last executing test programs:

2.915610588s ago: executing program 0 (id=944):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000b40)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_FLAGS={0xc, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x34}, 0x1, 0x0, 0x0, 0x2800}, 0x24000040)

2.771172959s ago: executing program 0 (id=946):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x0, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x80ffffaf}}]}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x60}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000005e00010100000000000000000c0000"], 0x1c}], 0x1}, 0x0)

2.626298226s ago: executing program 0 (id=948):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x12, 0xc3, 0x5b, 0x40, 0x403, 0x6010, 0xc698, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xf5, 0x75, 0xf6}}]}}]}}, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)

2.610657661s ago: executing program 4 (id=949):
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000180)=0x3)
sendto$inet6(r0, 0x0, 0x0, 0x8001, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
write$binfmt_misc(r0, 0x0, 0xffdc)

2.584022057s ago: executing program 1 (id=950):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x1)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1144, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1ad001, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000280)={0x1, 0x0, 0x80000}, 0x20)

2.470452664s ago: executing program 1 (id=951):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x1bc, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0)
recvmsg(r0, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x0)

2.469820747s ago: executing program 4 (id=952):
syz_mount_image$xfs(&(0x7f0000000000), &(0x7f0000009640)='./file0\x00', 0x200800, &(0x7f00000004c0), 0x4, 0x9606, &(0x7f0000012cc0)="$eJzs2gm8pnPhuP/nDGOXMVRSaiqiRdYsUc0MZigkS7QjS8pSUqESSgoVEe3Zt2xlCWVrJdlbKCFUskRabMP8X8ecYYyLb/36/l++dV3X63XO8zz3c9/3+Tyf972cw2wyaYOJg8Ecg2mNG8zceddOnjLm6nXvOGrz+Y9d5tR7DnjsiouOH3mcMPI4cTAYjBp5e2jasrGD004fNZj14eWPNveccw3NOxgsO/JyZD+DFac9zHvF9PWmztTMAx169Ns+074ebr7hHzH85PAD9jpiMBiMmWH7ocFgaPfHfVBpm0yYPOlRq0fchq1Gjzyf8Wu2aV/zXjwYzHvmgI+PGdcdego+0vDP3P0l545e9yn42f9xbTJh8loz+Q+fi7OMLFtx+Byf+Rw0NvNxfttim648MoUPH2+DwfAl7jHnyn9Em0yYtPbgia/zg6NWuXCfqdOum7MPpt0o5hwMBnONXF/neapd6t9rwsTlHr5nT389wj79WN6djosT3n7yQ8M36cFgsMBgMHbN6feCqqqq+s9owsTlVoP7/xxPdv8/5ZSFz+z+X1VV9Z/bWhMmLjd8r5/p/j/Pk93/d1z4oj2n/bf/8StO2+qhp/ZDVFVV1b/UpLXw/j/mye7/K6522drd/6uqqv5zW3+dh+//88x0/1/wye7/bzl5lUVG1pv+e8ODM+xyaIb/n/DADMtnmWH5/TMsHz3DfmZcf7YZlt87w/LZh9+D9ccNBmOn/3vBKY8uHjtu+L2R5ffNsHz8o/9OZ9HVZ1g+YYblk2ZYPnFkrMPLJ8+wfPIM66/5JFNdVVX1f6b1l5u02mCGf2c/snih6e/T/f+Cs65b8qkab1VVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVf1n9tAdZ587GAyGBoPBqMFgymDk+YyPg6lTp04dfn3K+Zdf/pQN9P9GQ+ddO3nKmKvXveOozec/dplT7zng0Vn6j+0//xPUv9Ow/xzHjxsMtt/oqR5KPQV1/rvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+4h+44+9yRY2DUYDBlMPJ89+mPZ+3/5reOrLryxqfedfCjWy46fpuRZ+ddO3nKNk/B2J+ChoY/65ir173jqM3nP3aZU+854L/g7PnP/wT17/Sw/zZDg8HI+T1m+Fxed8L6Gy4xGAwOvuvUjVcYPPLeSsPvrTJ2lsEsD2+6xMPf11iUd7z7mtMexw9/W/CRfZzy8P7XmnrYLEMzDWKGXnXejUe9a5N7lp/5cfEn/hyjpj854voz7p46derUxywcaY4n2Hj6/qd/lpnP85GxLzE89qV22u69S71/l12X3Ga7zbbecustt19muZWWX2HZZVZY+RVLbbXNtlsuPe37E8zZuIe/r/bPzNk8M8/ZHRNmnLOZP9sTzdm4J5+zh/c4ZdehDafP2az/4pyt9uRzNm6bkR+06PjRg00fnpqhwWDR1UcPdh5+sczsg8Gia4ysu9DwuquOHTUY7P/oBx1+Nvsjx+DQ7sPrbDJpg4mPjuzxn/Bx1+nHrLjo+JHHCSOPE6cNcdzg0UNx7OC000cNz8VjpnnuOecamncwWHbk5ch+BiuPvHvo9PWmztTMAx169Ns+074ebr7hnQw/effSZ18zfC7OtP3/H/0/Xf8f57XS0CMTNTTyNbLONK8Jk9d69Gc9PA3DczfLyLIVh01mnrP/zR433nGzDsY8yXgnrTVxueHFM83/9E3w+LpzsQs/PO3YGr/itK0e+n9GofHO8yTjXWsCjneeJxvv8R+59PRpu/pfG+9M17q1H/4+/p+51g2e/Fo3C+1gy0sWmfla97onHuJjzuPpczT7TCs90bVu50OW3X14/+Of/Fq39vDYRz/mWjdqMFh0tenXuuEL36TRg/2HXyw7/GLy6MGxwy+We/jFnIPzh1+8/J07bLvF8II1p8/J0sP7HT926GH3C1e8dfGpB06duvrIWMaPfexYR46PcTPezyeMnTaZ07edvt/hVafv95ZnTntv0sh+J/wL+52+LY33rvmmvTd5ZL8TZ9rv6CfZ7/RtH3c+LDH0yIXrCa43k2a63oz8jTP9xz3ma7ZpX/NePBjMeyb5zrTu/3jNpPN3jicZ74SJy602PL6Zzt9HDkc6fy+dfPXwvWLewWCwwGAwds3pY/8XG3qi8c765OOdCOOd9cnGe+Vx263zvzDewQzjfcxxtsn6046VNUeOs8n/wvE7fduZr2OjH3532mV/zX/mOjbucdexPWYZNdNkz9AT/c62Baw/7flCj/6ee+1Jx0yf+9Ez7fd/+p1ths8yBNexMTP9PT9qzRsGQzTnux+/6mVDBz35nI8ePPZvi+lzPn3bJ5vzyf/MnD/nyef8n/09eYkXTnt/9Ezjn3HO19vv2ftOn/PZZtrv/zTnk5/83vH4OR8/GE1zvvT90+btya6nTzTn07edPufDH3GVsbMO1hi+Z43M+aR/Zs4X+t85zueC9ac93/KRReccdeobp8/5zHP8P835pH91zsc9cpwv+vB7Lxg1mG22wc6b7bTTjstM+z795bLTvvO16N5rp83zk91Ln8ho+rZPdl6s/s8YjfmnjIb+J6OFZ30io0dPrSN32PEZ/6/XotX/VaMBX4uuPmbavD3Z70VPNOfTt6X74IIzbD/z36Hrr/Pw793zzHQfnL4J3gfPOWvtvafvcmSzB2ca5vT76gMzLJ9lhuX3z7B89Az7mXH92WZYfu8My4c/wmwzrD+dddzw37wjy6c8uvrY4V+exo0sv2+G5eMf3XbR1WdYPmGG5ZNmWD7x0UNj0ckzLJ88w/prDv7Fpv836W1mvsjXP1v//ddd/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+4h+44+9yRY2DUYDBlMO350MjjYPeh9W5/zfDjYDAYveKJU9d7qsf7FDd03rWTp4y5et07jtp8/mOXOfWeA/4Lzp7//E9Q/04P+28zNBiMnN9jthkMButOWH/DJQaDwXpTT1xx1OCR9xYafm/VsaMGg/2HHrOD2R9ZZ2j34XU2mbTBxMFgjpE1xj3uhz7uPHrMiouOH3mcMPI4cdr1adzg0eN17OC000cNZn14+aPNPedcQ/MOBsuOvBzZz2DFaQ/zXjF9vakzNfNAhx79ts+0r4ebb/hHDD/ZeevJzx2eq5m2/z/T9Gv1NqP+x1U7/93l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u/jX/jpb/thJ1l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5i3vojrPPHTkGRg0GUwbTng/tPvI4GDr5tBePHCKjd7nq6MOe6vE+xQ2dd+3kKWOuXveOozaf/9hlTr3ngP+Cs+c//xPUv9PD/tsMDQYj5/eYbQaDwboT1t9wicFgcNjRV+0yavDIewsNv7fq2FGDwf5Dj9nB7I+sM7T78DqbTNpg4mAwx8ga4x73Qx93Hj1mxUXHjzxOGHmcOO36NG7w6PE6dnDa6aMGsz68/NHmnnOuoXkHg2VHXo7sZ7DitId5r5i+3tSZmnmgQ49+22fa18PNN/wjhp/sNc+1Jw/P1Uzb/59p+rV6m1H/46qd/+7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5S/uoTvOPnfkGBg1GEwZTHs+auRxaPebb9ptw+HH4dfzr7n3tU/1eJ/ihs67dvKUMVeve8dRm89/7DKn3nPAf8HZ85//Cerfadh/juPHDQbbb/RUD6Wegjr/3eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvLX9xDd5x97sjTUY8uHbV7xwU2dN61k6eMuXrdO47afP5jlzn1ngOe6gH9uz2B/x75Yxb/PfPHLP4fzx+z+H8if8ziv1f+mMX/k/ljFv+988cs/p/KH7P4fzp/zOK/T/6YxX/f/DGL/375Yxb/z+SPWfw/mz9m8f9c/pjFf//8MYv/AfljFv/P549Z/A/MH7P4H5Q/ZvH/Qv6Yxf/g/DGL/yH5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfy/lj9m8f96/pjF/xv5Yxb/Q/PHLP6H5Y9Z/A/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/h/M3/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8v5U/ZvH/dv6Yxf/U/DGL/2n5Yxb/0/PHLP5n5I9Z/L+TP2bxPzN/zOJ/Vv6Yxf/s/DGL/3fzxyz+38sfs/ifkz9m8T83f8zif17+mMX//Pwxi/8F+WMW/+/nj1n8f5A/ZvH/Yf6Yxf9H+WMW/x/nj1n8f5I/ZvG/MH/M4n9R/pjF/6f5Yxb/i/PHLP4/yx+z+F+SP2bxvzR/zOJ/Wf6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/H+eP2bx/0X+mMX/l/ljFv9f5Y9Z/K/OH7P4X5M/ZvH/df6Yxf83+WMW/2vzxyz+v80fs/hflz9m8b8+f8zif0P+mMX/d/ljFv8b88cs/jflj1n8b84fs/j/Pn/M4v+H/DGL/x/zxyz+t+SPWfz/lD9m8b81f8zif1v+mMX/9vwxi/8d+WMW/z/nj1n878wfs/jflT9m8f9L/pjF/+78MYv/X/PHLP5/yx+z+P89f8zi/4/8MYv/PfljFv9788cs/vflj1n8788fs/g/kD9m8Z+SP2bxfzB/zOL/UP6YxX9q/pjEf5ZB/pjFfyh/zOI/Kn/M4j9L/pjFf9b8MYv/6Pwxi/9s+WMW/9nzxyz+c+SPWfznzB+z+M+VP2bxnzt/zOI/T/6YxX/e/DGL/9Pyxyz+8+WPWfzH5I9Z/OfPH7P4j80fs/gvkD9m8V8wf8zi//T8MYv/M/LHLP7PzB+z+C+UP2bxf1b+mMV/4fwxi/+z88cs/s/JH7P4L5I/ZvF/bv6Yxf95+WMW/3H5Yxb/5+ePWfxfkP/jmnXk0eD/wvwxy/m/aP6YxX+x/DGL/4vyxyz+i+ePWfyXyB+z+L84f8zi/5L8MYv/S/PHLP4vyx+z+C+ZP2bxf3n+mMV/qfwxi//S+WMW/2Xyxyz+y+aPWfyXyx+z+C+fP2bxf0X+mMV/hfwxi/+K+WMW/5Xyxyz+K+ePWfxfmT9m8V8lf8ziv2r+mMX/VfljFv9X549Z/F+TP2bxH58/ZvGfkD9m8Z+YP2bxXy1/zOK/ev6YxX+N/DGL/6T8MYv/ZJX/LP/0mhb/NVX+/3wW/7Xyxyz+r80fs/i/Ln/M4r92/pjFf538MYv/uvljFv/X549Z/NfLH7P4vyF/zOK/fv6YxX+D/DGL/4b5Yxb/jfLHLP5vzB+z+G+cP2bx3yR/zOL/pvwxi/+b88cs/m/JH7P4vzV/zOL/tvwxi//b88cs/u/IH7P4b5o/ZvHfLH/M4r95/pjF/535Yxb/LfLHLP5b5o9Z/LfKH7P4b50/ZvF/V/6YxX+b/DGL/7vzxyz+78kfs/hvmz9m8d8uf8ziv33+mMV/h/wxi/9788cs/u/LH7P475g/ZvF/f/6YxX+n/DGL/wfyxyz+H8wfs/h/KH/M4r9z/pjFf5f8MYv/rvljFv8P549Z/D+SP2bx/2j+mMV/t/wxi//H8scs/rvnj1n898gfs/jvmT9m8f94/pjF/xP5Yxb/vfLHLP6fzB+z+O+dP2bx/1T+mMX/0/ljFv998scs/vvmj1n898sfs/h/Jn/M4v/Z/DGL/+fyxyz+++ePWfwPyB+z+H8+f8zif2D+mMX/oPwxi/8X8scs/gfnj1n8D8kfs/h/MX/M4v+l/DGL/5fzxyz+X8kfs/h/NX/M4v+1/DGL/9fzxyz+38gfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+b+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOL/rfwxi/+388cs/qfmj1n8T8sfs/ifnj9m8T8jf8zi/538MYv/mfljFv+z8scs/mfnj1n8v5s/ZvH/Xv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4fz9/zOL/g/wxi/8P88cs/j/KH7P4/zh/zOL/k/wxi/+F+WMW/4vyxyz+P80fs/hfnD9m8f9Z/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zi//P8MYv/L/LHLP6/zB+z+P8qf8zif3X+mMX/mvwxi/+v88cs/r/JH7P4X5s/ZvH/bf6Yxf+6/DGL//X5Yxb/G/LHLP6/yx+z+N+YP2bxvyl/zOJ/c/6Yxf/3+WMW/z/kj1n8/5g/ZvG/JX/M4v+n/DGL/635Yxb/2/LHLP63549Z/O/IH7P4/zl/zOJ/Z/6Yxf+u/DGL/1/yxyz+d+ePWfz/mj9m8f9b/pjF/+/5Yxb/f+SPWfzvyR+z+N+bP2bxvy9/zOJ/f/6Yxf+B/DGL/5T8MYv/g/ljFv+H8scs/lPzxyT+sw7yxyz+Q/ljFv9R+WMW/1nyxyz+s+aPWfxH549Z/GfLH7P4z54/ZvGfI3/M4j9n/pjFf678MYv/3PljFv958scs/vPmj1n8n5Y/ZvGfL3/M4j8mf8ziP3/+mMV/bP6YxX+B/DGL/4L5Yxb/p+ePWfyfkT9m8X9m/pjFf6H8MYv/s/LHLP4L549Z/J+dP2bxf07+mMV/kfwxi/9z88cs/s/LH7P4j8sfs/g/P3/M4v+C/DGL/wvzxyz+i+aPWfwXyx+z+L8of8ziv3j+mMV/ifwxi/+L88cs/i/JH7P4vzR/zOL/svwxi/+S+WMW/5fnj1n8l8ofs/gvnT9m8V8mf8ziv2z+mMV/ufwxi//y+WMW/1fkj1n8V8gfs/ivmD9m8V8pf8ziv3L+mMX/lfljFv9V8scs/qvmj1n8X5U/ZvF/df6Yxf81+WMW//H5Yxb/CfljFv+J+WMW/9Xyxyz+q+ePWfzXyB+z+E/KH7P4T84fs/ivmT9m8V8rf8zi/9r8MYv/6/LHLP5r549Z/NfJH7P4r5s/ZvF/ff6YxX+9/DGL/xsGl+cPWfzX7/zHLP4b5I9Z/DfMH7P4b5Q/ZvF/Y/6YxX/j/DGL/yb5Yxb/N+WPWfzfnD9m8X9L/pjF/635Yxb/t+WPWfzfnj9m8X9H/pjFf9P8MYv/ZvljFv/N88cs/u/MH7P4b5E/ZvHfMn/M4r9V/pjFf+v8MYv/u/LHLP7b5I9Z/N+dP2bxf0/+mMV/2/wxi/92+WMW/+3zxyz+O+SPWfzfmz9m8X9f/pjFf8f8MYv/+/PHLP475Y9Z/D+QP2bx/2D+mMX/Q/ljFv+d88cs/rvkj1n8d80fs/h/OH/M4v+R/DGL/0fzxyz+u+WPWfw/lj9m8d89f8ziv0f+mMV/z/wxi//H88cs/p/IH7P475U/ZvH/ZP6YxX/v/DGL/6fyxyz+n84fs/jvkz9m8d83f8ziv1/+mMX/M/ljFv/P5o9Z/D+XP2bx3z9/zOJ/QP6Yxf/z+WMW/wPzxyz+B+WPWfy/kD9m8T84f8zif0j+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+v5Y9Z/L+eP2bx/0b+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP7fzB+z+J+QP2bxPzF/zOJ/Uv6Yxf/k/DGL/yn5Yxb/b+WPWfy/nT9m8T81f8zif1r+mMX/9Pwxi/8Z+WMW/+/kj1n8z8wfs/iflT9m8T87f8zi/938MYv/9/LHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF//v5Yxb/H+SPWfx/mD9m8f9R/pjF/8f5Yxb/n+SPWfwvzB+z+F+UP2bx/2n+mMX/4vwxi//P8scs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/5/nj1n8f5E/ZvH/Zf6Yxf9X+WMW/6vzxyz+1+SPWfx/nT9m8f9N/pjF/9r8MYv/b/PHLP7X5Y9Z/K/PH7P435A/ZvH/Xf6Yxf/G/DGL/035Yxb/m/PHLP6/zx+z+P8hf8zi/8f8MYv/LfljFv8/5Y9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/8/5Yxb/O/PHLP535Y9Z/P+SP2bxvzt/zOL/1/wxi//f8scs/n/PH7P4/yN/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/Kfkj1n8H8wfs/g/lD9m8Z+aPybxHz3IH7P4D+WPWfxH5Y9Z/GfJH7P4z5o/ZvEfnT9m8Z8tf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+c+ePWfznyR+z+M+bP2bxf1r+mMV/vvwxi/+Y/DGL//z5Yxb/sfljFv8F8scs/gvmj1n8n54/ZvF/Rv6Yxf+Z+WMW/4Xyxyz+z8ofs/gvnD9m8X92/pjF/zn5Yxb/RfLHLP7PzR+z+D8vf8ziPy5/zOL//Pwxi/8L8scs/i/MH7P4L5o/ZvFfLH/M4v+i/DGL/+L5Yxb/JfLHLP4vzh+z+L8kf8zi/9L8MYv/y/LHLP5L5o9Z/F+eP2bxXyp/zOK/dP6YxX+Z/DGL/7L5Yxb/5fLHLP7L549Z/F+RP2bxXyF/zOK/Yv6YxX+l/DGL/8r5Yxb/V+aPWfxXyR+z+K+aP2bxf1X+mMX/1fljFv/X5I9Z/Mfnj1n8J+SPWfwn5o9Z/FfLH7P4r54/ZvFfI3/M4j8pf8ziPzl/zOK/Zv6YxX+t/DGL/2vzxyz+r8sfs/ivnT9m8V8nf8ziv27+mMX/9fljFv/18scs/m/IH7P4r58/ZvHfIH/M4r9h/pjFf6P8MYv/G/PHLP4b549Z/DfJH7P4vyl/zOL/5vwxi/9b8scs/m/NH7P4vy1/zOL/9vwxi/878scs/pvmj1n8N8sfs/hvnj9m8X9n/pjFf4v8MYv/lvljFv+t8scs/lvnj1n835U/ZvHfJn/M4v/u/DGL/3vyxyz+2+aPWfy3yx+z+G+fP2bx3yF/zOL/3vwxi//78scs/jvmj1n8358/ZvHfKX/M4v+B/DGL/wfzxyz+H8ofs/jvnD9m8d8lf8ziv2v+mMX/w/ljFv+P5I9Z/D+aP2bx3y1/zOL/sfwxi//u+WMW/z3yxyz+e+aPWfw/nj9m8f9E/pjFf6/8MYv/J/PHLP57549Z/D+VP2bx/3T+mMV/n/wxi/+++WMW//3yxyz+n8kfs/h/Nn/M4v+5/DGL//75Yxb/A/LHLP6fzx+z+B+YP2bxPyh/zOL/hfwxi//B+WMW/0Pyxyz+X8wfs/h/KX/M4v/l/DGL/1fyxyz+X80fs/h/LX/M4v/1/DGL/zfyxyz+h+aPWfwPyx+z+B+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvH/Zv6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4fyt/zOL/7fwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+H8nf8zif2b+mMX/rPwxi//Z+WMW/+/mj1n8v5c/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/t/PH7P4/yB/zOL/w/wxi/+P8scs/j/OH7P4/yR/zOJ/Yf6Yxf+i/DGL/0/zxyz+F+ePWfx/lj9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+V+aPWfyvyh+z+P88f8zi/4v8MYv/L/PHLP6/yh+z+F+dP2bxvyZ/zOL/6/wxi/9v8scs/tfmj1n8f5s/ZvG/Ln/M4n99/pjF/4b8MYv/7/LHLP435o9Z/G/KH7P435w/ZvH/ff6Yxf8P+WMW/z/mj1n8b8kfs/j/KX/M4n9r/pjF/7b8MYv/7fljFv878scs/n/OH7P435k/ZvG/K3/M4v+X/DGL/935Yxb/v+aPWfz/lj9m8f97/pjF/x/5Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4j8lf8zi/2D+mMX/ofwxi//U/DGJ/2yD/DGL/1D+mMV/VP6YxX+W/DGL/6z5Yxb/0fljFv/Z8scs/rPnj1n858gfs/jPmT9m8Z8rf8ziP3f+mMV/nvwxi/+8+WMW/6flj1n858sfs/iPyR+z+M+fP2bxH5s/ZvFfIH/M4r9g/pjF/+n5Yxb/Z+SPWfyfmT9m8V8of8zi/6z8MYv/wvljFv9n549Z/J+TP2bxXyR/zOL/3Pwxi//z8scs/uPyxyz+z88fs/i/IH/M4v/C/DGL/6L5Yxb/xfLHLP4vyh+z+C+eP2bxXyJ/zOL/4vwxi/9L8scs/i/NH7P4vyx/zOK/ZP6Yxf/l+WMW/6Xyxyz+S+ePWfyXyR+z+C+bP2bxXy5/zOK/fP6Yxf8V+WMW/xXyxyz+K+aPWfxXyh+z+K+cP2bxf2X+mMV/lfwxi/+q+WMW/1flj1n8X50/ZvF/Tf6YxX98/pjFf0L+mMV/Yv6YxX+1/DGL/+r5Yxb/NfLHLP6T8scs/pPzxyz+a+aPWfzXyh+z+L82f8zi/7r8MYv/2vljFv918scs/uvmj1n8X58/ZvFfL3/M4v+G/DGL//r5Yxb/DfLHLP4b5o9Z/DfKH7P4vzF/zOK/cf6YxX+T/DGL/5vyxyz+b84fs/i/JX/M4v/W/DGL/9vyxyz+b88fs/i/I3/M4r9p/pjFf7P8MYv/5vljFv935o9Z/LfIH7P4b5k/ZvHfKn/M4r91/pjF/135Yxb/bfLHLP7vzh+z+L8nf8ziv23+mMV/u/wxi//2+WMW/x3yxyz+780fs/i/L3/M4r9j/pjF//35Yxb/nfLHLP4fyB+z+H8wf8zi/6H8MYv/zvljFv9d8scs/rvmj1n8P5w/ZvH/SP6Yxf+j+WMW/93yxyz+H8sfs/jvnj9m8d8jf8ziv2f+mMX/4/ljFv9P5I9Z/PfKH7P4fzJ/zOK/d/6Yxf9T+WMW/0/nj1n898kfs/jvmz9m8d8vf8zi/5n8MYv/Z/PHLP6fyx+z+O+fP2bxPyB/zOL/+fwxi/+B+WMW/4Pyxyz+X8gfs/gfnD9m8T8kf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1/LHLP5fzx+z+H8jf8zif2j+mMX/sPwxi//h+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/b+aPWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/7fyxyz+384fs/ifmj9m8T8tf8zif3r+mMX/jPwxi/938scs/mfmj1n8z8ofs/ifnT9m8f9u/pjF/3v5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4v/9/DGL/w/yxyz+P8wfs/j/KH/M4v/j/DGL/0/yxyz+F+aPWfwvyh+z+P80f8zif3H+mMX/Z/ljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//P88cs/r/IH7P4/zJ/zOL/q/wxi//V+WMW/2vyxyz+v84fs/j/Jn/M4n9t/pjF/7f5Yxb/6/LHLP7X549Z/G/IH7P4/y5/zOJ/Y/6Yxf+m/DGL/835Yxb/3+ePWfz/kD9m8f9j/pjF/5b8MYv/n/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4v/n/DGL/535Yxb/u/LHLP5/yR+z+N+dP2bx/2v+mMX/b/ljFv+/549Z/P+RP2bxvyd/zOJ/b/6Yxf++/DGL//35Yxb/B/LHLP5T8scs/g/mj1n8H8ofs/hPzR+T+M8+yB+z+A/lj1n8R+WPWfxnyR+z+M+aP2bxH50/ZvGfLX/M4j97/pjFf478MYv/nPljFv+58scs/nPnj1n858kfs/jPmz9m8X9a/pjFf778MYv/mPwxi//8+WMW/7H5Yxb/BfLHLP4L5o9Z/J+eP2bxf0b+mMX/mfljFv+F8scs/s/KH7P4L5w/ZvF/dv6Yxf85+WMW/0Xyxyz+z80fs/g/L3/M4j8uf8zi//z8MYv/C/LHLP4vzB+z+C+aP2bxXyx/zOL/ovwxi//i+WMW/yXyxyz+L84fs/i/JH/M4v/S/DGL/8vyxyz+S+aPWfxfnj9m8V8qf8ziv3T+mMV/mfwxi/+y+WMW/+Xyxyz+y+ePWfxfkT9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1fmj1n8V8kfs/ivmj9m8X9V/pjF/9X5Yxb/1+SPWfzH549Z/Cfkj1n8J+aPWfxXyx+z+K+eP2bxXyN/zOI/KX/M4j85f8ziv2b+mMV/rfwxi/9r88cs/q/LH7P4r50/ZvFfJ3/M4r9u/pjF//X5Yxb/9fLHLP5vyB+z+K+fP2bx3yB/zOK/Yf6YxX+j/DGL/xvzxyz+G+ePWfw3yR+z+L8pf8zi/+b8MYv/W/LHLP5vzR+z+L8tf8zi//b8MYv/O/LHLP6b5o9Z/DfLH7P4b54/ZvF/Z/6YxX+L/DGL/5b5Yxb/rfLHLP5b549Z/N+VP2bx3yZ/zOL/7vwxi/978scs/tvmj1n8t8sfs/hvnz9m8d8hf8zi/978MYv/+/LHLP475o9Z/N+fP2bx3yl/zOL/gfwxi/8H88cs/h/KH7P475w/ZvHfJX/M4r9r/pjF/8P5Yxb/j+SPWfw/mj9m8d8tf8zi/7H8MYv/7vljFv898scs/nvmj1n8P54/ZvH/RP6YxX+v/DGL/yfzxyz+e+ePWfw/lT9m8f90/pjFf5/8MYv/vvljFv/98scs/p/JH7P4fzZ/zOL/ufwxi//++WMW/wPyxyz+n88fs/gfmD9m8T8of8zi/4X8MYv/wfljFv9D8scs/l/MH7P4fyl/zOL/5fwxi/9X8scs/l/NH7P4fy1/zOL/9fwxi/838scs/ofmj1n8D8sfs/gfnj9m8T8if8zif2T+mMX/qPwxi//R+WMW/2Pyxyz+x+aPWfyPyx+z+B+fP2bx/2b+mMX/hPwxi/+J+WMW/5Pyxyz+J+ePWfxPyR+z+H8rf8zi/+38MYv/qfljFv/T8scs/qfnj1n8z8gfs/h/J3/M4n9m/pjF/6z8MYv/2fljFv/v5o9Z/L+XP2bxPyd/zOJ/bv6Yxf+8/DGL//n5Yxb/C/LHLP7fzx+z+P8gf8zi/8P8MYv/j/LHLP4/zh+z+P8kf8zif2H+mMX/ovwxi/9P88cs/hfnj1n8f5Y/ZvG/JH/M4n9p/pjF/7L8MYv/5fljFv8r8scs/lfmj1n8r8ofs/j/PH/M4v+L/DGL/y/zxyz+v8ofs/hfnT9m8b8mf8zi/+v8MYv/b/LHLP7X5o9Z/H+bP2bxvy5/zOJ/ff6Yxf+G/DGL/+/yxyz+N+aPWfxvyh+z+N+cP2bx/33+mMX/D/ljFv8/5o9Z/G/JH7P4/yl/zOJ/a/6Yxf+2/DGL/+35Yxb/O/LHLP5/zh+z+N+ZP2bxvyt/zOL/l/wxi//d+WMW/7/mj1n8/5Y/ZvH/e/6Yxf8f+WMW/3vyxyz+9+aPWfzvyx+z+N+fP2bxfyB/zOI/JX/M4v9g/pjF/6H8MYv/1Pwxif8cg/wxi/9Q/pjFf1T+mMV/lvwxi/+s+WMW/9H5Yxb/2fLHLP6z549Z/OfIH7P4z5k/ZvGfK3/M4j93/pjFf578MYv/vPljFv+n5Y9Z/OfLH7P4j8kfs/jPnz9m8R+bP2bxXyB/zOK/YP6Yxf/p+WMW/2fkj1n8n5k/ZvFfKH/M4v+s/DGL/8L5Yxb/Z+ePWfyfkz9m8V8kf8zi/9z8MYv/8/LHLP7j8scs/s/PH7P4vyB/zOL/wvwxi/+i+WMW/8Xyxyz+L8ofs/gvnj9m8V8if8zi/+L8MYv/S/LHLP4vzR+z+L8sf8ziv2T+mMX/5fljFv+l8scs/kvnj1n8l8kfs/gvmz9m8V8uf8ziv3z+mMX/FfljFv8V8scs/ivmj1n8V8ofs/ivnD9m8X9l/pjFf5X8MYv/qvljFv9X5Y9Z/F+dP2bxf03+mMV/fP6YxX9C/pjFf2L+mMV/tfwxi//q+WMW/zXyxyz+k/LHLP6T88cs/mvmj1n818ofs/i/Nn/M4v+6/DGL/9r5Yxb/dfLHLP7r5o9Z/F+fP2bxXy9/zOL/hvwxi//6+WMW/w3yxyz+G+aPWfw3yh+z+L8xf8ziv3H+mMV/k/wxi/+b8scs/m/OH7P4vyV/zOL/1vwxi//b8scs/m/PH7P4vyN/zOK/af6YxX+z/DGL/+b5Yxb/d+aPWfy3yB+z+G+ZP2bx3yp/zOK/df6Yxf9d+WMW/23yxyz+784fs/i/J3/M4r9t/pjFf7v8MYv/9vljFv8d8scs/u/NH7P4vy9/zOK/Y/6Yxf/9+WMW/53yxyz+H8gfs/h/MH/M4v+h/DGL/875Yxb/XfLHLP675o9Z/D+cP2bx/0j+mMX/o/ljFv/d8scs/h/LH7P4754/ZvHfI3/M4r9n/pjF/+P5Yxb/T+SPWfz3yh+z+H8yf8ziv3f+mMX/U/ljFv9P549Z/PfJH7P475s/ZvHfL3/M4v+Z/DGL/2fzxyz+n8sfs/jvnz9m8T8gf8zi//n8MYv/gfljFv+D8scs/l/IH7P4H5w/ZvE/JH/M4v/F/DGL/5fyxyz+X84fs/h/JX