program:
r0 = syz_mount_image$jfs(&(0x7f00000011c0), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000001000)=ANY=[@ANYRES8=0x0], 0xfa, 0x6196, &(0x7f00000021c0)="$eJzs3c9vHGf9B/DP/vSPfptaPVT9Rgi5aflRSpM4KSFQoO0BDlx6QLmiRK5bRaSAkoDSyiKufOHAib+ACokjQhwRB/6AHrhy48SJSDYSqOLAoLGfJ56d7MY2jnfWntdLsmc+88x6n9n3zv7w7OwTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB89zvfW+lExPWfpgVLEf8XvYhuxEJZL0fEwvJSXr8fEc/HTnM8FxGDuYjy8ju/nol4LSI+OROxtb2+Wi6+dMB+fPt3f/n19596+8+/HVz41+/v9l6ftN69e7/45x/uH22bAQAAoG2Koig66W3+2fT+vtt0pwCAqcjP/0WSl5/6+pd/e/uPs9QftVqtPmV1d8b6o35UMd79ahERG9XLlK8ZHI4HgBNmIz5tugs0SP6t1o+Ip5ruBDDTOk13gGOxtb2+2kn5dqrPB8u77fn/diP5b3Qent8xabqf+mdMpnX/2oxePDuhPwtT6sMsyfl36/lf320fpvWOO/9pmZT/cPfUp9bJ+ffq+decnvy7Y/Nvq5x//1D59+QPAAAAAAAzLP//f6nh479zR9+UA3nc8d/lKfUBAAAAAAAAAJ60o47/95Dx/wAAAGBmle/VS786s7ds0nexlcuvdSKerq0PtEw6WWax6X4AAAAAAAAAAAAAQJv0dz/De60TMYiIpxcXi6Iof6rq9WEd9fInXdu3H9qs6Qd5AADY9cmZ2rn8nYj5iLiWvutvsLi4WBTzC4vFYrEwl1/PDufmi4XK+9o8LZfNDQ/wgrg/LMo/Nl+5XNV+75f3a6//vfK6hkXvAB17Qgbp1pzQ3FDYAJDsPhtteUY6ZYrimUkvPmCE/f8UWoqlpu9XzL6m76YAAADA8SuKouikr/M+m475d5vuFAAwFfn5v35c4Eh1d0J7xJP5+2q1Wp3rj/cWzER/1OoZr6uK8e5Xi4jYqF6mfM1gOH4AOGE24tOmu0CD5N9q/Yh4vulOADOt03QHOBZb2+urnZRvp/p8kMZ3z58FGcl/o7NzuXz5cdP91D9jMq3712b04tkJ/XluSn2YJTn/bj3/67vtw7Tecec/LZPyH+6cMtc+Of9ePf+a05N/d2z+bZXz7x8q/578AQAAAABghuX//y85/ps3GQAAAAAAAABOnK3t9dV83ms+/v+ZMes5//N0yvl3Dpv/QpqX/4mW8+/W8v9ibb1eZf7BW3v7/z+211d/c/fv/5+nB81/Ls900j2rk+4RnXRNnX6aHmXrHrU56A3Laxp0ur1++sxPMXg3bsatWIuLI+t20+2x174y0l72dDDSfmmkvf9I++WR9kH63oFiIbefj9X4UdyKd3bah6M3+1jz+9w+xT7tOf+ex/9Wyvn3Kz9l/oupvVOblh581H1kv69Ox13Pmzc/+/OLx785+9qM3sNtqyq371wD/dm5TZ4axk/urN0+f+/G3bu3VyJNRpZeijR5wnL+g52fub3H/xd32/MDUHV/ffDR8ND5z4rN6E/M/8XKfLm9L0+5b03I+Q/TT87/ndQ+fv8/yflP3v9faaA/AAAAAAAAAAAAAAAA8DhFUeycIvpmRFxJ5/80dW4mADBd+fm/SPJytVqtVqvVp6+uKsZ7o1pExJ+qlylfM/xs3B8DAGbZfyLir013gsbIv8Xy9/2V05ea7gwwVXc++PAHN27dWrt9p+meAAAAAAAAAAD/qzz+53Jl/OeXImKptt7I+K9vxfJRx//s55mHA4w+4YG+J9jsDnvdynDjL8TO+NznJ43/fS4eHf87j4nbq27HBIN92of7tM/t0z4/duleWmNP9KjI+b9QGe+8zP9sbfj1Noz/Wh/zvg1y/ucq9+cy/y/U1qvmX3w8c/lvHHTFzeiO5H/h7vs/vnDngw9fvfn+jffW3lv74eWVlYuXr1y5evXqhXdv3lq7uPv7eHo9A3L+eexrnwNtl5x/zvxQ+f/7MScTciLk/D+Xavt/u+T8P59q+bdLzj+/3pN/u+T883sf+bdLzv/lVMu/XXL+X0q1/Ntla3t9rsz/lVTLv13y/v/lVMu/XXL+r6Za/u2S8z+favm3S87/QqoPkL+vhz9Fcv75CJf9v11y/iupln+75PwvpVr+7ZLzv5xq+bdLzv+1VMu/XXL+X0m1/Nsl538l1fJvl5z/V1Mt/3bJ+V9NtfzbJef/tVTLv11y/l9PtfzbJef/eqrl3y45/2+kWv7tkvP/Zqrl3y45/2+lWv7tkvN/I9Xyb5e97/83Y8aMmTzT9CMTAAAAAAAAAAAAAFA3jY8TN72NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8F924EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYW9e4uR677rAH5mL/baaRq3TVMnuO3acV3X2WbXl/hSMHXTK0lLyJWGS2zjXTvb+havTZMQyS5paaQ6okJFhAegrSKIhFAt1IeCQskD4vJE4KG8oCKkSkQojdKKSoBKFs3M///3zOzszK53vJ49/89HSn67M2fmnDlzZna/u/7uAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACARhs/PPWlSlEU1f9q/1tXFG+qfrxmdF3tsg9c6y0EAAAAlur/av9//YZ0wYEF3Khhmb971z9+a3Z2drb49ODvDn91djZdMVoUw6uLonZddOnfH640LhM8XYxUBho+H+iy+sEu1w91uX64y/Wruly/usv1I12un7MD5lhT/3lM7c421z5cV9+lxY3FcO26zW1u9XRl