg0A8MqK+X+8jIv5/yOZ9dp9nz03L+jQdXv274HU4z9xoPLK2c77Zjtvbe/939z+6dD7v8XzEod6Xjzb80KzO0/2ms+L043KiwEAOJjF/H9uWs7P/9vLTxrlb12T8hP5ecP48vODJD8/1Oe/5P/eFy8m/wcAeHWL+X/8tcf49//+R1rO/t16eXpOfHm6PH268dN0np6ZZ5vbXPzp5tmCzwG8svMAE47hQTIPUPjXqswDAAC8unSNZ0pTf8/+k+ky+3v2eb+Xf37O+s2qpJfHF23bMjJywWWb1w5vG7lg06VrR7ZecPmW9du2jWyqrddu3pibt6SXwl2hkvZH4/WyeduC9O8hLMj5ewjZ9WPYo8dvTP17CNnNzi34OwL7j19z7c07fqVp1m80PvKOd178T+SsH9WP/8WfPvmCdVsvWL9p/bb1wxvWbx+ZvN5Y1tozg+/NjN0yo+9LzfyYojTz7+/sTDtKU9rRlfZH3vezJ5l2LExbsjDv+w9y2v2r//XVzx0/+o+7Qhg6ovyGtvovWTn6388b+ci2Pb/bPNb+0rTtr6+Ztqvo+0qz68f9qWy4dOu2k9Zdetmm7DdKtibOZ5Tq5Vmaz0if/uUm5yfW5NTP9HMK5Sk3Dk6N5ydGrwnZ+QkAACaJ7//H69n4/uFX0guoWN98nt7e+8e5efpQc3l69nvJivL07Ppxf5vN06tt5unZ7Rfl6Y3Wb5Sn5+XdefE/lrP+TDU/Ttr7nEfuOLmwuXGS/T6DonGSXX+m4yRpc5xkt180Thqt32ic5B33vPgfzVk/T/Pjob3P5eSOh1ubGw9vzpSLxkN2/ZmOh1Kb4yG7/aLx0Gj9RuMh7/jmxT8nZ/1mTR4fYwNjfFyMXHD5pVs+O2G92f7+i/bbN7vf/9Gq5ts/u5/7mv32z+7nyma//e19riy3/U+0NxPWfPtn9/tdWnXA5mvTD5sVff6saB53dU79TOdx50y5cXBq+nNmQMfF/D++3RPz/5vSZaffBjr0vyfN95g1jN+h7zEruo451F7P8z4e7fUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4LWtu7J4fLnn+q37zjnqA7/64shL13z4ZxuvfdNVP/jz4MXv++XdPd9/effaY9f9/v2HXXz/Z87cddu3H3qx795/PlMYuH/8Z+XEtFgNIXkuCaH6871f/9Lux44cq0tCCOWkf0cIC5NFDy1MMhGG/h5CWFtv5+Q773nplHVjy2tv6p5UvyATJLtfobcc2zOxnSFcUbhHHIKq6Tjbvu/yk8If3rv6ut8s+fGPunY+u2P/Kkk1hFIIYV2tOP/CiY/vCiHMTf+PiaNtcXxwulwVQuiZ8LgzCtp1XJPtX55TPjpdzkmXvQVx4v1LM+VSZr1sOerKLHsKtteuvHa0ul6ReZly9mTUrrx2xvqF6fKn6fLEGcYvx/9JKCWhUm/+hmT/GAkTjlsSkvFjWa2XS/VjG9L9z5STTLmUKZe7Mvs1vt10oJWTZHJ9XC9TH0/HlbT+2Inn6gbOzal/fbqspk/Ul2M5ZG/U9E65Ud+vcbFde6dpy4FQmnAOalRfP/DpwehN63qTRVMeM9pAvG/36puXldc8vKc/px3J3UkaP2kp/vZfL5z3qR/eeNnivPgXltL4pZbi//Gsx58//8bvfSs3/q0xfrml+Cc/0PPcWY9cvzS3f/bG/qm0FH/4mUdvWXL4RTtz2397jF9tKf7KXY939+174MHc9g/F/pnbUvyn3/nBP9315H3P5sYPMX5PS/HX7Nr85e6BfSfkxn8w9k9va+PnhZ2nPzUw8JfBvPhPxPh9LcW/c8dt77hjwU1n5h7fVbF/+luKf/bx9183b999x+SdO5PbO/XKCfDadFh6jXVDWi7IM+vzFtk8s10T8oVvDlZq13zz0v99ndxQxth25s9ifAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXp1+e/WpnzzvPR9dXUlCSHLWGW0g3lees3LlYAvbHX7m0VuWHH7Rzol1i1uIAwAAABSLeXipXlMNi8PlydxwdMP14xzB0bGUTK7PziHEONk5glbjlDoUp9wwzoRHNRmn0qH2dHUozpwOxenuUJxqQZxqaC7O3GniVMZGRZPt6Zm2Pc3H6e1QnHkditPXiTjZwdxGexZ0KE7/tHGaH4cLOxRnUYfiHNahOId3KM4RHYrzug7FObJDcbJzyjMdh33pmkflxRm/US6MU0nK9TsazacfmW7nmDa301uwnb6i1+MmtzO3ye0cl3lcaYbbqTa5nTe2uZ2kye28uc3tlAq2E8ftFdn2xe3EUpPj/8oOxdneoThXdSjO1R2K8/kOxflCh+Jc02YcgGbF/H9/vtcfuivvCj3pGSc7CxBThCXjP6e+3uWdkGK8N2Tq5xTFyybqmXhLZtq+7ARCJt7STH3XpHiVej4yTbzqxHjLMncW7m82gc+078RMfXdRvOzEAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADMot9efeonz3vPR1eHJIz9a2i0gXhfec7KlYMtbHf36puXldc8vGdiXXelhUAAAABAoZiHd9VrqqG7siJ0J3MmrVdN5wGqabncX1sOzA+rxpbJYGm83JMsnPZxlfRxy7dt3Lx865Xb37p+4/AlI5eMbHr7ilNXnD502umnLV+3fsPIUO1nCN0F8UII49MPW6/c/tnhDRtGtmytVWbbvzh93OK0nKSPG3hbGBpbXjvW/r7nwqKC7ZWmbG/2bjRz/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/YNfuQuS86j+An2dmdma6bf7ZP32bhmYz5KVELZrEraRaug8IFtokZCnIbHUtwSZY3DShTUqsYxuwrQmK0BIIkVwYicXW4k1fbBH7QiBSowE3BmmL9kIvlFYracmFpIxkd87szOxMZh1L08bP52KemXN+5/yeMxcL32cHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPggTVVHJiqjY+ODSQhJl5paB3Eum0/Tch99v/z89u8Xhk+vbB4r5PrYCAAAAOgp5vCBxkgxFHLZkA1XTX9aGpomwmzuBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/vdMVUcmKqNj4xcnISRdamodxLlsPk3LffR9450nP/Pq8PBfm8dKfewDAAAA9BZzeKYxUgylsCwMJFe11MVnA4va1rfXxX0Wz7Ou/dlBt7pl86y7Zp51H+tRt6F+3RUAAADgoy/m/1xjZCgUcgu65v9euT7WLWmry9av/fxWAAAAAPjvxPxfaIyUQiFXauT1+eb9pW11cX2v/9vH9Su6rO/1//z19av/0wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAR8dUdWSiMjo2nk1CSKZHCnNqah3EuWw+Tct99F3zwuDfbzny0NLmsUKuryMAAAAAPcQcPhu9i6GQGwwD4eLp3D9808Gnv/j0syMhhJmYn8+HXZt27Lh7zcxrrFt97MjA946+9a05datnXs/bAQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgPfNVHVkojI6Nn5REkLSpabWQZzL5tO03Eff1z/3hT8/fvK5N5vHSn3sAwAAAPQWc/hs9i+GUsiHfLhi+lNz1j8r07a+2zMDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MJxzzfu+/qmycnNd3vjjTfeNN6c779MAADA+21JSELtP3TlxvN91wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwIfBVHVkojI6Nl5MQki61NQ6iHPZfJqW++ibPn+8sOD0Cy81j5X62AcAAADoLebw2exfDKUwEAbC5dOfOj0TOJv/c0Mf4E0CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHypT1ZGJyujY+IIkhKRLTa2DOJfNp2m5j76P7T7w2cMLv3tz81gh18dGAAAAQE8xh+cbI8VQyH08FMLV9c+TrQuSbP3a+bnA7LrtLcsG572u2rIuO+91e9pOlqufZmZdMe43NHNtrCvPXVduWlcKjfbllnVhX8uqBT3uMwAAAMB5FPN/oTEyFAq5QlPO/UlL/ZCcCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0MVUdmaiMjo0nSQhJl5paB3Eum0/Tch997/vN/1/ylZ/u3dk8VupjHwAAAKC3mMNns38xlMLi8H9h8XTuD0Ot9bHuH5Uzhx/9519WhrDqihPDufZtfxjf/Or1G19sfwkh01qdCWFhvV/Spd+vf/fovctrZx4PYdXl2avn9Avn7te6ZVp7prJ5/Y6jJ7b3+HIAAADgAhHz/0BjZCgUcnd1zf8xeffI/w3TAXzhvbt/fln9tZ7I21Zkhur9Ml36fX75k39asfZvb53N/+fq96kDWw9f1tJwZqRNktZGt+7ccOK6Q5l46pn+2bb+8Xv50jff/NeWXY+cmelfDMX6+KJcp/5zX9tclNYmM/vH1723v9raP9fl/A/99qWTv1y0992z/d9ZMtjof805zn/u/oO3Przv+gNHNrT2DyGUO/V/+92bw5V/uPPB9vMPtm3c/M03v7ZJ0tqxpacOrT1YuqG1f9LWP37/Pzv52L4fP/KdZ2P/+FuRlcvm2z/T1v+VPZfufvmBjYta+2e6nP/F214d3lb+9u/bz39Hy665rncx9/xPXPvU7a9tSu9vnwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALiwTFVHJiqjY+OZJISkS02tgziXzadpuY++b9xy/O3b9v7oB81jpT72AQAAAHqLOXw2+xdDKeRDPgxO5/5nKpvX7zh6YnsYmplN6tfc5LZ7dnxiy7add91xnu4cAAAAmK+Y/3ONkaFQyC0PA/X8P7p154YT1x3KxPyfifl/y52Tm1eFRt0rey7d/fIDGxc1nhOEMP2zgOLZuk/P1t104/GhU3/82oqOdWtm644tPXVo7cHSDbEuNNetDo3nE09c+9Ttr21K72/cX3PdJ7+6bbL+eCLuO3jrw/uuP3BkQ+Mc9etgfd9YN5nZP77uvf3VWJetX4v1cwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAc01VRyYqo2PjIRtC0qWm1kGcy+bTtNxH33XLf/HgJaefW9w8Vsj1sREAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9mBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCvv1FyJVFccB/JyZ3Xac2dVdDdqK1tWKwh6Sgoh6qagIjRB6MiQszYcoCCIKe2gNjcSKXoKsF4kKqi2Egtwk0WKN/kkvPVRQYD0EIi2Ug/RQsTP3jLPXvQ3dtaD6fGA4+ztz7/f+7r1n7uwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8qwz0jbbGwzsebN523k2fPH7Picduee/+bZc8+voP45tu+Hhv/ZWT05tXbPn6xmWb9t+7Zmr3i4d+GXrnt6M9gx9pD6uyshZCPB5DqL0/89wT05+eMzsXQwjVODwRwkhcemgk5hJW/xpC2Nzpc+6bb5+4csvsuG3XwJz5JbmQ/HmFRjX10zY8t1/+W2rZOtvafPiy8O3167d/vvytN/snj02c2iTWutZTCIs3du/fH0JYlL1mpdU2mnbOxnUhhHrXflf36OvC7mKkeLvLC+rzs/GsbGz0OF56f2WuruS2y9dJf26s9zjeQhX1UXa7XgZzdf5htFBFfab5tATezcZVfzG/ml4xVGLo67R/Xzy1RkLXfYshtu5lrVNXOvc2ZOefq2OuruTqan/uvFrHzRZaNca582m73Hx6HPdl8yu6n9XzuL1g/txsrGUf1JOpDvk/2hqn/dE5r5bU18yf9PJPqHQ9g+ab79z47GY0srlGXHraPr/PI703vf6pi6sbPjg8XNBH3Buz/Fgqf+tnI4N3vrHzodGi/I2VLL9SKv+7tUd+umPnSy8U5j+b8qul8q84UD++9sMdKwuvz0y6Pn2l8u86+tHTy8++e3K+e93K35Pya6Xyr5s6MjDUPHCwsP/V6fosKpX/zbU3f//al/uOFeaHlF8vlb9h6oFnBsaalxbmH2x/FBqtFVpi/fw8edVXY2M/jhflf5Gu/1Anv9J1dr3yX53Yfc3LS3atKVyf69L1GS7V/60X7d8+2Nx3QdGzM+45U9+cAP9Py7L/sZ7M6rK/Mxeq6/fC8+N97W+gwew1dCYPlDN7nMV/Yz4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAHO3BAAgAAACDo/+t2BAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABPBQAA////3yTQ") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0) syz_usb_control_io(r3, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) fcntl$setstatus(r4, 0x4, 0x2400) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r5, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000000002000004000000000000000000000ecff"]) lremovexattr(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100)=@known='trusted.overlay.redirect\x00') sendmmsg$unix(r0, &(0x7f0000000e80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8094}}, {{&(0x7f0000000640)=@abs={0x1, 0x0, 0x4e20}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4004000}}], 0x2, 0x8000) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f00000006c0)=ANY=[], 