/M4v/V/DGL/9fyxyz+X88fs/h/I3/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/2/mj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+38scs/t/OH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/d/LHLP5n5o9Z/M/KH7P4n50/ZvH/bv6Yxf97+WMW/3Pyxyz+5+aPWfzPyx+z+J+fP2bxvyB/zOL//fwxi/8P8scs/j/MH7P4/yh/zOL/4/wxi/9P8scs/hfmj1n8L8ofs/j/NH/M4n9x/pjF/2f5Yxb/S/LHLP6X5o9Z/C/LH7P4X54/ZvG/In/M4n9l/pjF/6r8MYv/z/PHLP6/yB+z+P8yf8zi/6v8MYv/1fljFv9r8scs/r/OH7P4/yZ/zOJ/bf6Yxf+3+WMW/+vyxyz+1+ePWfxvyB+z+P8uf8zif2P+mMX/pvwxi//N+WMW/9/nj1n8/5A/ZvH/Y/6Yxf+W/DGL/5/yxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOL/5/wxi/+d+WMW/7vyxyz+f8kfs/jfnT9m8f9r/pjF/2/5Yxb/v+ePWfz/kT9m8b8nf8zif2/+mMX/vvwxi//9+WMW/wfyxyz+U/LHLP4P5o9Z/B/KH7P4T80fk/jPOcgfs/gP5Y9Z/Eflj1n8Z8kfs/jPmj9m8R+dP2bxny1/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvF/Wv6YxX++/DGL/5j8MYv//PljFv+x+WMW/wXyxyz+C+aPWfyfnj9m8X9G/pjF/5n5Yxb/hfLHLP7Pyh+z+C+cP2bxf3b+mMX/OfljFv9F8scs/s/NH7P4Py9/zOI/Ln/M4v/8/DGL/wvyxyz+L8wfs/gvmj9m8V8sf8zi/6L8MYv/4vljFv8l8scs/i/OH7P4vyR/zOL/0vwxi//L8scs/kvmj1n8X54/ZvFfKn/M4r90/pjFf5n8MYv/svljFv/l8scs/svnj1n8X5E/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9X5o9Z/FfJH7P4r5o/ZvF/Vf6Yxf/V+WMW/9fkj1n8x+ePWfwn5I9Z/Cfmj1n8V8sfs/ivnj9m8V8jf8ziPyl/zOI/OX/M4r9m/pjFf638MYv/a/PHLP6vyx+z+K+dP2bxXyd/zOK/bv6Yxf/1+WMW//Xyxyz+b8gfs/ivnz9m8d8gf8ziv2H+mMV/o/wxi/8b88cs/hvnj1n8N8kfs/i/KX/M4v/m/DGL/1vyxyz+b80fs/i/LX/M4v/2/DGL/zvyxyz+m+aPWfw3yx+z+G+eP2bxf2f+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfzflT9m8d8mf8zi/+78MYv/e/LHLP7b5o9Z/LfLH7P4b58/ZvHfIX/M4v/e/DGL//vyxyz+O+aPWfzfnz9m8d8pf8zi/4H8MYv/B/PHLP4fyh+z+O+cP2bx3yV/zOK/a/6Yxf/D+WMW/4/kj1n8P5o/ZvHfLX/M4v+x/DGL/+75Yxb/PfLHLP575o9Z/D+eP2bx/0T+mMV/r/wxi/8n88cs/nvnj1n8P5U/ZvH/dP6YxX+f/DGL/775Yxb//fLHLP6fyR+z+H82f8zi/7n8MYv//vljFv8D8scs/p/PH7P4H5g/ZvE/KH/M4v+F/DGL/8H5Yxb/Q/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+H8tf8zi//X8MYv/N/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8f9m/pjF/4T8MYv/ifljFv+T8scs/ifnj1n8T8kfs/h/K3/M4v/t/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4fyd/zOJ/Zv6Yxf+s/DGL/9n5Yxb/7+aPWfy/lz9m8T8nf8zif27+mMX/vPwxi//5+WMW/wvyxyz+388fs/j/IH/M4v/D/DGL/4/yxyz+P84fs/j/JH/M4n9h/pjF/6L8MYv/T/PHLP4X549Z/H+WP2bxvyR/zOJ/af6Yxf+y/DGL/+X5Yxb/K/LHLP5X5o9Z/K/KH7P4/zx/zOL/i/wxi/8v88cs/r/KH7P4X50/ZvG/Jn/M4v/r/DGL/2/yxyz+1+aPWfx/mz/2WP/RT/Vw/v2ewP+6/DHL+X99/pjF/4b8MYv/7/LHLP435o9Z/G/KH7P435w/ZvH/ff6Yxf8P+WMW/z/mj1n8b8kfs/j/KX/M4n9r/pjF/7b8MYv/7fljFv878scs/n/OH7P435k/ZvG/K3/M4v+X/DGL/935Yxb/v+aPWfz/lj9m8f97/pjF/x/5Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4j8lf8zi/2D+mMX/ofwxi//U/DGJ/1yD/DGL/1D+mMV/VP6YxX+W/DGL/6z5Yxb/0fljFv/Z8scs/rPnj1n858gfs/jPmT9m8Z8rf+y/33+OR97K//H99/s/3Fzz5I9Z/OfNH7P4Py1/zOI/X/6YxX9M/pjFf/78MYv/2Pwxi/8C+WMW/wXzxyz+T88fs/g/I3/M4v/M/DGL/0L5Yxb/Z+WPWfwXzh+z+D87f8zi/5z8MYv/IvljFv/n5o9Z/J+XP2bxH5c/ZvF/fv6Yxf8F+WMW/xfmj1n8F80fs/gvlj9m8X9R/pjFf/H8MYv/EvljFv8X549Z/F+SP2bxf2n+mMX/ZfljFv8l88cs/i/PH7P4L5U/ZvFfOn/M4r9M/pjFf9n8MYv/cvljFv/l88cs/q/IH7P4r5A/ZvFfMX/M4r9S/pjFf+X8MYv/K/PHLP6r5I9Z/FfNH7P4vyp/zOL/6vwxi/9r8scs/uPzxyz+E/LHLP4T88cs/qvlj1n8V88fs/ivkT9m8Z+UP2bxn5w/ZvFfM3/M4r9W/pjF/7X5Yxb/1+WPWfzXzh+z+K+TP2bxXzd/zOL/+vwxi/96+WMW/zfkj1n8188fs/hvkD9m8d8wf8ziv1H+mMX/jfljFv+N88cs/pvkj1n835Q/ZvF/c/6Yxf8t+WMW/7fmj1n835Y/ZvF/e/6Yxf8d+WMW/03zxyz+m+WPWfw3zx+z+L8zf8ziv0X+mMV/y/wxi/9W+WMW/63zxyz+78ofs/hvkz9m8X93/pjF/z35Yxb/bfPHLP7b5Y9Z/LfPH7P475A/ZvF/b/6Yxf99+WMW/x3zxyz+788fs/jvlD9m8f9A/pjF/4P5Yxb/D+WPWfx3zh+z+O+SP2bx3zV/zOL/4fwxi/9H8scs/h/NH7P475Y/ZvH/WP6YxX/3/DGL/x75Yxb/PfPHLP4fzx+z+H8if8ziv1f+mMX/k/ljFv+988cs/p/KH7P4fzp/zOK/T/6YxX/f/DGL/375Yxb/z+SPWfw/mz9m8f9c/pjFf//8MYv/AfljFv/P549Z/A/MH7P4H5Q/ZvH/Qv6Yxf/g/DGL/yH5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfy/lj9m8f96/pjF/xv5Yxb/Q/PHLP6H5Y9Z/A/PH7P4H5E/ZvE/Mn/M4n9U/pjF/+j8MYv/MfljFv9j88cs/sflj1n8j88fs/h/M3/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8v5U/ZvH/dv6Yxf/U/DGL/2n5Yxb/0/PHLP5n5I9Z/L+TP2bxPzN/zOJ/Vv6Yxf/s/DGL/3fzxyz+38sfs/ifkz9m8T83f8zif17+mMX//Pwxi/8F+WMW/+/nj1n8f5A/ZvH/Yf6Yxf9H+WMW/x/nj1n8f5I/ZvG/MH/M4n9R/pjF/6f5Yxb/i/PHLP4/yx+z+F+SP2bxvzR/zOJ/Wf6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/H+eP2bx/0X+mMX/l/ljFv9f5Y9Z/K/OH7P4X5M/ZvH/df6Yxf83+WMW/2vzxyz+v80fs/hflz9m8b8+f8zif0P+mMX/d/ljFv8b88cs/jflj1n8b84fs/j/Pn/M4v+H/DGL/x/zxyz+t+SPWfz/lD9m8b81f8zif1v+mMX/9vwxi/8d+WMW/z/nj1n878wfs/jflT9m8f9L/pjF/+78MYv/X/PHLP5/yx+z+P89f8zi/4/8MYv/PfljFv9788cs/vflj1n8788fs/g/kD9m8Z+SP2bxfzB/zOL/UP6YxX9q/pjEf+5B/pjFfyh/zOI/Kn/M4j9L/pjFf9b8MYv/6Pwxi/9s+WMW/9nzxyz+c+SPWfznzB+z+M+VP2bxnzt/zOI/T/6YxX/e/DGL/9Pyxyz+8+WPWfzH5I9Z/OfPH7P4j80fs/gvkD9m8V8wf8zi//T8MYv/M/LHLP7PzB+z+C+UP2bxf1b+mMV/4fwxi/+z88cs/s/JH7P4L5I/ZvF/bv6Yxf95+WMW/3H5Yxb/5+ePWfxfkD9m8X9h/pjFf9H8MYv/YvljFv8X5Y9Z/BfPH7P4L5E/ZvF/cf6Yxf8l+WMW/5fmj1n8X5Y/ZvFfMn/M4v/y/DGL/1L5Yxb/pfPHLP7L5I9Z/JfNH7P4L5c/ZvFfPn/M4v+K/DGL/wr5Yxb/FfPHLP4r5Y9Z/FfOH7P4vzJ/zOK/Sv6YxX/V/DGL/6vyxyz+r84fs/i/Jn/M4j8+f8ziPyF/zOI/MX/M4r9a/pjFf/X8MYv/GvljFv9J+WMW/8n5Yxb/NfPHLP5r5Y9Z/F+bP2bxf13+mMV/7fwxi/86+WMW/3Xzxyz+r88fs/ivlz9m8X9D/pjFf/38MYv/BvljFv8N88cs/hvlj1n835g/ZvHfOH/M4r9J/pjF/035Yxb/N+ePWfzfkj9m8X9r/pjF/235Yxb/t+ePWfzfkT9m8d80f8ziv1n+mMV/8/wxi/8788cs/lvkj1n8t8wfs/hvlT9m8d86f8zi/678MYv/NvljFv93549Z/N+TP2bx3zZ/zOK/Xf6YxX/7/DGL/w75Yxb/9+aPWfzflz9m8d8xf8zi//78MYv/TvljFv8P5I9Z/D+YP2bx/1D+mMV/5/wxi/8u+WMW/13zxyz+H84fs/h/JH/M4v/R/DGL/275Yxb/j+WPWfx3zx+z+O+RP2bx3zN/zOL/8fwxi/8n8scs/nvlj1n8P5k/ZvHfO3/M4v+p/DGL/6fzxyz+++SPWfz3zR+z+O+XP2bx/0z+mMX/s/ljFv/P5Y9Z/PfPH7P4H5A/ZvH/fP6Yxf/A/DGL/0H5Yxb/L+SPWfwPzh+z+B+SP2bx/2L+mMX/S/ljFv8v549Z/L+SP2bx/2r+mMX/a/ljFv+v549Z/L+RP2bxPzR/zOJ/WP6Yxf/w/DGL/xH5Yxb/I/PHLP5H5Y9Z/I/OH7P4H5M/ZvE/Nn/M4n9c/pjF//j8MYv/N/PHLP4n5I9Z/E/MH7P4n5Q/ZvE/OX/M4n9K/pjF/1v5Yxb/b+ePWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf87+WMW/zPzxyz+Z+WPWfzPzh+z+H83f8zi/738MYv/OfljFv9z88cs/uflj1n8z88fs/hfkD9m8f9+/pjF/wf5Yxb/H+aPWfx/lD9m8f9x/pjF/yf5Yxb/C/PHLP4X5Y9Z/H+aP2bxvzh/zOL/s/wxi/8l+WMW/0vzxyz+l+WPWfwvzx+z+F+RP2bxvzJ/zOJ/Vf6Yxf/n+WMW/1/kj1n8f5k/ZvH/Vf6Yxf/q/DGL/zX5Yxb/X+ePWfx/kz9m8b82f8zi/9v8MYv/dfljFv/r88cs/jfkj1n8f5c/ZvG/MX/M4n9T/pjF/+b8MYv/7/PHLP5/yB+z+P8xf8zif0v+mMX/T/ljFv9b88cs/rflj1n8b88fs/jfkT9m8f9z/pjF/878MYv/XfljFv+/5I9Z/O/OH7P4/zV/zOL/t/wxi//f88cs/v/IH7P435M/ZvG/N3/M4n9f/pjF//78MYv/A/ljFv8p+WMW/wfzxyz+D+WPWfyn5o9J/OcZ5I9Z/Ifyxyz+o/LHLP6z5I9Z/GfNH7P4j84fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+D8tf8ziP1/+mMV/TP6YxX/+/DGL/9j8MYv/AvljFv8F88cs/k/PH7P4PyN/zOL/zPwxi/9C+WMW/2flj1n8F84fs/g/O3/M4v+c/DGL/yL5Yxb/5+aPWfyflz9m8R+XP2bxf37+mMX/BfljFv8X5o9Z/BfNH7P4L5Y/ZvF/Uf6YxX/x/DGL/xL5Yxb/F+ePWfxfkj9m8X9p/pjF/2X5Yxb/JfPHLP4vzx+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/5fPHLP6vyB+z+K+QP2bxXzF/zOK/Uv6YxX/l/DGL/yvzxyz+q+SPWfxXzR+z+L8qf8zi/+r8MYv/a/LHLP7j88cs/hPyxyz+E/PHLP6r5Y9Z/FfPH7P4r5E/ZvGflD9m8Z+cP2bxXzN/zOK/Vv6Yxf+1+WMW/9flj1n8184fs/ivkz9m8V83f8zi//r8MYv/evljFv835I9Z/NfPH7P4b5A/ZvHfMH/M4r9R/pjF/435Yxb/jfPHLP6b5I9Z/N+UP2bxf3P+mMX/LfljFv+35o9Z/N+WP2bxf3v+mMX/HfljFv9N88cs/pvlj1n8N88fs/i/M3/M4r9F/pjFf8v8MYv/VvljFv+t88cs/u/KH7P4b5M/ZvF/d/6Yxf89+WMW/23zxyz+2+WPWfy3zx+z+O+QP/aI/1Yn/1f7vzd/zHL+vy9/zOK/Y/6Yxf/9+WMW/53yxyz+H8gfs/h/MH/M4v+h/DGL/875Yxb/XfLHLP675o9Z/D+cP2bx/0j+mMX/o/ljFv/d8scs/h/LH7P4754/ZvHfI3/M4r9n/pjF/+P5Yxb/T+SPWfz3yh+z+H8yf8ziv3f+mMX/U/ljFv9P549Z/PfJH7P475s/ZvHfL3/M4v+Z/DGL/2fzxyz+n8sfs/jvnz9m8T8gf8zi//n8MYv/gfljFv+D8scs/l/IH7P4H5w/ZvE/JH/M4v/F/DGL/5fyxyz+X84fs/h/JX/M4v/V/DGL/9fyxyz+X88fs/h/I3/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/2/mj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+38scs/t/OH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/d/LHLP5n5o9Z/M/KH7P4n50/ZvH/bv6Yxf97+WMW/3Pyxyz+5+aPWfzPyx+z+J+fP2bxvyB/zOL//fwxi/8P8scs/j/MH7P4/yh/zOL/4/wxi/9P8scs/hfmj1n8L8ofs/j/NH/M4n9x/pjF/2f5Yxb/S/LHLP6X5o9Z/C/LH7P4X54/ZvG/In/M4n9l/pjF/6r8MYv/z/PHLP6/yB+z+P8yf8zi/6v8MYv/1fljFv9r8scs/r/OH7P4/yZ/zOJ/bf6Yxf+3+WMW/+vyxyz+1+ePWfxvyB+z+P8uf8zif2P+mMX/pvwxi//N+WMW/9/nj1n8/5A/ZvH/Y/6Yxf+W/DGL/5/yxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOL/5/wxi/+d+WMW/7vyxyz+f8kfs/jfnT9m8f9r/pjF/2/5Yxb/v+ePWfz/kT9m8b8nf8zif2/+mMX/vvwxi//9+WMW/wfyxyz+U/LHLP4P5o9Z/B/KH7P4T80fk/jPO8gfs/gP5Y9Z/Eflj1n8Z8kfs/jPmj9m8R+dP2bxny1/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvF/Wv6YxX++/DGL/5j8MYv//PljFv+x+WMW/wXyxyz+C+aPWfyfnj9m8X9G/pjF/5n5Yxb/hfLHLP7Pyh+z+C+cP2bxf3b+mMX/OfljFv9F8scs/s/NH7P4Py9/zOI/Ln/M4v/8/DGL/wvyxyz+L8wfs/gvmj9m8V8sf8zi/6L8MYv/4vljFv8l8scs/i/OH7P4vyR/zOL/0vwxi//L8scs/kvmj1n8X54/ZvFfKn/M4r90/pjFf5n8MYv/svljFv/l8scs/svnj1n8X5E/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9X5o9Z/FfJH7P4r5o