9cBA/FlOTaV2m9nho8V0cbyYKiaalq8vW6kt/+LG6ro+UcR1DTSsa0P1CPnhU0fiNlTCPt7ctK7L9xn94EPF6I9++NSRPz776s3tZtfd0HR/9e3cuqm6nV8Il1S39Z6iUqxO+yRu50DDdm5o85wMNm1npXa76set2/n6Ardz8PJmLqvW53ykGKh9/HJtPw01/lgv7acN4bL/vrUoiguXN7t1mTnrKgaKtU2XDFx+fkbqR2T1PqqH0luLoUUdpxsXcJxW5+Tm5uO09TURn/+N4XZD82xD49P0g8+vmvO8L/Y4jaqPer7XSusx2OvXSr8cg/G4eLn2oJ9pewxuDo//qS3zH4Ntj502x2B63A3H4KZux+DAqsHaNqcnoVK7zeVjcHvT8oO1NVVq85UtnY/B8bMnTo/PPPHk+6dPHD42dWzq5M7t2yd27t69d+/e8aPTx6cm6v+/wr3d/9YWA+k1sCnsu/gaeG/Lso2H6uzXe/c6HOnwOlzXsmyvX4dDrQ+usjwvyLnHdP218UB1p49cHCjmeY3Vnp9tS38dpsfd8Docangdtv2a0uZ1OLSA12F1mdPbFvY9y1DDf+224Wp9LVjXcAy2fj/Segz2+vuRfjkGR8Jx8a/b5v9asCFs7zNji/1+ZHDOMZgebnjvqV6Svt8f2Vsb7Y7LW6pXXLeqODczdeb2xw+fPXtmexHGsnhbw7HSeryubXhMxZzjdWDRx+uB6Xc9c0uby9eFfTXy/ur/RuZ9rqrL7Lq983NV++rWfn82XbqjCKPHlnt/tvtqXt2fKUt22J/VZb4wvvTvxVMubXj/HZ7n/Tfm/jfq60t39fTg8FD99TuY9s5w0/tx81M1VHvvqtTW/fr4wt6Ph8N/y/1+fGOH9+P1Lcv2+v14uPXBxffjSrefdixN6/M5Eo6T4xOd34+ry6zfsdhjcqjj+/GtYVbC/n9fSAopFzUcO/Mdt2ldQ0PD4XENxTU0H6c7m5YfDtmsuq4XdlzZcbr11vp9DaZHd9lyHaejLcv2+jhN71fzHaeVbj99uzKtz+dIOC5u3Nn5OK0u89Kupb93rokfNrx3rup2DA4Prqpu83A6COvv97Nr4jF4e3GkOFUcLyZr166qHU+V2rrG7ljYMbgq/Lfc75XrOxyDW1uW7fUxmL6OzXfsVYbmPvgeaH0+R8Jx8dwdnY/B6jIf2dPb7123hkvSMg3fu7b+fG2+n3nd0rKbrubPvKrb+Td7Wn8225whq8sc37vYnNl5P90WLrmuzX5qff3O95qaLJZnP60P2/nq3vn3U3V7qst8dd8Cj6cDRVGcf+zO2s97w+9X/vzcd7/V9HuXdr/TOf/Yna9df/RvF7P9AKx8b9TH2vrXuobfTC3k9/8AAADAihBz/0CYifwPAAAApRFzf/xX4Yn8DwAAAKURc/9QmEkm+X/9R16dfuN8kZr5s0G8Pu2Gu+rLxY7rRPh8dPay6uV3Pj/14788v7B1DxRF8ZO7fqPt8uvvittVNxq289JHmy+fe8PzC1r/oQcvL9fYX/9auP/4eBZ6GLSr4E4URfHiDc/W1jP68MXafOmuQ7V534Vnnq4u8/q++ufx9q+8rb78H4Ty74Gjh5tu/0rYD98Pc+Lu9vsj3u6bF9+3Yc9Dl9cXb1fZ9Obaw37ukfr9xr+T85Wn68vH/Tzf9v/Vl1/4ZnX5x9/TfvvPD7Tf/hfC/T4f5v+8s75843NQ/Tze7oth++P64u1u/8Z32m7/pS/Vlz/9sfpyh8KM698aPt/8sVenG/fX45XDTY+r+Hh9ubj+ie/+du36eH/x/lu3f+Tgxab90Xp8vPTP9fsZb1k+Xh7XE/1Fy/qr99N4fMb1v/Bbh5r2c7f1X7rvlXdW77d1/be1LDfYcvvWv9j0h198tu364vYc+LPTTY/nwL3hdRzW/9wj4XgM1//vpWeb1hsdurf5/Scu/7V155seT/SJH9XXf+mDx2rzP0Z//PvXven6N194d3XfFcXL99fvr9v6j/3Rqabt//pN22rPR7w+dvRb1z+fuP4znxs7eWrm3PRkw16t/e2cT9a3Z/XImrXV7b0hvLe2fn7w1NlHp86MToxOFMVoef+E3hX7Rpiv1ceFxd5+24Ph+bzl915cu+Wfvhwv/5cH6pdfvLv+deu9YbmvhMvX1Z+/2coS1//cxptqr+/KS/XPm3rsPbBh83/uXdCC4fG3fl8Qj/fTb3+0th+q19W+bsTX9RK3/3uT9fv5dtivs+EvM2+66fL6GpePfxvh4v311/uS9194m4vP65+E5/tT36/ff9yu+Hi/F76P+c765ve7eHx8+/xA6/3X/orHhfB+UlyoXx+Xivv74us3td28+HdIigs31z7/nXQ/Ny/qYc5n5omZ8ePTJ889Pn52aubs+MwTTx48cercybMHa3/L8+Bnut3+8vvT2tr70+TU7l3FxJqiKE4VE8vwhnV1tr/60cK2//SDRyb3TGyZnDp6+NzRsw+enjpz7MjMzJGpyZkth48enfpct9tPT+7fvmPfzj07xo5NT+7fu2/fzn1j0ydPVTejvlFd7J747NjJMwdrN5nZv2vf9jvu2DUxduLU5NT+PRMTY+e63b72tWmseutfHzszdfzw2ekTU2Mz009O7d++b/fuHV3/GuCJ00dnRsfPnDs5fm5m6sx4/bGMnq1dXP3a1+32lNPMv9W/n21Vqf8hvuKe23anv89a9fzn572r+iItf0D01fC3aP7hLaf3LuTzmPuHw0wyyf8AAACQg5j7V4WZyP8AAABQGjH3rw4zkf8BAACgNGLuHwkzyST/6//r/y+s/1+/Xv8/r/7/6cfqvdKV3v+P/Xn9/zxc4/7/ktev/6//X77+/8L78yt9+/X/9f+Zq9/6/zH3rymKLPM/AAAA5CDm/rVhJvI/AAAAlEbM/deFmcj/AAAAUBox978pzCST/K//v6D+/45uhavy9/+d/1//v1iZ/f/45Oj/Z2PR/fuHHmj6VP8/0P/X/9f/1//X/2fJhue95