0x1, 0x154, &(0x7f0000000080)="$eJzsjs1KAlEcxc91/KI0jQws6APaSGKOI7ZrkZEkZAOFm1aCThQ4KQrRsoJ2LXoAF4HQanARLVuUtbFmIOwJegChRdCyuN6hkOoN/r/NML9z7rl3dcmKIAhIEKxU9GpNq9e10uymmstsXV3fjHDvAeDtN/RqjZdLon+7DOzyrxPoHQt97wd29sraQrFS5v8Oezs9zL0LMkR3iLuQ6CZsF5kD2uPCKX+4pO0mnQzpgHB879NrXzL6s/cO4LARbRmPG2YnG5u/nJJwmo3OjLFBP62dKZmJpi8sIa89vCLNc7zEO7HneMvoWmZuXc2pVlJRFpNyQpZTXfXJzKaOzuFc8x0A2997Evie2w0gD5wwoMEAo5/37pjfC7QvAD3gCfG37gcBJhLw5EPVAx5++M1OioWwq1kIBR2QImAYhP0yBEEQBEEQBEEQBPEPXwEAAP//yLVjeQ==") openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x28000, 0x12) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r6, 0x800c6613, &(0x7f0000000340)=@v2={0x2, @aes256, 0x1, '\x00', @c}) [ 119.802580][ T49] Bluetooth: hci0: command tx timeout [ 119.881395][ T5328] overlayfs: failed to resolve './file0': -2 [ 120.136215][ T5328] loop0: detected capacity change from 0 to 32768 [ 120.404414][ T5328] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=crc64,compression=lz4,journal_flush_disabled,norecovery,nojournal_transaction_names,noexcl,reconstruct_alloc [ 120.414489][ T5328] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 120.418760][ T5328] bcachefs (loop0): Version upgrade required: [ 120.418760][ T5328] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 120.418760][ T5328] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 120.418760][ T5328] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 120.448681][ T5328] bcachefs (loop0): dropping and reconstructing all alloc info [ 120.460002][ T5328] bcachefs (loop0): error validating btree node on loop0 at btree xattrs level 0/0 [ 120.460023][ T5328] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 1 ptr: 0:31:0 gen 0 [ 120.460034][ T5328] node offset 0/16: incorrect min_key: got 0:0:458752 should be POS_MIN [ 120.475323][ T5328] bcachefs (loop0): running explicit recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 120.480120][ T5328] bcachefs (loop0): flagging btree xattrs lost data [ 120.484264][ T5328] bcachefs (loop0): running explicit recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0) [ 120.490379][ T5328] error reading btree root btree=xattrs level=0: btree_node_read_error, fixing [ 120.502395][ T5328] bcachefs (loop0): scan_for_btree_nodes... [ 120.516915][ T5328] bcachefs (loop0): btree node scan found 7 nodes after overwrites [ 120.523483][ T5328] done [ 120.524850][ T5328] bcachefs (loop0): check_topology... [ 120.525665][ T5328] bcachefs (loop0): btree root xattrs unreadable, must recover from scan [ 120.531016][ T5328] bcachefs (loop0): bch2_get_scanned_nodes(): recovery btree=xattrs level=0 POS_MIN - SPOS_MAX [ 120.537031][ T5328] bcachefs (loop0): bch2_get_scanned_nodes(): recovering u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key 0:0:458752 durability: 1 ptr: 0:31:0 gen 0 [ 120.547521][ T5328] bcachefs (loop0): bch2_get_scanned_nodes(): recovery btree=xattrs level=0 POS_MIN - 0:0:458751 [ 120.552015][ T5328] btree node with incorrect min_key at btree=xattrs level=1: [ 120.552034][ T5328] parent: u64s 5 type btree_ptr SPOS_MAX len 0 ver 0 [ 120.552041][ T5328] next: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key 0:0:458752 durability: 1 ptr: 0:31:0 gen 0, fixing [ 120.564626][ T5328] bcachefs (loop0): set_node_min(): u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key 0:0:458752 durability: 1 ptr: 0:31:0 gen 0 -> POS_MIN [ 120.571637][ T5328] done [ 120.573725][ T5328] bcachefs (loop0): accounting_read... done [ 120.576838][ T5328] bcachefs (loop0): alloc_read... done [ 120.578862][ T5328] bcachefs (loop0): snapshots_read... done [ 120.581437][ T5328] bcachefs (loop0): Fixed errors, running fsck a second time to verify fs is clean [ 120.587027][ T5328] bcachefs (loop0): done starting filesystem [ 120.863115][ T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 121.012654][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 121.018205][ T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 121.023416][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 121.027261][ T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 24864, setting to 1024 [ 121.031672][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 121.036400][ T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 121.042211][ T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 121.046493][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 121.258611][ T9] usb 5-1: GET_CAPABILITIES returned 0 [ 121.261007][ T9] usbtmc 5-1:16.0: can't read capabilities [ 121.467865][ T5328] bcachefs (loop0): btree_path_down(): fatal error node not found at pos 536870912:3608136702511085910:U32_MAX within parent node u64s 5 type btree_ptr SPOS_MAX len 0 ver 0 [ 121.474757][ T5328] bcachefs (loop0): fatal error - emergency read only [ 121.485137][ T5328] bcachefs (loop0): btree_path_down(): fatal error node not found at pos 536870913:5159715431275259989:U32_MAX within parent node u64s 5 type btree_ptr SPOS_MAX len 0 ver 0 [ 121.506449][ T5328] bcachefs (loop0): pointer to nonexistent device 237 [ 121.508899][ T5328] ------------[ cut here ]------------ [ 121.510633][ T5328] unhandled error case in bch2_bkey_pick_read_device [ 121.514692][ T5328] WARNING: CPU: 0 PID: 5328 at fs/bcachefs/extents.c:230 bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.518941][ T5328] Modules linked in: [ 121.520354][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 121.525022][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.528983][ T5328] RIP: 0010:bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.531317][ T5328] Code: d1 3a 57 fd e9 d0 fd ff ff e8 c7 3a 57 fd c6 05 be 96 db 0b 01 90 48 c7 c7 e0 af 93 8c 48 c7 c6 da 11 59 8e e8 8c 4e 16 fd 90 <0f> 0b 90 90 e9 bc fe ff ff e8 9d 3a 57 fd e9 6e ff ff ff 89 d9 80 [ 121.538687][ T5328] RSP: 0018:ffffc9000352d4a0 EFLAGS: 00010246 [ 121.541154][ T5328] RAX: cd02c8a2f2aaae00 RBX: 0000000000000000 RCX: 0000000000100000 [ 121.544456][ T5328] RDX: ffffc90020001000 RSI: 0000000000005631 RDI: 0000000000005632 [ 121.547691][ T5328] RBP: ffffc9000352d6d0 R08: ffffffff81829db2 R09: fffffbfff1d7a73c [ 121.550870][ T5328] R10: dffffc0000000000 R11: fffffbfff1d7a73c R12: dffffc0000000000 [ 121.554198][ T5328] R13: 1ffff920006a5abc R14: 0000000000000000 R15: 0000000000000000 [ 121.557447][ T5328] FS: 00007f01b93aa6c0(0000) GS:ffff88808c5f1000(0000) knlGS:0000000000000000 [ 121.561120][ T5328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.564054][ T5328] CR2: 00007ffdf3159ba8 CR3: 0000000044066000 CR4: 0000000000352ef0 [ 121.567136][ T5328] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 121.570152][ T5328] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 121.573651][ T5328] Call Trace: [ 121.575134][ T5328] [ 121.576528][ T5328] ? __warn+0x165/0x4d0 [ 121.578288][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.580649][ T5328] ? report_bug+0x2b3/0x500 [ 121.582607][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.585063][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.587449][ T5328] ? bch2_bkey_pick_read_device+0x17a7/0x1a00 [ 121.590299][ T5328] ? handle_bug+0x89/0x170 [ 121.592256][ T5328] ? exc_invalid_op+0x1a/0x50 [ 121.594416][ T5328] ? asm_exc_invalid_op+0x1a/0x20 [ 121.596843][ T5328] ? __warn_printk+0x2a2/0x360 [ 121.598844][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.601329][ T5328] ? bch2_bkey_pick_read_device+0x29e/0x1a00 [ 121.604078][ T5328] ? arch_stack_walk+0xff/0x150 [ 121.606027][ T5328] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10 [ 121.608452][ T5328] ? kernel_text_address+0xa7/0xe0 [ 121.610430][ T5328] ? __pfx_hlock_conflict+0x10/0x10 [ 121.612350][ T5328] __bch2_read_extent+0x3ab/0x4400 [ 121.614478][ T5328] ? validate_chain+0x8a7/0x24e0 [ 121.616484][ T5328] ? __pfx___bch2_read_extent+0x10/0x10 [ 121.618647][ T5328] ? register_lock_class+0x54/0x330 [ 121.620933][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 121.623166][ T5328] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 121.625316][ T5328] ? __pfx_bch2_bkey_nr_ptrs_fully_allocated+0x10/0x10 [ 121.627980][ T5328] ? do_raw_spin_unlock+0x58/0x8b0 [ 121.629968][ T5328] bchfs_read+0x2a88/0x3300 [ 121.631749][ T5328] ? bio_alloc_bioset+0x26f/0x1130 [ 121.633824][ T5328] ? bch2_readahead+0xbaf/0x12d0 [ 121.635758][ T5328] ? read_pages+0x193/0x590 [ 121.637706][ T5328] ? __pfx_bchfs_read+0x10/0x10 [ 121.639771][ T5328] ? rcu_is_watching+0x15/0xb0 [ 121.641647][ T5328] ? mempool_alloc_noprof+0x199/0x5a0 [ 121.644077][ T5328] ? bchfs_read+0x33c/0x3300 [ 121.645902][ T5328] ? __pfx_bio_add_page+0x10/0x10 [ 121.647918][ T5328] ? bio_alloc_bioset+0x80e/0x1130 [ 121.649880][ T5328] bch2_readahead+0xe7a/0x12d0 [ 121.651746][ T5328] ? __pfx_bch2_readahead+0x10/0x10 [ 121.654392][ T5328] ? blk_start_plug+0x70/0x1b0 [ 121.656454][ T5328] read_pages+0x193/0x590 [ 121.658270][ T5328] ? folio_add_lru+0x231/0x3e0 [ 121.660293][ T5328] ? filemap_add_folio+0x250/0x380 [ 121.662327][ T5328] ? __pfx_read_pages+0x10/0x10 [ 121.664534][ T5328] page_cache_ra_order+0xa37/0xca0 [ 121.666506][ T5328] filemap_get_pages+0x59f/0x1fc0 [ 121.668452][ T5328] ? __pfx_filemap_get_pages+0x10/0x10 [ 121.670634][ T5328] ? __lock_acquire+0xad5/0xd80 [ 121.672780][ T5328] ? __pfx___might_resched+0x10/0x10 [ 121.674903][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 121.676959][ T5328] filemap_read+0x466/0x1260 [ 121.678886][ T5328] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 121.681559][ T5328] ? __asan_memset+0x23/0x50 [ 121.683758][ T5328] ? __pfx_filemap_read+0x10/0x10 [ 121.685909][ T5328] bch2_read_iter+0x1179/0x14b0 [ 121.687996][ T5328] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 121.690436][ T5328] ? kernel_text_address+0xa7/0xe0 [ 121.692406][ T5328] ? __kernel_text_address+0xd/0x40 [ 121.694603][ T5328] ? unwind_get_return_address+0x4d/0x90 [ 121.697177][ T5328] ? __pfx_bch2_read_iter+0x10/0x10 [ 121.699449][ T5328] ? stack_trace_save+0x11a/0x1d0 [ 121.701476][ T5328] ? __pfx_bch2_btree_path_verify_level+0x10/0x10 [ 121.704244][ T5328] ? __pfx_stack_trace_save+0x10/0x10 [ 121.706487][ T5328] ? stack_depot_save_flags+0x3a/0x970 [ 121.716275][ T5328] ? kasan_save_track+0x51/0x80 [ 121.718422][ T5328] ? iov_iter_kvec+0x4e/0x180 [ 121.720440][ T5328] __kernel_read+0x532/0xa10 [ 121.722377][ T5328] ? do_sys_openat2+0x12b/0x1d0 [ 121.724429][ T5328] ? __pfx___kernel_read+0x10/0x10 [ 121.726340][ T5328] integrity_kernel_read+0xb2/0x100 [ 121.728411][ T5328] ? __pfx_integrity_kernel_read+0x10/0x10 [ 121.730669][ T5328] ? __kmalloc_cache_noprof+0x236/0x370 [ 121.733978][ T5328] ? ima_calc_file_hash+0xa68/0x1af0 [ 121.736161][ T5328] ima_calc_file_hash+0xaa0/0x1af0 [ 121.738292][ T5328] ? lock_release+0x4e/0x3e0 [ 121.740174][ T5328] ? bch2_trans_iter_exit+0x16f/0x230 [ 121.742383][ T5328] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 121.744756][ T5328] ? __bch2_err_class+0x1d7/0x380 [ 121.746765][ T5328] ? bch2_xattr_get_handler+0x1320/0x1440 [ 121.749069][ T5328] ? make_vfsgid+0x51/0xa0 [ 121.750764][ T5328] ? bch2_getattr+0x9a9/0xdb0 [ 121.752866][ T5328] ? __pfx_bch2_getattr+0x10/0x10 [ 121.755000][ T5328] ? __asan_memset+0x23/0x50 [ 121.756912][ T5328] ima_collect_measurement+0x52b/0xb20 [ 121.759164][ T5328] ? __pfx_ima_collect_measurement+0x10/0x10 [ 121.761508][ T5328] ? trace_contention_end+0x3c/0x120 [ 121.763716][ T5328] ? ima_get_hash_algo+0x157/0x520 [ 121.765732][ T5328] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 121.767940][ T5328] process_measurement+0x1353/0x1fb0 [ 121.770129][ T5328] ? __pfx_process_measurement+0x10/0x10 [ 121.772511][ T5328] ? tomoyo_check_open_permission+0x209/0x4f0 [ 121.775070][ T5328] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 121.778373][ T5328] ? __pfx_apparmor_file_open+0x10/0x10 [ 121.780667][ T5328] ? do_raw_spin_unlock+0x58/0x8b0 [ 121.782791][ T5328] ? file_set_fsnotify_mode_from_watchers+0x12a/0x640 [ 121.785219][ T5328] ? inode_to_bdi+0x69/0xf0 [ 121.787209][ T5328] ? apparmor_current_getlsmprop_subj+0xde/0x160 [ 121.789911][ T5328] ima_file_check+0xdb/0x130 [ 121.792185][ T5328] ? __pfx_ima_file_check+0x10/0x10 [ 121.794379][ T5328] security_file_post_open+0xb9/0x280 [ 121.796592][ T5328] path_openat+0x2cf7/0x35d0 [ 121.798468][ T5328] ? __pfx_path_openat+0x10/0x10 [ 121.801002][ T5328] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.805019][ T5328] ? __lock_acquire+0xad5/0xd80 [ 121.807116][ T5328] do_filp_open+0x284/0x4e0 [ 121.808998][ T5328] ? __pfx_do_filp_open+0x10/0x10 [ 121.811037][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 121.813219][ T5328] do_sys_openat2+0x12b/0x1d0 [ 121.815134][ T5328] ? __pfx_do_sys_openat2+0x10/0x10 [ 121.817230][ T5328] ? rcu_is_watching+0x15/0xb0 [ 121.819180][ T5328] ? __rseq_handle_notify_resume+0x3c8/0x15d0 [ 121.821686][ T5328] __x64_sys_openat+0x249/0x2a0 [ 121.823592][ T5328] ? __pfx___x64_sys_openat+0x10/0x10 [ 121.825708][ T5328] ? do_syscall_64+0xb6/0x230 [ 121.827649][ T5328] do_syscall_64+0xf3/0x230 [ 121.829482][ T5328] ? clear_bhb_loop+0x45/0xa0 [ 121.831319][ T5328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.833929][ T5328] RIP: 0033:0x7f01b858d169 [ 121.835814][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.843674][ T5328] RSP: 002b:00007f01b93aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 121.846976][ T5328] RAX: ffffffffffffffda RBX: 00007f01b87a5fa0 RCX: 00007f01b858d169 [ 121.850127][ T5328] RDX: 0000000000028000 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 121.853188][ T5328] RBP: 00007f01b860e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 121.856509][ T5328] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000 [ 121.859518][ T5328] R13: 0000000000000000 R14: 00007f01b87a5fa0 R15: 00007ffea3b12cc8 [ 121.862853][ T5328] [ 121.864386][ T5328] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 121.867692][ T5328] CPU: 0 UID: 0 PID: 5328 Comm: syz.0.0 Not tainted 6.14.0-syzkaller-07422-gacb4f33713b9 #0 PREEMPT(full) [ 121.872235][ T5328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 121.876589][ T5328] Call Trace: [ 121.878005][ T5328] [ 121.879204][ T5328] dump_stack_lvl+0x241/0x360 [ 121.881112][ T5328] ? __pfx_dump_stack_lvl+0x10/0x10 [ 121.883212][ T5328] ? __pfx__printk+0x10/0x10 [ 121.885141][ T5328] ? vscnprintf+0x5d/0x90 [ 121.886930][ T5328] panic+0x349/0x880 [ 121.888513][ T5328] ? __warn+0x174/0x4d0 [ 121.890223][ T5328] ? __pfx_panic+0x10/0x10 [ 121.892050][ T5328] __warn+0x344/0x4d0 [ 121.893723][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.896280][ T5328] report_bug+0x2b3/0x500 [ 121.898163][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.900695][ T5328] ? bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.903219][ T5328] ? bch2_bkey_pick_read_device+0x17a7/0x1a00 [ 121.905761][ T5328] handle_bug+0x89/0x170 [ 121.907605][ T5328] exc_invalid_op+0x1a/0x50 [ 121.909566][ T5328] asm_exc_invalid_op+0x1a/0x20 [ 121.911594][ T5328] RIP: 0010:bch2_bkey_pick_read_device+0x17a5/0x1a00 [ 121.914210][ T5328] Code: d1 3a 57 fd e9 d0 fd ff ff e8 c7 3a 57 fd c6 05 be 96 db 0b 01 90 48 c7 c7 e0 af 93 8c 48 c7 c6 da 11 59 8e e8 8c 4e 16 fd 90 <0f> 0b 90 90 e9 bc fe ff ff e8 9d 3a 57 fd e9 6e ff ff ff 89 d9 80 [ 121.922273][ T5328] RSP: 0018:ffffc9000352d4a0 EFLAGS: 00010246 [ 121.924810][ T5328] RAX: cd02c8a2f2aaae00 RBX: 0000000000000000 RCX: 0000000000100000 [ 121.928105][ T5328] RDX: ffffc90020001000 RSI: 0000000000005631 RDI: 0000000000005632 [ 121.931130][ T5328] RBP: ffffc9000352d6d0 R08: ffffffff81829db2 R09: fffffbfff1d7a73c [ 121.934463][ T5328] R10: dffffc0000000000 R11: fffffbfff1d7a73c R12: dffffc0000000000 [ 121.937850][ T5328] R13: 1ffff920006a5abc R14: 0000000000000000 R15: 0000000000000000 [ 121.941072][ T5328] ? __warn_printk+0x2a2/0x360 [ 121.942985][ T5328] ? bch2_bkey_pick_read_device+0x29e/0x1a00 [ 121.945369][ T5328] ? arch_stack_walk+0xff/0x150 [ 121.947326][ T5328] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10 [ 121.949846][ T5328] ? kernel_text_address+0xa7/0xe0 [ 121.951959][ T5328] ? __pfx_hlock_conflict+0x10/0x10 [ 121.954020][ T5328] __bch2_read_extent+0x3ab/0x4400 [ 121.956040][ T5328] ? validate_chain+0x8a7/0x24e0 [ 121.958075][ T5328] ? __pfx___bch2_read_extent+0x10/0x10 [ 121.960123][ T5328] ? register_lock_class+0x54/0x330 [ 121.962246][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 121.964308][ T5328] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 121.966554][ T5328] ? __pfx_bch2_bkey_nr_ptrs_fully_allocated+0x10/0x10 [ 121.969390][ T5328] ? do_raw_spin_unlock+0x58/0x8b0 [ 121.971644][ T5328] bchfs_read+0x2a88/0x3300 [ 121.973368][ T5328] ? bio_alloc_bioset+0x26f/0x1130 [ 121.975426][ T5328] ? bch2_readahead+0xbaf/0x12d0 [ 121.979912][ T5328] ? read_pages+0x193/0x590 [ 121.981533][ T5328] ? __pfx_bchfs_read+0x10/0x10 [ 121.983366][ T5328] ? rcu_is_watching+0x15/0xb0 [ 121.985113][ T5328] ? mempool_alloc_noprof+0x199/0x5a0 [ 121.987071][ T5328] ? bchfs_read+0x33c/0x3300 [ 121.988917][ T5328] ? __pfx_bio_add_page+0x10/0x10 [ 121.990778][ T5328] ? bio_alloc_bioset+0x80e/0x1130 [ 121.992631][ T5328] bch2_readahead+0xe7a/0x12d0 [ 121.994472][ T5328] ? __pfx_bch2_readahead+0x10/0x10 [ 121.996792][ T5328] ? blk_start_plug+0x70/0x1b0 [ 121.998887][ T5328] read_pages+0x193/0x590 [ 122.001062][ T5328] ? folio_add_lru+0x231/0x3e0 [ 122.003293][ T5328] ? filemap_add_folio+0x250/0x380 [ 122.005513][ T5328] ? __pfx_read_pages+0x10/0x10 [ 122.007741][ T5328] page_cache_ra_order+0xa37/0xca0 [ 122.009888][ T5328] filemap_get_pages+0x59f/0x1fc0 [ 122.012100][ T5328] ? __pfx_filemap_get_pages+0x10/0x10 [ 122.014287][ T5328] ? __lock_acquire+0xad5/0xd80 [ 122.016362][ T5328] ? __pfx___might_resched+0x10/0x10 [ 122.018448][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 122.020572][ T5328] filemap_read+0x466/0x1260 [ 122.022943][ T5328] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 122.026232][ T5328] ? __asan_memset+0x23/0x50 [ 122.028652][ T5328] ? __pfx_filemap_read+0x10/0x10 [ 122.030743][ T5328] bch2_read_iter+0x1179/0x14b0 [ 122.032796][ T5328] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 122.035249][ T5328] ? kernel_text_address+0xa7/0xe0 [ 122.037304][ T5328] ? __kernel_text_address+0xd/0x40 [ 122.039308][ T5328] ? unwind_get_return_address+0x4d/0x90 [ 122.041678][ T5328] ? __pfx_bch2_read_iter+0x10/0x10 [ 122.043985][ T5328] ? stack_trace_save+0x11a/0x1d0 [ 122.046016][ T5328] ? __pfx_bch2_btree_path_verify_level+0x10/0x10 [ 122.048604][ T5328] ? __pfx_stack_trace_save+0x10/0x10 [ 122.050776][ T5328] ? stack_depot_save_flags+0x3a/0x970 [ 122.053119][ T5328] ? kasan_save_track+0x51/0x80 [ 122.055198][ T5328] ? iov_iter_kvec+0x4e/0x180 [ 122.057226][ T5328] __kernel_read+0x532/0xa10 [ 122.059183][ T5328] ? do_sys_openat2+0x12b/0x1d0 [ 122.061190][ T5328] ? __pfx___kernel_read+0x10/0x10 [ 122.063261][ T5328] integrity_kernel_read+0xb2/0x100 [ 122.065384][ T5328] ? __pfx_integrity_kernel_read+0x10/0x10 [ 122.067736][ T5328] ? __kmalloc_cache_noprof+0x236/0x370 [ 122.069975][ T5328] ? ima_calc_file_hash+0xa68/0x1af0 [ 122.072253][ T5328] ima_calc_file_hash+0xaa0/0x1af0 [ 122.074448][ T5328] ? lock_release+0x4e/0x3e0 [ 122.076344][ T5328] ? bch2_trans_iter_exit+0x16f/0x230 [ 122.078454][ T5328] ? __pfx_ima_calc_file_hash+0x10/0x10 [ 122.080683][ T5328] ? __bch2_err_class+0x1d7/0x380 [ 122.082715][ T5328] ? bch2_xattr_get_handler+0x1320/0x1440 [ 122.084897][ T5328] ? make_vfsgid+0x51/0xa0 [ 122.086847][ T5328] ? bch2_getattr+0x9a9/0xdb0 [ 122.088901][ T5328] ? __pfx_bch2_getattr+0x10/0x10 [ 122.091012][ T5328] ? __asan_memset+0x23/0x50 [ 122.092974][ T5328] ima_collect_measurement+0x52b/0xb20 [ 122.095419][ T5328] ? __pfx_ima_collect_measurement+0x10/0x10 [ 122.097915][ T5328] ? trace_contention_end+0x3c/0x120 [ 122.100181][ T5328] ? ima_get_hash_algo+0x157/0x520 [ 122.102118][ T5328] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 122.104378][ T5328] process_measurement+0x1353/0x1fb0 [ 122.106677][ T5328] ? __pfx_process_measurement+0x10/0x10 [ 122.109048][ T5328] ? tomoyo_check_open_permission+0x209/0x4f0 [ 122.111594][ T5328] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 122.114106][ T5328] ? __pfx_apparmor_file_open+0x10/0x10 [ 122.116301][ T5328] ? do_raw_spin_unlock+0x58/0x8b0 [ 122.118337][ T5328] ? file_set_fsnotify_mode_from_watchers+0x12a/0x640 [ 122.121123][ T5328] ? inode_to_bdi+0x69/0xf0 [ 122.123003][ T5328] ? apparmor_current_getlsmprop_subj+0xde/0x160 [ 122.125550][ T5328] ima_file_check+0xdb/0x130 [ 122.127478][ T5328] ? __pfx_ima_file_check+0x10/0x10 [ 122.129582][ T5328] security_file_post_open+0xb9/0x280 [ 122.131757][ T5328] path_openat+0x2cf7/0x35d0 [ 122.133682][ T5328] ? __pfx_path_openat+0x10/0x10 [ 122.135725][ T5328] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.138100][ T5328] ? __lock_acquire+0xad5/0xd80 [ 122.140173][ T5328] do_filp_open+0x284/0x4e0 [ 122.142005][ T5328] ? __pfx_do_filp_open+0x10/0x10 [ 122.143979][ T5328] ? do_raw_spin_lock+0x151/0x370 [ 122.146018][ T5328] do_sys_openat2+0x12b/0x1d0 [ 122.148045][ T5328] ? __pfx_do_sys_openat2+0x10/0x10 [ 122.150236][ T5328] ? rcu_is_watching+0x15/0xb0 [ 122.152951][ T5328] ? __rseq_handle_notify_resume+0x3c8/0x15d0 [ 122.155425][ T5328] __x64_sys_openat+0x249/0x2a0 [ 122.157487][ T5328] ? __pfx___x64_sys_openat+0x10/0x10 [ 122.159596][ T5328] ? do_syscall_64+0xb6/0x230 [ 122.161515][ T5328] do_syscall_64+0xf3/0x230 [ 122.163291][ T5328] ? clear_bhb_loop+0x45/0xa0 [ 122.165143][ T5328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.167281][ T5328] RIP: 0033:0x7f01b858d169 [ 122.169152][ T5328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.176555][ T5328] RSP: 002b:00007f01b93aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 122.179823][ T5328] RAX: ffffffffffffffda RBX: 00007f01b87a5fa0 RCX: 00007f01b858d169 [ 122.182935][ T5328] RDX: 0000000000028000 RSI: 0000200000000240 RDI: ffffffffffffff9c [ 122.186160][ T5328] RBP: 00007f01b860e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 122.189412][ T5328] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000 [ 122.192569][ T5328] R13: 0000000000000000 R14: 00007f01b87a5fa0 R15: 00007ffea3b12cc8 [ 122.195448][ T5328] [ 122.196911][ T5328] Kernel Offset: disabled [ 122.198410][ T5328] Rebooting in 86400 seconds..