/ZvF/Vf6Yxf/V+WMW/9fkj1n8x+ePWfwn5I9Z/Cfmj1n8V8sfs/ivnj9m8V8jf8ziPyl/zOI/OX/M4r9m/pjFf638MYv/a/PHLP6vyx+z+K+dP2bxXyd/zOK/bv6Yxf/1+WMW//Xyxyz+b8gfs/ivnz9m8d8gf8ziv2H+mMV/o/wxi/8b88cs/hvnj1n8N8kfs/i/KX/M4v/m/DGL/1vyxyz+b80fs/i/LX/M4v/2/DGL/zvyxyz+m+aPWfw3yx+z+G+eP2bxf2f+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfzflT9m8d8mf8zi/+78MYv/e/LHLP7b5o9Z/LfLH7P4b58/ZvHfIX/M4v/e/DGL//vyxyz+O+aPWfzfnz9m8d8pf8zi/4H8MYv/B/PHLP4fyh+z+O+cP2bx3yV/zOK/a/6Yxf/D+WMW/4/kj1n8P5o/ZvHfLX/M4v+x/DGL/+75Yxb/PfLHLP575o9Z/D+eP2bx/0T+mMV/r/wxi/8n88cs/nvnj1n8P5U/ZvH/dP6YxX+f/DGL/775Yxb//fLHLP6fyR+z+H82f8zi/7n8MYv//vljFv8D8scs/p/PH7P4H5g/ZvE/KH/M4v+F/DGL/8H5Yxb/Q/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+H8tf8zi//X8MYv/N/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8f9m/pjF/4T8MYv/ifljFv+T8scs/ifnj1n8T8kfs/h/K3/M4v/t/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4fyd/zOJ/Zv6Yxf+s/DGL/9n5Yxb/7+aPWfy/lz9m8T8nf8zif27+mMX/vPwxi//5+WMW/wvyxyz+388fs/j/IH/M4v/D/DGL/4/yxyz+P84fs/j/JH/M4n9h/pjF/6L8MYv/T/PHLP4X549Z/H+WP2bxvyR/zOJ/af6Yxf+y/DGL/+X5Yxb/K/LHLP5X5o9Z/K/KH7P4/zx/zOL/i/wxi/8v88cs/r/KH7P4X50/ZvG/Jn/M4v/r/DGL/2/yxyz+1+aPWfx/mz9m8b8uf8zif33+mMX/hvwxi//v8scs/jfmj1n8b8ofs/jfnD9m8f99/pjF/w/5Yxb/P+aPWfxvyR+z+P8pf8zif2v+mMX/tvwxi//t+WMW/zvyxyz+f84fs/jfmT9m8b8rf8zi/5f8MYv/3fljFv+/5o9Z/P+WP2bx/3v+mMX/H/ljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8ziPyV/zOL/YP6Yxf+h/DGL/9T8MYn/0wb5Yxb/ofwxi/+o/DGL/yz5Yxb/WfPHLP6j88cs/rPlj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMV/7vwxi/88+WMW/3nzxyz+T8sfs/jPlz9m8R+TP2bxnz9/zOI/Nn/M4r9A/pjFf8H8MYv/0/PHLP7PyB+z+D8zf8ziv1D+mMX/WfljFv+F88cs/s/OH7P4Pyd/zOK/SP6Yxf+5+WMW/+flj1n8x+WPWfyfnz9m8X9B/pjF/4X5Yxb/RfPHLP6L5Y9Z/F+UP2bxXzx/zOK/RP6Yxf/F+WMW/5fkj1n8X5o/ZvF/Wf6YxX/J/DGL/8vzxyz+S+WPWfyXzh+z+C+TP2bxXzZ/zOK/XP6YxX/5/DGL/yvyxyz+K+SPWfxXzB+z+K+UP2bxXzl/zOL/yvwxi/8q+WMW/1Xzxyz+r8ofs/i/On/M4v+a/DGL//j8MYv/hPwxi//E/DGL/2r5Yxb/1UX+c/wL61r81xD5/ytZ/Cflj1n8J+ePWfzXzB+z+K+VP2bxf23+mMX/dfljFv+188cs/uvkj1n8180fs/i/Pn/M4r9e/pjF/w35Yxb/9fPHLP4b5I9Z/DfMH7P4b5Q/ZvF/Y/6YxX/j/DGL/yb5Yxb/N+WPWfzfnD9m8X9L/pjF/635Yxb/t+WPWfzfnj9m8X9H/pjFf9P8MYv/ZvljFv/N88cs/u/MH7P4b5E/ZvHfMn/M4r9V/pjFf+v8MYv/u/LHLP7b5I9Z/N+dP2bxf0/+mMV/2/wxi/92+WMW/+3zxyz+O+SPWfzfmz9m8X9f/pjFf8f8MYv/+/PHLP475Y9Z/D+QP2bx/2D+mMX/Q/ljFv+d88cs/rvkj1n8d80fs/h/OH/M4v+R/DGL/0fzxyz+u+WPWfw/lj9m8d89f8ziv0f+mMV/z/wxi//H88cs/p/IH7P475U/ZvH/ZP6YxX/v/DGL/6fyxyz+n84fs/jvkz9m8d83f8ziv1/+mMX/M/ljFv/P5o9Z/D+XP2bx3z9/zOJ/QP6Yxf/z+WMW/wPzxyz+B+WPWfy/kD9m8T84f8zif0j+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+v5Y9Z/L+eP2bx/0b+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP7fzB+z+J+QP2bxPzF/zOJ/Uv6Yxf/k/DGL/yn5Yxb/b+WPWfy/nT9m8T81f8zif1r+mMX/9Pwxi/8Z+WMW/+/kj1n8z8wfs/iflT9m8T87f8zi/938MYv/9/LHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF//v5Yxb/H+SPWfx/mD9m8f9R/pjF/8f5Yxb/n+SPWfwvzB+z+F+UP2bx/2n+mMX/4vwxi//P8scs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/5/nj1n8f5E/ZvH/Zf6Yxf9X+WMW/6vzxyz+1+SPWfx/nT9m8f9N/pjF/9r8MYv/b/PHLP7X5Y9Z/K/PH7P435A/ZvH/Xf6Yxf/G/DGL/035Yxb/m/PHLP6/zx+z+P8hf8zi/8f8MYv/LfljFv8/5Y9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/8/5Yxb/O/PHLP535Y9Z/P+SP2bxvzt/zOL/1/wxi//f8scs/n/PH7P4/yN/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/Kfkj1n8H8wfs/g/lD9m8Z+aPybxn2+QP2bxH8ofs/iPyh+z+M+SP2bxnzX/xzTLyKPFf3T+mMV/tvwxi//s+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6Yxf9p+WMW//nyxyz+Y/LHLP7z549Z/Mfmj1n8F8gfs/gvmD9m8X96/pjF/xn5Yxb/Z+aPWfwXyh+z+D8rf8ziv3D+mMX/2fljFv/n5I9Z/BfJH7P4Pzd/zOL/vPwxi/+4/DGL//Pzxyz+L8gfs/i/MH/M4r9o/pjFf7H8MYv/i/LHLP6L549Z/JfIH7P4vzh/zOL/kvwxi/9L88cs/i/LH7P4L5k/ZvF/ef6YxX+p/DGL/9L5Yxb/ZfLHLP7L5o9Z/JfLH7P4L58/ZvF/Rf6YxX+F/DGL/4r5Yxb/lfLHLP4r549Z/F+ZP2bxXyV/zOK/av6Yxf9V+WMW/1fnj1n8X5M/ZvEfnz9m8Z+QP2bxn5g/ZvFfLX/M4r96/pjFf438MYv/pPwxi//k/DGL/5r5Yxb/tfLHLP6vzR+z+L8uf8ziv3b+mMV/nfwxi/+6+WMW/9fnj1n818sfs/i/IX/M4r9+/pjFf4P8MYv/hvljFv+N8scs/m/MH7P4b5w/ZvHfJH/M4v+m/DGL/5vzxyz+b8kfs/i/NX/M4v+2/DGL/9vzxyz+78gfs/hvmj9m8d8sf8ziv3n+mMX/nfljFv8t8scs/lvmj1n8t8ofs/hvnT9m8X9X/pjFf5v8MYv/u/PHLP7vyR+z+G+bP2bx3y5/zOK/ff6YxX+H/DGL/3vzxyz+78sfs/jvmD9m8X9//pjFf6f8MYv/B/LHLP4fzB+z+H8of8ziv3P+mMV/l/wxi/+u+WMW/w/nj1n8P5I/ZvH/aP6YxX+3/DGL/8fyxyz+u+ePWfz3yB+z+O+ZP2bx///Yo6cEUAgACIDZeNm2bdu2bdv1kW3btm3btm3zAnuCduYKc6D/qOX/IP9Ry//B/qOW/0P8Ry3/h/qPWv4P8x+1/B/uP2r5P8J/1PJ/pP+o5f8o/1HL/9H+o5b/Y/xHLf/H+o9a/o/zH7X8H+8/avk/wX/U8n+i/6jl/yT/Ucv/yf6jlv9T/Ect/6f6j1r+T/Mftfyf7j9q+T/Df9Tyf6b/qOX/LP9Ry//Z/qOW/3P8Ry3/5/qPWv7P8x+1/J/vP2r5v8B/1PJ/of+o5f8i/1HL/8X+o5b/S/xHLf+X+o9a/i/zH7X8X+4/avm/wn/U8n+l/6jl/yr/Ucv/1f6jlv9r/Ect/9f6j1r+r/Mftfxf7z9q+b/Bf9Tyf6P/qOX/Jv9Ry//N/qOW/1v8Ry3/t/qPWv5v8x+1/N/uP2r5v8N/1PJ/p/+o5f8u/1HL/93+o5b/e/xHLf/3+o9a/u/zH7X83+8/avl/wH/U8v+g/6jl/yH/Ucv/w/6jlv9H/Ect/4/6j1r+H/Mftfw/7j9q+X/Cf9Ty/6T/qOX/Kf9Ry//T/qOW/2f8Ry3/z/qPWv6f8x+1/D/vP2r5f8F/1PL/ov+o5f8l/1HL/8v+o5b/V/xHLf+v+o9a/l/zH7X8v+4/avl/w3/U8v+m/6jl/y3/Ucv/2/6jlv93/Ect/+/6j1r+3/Mftfy/7z9q+f/Af9Ty/6H/qOX/I/9Ry//H/qOW/0/8Ry3/n/qPWv4/8x+1/H/uP2r5/8J/1PL/pf+o5f8r/1HL/9f+o5b/b/xHLf/f+o9a/r/zH7X8f+8/avn/wX/U8v+j/6jl/yf/Ucv/z/6jlv9f/Ect/7/6j1r+f/Mftfz/7j9q+f/Df9Ty/6f/qOX/L/9Ry//f/qOW/3/8Ry3///qPSv4HDOQ/avkf2H/U8j+I/6jlf1D/Ucv/YP6jlv/B/Uct/0P4j1r+h/QftfwP5T9q+R/af9TyP4z/qOV/WP9Ry/9w/qOW/+H9Ry3/I/iPWv5H9B+1/A/wH7X8j+Q/avkf2X/U8j+K/6jlf1T/Ucv/aP6jlv/R/Uct/2P4j1r+x/QftfyP5T9q+R/bf9TyP47/qOV/XP9Ry/94/qOW//H9Ry3/E/iPWv4n9B+1/E/kP2r5n9h/1PI/if+o5X9S/1HL/2T+o5b/yf1HLf9T+I9a/qf0H7X8T+U/avmf2n/U8j+N/6jlf1r/Ucv/dP6jlv/p/Uct/zP4j1r+Z/QftfzP5D9q+Z/Zf9TyP4v/qOV/Vv9Ry/9s/qOW/9n9Ry3/c/iPWv7n9B+1/M/lP2r5n9t/1PI/j/+o5X9e/1HL/3z+o5b/+f1HLf8L+I9a/hf0H7X8L+Q/avlf2H/U8r+I/6jlf1H/Ucv/Yv6jlv/F/Uct/0v4j1r+l/Qftfwv5T9q+V/af9Tyv4z/qOV/Wf9Ry/9y/qOW/+X9Ry3/K/iPWv5X9B+1/K/kP2r5X9l/1PK/iv+o5X9V/1HL/2r+o5b/1f1HLf9r+I9a/tf0H7X8r+U/avlf23/U8r+O/6jlf13/Ucv/ev6jlv/1/Uct/xv4j1r+N/Qftfxv5D9q+d/Yf9Tyv4n/qOV/U/9Ry/9m/qOW/839Ry3/W/iPWv639B+1/G/lP2r539p/1PK/jf+o5X9b/1HL/3b+o5b/7f1HLf87+I9a/nf0H7X87+Q/avnf2X/U8r+L/6jlf1f/Ucv/bv6jlv/d/Uct/3v4j1r+9/Qftfzv5T9q+d/bf9Tyv4//qOV/X/9Ry/9+/qOW//39Ry3/B/iP/nf/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAf+zbbWydZeHH8bvbOsb+/JMRF1yGJptcKCTCbPeQ8YKwydhWB914HgMc3dqNjXabXYddAffwYhIhPEgyyRIlypahhJnQSAwEK4ho0EVNNPgAiEIUjRMh6Ja4WHPa09Ieu8Zz1etalM/nRc+577Pfva3Jd/e9wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/ns1NC48Mr5m2KnxQw8+eLil73XO0ZU3H/htz4UDr+WPl41wyXFDD3p7e3vnPDd7R/nwlKIoSj/bzvLxpMpx6fo767/Q2X8UFvS8tOT4lJ83Hjmw5vRH6rqP3l/bd7a2uGndhtaWj40rinBxbdFZOqirKYqwuLa4r3RQXzpYUls8UjqY3XdwavHt0sH5aze3NpdOLI3+nsH/iobGncX4YcUWw/40GNr/zvpv3TnwOsolB642oSj3f0XX99+q+GzACfofuH5YWNl/1b9B4ISq6/+FBQOvo1zyX+7/k59a9cpIn524/4Hrh4/rH9IZ4fl/WKOVz/0Vz/8zRrjk4P6qmq7jpf4vve3ZmeVTE/6d5/93rx8urux/3LDn/9Jz/KKB5/9TiiJcMsZvB7ynNDTuOjLa/X/0/idMr9jUDO3/jPbN+0v9P77ke0+UT9VW2f+iUe7/45ZW/FqB6jQ0frm34v5fRf/FR0a45GD/bz/x64dL/T/2+wfOHPJZNf1fUtn/rI62LbO2bu86b0Nb0/qW9S2b6mbPnzOvvm7eBXNn9T0S9H8d43cF3hvGdv8vJldsaoqiZXB/TfeBp0v9z33wwTnlU5Oq7H/xqPf/Ge7/MKIPjSsmTiw6mzo62uv6vw4c1vd/7f9hI/Rfxd//zzqn/MNqy681RTFtcH/XmXevKPX/zqFnd5dPTayy/yWj9r9g8OcFIozx/t9csRnW/8FDL/U9/y+79+AZ5VPV/v1/6aj9v+r+D2PR0FjxP/z8h5X631VcFtlpaPDf/yCdHP0/9s4NPXHr8An9Qzo5+v/d546eG7cOy/QP6eTof8LGB56PW4dL9Q/p5Oh/+dT5K+LW4TL9Qzo5+l/76rl/jluHRv1DOjn6P+dLuzvj1mG5/iGdHP0/1D5nW9w6rNA/pJOj/5+e9tBrcetwuf4hnRz9Hzt2z41x63CF/iGdHP137zn7B3HrcKX+IZ0c/V++bmGIW4er9A/p5Oh/+rQ/Ph63DlfrH9LJ0f+8P/39tLh1uEb/kE6O/u/4/Ip9cetwrf4hnRz9j7/+lRfj1mGl/iGdHP0vPXvbwrh1uE7/kE6O/pt/0twbtw6r9A/p5Oh/1td/tCFuHa7XP6STo//Dyx/dE7cON+gf0snR/566YkrcOtyof0gnR/9f++7ph+LW4ZP6h3Ry9P+bp56cH7cOq/UP6eTo/7kP3P6NuHW4Sf+QTo7+713z4llx69Ckf0gnR/8P733+i3HrsEb/kE6O/t94o+3/4tZhrf4hnRz9T5506utx69Csf0gnR/8Lb/1Ke9w6tOgf0snRf9vu7h/GrcM6/UM6Ofr/8PFpq+LWYb3+IZ0c/a+cu/f9cetws/4hnRz9v2/Zhbvi1mGD/iGdHP1f1PPRi+LWYaP+IZ0c/Xc889mvxq3DLfqHdHL0v3fma4vj1qFV/5BOjv5fXr30x3Hr0KZ/SCdH/289et2muHXYpH9IJ0f/T/7s7WNx67BZ/5BOjv7//4JFf41bhy36h3Ry9L94yZtr49bhU/qHdHL0v7H7Hy/HrUO7/iGdHP3PPHz1srh12Kp/SCdH/985r25/3Dp06B/SydH/nVfuq49bh236h3Ry9L//4F13x63DrfqHdHL0/+YvZkyPW4dP6x/SydH//VMOXRu3Dp36h3Ry9P/LTbXPxK3Ddv1DOjn6/9u+qTvi1qFL/5BOjv6ffr3nD3HrcJv+IZ0c/a+e8KuJcetwu/4hnRz9T+3acl/cOtyhf0gnR//z72k6P24dPqN/SCdH/1v/8sI349Zhh/4hna3bu25pam1taffGG2+8GXxzsv9kAlJ7N/qT/SsBAAAAAAAAAAAAAABOJMc/JzrZv0cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+yQ4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24FgAAAAAQJi/dRC9GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBXAAAA//+O1eBI")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000200)={0x71e5b314, 0x800000, 0x0, 0x0, 0x100000})
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000140)={0xfffffffd, 0xa, 0xfffffffe, 0x8, 0x800})