lr1/2Puvz7MJJP8DwAAADmIuf/NYSbyPwAAAJRGzP03hJnI/wAAAFAaMfevCzPJJP/r/zv/v/6//n+p+/9LPf9/w8bo/68Mzv/f2aL7/6v1/xfW/x/R/1+J/f/h3m5/f/f/u26+/j9XRb+d/z/m/reEmWSS/wEAACAHMfe/NcxE/gcAAIDSiLn/bWEm8j8AAACURsz9N4aZZJL/9f/1//X/9f/1/9uvv/v5/+sf6f/3F/3/zpz/vwvn/8+r/9/j7e/v/n+vz/8//NHW2+v/006/9f9j7n97mEkm+R8AAAByEHP/TWEm8j8AAACURsz97wgzkf8BAACgNGLuXx9mkkn+1//X/9f/1//X/2+//u79/zr9//6i/9+Z/n8X+v/6//n2/0cW1f9v882v/j/t9Fv/P+b+m8NMMsn/AAAAkIOY+28JM5H/AQAAoDRi7v+pMBP5HwAAAEoj5v4NYSaZ5H/9f/1//f+8+v+3rdL/1/8vN/3/zvT/u9D/1//Pt/+/yPP/z7WY/v/qbndGafRb/z/m/neGmWSS/wEAACAHMfe/K8xE/gcAAIDSiLn/3WEm8j8AAACURsz9o2EmmeR//f9y9f//9K+fe3eh/6//32X9Je3/x8NA/z9z+v+d6f93of+v/6//vyz9f/LRb/3/mPs3hplkkv8BAAAgBzH3bwozkf8BAACgNGLuvzXMRP4HAACA0oi5f3OYSSb5X/+/XP3/SP9f/7/T+kva/0/0//Om/99Gw4tU/78L/X/9/+z7//G7X/1/eqPf+v8x978nzCST/A8AAAA5iLl/S5iJ/A8AAAClEXP/e8NM5H8AAAAojZj7t4aZZJL/9f/1//X/9f/1/9uvX/9/ZdL/72yx/f9V+v/6//r/mfX/nf+f3uq3/n/M/e8LM8kk/wMAAEAOYu7fFmYi/wMAAEBpxH+/Wf93r/I/AAAAlFHM/WNhJpnkf/1//f+c+v8V/X/9f/3/0tP/78z5/7vQ/9f/1//X/6en+q3/H3P/+8NMMsn/AAAAkIOY+28PM5H/AQAAoDRi7h8PM5H/AQAAoDRi7p8IM8kk/+v/6//n1P93/n/9f/3/8tP/70z/vwv9f/3/svX/i0L/n2uq3/r/MfdvDzPJJP8DAABADmLu3xFmIv8DAABAacTcvzPMRP4HAACA0oi5f1eYSSb5X/+/rP3/2UL/X/9/vvXr/+v/l5n+f2f6/13o/+v/l63/7/z/XGP91v+Puf+OMJNM8j8AAADkIOb+3WEm8j8AAACURsz9e8JMQv5v9++6AQAAgJUl5v69YSaZ/P5f/78k/f/f/PumdTv/v/5/p/X3pv+/Rv8/TP3//lLS/n/ry+KK6f93of+v/6//r/9PT/Vb/z/m/n1hJpnkfwAAAMhBzP0fCDOR/wEAAKA0Yu7/6TAT+R8AAABKI+b+nwkzyST/l7j/3/FPN5au/99C/1//v9P6nf9f/7/MStr/75lS9f8H9P/1//tr+/X/9f+Z6+r3/+NHC+v/x9y/P8wkk/wPAAAAOYi5/2fDTOR/AAAAKI2Y+z8YZiL/AwAAQGnE3H8gzCST/F/i/n9H+v/6/437S///avT/P1i06sf+f/Xg0f8vF/3/zkrV/3f+f/3/Ptt+/X/9f+bqt/P/x9z/oTCTTPI/AAAA5CDm/jvDTOR/AAAAKI2Y+z8cZiL/AwAAQGnE3P+RMJNM8r/+v/6//r/+v/P/t1+//v/KpP/fmf5/F/r/+v/6//r/9FS/9f9j7v9omEkm+R8AAAByEHP/x8JM5H8AAAAojZj7Px5mIv8DAABAacTc/4kwk0zyv/6//r/+v/6//n/79ev/r0z6/53p/3eh/6//r/+v/09P9Vv/P+b+nwszyST/AwAAQA5i7r8rzET+BwAAgNKIuf/uMBP5HwAAAEoj5v5Phplkkv/1//X/9f/1//X/269f/39l0v/vTP+/C/1//X/9f/1/eqrf+v8x938qzCST/A8AAAA5iLn/58NM5H8AAAAojZj77wkzkf8BAACgNGLu/4Uwk0zyv/6//n9/9f9nzzfeTv9f/7/oVf+/eiP9/yzo/3em/99Fm/7/av1//X/9f/1/rli/9f9j7r83zCST/A8AAAA5iLn/vjAT+R8AAABKI+b++8NM5H8AAAAojZj7HwgzyST/6/9n2f9PD7n/+v/O/6//7/z/+v9Lo//fmf5/F87/r/+v/6//T0/1W/8/5v4Hw0wyyf8AAACQg5j7Hwozkf8BAACgNGLu/8UwE/kfAAAASiPm/k+HmWSS//X/s+z/9/H5/8vW/x9qOj5y6v+PNDyf6bjU/9f/Xwb6/53p/3eh/6//38/9/3A0r5nn9vr/9KN+6//H3P9wmEkm+R8AAAByEHP/L4WZyP8AAABQGjH3/3KYifwPAAAApRFz/6+EmWSS//X/9f/1/53/3/n/269f/39l0v/vTP+/C/1//f9+7v93of9PP+q3/n/M/b8aZjJv8HvtvxbwMAEAAIA+EnP/I2Emmfz+HwAAAHIQc//BMBP5HwAAAEoj5v5DYSaZ5H/9/9b+fzyjqv6//r/+v/6//v9K1Lv+/zuuLwr9f/1//X/9/+Xs/w/o/1M6/db/j7n/cJhJJvkfAAAAchBz/6+Fmcj/AAAAUBox9x8JM5H/AQAAoDRi7p8MM5mb/9cs31ZdJa2l2mvb/x/uz/6/8/9faf//J/r/+v+B/n97+v/Lw/n/O9P/70L/X//f+f/1/+mpfuv/x9w/FWbi9/8AAACw0qUfB8fcfzTMRP4HAACA0oi5/1iYifwPAAAApRFz/6NhJpnkf+f/1/93/v9r0f8falpe/79O/1//vxf0/zvT/+9C/1//X/9f/5+e6rf+f8z902EmmeR/AAAAyEHM/Z8JM5H/AQAAoDRi7v9smIn8DwAAAKURc//xMJNM8r/+v/5/7v3/SlFccP5//f9269f/X5n0/zvT/+9C/1//X/9f/5+e6rf+f8z9J8JMMsn/AAAAkIOY+0+Gmcj/AP/P3l002XlfeRy/47FoNfMSZj2rLJOV8xKyzS5VWadCDoPtMCcOMzjMzOQwO8zkMKODTqqUknTOkVp99dyWdNX3ef7n89mckcqa7rZbnvqN6us/AAAMI3f/PeMW+x8AAACGkbv/XnFLk/2v/9f/d+//Vzt5/3/vX6//P0P/r//fhn39/dXr/7oLReEX7P/vcMdr76b/1//r/yfp//X/+n/ON7f+P3f/veOWJvsfAAAAOsjdf5+4xf4HAACAYeTuv2/cYv8DAADAMHL3Xxu3NNn/+n/9v/5f/7+n/79Z/6//Xzbv/0/T/2+g/9f/6//1/2zV3Pr/3P33i1ua7H8AAADoIHf//eMW+x8AAACGkbv/AXGL/Q8AAADDyN3/wLilyf7X/+v/9f9L6f+Pev//vK9H/6//X0f/P03/v4H+X/+v/9f/s1Vz6/9z9z8obmmy/wEAAKCD3P0PjlvsfwAAABhG7v6HxC32PwAAAAwjd/9D45Ym+1//r//X/y+l/z+k9//1//r/hbtpdfbfCYfd/x/dwn9/QP8/7/5/tdL/TzlwP7/+y1vO538B+n/9P/vNrf/P3f+wuOXOq9XRS/0iAQAAgFnJ3f/wuKXJn/8DAABAB7n7r4tb7H8AAAAYRu7+6+OWJvtf/6//1//r//X/6z++/n+ZvP8/7fL7////33vcvW//7/3/ad7/33b/f+o7Q//Pss2t/8/df0Pc0mT/AwAAQAe5+x8Rt9j/AAAAMIzc/Y+MW+x/AAAAGEbu/kfFLU32v/5/tP7/v/f8unP6/9O1i/5f/6//1/+PTv8/zfv/G5z+19yJ+qH+X//v/X/9P5dnbv1/7v5Hxy1N9j8AAAB0kLv/MXGL/Q8AAADDyN3/2LjF/gcAAIBh5O5/XNzSZP/r/0fr//f+Ou//6//XfXz9v/5/ZPr/afr/DUZ5//8Sv2t23c9frl1//vp//T/7za3/z93/+Lilyf4HAACADnL3PyFusf8BAABgGLn7nxi32P8AAAAwjNz9T4pbmux//b/+fxn9f34E/b/+/8r3/0n/v0z6/2n6/w1G6f8v0a77+aV//vp//T/7za3/z93/5Lilyf4HAACADnL3PyVusf8BAABgGLn7nxq32P8AAAAwjNz9T4tbmux//b/+fxn9v/f/9f/e/9f/H4z+f5r+fwP9v/5f/6//Z6vm1v/n7r8xbmmy/wEAAKCD3P1Pj1vsfwAAABhG7v5nxC32PwAAAAwjd/8z45Ym+1//r//X/+v/9f/rP77+f5n0/9P0/xvo//X/+n/9P1s1o/7/nF91fPWsuKXJ/gcAAIAOcvc/O26x/wEAAGAYufufE7fY/wAAADCM3P3PjVua7H/9/2z6/9M531j9/4nVaqX/XzXt/0+c88+zvi/1//r/Q6D/n6b/30D/r//X/+v/2arD7f9P/Tt/+r8HkLv/eXFLk/0PAAAAHeTuf37cYv8DAADAMHL3vyBusf8BAABgGLn7Xxi3NNn/+v/Z9P+njdX/e////O+PTv2/9//30/8fDv3/NP3/Bvp//b/+X//PVh1u/7/5x7n7XxQ3HT1yyV8iAAAAMDO5+18ctzT5838AAADoIHf/S+IW+x8AAAAW6sZ9P5O7/6VxS5P9r//fbv9/9Jyf0//r/8///tD/6//1/1ee/n+a/n8D/b/+X/+v/2er5tb/5+5/WdzSZP8DAABAB7n7b4pb7H8AAAAYRu7+l8ct9j8AAAAMI3f/K+KWJvtf/+/9f/2//l//v/7j6/+XSf8/Tf+/gf5f/7/b/v/Y2f9R/88YLqL/P3ny5HVXvP/P3f/KuKXJ/gcAAIAOcve/Km6x/wEAAGAYuftfHbfY/wAAADCM3P2viVua7H/9f9P+P7/Vl9X/X79a6f/1//p//f80/f80/f8G+n/9v/f/9f9s1dze/8/d/9q4pcn+BwAAgA5y978ubrH/AQAAYBi5+18ft9j/AAAAMIzc/W+IW5rsf/1/0/7f+//6f/3/Yff/t6/0/4diEf3/iQt//Ln3/zfo//X/E9r1/3e5054f6v/1/+w3t/4/d/8b45Ym+x8AAAA6yN3/prjF/gcAAIBh5O5/c9xi/wMAAMAwcve/JW66usn+1//r//X/S+3/b9H/L6v/3/T+/9HVaqX/34JF9P8T5t7/b+f9//N/l5+l/9f/L/nz1//r/9lvbv1/7v63xi1N9j8AAAB0kLv/bXGL/Q8AAADDyN3/9rjF/gcAAIBh5O5/R9zSZP/r//X/+v+l9v/e/z9w/3/DIvp/7/9vif5/2jz6/wvT/+v/l/z56//1/xzcrvr/3P3vjFua7H8AAADoIHf/u+IW+x8AAACGkbv/3XGL/Q8AAADDyN3/nrilyf7X/+v/L6b/z89T/z9W/39sdv3/8T3/+5q8/6//3xL9/zT9/wb6f/2//v9G/T/bNLf3/3P3vzduabL/AQAAoIPc/e+LW/+vW/sfAAAAhpG7//1xi/0PAAAAw8jd/4G4pcn+1//r/73/r/8f/v1//X8r+v9p+v8N9P/6f/2/9//Zqrn1/7n7Pxi3NNn/AAAA0EHu/g/FLfY/AAAADCN3/4fjFvsfAAAAhpG7/+a4pcn+1//r//X/+n/9/5l/hvr/Mej/px1O/39C/6//r37+v+J3gf5f/7/p1zOmufX/ufs/Erc02f8AAADQQe7+j8Yt9j8AAAAMI3f/x+IW+x8AAAAW6eo1P5e7/+NxS5P9r//X/+v/9f/6//UfX/+/TDvp//ObQv/v/f/Qp///vz0/Wtr7/+f/3y/9v/6f7Ztb/5+7/xNxS5P9DwAAAB3k7v9k3GL/AwAAwDBy938qbrH/AQAAYBi5+z8dtzTZ//p//b/+X/+v/1//8fX/y+T9/2n6/w30/zt9P3/pn7/+X//PfnPr/3P3fyZuabL/AQAAoIPc/Z+NW+x/AAAAGEbu/s/FLfY/AAAADOP07s+4rOH+1//r//X/+n/9//qPr/9fJv3/NP3/Bvp//b/+X//PVs2t///86V91fPWFuKXJ/gcAAIAOcvffErfY/wAAADCM3P1fjFvsfwAAABhG7v4vxS1N9r/+X/+/jP7/5MmT1+n/9f97v56z/f+t+n+K/n+a/n8D/b/+X/+v/2er5tb/5+7/ctzSZP8DAABAB7n7vxK32P8AAAAwjNz9X41b7H8AAAAYRu7+r8UtTfa//n8G/f9x/b/3//X/q12//3/q95z+fwj6/2n6/w1G7P+PH/zL33U/f7l2/fnr//X/7De3/j93/9fjlib7HwAAADrI3f+NuMX+BwAAgGHk7v9m3GL/AwAAwDBy938rbmmy//X/h9f/n/p71+X9/xOr9Z+//l//P9v+3/v/w9D/T9P/bzBi/38Rdt3PL/3z1//r/9lvbv1/7v5vxy17h9+Ri/sqAQAAgDnJ3f+duKXJn/8DAABAB7n7vxu32P8AAAAwjNz934tbmux//f8M3v8fsP/3/v/67w/9/6z7/6v0/2PQ/0/T/2+g/9f/6/+31P/nd7P+v7u59f+5+78ftzTZ/wAAANBB7v4fxC32PwAAAAwjd/8P4xb7HwAAAIaRu//WuOWc/b+u7R6F/l//r//X/+v/1398/f8y6f+nHbT/P7a6vP4/6f/1//r/rv2/9/85Y279f+7+H8Ut/vwfAAAAFufIBX4+d/+P4xb7HwAAAIaRu/8ncYv9DwAAAMPI3f/TuOW2q3b1KR0q/b/+X/+v/9f/r//4+v9l0v9P8/7/Bvr/bfTz1+j/x+j/Vyv9P5dvbv1/7v6fxS3+/B8AAACGkbv/53GL/Q8AAADDyN3/i7jF/gcAAIBh5O7/ZdzSZP/r//X/l9n/n04z9f9n6P/P0P+vp/8/HPr/afr/DfT/3v/X/3v/n62aW/+fu/9XcUuT/Q8AAAAd5O7/ddxi/wMAAMAwcvf/Jm6x/wEAAGAYuft/G7c02f876//jb7X+f/H9v/f/r3j/f+qr0//r//X/B6X/n6b/30D/r//X/+v/2aq59f+5+38XtzTZ/wAAANBB7v7fxy32PwAAAAwjd/8f4hb7HwAAAIaRu/+PcUuT/e/9f/2//n/u/b/3//X/+v+Lof+fpv9fr/5B6f/1//p//T9bNbf+P3f/n+KWJvsfAAAAOsjd/+e4xf4HAACAYeTuvy1usf8BAABgGLn7/xK3NNn/+n/9v/5f/6//X//x9f/LpP+ftsv+/67/s/nDev9/5/1/fgr6f/2//p+tmFv/n7v/r3FLk/0PAAAAHeTu/1vcYv8DAADAMHL3/z1usf8BAABgGLn7/xG3NNn/G/r/Y/UX6v8n6f/3fv76//XfH/p//b/+/8rT/0+b7v/P+d3c7P3/ov/3/r/+X//PVs2t/8/d/8+4pcn+BwAAgA5y998et9j/AAAAMIzc/f+KW+x/AAAAGEbu/n/HLU32v/f/D6H/P7Kt/v8a/b/+X/+v/9f/b6D/n7bL9/8PQv+v/1/y56//1/+z39z6/9z9/wkAAP//9dVZJg==")
setrlimit(0x5, &(0x7f0000000080)={0x8000000000000000, 0x2})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r1 = open(&(0x7f0000000200)='.\x00', 0x0, 0x0)
lseek(r1, 0x5, 0x0)
ioctl$FICLONE(r1, 0x40049409, r1)
sendfile(r0, r0, &(0x7f0000000000)=0x371, 0x4)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000f80)=""/4096, 0x1000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x10, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xc2}}}, &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
utimensat(r2, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000000c0)=0x6, 0x4)
getdents(r2, 0x0, 0x0)
syz_read_part_table(0x1069, &(0x7f0000001140)="$eJzsz71NA0EQBeC398OxETERRIgmqAJBCSQUASKiFgduwaEDt2RprT25h3PwfclbaWeeNGFTd0meh6SljklK9suSKTXL+l1L7fF9bu116q/7+vnUc04eh2vHnLz1nvwnx7+k/Uz56pG813Eup4d1pje2MYeXsm79JvnYbXQ2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANyUSwAAAP//ecAQgA==")
[ 58.838823][ T4670] Bluetooth: hci0: command tx timeout
[ 59.055523][ T5320] loop0: detected capacity change from 0 to 32768
[ 59.100181][ T5320] ==================================================================
[ 59.103226][ T5320] BUG: KASAN: slab-out-of-bounds in dtReadFirst+0x51d/0xbe0
[ 59.106217][ T5320] Read of size 4 at addr ffff888043fcc028 by task syz.0.0/5320
[ 59.109165][ T5320]
[ 59.110100][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0
[ 59.113904][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 59.117425][ T5320] Call Trace:
[ 59.118517][ T5320]
[ 59.119489][ T5320] dump_stack_lvl+0x241/0x360
[ 59.121148][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10
[ 59.122963][ T5320] ? __pfx__printk+0x10/0x10
[ 59.124735][ T5320] ? _printk+0xd5/0x120
[ 59.126384][ T5320] ? __virt_addr_valid+0x183/0x530
[ 59.128373][ T5320] ? __virt_addr_valid+0x183/0x530
[ 59.130032][ T5320] print_report+0x169/0x550
[ 59.131512][ T5320] ? __virt_addr_valid+0x183/0x530
[ 59.133198][ T5320] ? __virt_addr_valid+0x183/0x530
[ 59.135003][ T5320] ? __virt_addr_valid+0x45f/0x530
[ 59.137002][ T5320] ? __phys_addr+0xba/0x170
[ 59.138579][ T5320] ? dtReadFirst+0x51d/0xbe0
[ 59.140205][ T5320] kasan_report+0x143/0x180
[ 59.141781][ T5320] ? dtReadFirst+0x51d/0xbe0
[ 59.143419][ T5320] dtReadFirst+0x51d/0xbe0
[ 59.145011][ T5320] jfs_readdir+0x817/0x4660
[ 59.146566][ T5320] ? mark_lock+0x9a/0x360
[ 59.148107][ T5320] ? __pfx_jfs_readdir+0x10/0x10
[ 59.149838][ T5320] ? __pfx_lock_acquire+0x10/0x10
[ 59.151647][ T5320] ? down_write+0x18c/0x220
[ 59.153370][ T5320] ? __pfx_down_write+0x10/0x10
[ 59.155199][ T5320] ? __pfx___mutex_lock+0x10/0x10
[ 59.157170][ T5320] ? __pfx_jfs_readdir+0x10/0x10
[ 59.159009][ T5320] wrap_directory_iterator+0x91/0xd0
[ 59.160990][ T5320] iterate_dir+0x571/0x800
[ 59.162721][ T5320] __se_sys_getdents64+0x1d3/0x4a0
[ 59.164731][ T5320] ? __pfx___se_sys_getdents64+0x10/0x10
[ 59.166859][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.169221][ T5320] ? __pfx_filldir64+0x10/0x10
[ 59.171075][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.173489][ T5320] ? do_syscall_64+0x100/0x230
[ 59.175308][ T5320] ? do_syscall_64+0xb6/0x230
[ 59.177057][ T5320] do_syscall_64+0xf3/0x230
[ 59.178631][ T5320] ? clear_bhb_loop+0x35/0x90
[ 59.180349][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.182389][ T5320] RIP: 0033:0x7f4569f7e719
[ 59.184033][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 59.191178][ T5320] RSP: 002b:00007f4569dff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 59.194310][ T5320] RAX: ffffffffffffffda RBX: 00007f456a135f80 RCX: 00007f4569f7e719
[ 59.197343][ T5320] RDX: 0000000000001000 RSI: 0000000020000f80 RDI: 0000000000000006
[ 59.200449][ T5320] RBP: 00007f4569ff132e R08: 0000000000000000 R09: 0000000000000000
[ 59.203569][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 59.206471][ T5320] R13: 0000000000000000 R14: 00007f456a135f80 R15: 00007fff3bc11fa8
[ 59.209574][ T5320]
[ 59.210812][ T5320]
[ 59.211774][ T5320] Allocated by task 5320:
[ 59.213446][ T5320] kasan_save_track+0x3f/0x80
[ 59.215252][ T5320] __kasan_slab_alloc+0x66/0x80
[ 59.217215][ T5320] kmem_cache_alloc_lru_noprof+0x139/0x2b0
[ 59.219470][ T5320] jfs_alloc_inode+0x28/0x70
[ 59.221219][ T5320] alloc_inode+0x65/0x1a0
[ 59.222831][ T5320] new_inode+0x22/0x1d0
[ 59.224444][ T5320] ialloc+0x4c/0x900
[ 59.225951][ T5320] jfs_create+0x1be/0xbb0
[ 59.227502][ T5320] path_openat+0x1c03/0x3590
[ 59.229291][ T5320] do_filp_open+0x235/0x490
[ 59.231027][ T5320] do_sys_openat2+0x13e/0x1d0
[ 59.232868][ T5320] __x64_sys_openat+0x247/0x2a0