1.710183109s ago: executing program 2 (id=961):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002180), 0x8200, 0x0)
poll(&(0x7f00000021c0)=[{r1, 0x6040}], 0x1, 0x0)
ioctl$TCFLSH(r0, 0x5608, 0x0)

1.57863126s ago: executing program 2 (id=962):
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
setresuid(0xee01, 0xffffffffffffffff, 0xffffffffffffffff)
ioprio_set$pid(0x2, 0x0, 0x0)
ioprio_get$pid(0x3, 0x0)

1.481163448s ago: executing program 1 (id=964):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x0, 0x0, 0x4004, 0xffffffffffffffff})
fcntl$lock(r0, 0x24, &(0x7f0000000280)={0x2, 0x0, 0xaea0})

1.480975171s ago: executing program 2 (id=965):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f00000001c0)={0x1f, 0x0, @none}, 0xe)
listen(r0, 0x0)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_request={{0x4, 0xa}, {@any, "e4f1f2", 0x1}}}, 0xd)

1.403015215s ago: executing program 2 (id=967):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000200)={0x1f, @none}, 0x8)
listen(r0, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, 0x0)

1.402442263s ago: executing program 1 (id=968):
mkdir(&(0x7f0000002740)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x0, &(0x7f0000000040)={[{@dyn}, {@flock_local}]})
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r0, &(0x7f000000c1c0)={0x2020}, 0x2020)

1.339769492s ago: executing program 4 (id=969):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
ioctl$SNAPSHOT_SET_SWAP_AREA(r2, 0x3309, 0x0)

1.240478704s ago: executing program 1 (id=970):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200052f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa"], 0xcfa4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffdef}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.225108094s ago: executing program 3 (id=971):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x200)

1.167689161s ago: executing program 2 (id=972):
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000000c40)=[{}, {}, {0x0, 0x0, 0x4, 0xc}]}, 0x90)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="7c00000000000000000000000700000044140001ac1414aa00000000ac1414000000000000441c0003e0000001000000007f000001000000000000000000000000442c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a400000000000000000000000700000044280000000000000000000000000000000000000000000000000000000000000000000000000000071700e0000002ac1414bb00000000e0000002ac1414bb018616000000000010c986d78e6c4b9394b247217b87cb00830b00000000007f000001861f0000000000020010421487f84baabcbcfb42a4d90bab000748c68c4c31001089ca45d9612e5b5c11f12bc78a41000000000000006c000000000000000000000007000000441c0003ffffffff000000000000000000000000e00000010000000044340001ac1414bb0000000000000000000000000000000000000000ac1414aa00000000ac14140000000000ac1e000100000000830b0000000000e000000200000000001c00000000000000000000000800"/424, @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000000000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="e00000017f000001000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f000001ac141400000000001c000900000000000000000007010000440c0001022101"], 0x230}, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6f94f90324fc600e0005000a000200053582c137153e3704000880fc0b09000300", 0x33fe0}], 0x1}, 0x0)

1.106078361s ago: executing program 0 (id=973):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002300)={0x2020}, 0x2020)

1.071439731s ago: executing program 3 (id=974):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000020000007853970a000008000300", @ANYRES32=r2, @ANYBLOB="0800370000000000050008000000000004006e8004000b"], 0x34}}, 0x0)

1.049218774s ago: executing program 2 (id=975):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x10050, &(0x7f0000000840), 0x3, 0x51e, &(0x7f0000000100)="$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")
readlink(&(0x7f0000000680)='./file2\x00', &(0x7f00000006c0)=""/137, 0x89)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001300)={{0x12, 0x1, 0x0, 0xea, 0x50, 0x9e, 0x20, 0x572, 0xcb07, 0xf619, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x8, 0x1, 0x1}}]}}]}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

703.626658ms ago: executing program 3 (id=976):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8}]}]}, 0x30}}, 0x0)

698.904133ms ago: executing program 3 (id=977):
open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0)
clock_adjtime(0xffffffd3, &(0x7f0000000340)={0x6, 0x0, 0xfffffffffffffffd})

662.506675ms ago: executing program 4 (id=978):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x9c)

637.806456ms ago: executing program 1 (id=979):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000180))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioperm(0x0, 0x2534, 0x0)

543.031936ms ago: executing program 3 (id=980):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg$alg(r0, &(0x7f0000000240)=[{0x20000000, 0xff00, 0x0}], 0x1, 0x0)

460.038384ms ago: executing program 3 (id=981):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000001800)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
sendfile(r0, r0, 0x0, 0x7a680000)

445.355557ms ago: executing program 4 (id=982):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r2, @ANYBLOB="010065bd7000fcdbdf254f00000008000300", @ANYRES32=r1, @ANYBLOB="48007a8014000100c396d979a8f802a09c5d7bfaeb3575f21c0002002c8b2ddcc0a3a020196b852ff1e5776edd2fed6a243a33220c0003"], 0x12c}}, 0x0)

337.479743ms ago: executing program 4 (id=983):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x444, &(0x7f0000000980)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000005c0)={0x0, 0xffffffffffffffe1, 0x2})

75.74621ms ago: executing program 0 (id=984):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000680)={0x128, r1, 0x1, 0x0, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x109, 0x33, @reassoc_resp={{{0x0, 0x0, 0x8}, {0x4000}, @broadcast, @device_a, @random="f7ab8759363f"}, 0x0, 0x0, @random, @val, @void, [{0xdd, 0x6, "0b8fa303c729"}, {0xdd, 0x65, "d8a062cc132f8c370fffcfbf6c255947985b88cb9f22e02d96f87d9c0a6796487053adb1a2d1f8ed33d6ef7faf4ba99f81c72edefbc742d2d897c0fb6eb2289c22b03871ec6ddb7398d4b5509078903c634145233d8a7a9a2fc09946ff1a847d43452a17ee"}, {0xdd, 0x74, "95e79490e4be3bd5f39a64947fd4f137cfd9c5eca413775fff8b403d1c6824961df673862737c366f53984496ea72bc7f78d843ce303b67336957356a02e1c5bdcbd4acf120d5d44f07910bdee6eabe82f6c76ecc7c98d5a107f6eab471672d7179671906048fe7622486b35f02bac5c2f9f0c92"}]}}]}, 0x128}}, 0x0)

0s ago: executing program 0 (id=985):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

kernel console output (not intermixed with test programs):

69.364586][ T5715] loop3: detected capacity change from 0 to 8
[   69.374251][   T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   69.387947][ T5715] MTD: Attempt to mount non-MTD device "/dev/loop3"
[   69.399391][   T25] usb 5-1: config 0 has no interface number 0
[   69.410081][   T25] usb 5-1: config 0 interface 52 has no altsetting 0
[   69.429256][   T25] usb 5-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[   69.468622][   T25] usb 5-1: New USB device strings: Mfr=22, Product=149, SerialNumber=35
[   69.495893][   T25] usb 5-1: Product: syz
[   69.505923][   T25] usb 5-1: Manufacturer: syz
[   69.510705][   T25] usb 5-1: SerialNumber: syz
[   69.526991][   T25] usb 5-1: config 0 descriptor??
[   69.560612][ T5232] XFS (loop0): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[   69.869733][   T29] audit: type=1326 audit(1724310478.234:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5720 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01c779e79 code=0x7ffc0000
[   69.948103][ T5271] usb 5-1: USB disconnect, device number 2
[   69.966610][   T29] audit: type=1326 audit(1724310478.234:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5720 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01c779e79 code=0x7ffc0000
[   70.001887][ T5281] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.017103][   T29] audit: type=1326 audit(1724310478.264:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5720 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7ff01c779e79 code=0x7ffc0000
[   70.049793][   T29] audit: type=1326 audit(1724310478.264:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5720 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01c779e79 code=0x7ffc0000
[   70.086737][   T29] audit: type=1326 audit(1724310478.264:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5720 comm="syz.2.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff01c779e79 code=0x7ffc0000
[   70.142691][ T5281] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.248428][ T5281] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.458516][ T5281] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.551068][ T5723] loop0: detected capacity change from 0 to 40427
[   70.565596][ T5730] loop1: detected capacity change from 0 to 2048
[   70.575181][ T5723] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[   70.581944][ T5723] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   70.628526][ T5723] F2FS-fs (loop0): Found nat_bits in checkpoint
[   70.643387][ T5730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.691036][ T5730] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.694644][ T5723] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   70.714955][ T5723] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   70.761397][ T5737] loop4: detected capacity change from 0 to 4096
[   70.857276][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   70.865358][ T5737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.867845][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   70.892156][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   70.903602][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   70.911527][   T52] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   70.919058][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   70.989948][ T5281] bridge_slave_1: left allmulticast mode
[   70.996189][ T5281] bridge_slave_1: left promiscuous mode
[   71.012851][ T5281] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.034623][ T5232] syz-executor: attempt to access beyond end of device
[   71.034623][ T5232] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   71.058565][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.068640][ T5232] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   71.086680][ T5281] bridge_slave_0: left allmulticast mode
[   71.092395][ T5281] bridge_slave_0: left promiscuous mode
[   71.099320][ T5281] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.211901][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.600616][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[   71.611797][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[   71.792633][ T5757] loop1: detected capacity change from 0 to 4096
[   71.819261][ T5757] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[   71.939621][ T5757] ntfs3: loop1: ino=0, ntfs_iget5
[   71.961284][ T5757] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   72.397362][ T5755] loop2: detected capacity change from 0 to 32768
[   72.409246][ T5281] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   72.457154][ T5281] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   72.495859][ T5281] bond0 (unregistering): Released all slaves
[   72.646555][ T5772] program syz.4.183 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   72.707212][  T940] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   72.898066][  T940] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[   72.906725][  T940] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   72.917949][  T940] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   72.929585][  T940] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   72.943515][  T940] usb 1-1: Manufacturer: syz
[   72.951066][  T940] usb 1-1: config 0 descriptor??
[   72.973309][   T52] Bluetooth: hci1: command tx timeout
[   73.129692][  T940] rc_core: IR keymap rc-hauppauge not found
[   73.140658][  T940] Registered IR keymap rc-empty
[   73.150871][  T940] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[   73.184440][  T940] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input5
[   73.272684][ T5791] program syz.2.187 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   73.326066][ T5768] loop0: detected capacity change from 0 to 4096
[   73.525606][  T940] usb 1-1: USB disconnect, device number 3
[   73.599807][ T5739] chnl_net:caif_netlink_parms(): no params data found
[   73.770991][ T5808] ipvlan2: entered promiscuous mode
[   73.781590][ T5809] loop2: detected capacity change from 0 to 1024
[   73.915685][ T5281] hsr_slave_0: left promiscuous mode
[   73.935718][ T5281] hsr_slave_1: left promiscuous mode
[   73.942908][ T5281] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   73.951589][ T5281] batman_adv: batadv0: Removing interface: batadv_slave_0
[   73.958595][ T1913] hfsplus: b-tree write err: -5, ino 3
[   73.970629][ T5281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   73.998543][ T5281] batman_adv: batadv0: Removing interface: batadv_slave_1
[   74.095913][ T5281] veth1_macvtap: left promiscuous mode
[   74.110475][ T5818] loop2: detected capacity change from 0 to 128
[   74.117722][ T5281] veth0_macvtap: left promiscuous mode
[   74.123356][ T5281] veth1_vlan: left promiscuous mode
[   74.134607][ T5820] loop0: detected capacity change from 0 to 512
[   74.144739][ T5281] veth0_vlan: left promiscuous mode
[   74.188187][ T5820] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.196: bg 0: block 393: padding at end of block bitmap is not set
[   74.276619][ T5820] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   74.289963][ T5820] EXT4-fs (loop0): 2 truncates cleaned up
[   74.289986][ T5826] netlink: 'syz.4.198': attribute type 3 has an invalid length.
[   74.297792][ T5820] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.387660][ T5817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   74.489889][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.583090][ T5832] loop2: detected capacity change from 0 to 1024
[   74.686437][ T5832] hfsplus: bad catalog entry type
[   74.730986][   T11] hfsplus: b-tree write err: -5, ino 4
[   74.806805][  T940] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   74.989567][ T5281] team0 (unregistering): Port device team_slave_1 removed
[   75.000972][  T940] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   75.019054][  T940] usb 2-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b
[   75.028658][  T940] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.038106][  T940] usb 2-1: Product: syz
[   75.042516][  T940] usb 2-1: Manufacturer: syz
[   75.043778][ T5281] team0 (unregistering): Port device team_slave_0 removed
[   75.051035][  T940] usb 2-1: SerialNumber: syz
[   75.054910][   T52] Bluetooth: hci1: command tx timeout
[   75.073332][  T940] usb 2-1: config 0 descriptor??
[   75.101728][  T940] gspca_main: pac207-2.14.0 probing 093a:2476
[   75.222873][  T940] gspca_pac207: Failed to read a register (index 0x0000, error -110)
[   75.293794][  T940] usb 2-1: USB disconnect, device number 3
[   75.407879][ T5834] netlink: 'syz.0.200': attribute type 29 has an invalid length.
[   75.419335][ T5835] netlink: 'syz.0.200': attribute type 29 has an invalid length.
[   75.643775][ T5739] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.666536][ T5739] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.673786][ T5739] bridge_slave_0: entered allmulticast mode
[   75.719637][ T5739] bridge_slave_0: entered promiscuous mode
[   75.751264][ T5739] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.771516][ T5739] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.818679][ T5739] bridge_slave_1: entered allmulticast mode
[   75.864108][ T5739] bridge_slave_1: entered promiscuous mode
[   75.984278][ T5739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.046734][ T5739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.085974][ T5866] loop1: detected capacity change from 0 to 128
[   76.093573][ T5271] IPVS: starting estimator thread 0...
[   76.103289][ T5865] IPVS: fo: FWM 4 0x00000004 - no destination available
[   76.122656][ T5866] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   76.149438][ T5866] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   76.174542][ T5739] team0: Port device team_slave_0 added
[   76.197379][ T5867] IPVS: using max 23 ests per chain, 55200 per kthread
[   76.239266][ T5739] team0: Port device team_slave_1 added
[   76.271226][ T5866] fscrypt (loop1, inode 12): Mutually exclusive encryption flags (0x14)
[   76.341336][ T5221] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.368852][ T5739] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.375833][ T5739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.404519][ T5739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.417501][ T5739] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.424577][ T5739] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.450554][ T5739] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.742587][ T1168] cfg80211: failed to load regulatory.db
[   76.839440][ T5739] hsr_slave_0: entered promiscuous mode
[   76.857024][ T5739] hsr_slave_1: entered promiscuous mode
[   76.887761][ T5739] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   76.907130][ T5739] Cannot create hsr debugfs directory
[   77.116536][ T5231] Bluetooth: hci1: command tx timeout
[   77.126930][  T940] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   77.243180][ T5882] loop0: detected capacity change from 0 to 32768
[   77.266527][ T5882] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.216 (5882)
[   77.328280][ T5882] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   77.361297][  T940] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=9f.d4
[   77.376130][ T5882] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   77.392305][  T940] usb 3-1: New USB device strings: Mfr=188, Product=0, SerialNumber=0
[   77.404792][ T5882] BTRFS info (device loop0): using free-space-tree
[   77.448806][  T940] usb 3-1: Manufacturer: syz
[   77.475890][  T940] usb 3-1: config 0 descriptor??
[   77.726346][ T5885] loop1: detected capacity change from 0 to 32768
[   77.854914][ T5232] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   77.872478][ T5885] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   77.906659][  T940] gs_usb 3-1:0.0: Configuring for 1 interfaces
[   78.092305][ T5904] loop4: detected capacity change from 0 to 32768
[   78.242354][ T5904] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.223 (5904)
[   78.395268][ T5885] XFS (loop1): Ending clean mount
[   78.479239][ T5940] loop0: detected capacity change from 0 to 32768
[   78.504209][  T940] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[   78.513716][  T940] gs_usb 3-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[   78.516490][ T5904] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   78.526577][  T940] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[   78.534875][ T5885] XFS (loop1): Quotacheck needed: Please wait.
[   78.578249][  T940] usb 3-1: USB disconnect, device number 2
[   78.582059][ T5940] XFS (loop0): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   78.589589][ T5904] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[   78.603999][ T5904] BTRFS info (device loop4): using free-space-tree
[   78.651061][ T5739] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   78.674315][ T5739] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   78.690344][ T5739] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   78.704863][ T5739] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   78.754704][ T5940] XFS (loop0): Ending clean mount
[   78.812187][ T5885] XFS (loop1): Quotacheck: Done.
[   78.954463][ T5232] XFS (loop0): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   79.023655][ T5739] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.071547][ T5221] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   79.125982][ T5739] 8021q: adding VLAN 0 to HW filter on device team0
[   79.146922][ T5229] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   79.197840][ T5231] Bluetooth: hci1: command 0x0419 tx timeout
[   79.208302][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.215424][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.326940][ T5739] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   79.337368][ T5739] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.353407][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.360590][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.511129][ T5986] netlink: 'syz.2.229': attribute type 10 has an invalid length.
[   79.628720][ T5986] geneve0: entered promiscuous mode
[   79.686012][ T5986] bond0: (slave geneve0): Enslaving as an active interface with an up link
[   79.953097][ T5739] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.978571][ T6005] netlink: 12 bytes leftover after parsing attributes in process `syz.2.231'.
[   80.065599][ T5739] veth0_vlan: entered promiscuous mode
[   80.080300][ T5739] veth1_vlan: entered promiscuous mode
[   80.103906][ T5739] veth0_macvtap: entered promiscuous mode
[   80.113200][ T5739] veth1_macvtap: entered promiscuous mode
[   80.128547][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.139189][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.152502][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.163434][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.173766][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.184598][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.197154][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.207726][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.225166][ T5739] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.352179][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.396199][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.401363][ T6020] loop2: detected capacity change from 0 to 64
[   80.434899][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.466246][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.488245][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.514316][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.516555][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   80.534508][ T5739] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.555958][   T29] audit: type=1800 audit(1724310488.914:17): pid=6020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.236" name="bus" dev="loop2" ino=21 res=0 errno=0
[   80.596507][ T5739] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.640580][ T5739] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.697032][ T5739] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.719667][    T9] usb 1-1: Using ep0 maxpacket: 32
[   80.741893][ T5739] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.757579][    T9] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[   80.766036][    T9] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   80.796124][ T5739] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.806142][    T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[   80.831389][ T5739] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.846484][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   80.856181][    T9] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   80.887261][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   80.949383][    T9] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   80.998418][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.038835][    T9] usb 1-1: config 0 descriptor??
[   81.061884][ T6033] tmpfs: Bad value for 'mpol'
[   81.114644][ T6033] IPv6: NLM_F_REPLACE set, but no existing node found!
[   81.137607][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.166068][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.239051][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.259285][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.277030][   T52] Bluetooth: hci1: command 0x0419 tx timeout
[   81.290835][    T9] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   81.506805][  T940] usb 1-1: USB disconnect, device number 4
[   81.515565][  T940] usblp0: removed
[   81.674317][ T6024] loop4: detected capacity change from 0 to 32768
[   81.725609][ T6024] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   81.803594][ T6024] XFS (loop4): Ending clean mount
[   81.811957][ T6024] XFS (loop4): Quotacheck needed: Please wait.
[   81.872180][ T6024] XFS (loop4): Quotacheck: Done.
[   81.958992][ T5229] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   82.145957][ T6029] loop1: detected capacity change from 0 to 32768
[   82.247753][ T6029] XFS (loop1): Mounting V5 Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415
[   82.297965][ T6029] XFS (loop1): Ending clean mount
[   82.362572][ T5221] XFS (loop1): Unmounting Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415
[   82.484283][ T6081] loop4: detected capacity change from 0 to 256
[   82.525075][ T6081] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x87abbd06, utbl_chksum : 0xe619d30d)
[   82.598676][ T6085] loop0: detected capacity change from 0 to 24
[   82.605470][ T6085] MTD: Attempt to mount non-MTD device "/dev/loop0"
[   82.629423][ T6085] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   82.775952][ T6081] exFAT-fs (loop4): error, in sector 160, dentry 12 should be unused, but 0x85
[   82.817461][ T6081] exFAT-fs (loop4): Filesystem has been set read-only
[   82.830732][ T6052] loop2: detected capacity change from 0 to 40427
[   82.867967][ T6052] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   82.888182][ T6052] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   82.920234][ T6052] F2FS-fs (loop2): invalid crc value
[   82.979299][ T6052] F2FS-fs (loop2): Found nat_bits in checkpoint
[   83.086498][ T5271] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   83.098703][ T6052] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   83.105779][ T6052] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   83.279125][ T5271] usb 4-1: config index 0 descriptor too short (expected 106, got 36)
[   83.292245][ T5271] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 202, changing to 11
[   83.319485][ T6111] netlink: 44 bytes leftover after parsing attributes in process `syz.1.260'.
[   83.346484][ T5271] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 33295, setting to 1024
[   83.376446][ T6111] netlink: 43 bytes leftover after parsing attributes in process `syz.1.260'.
[   83.404222][ T5271] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00
[   83.413417][ T6111] netlink: 'syz.1.260': attribute type 5 has an invalid length.
[   83.422380][ T5271] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.438141][ T6111] netlink: 43 bytes leftover after parsing attributes in process `syz.1.260'.
[   83.458073][ T5271] usb 4-1: config 0 descriptor??
[   83.736615][ T6107] loop0: detected capacity change from 0 to 32768
[   83.876799][ T6107] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   83.922310][ T5271] corsair 0003:1B1C:1B3E.0001: hidraw0: USB HID v0.00 Device [HID 1b1c:1b3e] on usb-dummy_hcd.3-1/input0
[   84.098252][   T57] usb 4-1: USB disconnect, device number 3
[   84.193768][ T6120] loop1: detected capacity change from 0 to 32768
[   84.321765][ T6107] XFS (loop0): Ending clean mount
[   84.333303][ T6107] XFS (loop0): Quotacheck needed: Please wait.
[   84.363021][ T6134] loop2: detected capacity change from 0 to 2048
[   84.418960][ T6134] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[   84.429447][ T6107] XFS (loop0): Quotacheck: Done.
[   84.453284][ T6134] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   84.955601][ T5232] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   85.042684][ T6153] netlink: 'syz.4.275': attribute type 1 has an invalid length.
[   85.057277][ T6153] netlink: 9116 bytes leftover after parsing attributes in process `syz.4.275'.
[   85.095767][ T6153] netlink: 'syz.4.275': attribute type 1 has an invalid length.
[   85.157060][ T6153] netlink: 209 bytes leftover after parsing attributes in process `syz.4.275'.
[   85.212540][    T9] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[   85.261024][ T6157] netlink: 12 bytes leftover after parsing attributes in process `syz.2.277'.
[   85.490665][    T9] usb 2-1: config index 0 descriptor too short (expected 25183, got 18)