[ 59.234589][ T5320] do_syscall_64+0xf3/0x230
[ 59.236332][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.238430][ T5320]
[ 59.239328][ T5320] The buggy address belongs to the object at ffff888043fcb750
[ 59.239328][ T5320] which belongs to the cache jfs_ip of size 2232
[ 59.244241][ T5320] The buggy address is located 32 bytes to the right of
[ 59.244241][ T5320] allocated 2232-byte region [ffff888043fcb750, ffff888043fcc008)
[ 59.249465][ T5320]
[ 59.250365][ T5320] The buggy address belongs to the physical page:
[ 59.252835][ T5320] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43fc8
[ 59.256163][ T5320] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 59.259184][ T5320] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 59.261818][ T5320] page_type: f5(slab)
[ 59.263261][ T5320] raw: 04fff00000000040 ffff88801f382140 dead000000000122 0000000000000000
[ 59.266219][ T5320] raw: 0000000000000000 00000000800d000d 00000001f5000000 0000000000000000
[ 59.269571][ T5320] head: 04fff00000000040 ffff88801f382140 dead000000000122 0000000000000000
[ 59.272759][ T5320] head: 0000000000000000 00000000800d000d 00000001f5000000 0000000000000000
[ 59.275971][ T5320] head: 04fff00000000003 ffffea00010ff201 ffffffffffffffff 0000000000000000
[ 59.279062][ T5320] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 59.282207][ T5320] page dumped because: kasan: bad access detected
[ 59.284501][ T5320] page_owner tracks the page as allocated
[ 59.286561][ T5320] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 5320, tgid 5319 (syz.0.0), ts 59083597611, free_ts 0
[ 59.293900][ T5320] post_alloc_hook+0x1f3/0x230
[ 59.295598][ T5320] get_page_from_freelist+0x303f/0x3190
[ 59.297625][ T5320] __alloc_pages_noprof+0x292/0x710
[ 59.299438][ T5320] alloc_pages_mpol_noprof+0x3e8/0x680
[ 59.301505][ T5320] alloc_slab_page+0x6a/0x120
[ 59.303439][ T5320] allocate_slab+0x5a/0x2f0
[ 59.305102][ T5320] ___slab_alloc+0xcd1/0x14b0
[ 59.306774][ T5320] __slab_alloc+0x58/0xa0
[ 59.308320][ T5320] kmem_cache_alloc_lru_noprof+0x1c5/0x2b0
[ 59.310238][ T5320] jfs_alloc_inode+0x28/0x70
[ 59.311818][ T5320] alloc_inode+0x65/0x1a0
[ 59.313338][ T5320] new_inode+0x22/0x1d0
[ 59.314796][ T5320] jfs_fill_super+0x408/0xc50
[ 59.316395][ T5320] mount_bdev+0x20a/0x2d0
[ 59.317909][ T5320] legacy_get_tree+0xee/0x190
[ 59.319581][ T5320] vfs_get_tree+0x90/0x2b0
[ 59.321216][ T5320] page_owner free stack trace missing
[ 59.323172][ T5320]
[ 59.324062][ T5320] Memory state around the buggy address:
[ 59.326091][ T5320] ffff888043fcbf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.328917][ T5320] ffff888043fcbf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 59.331800][ T5320] >ffff888043fcc000: 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.334666][ T5320] ^
[ 59.336529][ T5320] ffff888043fcc080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.339460][ T5320] ffff888043fcc100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 59.342205][ T5320] ==================================================================