[   85.504047][    T9] usb 2-1: config 116 has too many interfaces: 121, using maximum allowed: 32
[   85.530043][    T9] usb 2-1: config 116 has an invalid descriptor of length 0, skipping remainder of the config
[   85.562087][    T9] usb 2-1: config 116 has 0 interfaces, different from the descriptor's value: 121
[   85.593459][    T9] usb 2-1: New USB device found, idVendor=0fe9, idProduct=db59, bcdDevice=e9.9b
[   85.611342][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   85.633331][    T9] usb 2-1: Product: syz
[   85.644587][    T9] usb 2-1: Manufacturer: syz
[   85.665400][    T9] usb 2-1: SerialNumber: syz
[   85.810758][ T6185] loop3: detected capacity change from 0 to 164
[   85.965546][ T6178] loop0: detected capacity change from 0 to 32768
[   86.003113][ T6178] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[   86.019752][    T9] usb 2-1: USB disconnect, device number 4
[   86.030033][ T6189] tap0: tun_chr_ioctl cmd 1074812118
[   86.133372][ T6178] XFS (loop0): Ending clean mount
[   86.264326][ T5232] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[   86.694890][ T6218] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   86.940542][ T6203] loop2: detected capacity change from 0 to 40427
[   87.002205][ T6203] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   87.043361][ T6203] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   87.078869][ T6203] F2FS-fs (loop2): Found nat_bits in checkpoint
[   87.128428][ T6203] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   87.135596][ T6203] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   87.270296][ T6242] Bluetooth: MGMT ver 1.23
[   87.311205][   T29] audit: type=1800 audit(1724310495.644:18): pid=6203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.292" name="bus" dev="loop2" ino=10 res=0 errno=0
[   87.557411][ T6250] sp0: Synchronizing with TNC
[   88.284040][ T6272] loop1: detected capacity change from 0 to 2048
[   88.320715][ T6272] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   88.554197][ T6279] program syz.1.324 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   88.737834][ T6262] loop4: detected capacity change from 0 to 32768
[   88.745322][ T6262] XFS: attr2 mount option is deprecated.
[   88.801592][ T6258] loop0: detected capacity change from 0 to 32768
[   88.901832][ T6262] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[   88.911793][ T6258] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.995773][ T6305] loop1: detected capacity change from 0 to 64
[   89.022316][ T6262] XFS (loop4): Ending clean mount
[   89.035885][ T6262] XFS (loop4): Quotacheck needed: Please wait.
[   89.098425][ T6262] XFS (loop4): Quotacheck: Done.
[   89.143354][ T6258] XFS (loop0): Ending clean mount
[   89.169543][ T6258] XFS (loop0): Quotacheck needed: Please wait.
[   89.235141][ T5229] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[   89.265780][ T6258] XFS (loop0): Quotacheck: Done.
[   89.511262][ T5232] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   89.877407][ T6317] TCP: request_sock_TCP: Possible SYN flooding on port 0.0.0.0:20002. Sending cookies.
[   89.928153][ T5271] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   90.116655][ T5271] usb 5-1: Using ep0 maxpacket: 32
[   90.128399][ T5271] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   90.162181][ T5271] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   90.179016][ T5271] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   90.197152][ T5271] usb 5-1: Product: syz
[   90.202089][ T5271] usb 5-1: Manufacturer: syz
[   90.217615][ T5271] usb 5-1: SerialNumber: syz
[   90.256211][ T5271] usb 5-1: config 0 descriptor??
[   90.281797][ T6314] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   90.387483][ T6329] netlink: 'syz.0.338': attribute type 1 has an invalid length.
[   90.402448][ T6329] netlink: 168 bytes leftover after parsing attributes in process `syz.0.338'.
[   90.423879][ T6329] netlink: 'syz.0.338': attribute type 1 has an invalid length.
[   90.425587][ T6312] loop1: detected capacity change from 0 to 32768
[   90.442814][ T6329] netlink: 20 bytes leftover after parsing attributes in process `syz.0.338'.
[   90.515432][    T9] usb 5-1: USB disconnect, device number 3
[   90.515501][ T6312] XFS (loop1): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   90.607910][ T5271] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   90.645455][ T6312] XFS (loop1): Ending clean mount
[   90.703392][ T5221] XFS (loop1): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a
[   90.821465][ T5271] usb 4-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[   90.821841][ T6354] process 'syz.2.347' launched './file0' with NULL argv: empty string added
[   90.836530][ T5271] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.879760][ T5271] usb 4-1: config 0 descriptor??
[   90.996828][ T6360] loop1: detected capacity change from 0 to 1024
[   91.091402][ T6360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.116599][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   91.167436][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.304673][ T5271] gs_usb 4-1:0.0: Configuring for 1 interfaces
[   91.306503][    T9] usb 5-1: Using ep0 maxpacket: 32
[   91.325894][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   91.364513][    T9] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   91.374602][    T9] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   91.390610][    T9] usb 5-1: Product: syz
[   91.399427][    T9] usb 5-1: config 0 descriptor??
[   91.412160][ T6314] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   91.639795][ T1168] usb 5-1: USB disconnect, device number 4
[   91.705837][ T5271] gs_usb 4-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[   91.722129][ T5271] gs_usb 4-1:0.0: probe with driver gs_usb failed with error -71
[   91.777295][ T5271] usb 4-1: USB disconnect, device number 4
[   92.018047][ T6392] loop1: detected capacity change from 0 to 128
[   92.053761][ T6392] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   92.080500][ T6392] ext4 filesystem being mounted at /86/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   92.146981][ T6392] fscrypt (loop1, inode 12): Unsupported encryption flags (0x23)
[   92.238514][ T5221] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   92.446062][ T6411] bridge0: entered promiscuous mode
[   92.465695][ T6410] bridge0: left promiscuous mode
[   92.624492][ T6415] loop0: detected capacity change from 0 to 4096
[   92.751075][ T6415] ntfs3: loop0: failed to convert "0080" to cp869
[   92.794973][ T6415] ntfs3: loop0: failed to convert name for inode 1e.
[   93.483710][ T6442] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   93.491984][ T6442] macvtap1: entered allmulticast mode
[   93.504472][ T6442] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   93.910655][ T6445] netlink: 'syz.1.385': attribute type 4 has an invalid length.
[   94.150296][ T6450] loop3: detected capacity change from 0 to 4096
[   94.188151][ T6450] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[   94.235794][ T6464] netlink: 56 bytes leftover after parsing attributes in process `syz.4.393'.
[   94.360485][ T6450] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[   94.508546][ T6457] loop2: detected capacity change from 0 to 32768
[   94.580096][ T6469] loop4: detected capacity change from 0 to 2048
[   94.915913][ T6485] loop1: detected capacity change from 0 to 512
[   94.964422][ T6485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.004180][ T6485] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.126899][  T940] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   95.135507][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.215899][ T6473] loop0: detected capacity change from 0 to 32768
[   95.233192][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.246576][ T6473] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.397 (6473)
[   95.284652][ T6473] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   95.315562][ T6473] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   95.328847][ T6473] BTRFS info (device loop0): using free-space-tree
[   95.331312][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.366126][  T940] usb 4-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   95.375445][  T940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.393975][  T940] usb 4-1: Product: syz
[   95.413086][  T940] usb 4-1: Manufacturer: syz
[   95.425337][ T6473] BTRFS info (device loop0): rebuilding free space tree
[   95.427641][ T6502] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   95.442027][  T940] usb 4-1: SerialNumber: syz
[   95.452502][  T940] usb 4-1: config 0 descriptor??
[   95.614750][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.656640][ T5232] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   95.671064][ T5231] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   95.685728][ T5231] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   95.694922][ T5231] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   95.706671][ T5231] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   95.715689][ T5231] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   95.718337][  T940] usb 4-1: USB disconnect, device number 5
[   95.729350][ T5231] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   95.795289][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.046521][ T5271] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   96.087064][   T12] bridge_slave_1: left allmulticast mode
[   96.101034][   T12] bridge_slave_1: left promiscuous mode
[   96.111104][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.122535][   T12] bridge_slave_0: left allmulticast mode
[   96.129306][   T12] bridge_slave_0: left promiscuous mode
[   96.135320][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.240852][ T5271] usb 2-1: config index 0 descriptor too short (expected 106, got 36)
[   96.254277][ T5271] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 202, changing to 11
[   96.273947][ T5271] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 33295, setting to 1024
[   96.293630][ T5271] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00
[   96.303784][ T5271] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.322597][ T5271] usb 2-1: config 0 descriptor??
[   96.342485][   T12] bond0 (unregistering): (slave geneve0): Releasing backup interface
[   96.476522][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   96.534918][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   96.549544][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   96.564626][   T12] bond0 (unregistering): Released all slaves
[   96.589621][ T6516] chnl_net:caif_netlink_parms(): no params data found
[   96.749020][ T5271] corsair 0003:1B1C:1B3E.0002: hidraw0: USB HID v0.00 Device [HID 1b1c:1b3e] on usb-dummy_hcd.1-1/input0
[   96.774650][ T6539] pim6reg: entered allmulticast mode
[   96.919504][ T6538] pim6reg: left allmulticast mode
[   96.956114][  T940] usb 2-1: USB disconnect, device number 5
[   96.973369][ T6516] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.980975][ T6516] bridge0: port 1(bridge_slave_0) entered disabled state
[   96.989590][ T6516] bridge_slave_0: entered allmulticast mode
[   97.004743][ T6516] bridge_slave_0: entered promiscuous mode
[   97.023593][ T6516] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.045725][ T6516] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.053436][ T6516] bridge_slave_1: entered allmulticast mode
[   97.068697][ T6516] bridge_slave_1: entered promiscuous mode
[   97.203987][   T29] audit: type=1326 audit(1724310505.574:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[   97.259979][ T6516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.270919][   T29] audit: type=1326 audit(1724310505.574:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[   97.336550][   T29] audit: type=1326 audit(1724310505.604:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[   97.370383][   T12] hsr_slave_0: left promiscuous mode
[   97.383194][   T12] hsr_slave_1: left promiscuous mode
[   97.396552][   T29] audit: type=1326 audit(1724310505.604:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[   97.420190][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.433312][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.446446][   T29] audit: type=1326 audit(1724310505.604:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6557 comm="syz.0.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[   97.469491][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.490758][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.517604][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.652969][   T12] veth1_macvtap: left promiscuous mode
[   97.669210][   T12] veth0_macvtap: left promiscuous mode
[   97.674890][   T12] veth1_vlan: left promiscuous mode
[   97.694847][   T12] veth0_vlan: left promiscuous mode
[   97.766317][ T6565] loop1: detected capacity change from 0 to 1024
[   97.795394][ T6565] EXT4-fs: Ignoring removed orlov option
[   97.814557][ T6565] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.841025][ T5231] Bluetooth: hci4: command tx timeout
[   97.879494][ T6565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.972971][ T6556] loop3: detected capacity change from 0 to 32768
[   98.053505][ T6556] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   98.072760][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.207906][ T6556] XFS (loop3): Ending clean mount
[   98.229751][ T6556] XFS (loop3): Quotacheck needed: Please wait.
[   98.255286][ T6571] loop4: detected capacity change from 0 to 32768
[   98.277478][ T6571] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.429 (6571)
[   98.329277][ T6571] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   98.347843][ T6571] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[   98.350674][ T6556] XFS (loop3): Quotacheck: Done.
[   98.364282][ T6571] BTRFS info (device loop4): using free-space-tree
[   98.503408][ T5739] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   98.743354][ T5229] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[   98.943035][ T6607] loop3: detected capacity change from 0 to 512
[   98.958854][ T6607] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   98.980148][ T6607] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   98.995715][ T6607] EXT4-fs (loop3): 1 truncate cleaned up
[   99.007042][ T6607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.007323][   T12] team0 (unregistering): Port device team_slave_1 removed
[   99.030782][ T6607] fscrypt (loop3, inode 18): Unsupported encryption flags (0x8a)
[   99.064593][ T5739] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.181557][   T12] team0 (unregistering): Port device team_slave_0 removed
[   99.438509][ T5271] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   99.461320][ T6616] loop4: detected capacity change from 0 to 1024
[   99.492932][ T6616] hfsplus: trying to free free bnode 0(1)
[   99.511664][ T6616] hfsplus: catalog searching failed
[   99.545812][   T11] hfsplus: b-tree write err: -5, ino 4
[   99.640329][ T5271] usb 4-1: Using ep0 maxpacket: 8
[   99.654565][ T5271] usb 4-1: config index 0 descriptor too short (expected 115, got 27)
[   99.670917][ T5271] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   99.691651][ T5271] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.699909][ T5271] usb 4-1: Product: syz
[   99.718612][ T5271] usb 4-1: Manufacturer: syz
[   99.732040][ T5271] usb 4-1: SerialNumber: syz
[   99.766781][ T6516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.776089][ T6562] netlink: 'syz.0.426': attribute type 10 has an invalid length.
[   99.792830][ T6562] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   99.897864][ T6516] team0: Port device team_slave_0 added
[   99.921593][ T5231] Bluetooth: hci4: command tx timeout
[   99.929507][ T6516] team0: Port device team_slave_1 added
[   99.975616][ T6625] loop0: detected capacity change from 0 to 2048
[   99.982432][ T5271] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  100.012035][ T6625] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  100.022806][ T5271] usb 4-1: USB disconnect, device number 6
[  100.029747][ T6516] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.045440][ T6516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.048391][ T6625] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  100.085777][ T6516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.085825][ T5271] usblp0: removed
[  100.119341][ T6516] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.148030][ T6516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.180832][ T6516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.253363][ T6631] loop0: detected capacity change from 0 to 1024
[  100.282249][ T6516] hsr_slave_0: entered promiscuous mode
[  100.292835][ T6516] hsr_slave_1: entered promiscuous mode
[  100.308804][ T6516] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  100.320140][ T6516] Cannot create hsr debugfs directory
[  100.744631][ T6648] binder: 6647:6648 unknown command 16456
[  100.769760][ T6648] binder: 6647:6648 ioctl c0306201 20000380 returned -22
[  101.034566][ T6516] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  101.059537][ T6516] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  101.084753][ T6516] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  101.105743][ T6516] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  101.259249][ T6516] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.301706][ T6516] 8021q: adding VLAN 0 to HW filter on device team0
[  101.337858][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.346226][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.400690][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.407987][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.666811][ T6671] loop3: detected capacity change from 0 to 32768
[  101.941696][ T6516] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.983694][ T6516] veth0_vlan: entered promiscuous mode
[  101.996863][ T5231] Bluetooth: hci4: command tx timeout
[  102.004619][ T6516] veth1_vlan: entered promiscuous mode
[  102.037848][ T6516] veth0_macvtap: entered promiscuous mode
[  102.081955][ T6516] veth1_macvtap: entered promiscuous mode
[  102.102227][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.114481][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.125564][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.166646][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.186507][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.210173][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.238745][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  102.256460][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.289169][ T6516] batman_adv: batadv0: Interface activated: batadv_slave_0
[  102.299543][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.333227][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.353540][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.366733][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.383208][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.405962][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.418461][ T6516] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  102.438642][ T6516] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  102.454751][ T6516] batman_adv: batadv0: Interface activated: batadv_slave_1
[  102.592821][ T6707] loop0: detected capacity change from 0 to 32768
[  102.620018][ T6707] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.478 (6707)
[  102.659420][ T6707] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  102.680699][ T6516] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.690532][ T6707] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  102.700908][ T6707] BTRFS info (device loop0): using free-space-tree
[  102.709021][ T6516] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.720186][ T6516] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.729380][ T6516] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.876593][ T5281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.884862][ T5281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.969458][ T1913] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.994355][ T1913] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.232002][ T5232] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  103.308168][ T6741] loop2: detected capacity change from 0 to 64
[  103.473415][ T6741] minix_free_block (loop2:21): bit already cleared
[  103.506565][ T5274] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  103.737686][ T5274] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  103.766439][ T5274] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  103.807143][ T5274] usb 5-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[  103.830844][ T5274] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.860989][ T5274] usb 5-1: config 0 descriptor??
[  104.046131][ T6763] loop1: detected capacity change from 0 to 2048
[  104.062076][ T6766] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  104.087049][   T52] Bluetooth: hci4: command tx timeout
[  104.100437][ T6763] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  104.157458][ T6768] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  104.176510][ T5331] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  104.282193][ T5274] arvo 0003:1E7D:30D4.0003: unknown main item tag 0x0
[  104.289956][ T5274] arvo 0003:1E7D:30D4.0003: unknown main item tag 0x0
[  104.307089][ T5274] arvo 0003:1E7D:30D4.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.4-1/input0
[  104.308280][   T29] audit: type=1326 audit(1724310512.664:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.1.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d95379e79 code=0x7ffc0000