[ 59.368744][ T5320] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 59.371207][ T5320] CPU: 0 UID: 0 PID: 5320 Comm: syz.0.0 Not tainted 6.12.0-rc5-syzkaller-00299-g11066801dd4b #0
[ 59.374847][ T5320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 59.378782][ T5320] Call Trace:
[ 59.380067][ T5320]
[ 59.381169][ T5320] dump_stack_lvl+0x241/0x360
[ 59.382838][ T5320] ? __pfx_dump_stack_lvl+0x10/0x10
[ 59.384741][ T5320] ? __pfx__printk+0x10/0x10
[ 59.386447][ T5320] ? preempt_schedule+0xe1/0xf0
[ 59.388234][ T5320] ? vscnprintf+0x5d/0x90
[ 59.389806][ T5320] panic+0x349/0x880
[ 59.391249][ T5320] ? check_panic_on_warn+0x21/0xb0
[ 59.393145][ T5320] ? __pfx_panic+0x10/0x10
[ 59.394842][ T5320] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 59.397099][ T5320] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 59.399255][ T5320] ? print_report+0x502/0x550
[ 59.400964][ T5320] check_panic_on_warn+0x86/0xb0
[ 59.402821][ T5320] ? dtReadFirst+0x51d/0xbe0
[ 59.404582][ T5320] end_report+0x77/0x160
[ 59.406099][ T5320] kasan_report+0x154/0x180
[ 59.407776][ T5320] ? dtReadFirst+0x51d/0xbe0
[ 59.409523][ T5320] dtReadFirst+0x51d/0xbe0
[ 59.411256][ T5320] jfs_readdir+0x817/0x4660
[ 59.413071][ T5320] ? mark_lock+0x9a/0x360
[ 59.414715][ T5320] ? __pfx_jfs_readdir+0x10/0x10
[ 59.416538][ T5320] ? __pfx_lock_acquire+0x10/0x10
[ 59.418339][ T5320] ? down_write+0x18c/0x220
[ 59.419992][ T5320] ? __pfx_down_write+0x10/0x10
[ 59.421656][ T5320] ? __pfx___mutex_lock+0x10/0x10
[ 59.423392][ T5320] ? __pfx_jfs_readdir+0x10/0x10
[ 59.425151][ T5320] wrap_directory_iterator+0x91/0xd0
[ 59.427079][ T5320] iterate_dir+0x571/0x800
[ 59.428693][ T5320] __se_sys_getdents64+0x1d3/0x4a0
[ 59.430621][ T5320] ? __pfx___se_sys_getdents64+0x10/0x10
[ 59.432779][ T5320] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 59.434931][ T5320] ? __pfx_filldir64+0x10/0x10
[ 59.436675][ T5320] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 59.438907][ T5320] ? do_syscall_64+0x100/0x230
[ 59.440650][ T5320] ? do_syscall_64+0xb6/0x230
[ 59.442315][ T5320] do_syscall_64+0xf3/0x230
[ 59.443977][ T5320] ? clear_bhb_loop+0x35/0x90
[ 59.445709][ T5320] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 59.447449][ T5320] RIP: 0033:0x7f4569f7e719
[ 59.448925][ T5320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 59.455331][ T5320] RSP: 002b:00007f4569dff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 59.458387][ T5320] RAX: ffffffffffffffda RBX: 00007f456a135f80 RCX: 00007f4569f7e719
[ 59.461486][ T5320] RDX: 0000000000001000 RSI: 0000000020000f80 RDI: 0000000000000006
[ 59.464438][ T5320] RBP: 00007f4569ff132e R08: 0000000000000000 R09: 0000000000000000
[ 59.467334][ T5320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 59.470250][ T5320] R13: 0000000000000000 R14: 00007f456a135f80 R15: 00007fff3bc11fa8
[ 59.473246][ T5320]
[ 59.474640][ T5320] Kernel Offset: disabled
[ 59.476241][ T5320] Rebooting in 86400 seconds..