[  104.351297][   T29] audit: type=1326 audit(1724310512.664:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.1.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d95379e79 code=0x7ffc0000
[  104.374209][   T29] audit: type=1326 audit(1724310512.664:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.1.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f3d95379e79 code=0x7ffc0000
[  104.397363][   T29] audit: type=1326 audit(1724310512.664:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.1.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d95379e79 code=0x7ffc0000
[  104.420677][   T29] audit: type=1326 audit(1724310512.664:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.1.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d95379e79 code=0x7ffc0000
[  104.447297][ T5331] usb 1-1: Using ep0 maxpacket: 16
[  104.460368][ T5331] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.482220][ T5331] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  104.510953][ T5331] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  104.536447][ T5331] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.555770][ T5331] usb 1-1: config 0 descriptor??
[  104.616640][  T940] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  104.674221][ T6754] loop2: detected capacity change from 0 to 32768
[  104.699084][ T6754] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  104.699084][ T6754] 
[  104.714851][ T5273] usb 5-1: USB disconnect, device number 5
[  104.733437][ T5281] read_mapping_page failed!
[  104.739034][ T6782] loop1: detected capacity change from 0 to 1024
[  104.746027][ T6782] EXT4-fs: Ignoring removed i_version option
[  104.747588][ T5281] ERROR: (device loop2): txCommit: 
[  104.747588][ T5281] 
[  104.758559][ T6782] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  104.759898][ T5281] jfs_write_inode: jfs_commit_inode failed!
[  104.808912][  T940] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  104.819212][  T940] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  104.838128][ T6782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.856614][  T940] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  104.899042][  T940] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  104.917551][  T940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.952440][  T940] usb 4-1: Product: syz
[  104.959369][  T940] usb 4-1: Manufacturer: syz
[  104.966687][  T940] usb 4-1: SerialNumber: syz
[  105.003940][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.198593][  T940] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  105.213122][ T6795] loop2: detected capacity change from 0 to 64
[  105.247580][   T29] audit: type=1800 audit(1724310513.624:29): pid=6795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.509" name="bus" dev="loop2" ino=8 res=0 errno=0
[  105.292514][ T6797] netlink: 8 bytes leftover after parsing attributes in process `syz.1.510'.
[  105.321260][ T6797] netlink: 160 bytes leftover after parsing attributes in process `syz.1.510'.
[  105.353947][ T6799] loop4: detected capacity change from 0 to 2048
[  105.372761][ T6799] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  105.425498][ T5273] usb 4-1: USB disconnect, device number 7
[  105.433721][ T5273] usblp0: removed
[  105.651065][ T6814] sp0: Synchronizing with TNC
[  105.976074][ T6824] netlink: 199356 bytes leftover after parsing attributes in process `syz.2.523'.
[  106.000279][ T6824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'.
[  106.174966][   T52] Bluetooth: hci4: command 0x0405 tx timeout
[  106.260208][ T6811] loop1: detected capacity change from 0 to 40427
[  106.274375][ T6811] F2FS-fs (loop1): invalid crc value
[  106.304898][ T6811] F2FS-fs (loop1): Found nat_bits in checkpoint
[  106.413044][ T6811] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  106.545993][ T5221] syz-executor: attempt to access beyond end of device
[  106.545993][ T5221] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  106.596140][ T5221] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  106.927509][ T5331] usbhid 1-1:0.0: can't add hid device: -71
[  106.956920][ T5331] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  106.978466][ T5331] usb 1-1: USB disconnect, device number 5
[  107.339915][ T6840] loop3: detected capacity change from 0 to 32768
[  107.451004][ T6840] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  107.681167][ T6840] XFS (loop3): Ending clean mount
[  107.855359][ T5739] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  107.935389][ T6859] loop4: detected capacity change from 0 to 32768
[  108.048623][ T6859] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.538 (6859)
[  108.141817][ T6847] loop0: detected capacity change from 0 to 32768
[  108.170926][ T6882] loop1: detected capacity change from 0 to 32768
[  108.207365][ T6859] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  108.229212][ T6859] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  108.253941][ T6859] BTRFS info (device loop4): using free-space-tree
[  108.325107][ T6882] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  108.412262][   T29] audit: type=1800 audit(1724310516.784:30): pid=6859 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.538" name="bus" dev="loop4" ino=263 res=0 errno=0
[  108.539109][ T5229] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  108.561112][ T5231] Bluetooth: hci4: command 0x0405 tx timeout
[  108.573790][ T6882] XFS (loop1): Ending clean mount
[  108.585125][ T6882] XFS (loop1): Quotacheck needed: Please wait.
[  108.641458][ T6882] XFS (loop1): Quotacheck: Done.
[  108.780471][ T5221] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  108.875339][ T6920] netlink: 'syz.2.553': attribute type 21 has an invalid length.
[  108.885212][ T6920] netlink: 'syz.2.553': attribute type 1 has an invalid length.
[  109.463208][ T6944] loop1: detected capacity change from 0 to 512
[  109.466650][ T5331] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  109.478789][ T6944] EXT4-fs: Ignoring removed i_version option
[  109.484824][ T6944] EXT4-fs: Ignoring removed nobh option
[  109.495874][ T6944] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  109.529788][ T6944] EXT4-fs (loop1): 1 truncate cleaned up
[  109.536538][ T6944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.566473][ T6948] overlayfs: failed to clone lowerpath
[  109.639602][ T5221] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.666632][ T5331] usb 3-1: Using ep0 maxpacket: 16
[  109.687715][ T5331] usb 3-1: New USB device found, idVendor=2770, idProduct=9050, bcdDevice=11.97
[  109.716531][ T5331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.743104][ T5331] usb 3-1: config 0 descriptor??
[  109.760615][ T5331] gspca_main: sq905c-2.14.0 probing 2770:9050
[  110.022335][ T6962] netlink: 164 bytes leftover after parsing attributes in process `syz.3.569'.
[  110.036492][ T6962] netlink: 28 bytes leftover after parsing attributes in process `syz.3.569'.
[  110.207035][ T6972] loop3: detected capacity change from 0 to 1024
[  110.216483][ T6972] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  110.227690][ T6972] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  110.238263][ T6972] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  110.256827][ T6972] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #3: comm syz.3.573: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  110.297769][ T6972] EXT4-fs (loop3): no journal found
[  110.302866][ T6974] netlink: 'syz.0.575': attribute type 25 has an invalid length.
[  110.303147][ T6972] EXT4-fs (loop3): can't get journal size
[  110.319640][ T6972] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.321781][ T6974] netlink: 'syz.0.575': attribute type 44 has an invalid length.
[  110.354600][ T6970] loop4: detected capacity change from 0 to 4096
[  110.366789][ T6970] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512).
[  110.421026][ T6970] ntfs3: loop4: Failed to initialize $Extend/$ObjId.
[  110.576074][ T5331] usb 3-1: USB disconnect, device number 3
[  110.626514][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  110.816578][    T9] usb 4-1: Using ep0 maxpacket: 32
[  110.823416][    T9] usb 4-1: config 0 has an invalid interface number: 111 but max is 1
[  110.836495][    T9] usb 4-1: config 0 has no interface number 1
[  111.036588][ T6983] loop0: detected capacity change from 0 to 40427
[  111.044347][ T6983] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  111.051660][ T6983] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  111.064485][    T9] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83
[  111.073858][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.082294][    T9] usb 4-1: Product: syz
[  111.086585][    T9] usb 4-1: Manufacturer: syz
[  111.091286][    T9] usb 4-1: SerialNumber: syz
[  111.097653][ T6983] F2FS-fs (loop0): invalid crc value
[  111.104148][    T9] usb 4-1: config 0 descriptor??
[  111.123783][ T6983] F2FS-fs (loop0): Found nat_bits in checkpoint
[  111.209486][ T6983] F2FS-fs (loop0): Start checkpoint disabled!
[  111.292359][ T6983] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  111.340951][    T9] snd-usb-6fire 4-1:0.111: unable to receive device firmware state.
[  111.360797][ T6983] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  111.376644][    T9] snd-usb-6fire 4-1:0.111: probe with driver snd-usb-6fire failed with error -71
[  111.397131][ T7003] netlink: 32 bytes leftover after parsing attributes in process `syz.2.586'.
[  111.441411][ T7003] netlink: 8 bytes leftover after parsing attributes in process `syz.2.586'.
[  111.450812][    T9] usb 4-1: USB disconnect, device number 8
[  111.665278][ T6986] loop1: detected capacity change from 0 to 32768
[  111.687055][ T1913] kworker/u8:5: attempt to access beyond end of device
[  111.687055][ T1913] loop0: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[  111.734544][ T1913] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  111.762691][ T1913] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  111.783456][ T1913] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  111.804338][ T1913] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  111.913572][ T6986] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  112.067649][ T5739] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.422038][ T7007] loop2: detected capacity change from 0 to 32768
[  112.436557][ T7007] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.589 (7007)
[  112.468007][ T7007] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  112.478376][ T7007] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  112.487209][ T7007] BTRFS info (device loop2): using free-space-tree
[  112.513698][ T6986] XFS (loop1): Ending clean mount
[  112.542272][ T6986] XFS (loop1): Quotacheck needed: Please wait.
[  112.594224][ T7034] syz.4.593: attempt to access beyond end of device
[  112.594224][ T7034] loop9: rw=0, sector=16, nr_sectors = 8 limit=0
[  112.614698][ T7034] REISERFS warning (device loop9): sh-2006 read_super_block: bread failed (dev loop9, block 2, size 4096)
[  112.632160][ T7034] syz.4.593: attempt to access beyond end of device
[  112.632160][ T7034] loop9: rw=0, sector=128, nr_sectors = 8 limit=0
[  112.645877][ T7034] REISERFS warning (device loop9): sh-2006 read_super_block: bread failed (dev loop9, block 16, size 4096)
[  112.658726][ T7034] REISERFS warning (device loop9): sh-2021 reiserfs_fill_super: can not find reiserfs on loop9
[  112.761015][ T6986] XFS (loop1): Quotacheck: Done.
[  112.784191][ T7043] loop0: detected capacity change from 0 to 512
[  112.796156][ T7007] BTRFS info (device loop2): rebuilding free space tree
[  112.841069][ T7043] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  112.862976][ T7049] loop4: detected capacity change from 0 to 128
[  112.879474][ T5221] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  112.886073][ T7043] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.901017][ T7043] ext4 filesystem being mounted at /111/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  112.932378][ T7049] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  112.936118][ T6516] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  112.960021][ T7049] ext4 filesystem being mounted at /126/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  113.190002][ T5229] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  113.313822][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.391563][ T7060] loop4: detected capacity change from 0 to 512
[  113.435370][ T7060] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  113.487776][ T7060] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  113.500850][ T7060] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  113.509108][ T7060] System zones: 0-1, 15-15, 18-18, 34-34
[  113.515212][ T7060] EXT4-fs (loop4): orphan cleanup on readonly fs
[  113.522113][ T7060] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  113.531672][ T7060] EXT4-fs warning (device loop4): ext4_enable_quotas:7073: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  113.546438][ T7060] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  113.562746][ T7060] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.601: bg 0: block 40: padding at end of block bitmap is not set
[  113.580468][ T7060] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  113.591403][ T7060] EXT4-fs (loop4): 1 truncate cleaned up
[  113.598059][ T7060] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  113.616306][ T7066] netlink: 'syz.0.600': attribute type 10 has an invalid length.
[  113.627100][ T7060] EXT4-fs (loop4): shut down requested (1)
[  113.658134][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.660251][ T5274] kernel write not supported for file /media0 (pid: 5274 comm: kworker/1:6)
[  113.680076][ T7066] geneve0: entered promiscuous mode
[  113.731539][ T7066] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  113.814744][ T7072] loop2: detected capacity change from 0 to 16
[  113.865392][ T7072] erofs: (device loop2): mounted with root inode @ nid 36.
[  113.924981][   T29] audit: type=1800 audit(1724310522.294:31): pid=7072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.604" name="file1" dev="loop2" ino=86 res=0 errno=0
[  114.229686][ T7086] loop0: detected capacity change from 0 to 512
[  114.270709][ T7086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.289037][ T7086] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.339046][ T7086] EXT4-fs (loop0): shut down requested (1)
[  114.425850][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.714101][ T7109] loop3: detected capacity change from 0 to 1024
[  115.216482][   T57] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  115.399928][   T57] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  115.419502][   T57] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.427709][ T7141] loop2: detected capacity change from 0 to 64
[  115.453376][   T57] usb 2-1: Product: syz
[  115.453685][ T7141] syz.2.633: attempt to access beyond end of device
[  115.453685][ T7141] loop2: rw=0, sector=8192, nr_sectors = 2 limit=64
[  115.466532][   T57] usb 2-1: Manufacturer: syz
[  115.481938][   T57] usb 2-1: SerialNumber: syz
[  115.503652][   T57] usb 2-1: config 0 descriptor??
[  115.521744][ T7143] syz.2.633: attempt to access beyond end of device
[  115.521744][ T7143] loop2: rw=0, sector=8192, nr_sectors = 2 limit=64
[  115.568389][ T7143] Buffer I/O error on dev loop2, logical block 4096, async page read
[  115.599352][   T29] audit: type=1800 audit(1724310523.974:32): pid=7143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.633" name="file1" dev="loop2" ino=5 res=0 errno=0
[  115.797333][   T57] usb 2-1: USB disconnect, device number 6
[  115.896512][ T7162] netlink: 24 bytes leftover after parsing attributes in process `syz.0.637'.
[  116.002540][ T7167] loop2: detected capacity change from 0 to 512
[  116.033460][ T7167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.101941][ T7167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.146657][ T7167] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.393516][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.487216][ T7139] loop4: detected capacity change from 0 to 32768
[  116.552864][ T7139] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  116.712129][ T7219] loop0: detected capacity change from 0 to 1024
[  116.721894][ T7219] EXT4-fs: Ignoring removed i_version option
[  116.742553][ T7139] XFS (loop4): Ending clean mount
[  116.754382][ T7139] XFS (loop4): Quotacheck needed: Please wait.
[  116.785168][ T7219] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.810413][ T7139] XFS (loop4): Quotacheck: Done.
[  116.986605][ T5331] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  117.004780][ T5229] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  117.126519][ T7203] loop3: detected capacity change from 0 to 32768
[  117.137444][ T7203] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.641 (7203)
[  117.201609][ T5331] usb 3-1: Using ep0 maxpacket: 16
[  117.228629][ T7203] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  117.239765][ T7203] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  117.248904][ T7203] BTRFS info (device loop3): using free-space-tree
[  117.275339][ T7234] loop4: detected capacity change from 0 to 64
[  117.286797][ T5331] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8
[  117.300943][ T5331] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  117.312550][ T5331] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.321501][ T5331] usb 3-1: Product: syz
[  117.326287][ T5331] usb 3-1: Manufacturer: syz
[  117.348771][ T5331] usb 3-1: SerialNumber: syz
[  117.355544][ T5331] usb 3-1: config 0 descriptor??
[  117.371756][ T5331] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  117.372675][ T7234] hfs: request for non-existent node 1280 in B*Tree
[  117.380641][ T5331] usb 3-1: Detected FT232R
[  117.387907][ T7234] hfs: request for non-existent node 1280 in B*Tree
[  117.399605][ T7234] hfs: request for non-existent node 1280 in B*Tree
[  117.406241][ T7234] hfs: request for non-existent node 1280 in B*Tree
[  117.498792][ T7254] loop4: detected capacity change from 0 to 512
[  117.508830][ T7254] EXT4-fs: Ignoring removed i_version option
[  117.514995][ T7254] EXT4-fs: Ignoring removed nobh option
[  117.528960][ T7254] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  117.543452][ T7254] EXT4-fs (loop4): 1 truncate cleaned up
[  117.575703][ T7254] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.585947][ T5331] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  117.606303][ T7257] netlink: 24 bytes leftover after parsing attributes in process `syz.1.654'.
[  117.627497][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.647616][ T5739] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  117.748018][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.847249][ T5331] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  117.986792][ T7267] netlink: 32 bytes leftover after parsing attributes in process `syz.4.658'.
[  118.063005][ T5331] usb 3-1: USB disconnect, device number 4
[  118.091435][ T5331] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  118.111615][ T5331] ftdi_sio 3-1:0.0: device disconnected
[  118.379894][ T7271] loop1: detected capacity change from 0 to 32768
[  118.527127][ T7289] loop0: detected capacity change from 0 to 16
[  118.537389][ T7289] erofs: (device loop0): mounted with root inode @ nid 36.
[  118.550716][ T7289] erofs: (device loop0): erofs_read_inode: unsupported i_format 36 of nid 37
[  118.832971][ T7301] netlink: 40 bytes leftover after parsing attributes in process `syz.1.672'.
[  118.871228][ T7302] netlink: 'syz.3.677': attribute type 1 has an invalid length.
[  118.880879][ T7302] netlink: 8 bytes leftover after parsing attributes in process `syz.3.677'.
[  119.217855][ T7319] loop0: detected capacity change from 0 to 8
[  119.221968][ T7320] loop2: detected capacity change from 0 to 256
[  119.231298][ T7283] loop4: detected capacity change from 0 to 32768
[  119.247089][ T7319] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  119.259886][ T7283] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.667 (7283)
[  119.309265][ T7319] cramfs: Error -3 while decompressing!
[  119.316643][ T7319] cramfs: ffffffff950cd738(27)->ffff888061fe9000(4096)
[  119.323567][ T7319] cramfs: Error -3 while decompressing!
[  119.329330][ T7319] cramfs: ffffffff950cd738(27)->ffff888061fe9000(4096)
[  119.347866][   T29] audit: type=1800 audit(1724310527.714:33): pid=7319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.685" name="file0" dev="loop0" ino=244 res=0 errno=0
[  119.363012][ T7283] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  119.383519][ T7283] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  119.416263][ T7283] BTRFS info (device loop4): using free-space-tree
[  119.548073][ T7328] netlink: 28 bytes leftover after parsing attributes in process `syz.0.688'.
[  119.763923][ T7306] loop1: detected capacity change from 0 to 32768
[  119.790498][ T7306] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  119.804286][ T5229] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  120.029911][ T7306] XFS (loop1): Ending clean mount
[  120.239269][ T7366] loop0: detected capacity change from 0 to 47
[  120.270490][ T5221] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  120.732788][ T7386] input: syz0 as /devices/virtual/input/input6
[  120.738762][ T5273] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  120.902927][ T7390] loop2: detected capacity change from 0 to 64
[  120.916053][ T7368] loop4: detected capacity change from 0 to 32768
[  120.970579][ T7368] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.693 (7368)
[  120.976476][ T5273] usb 4-1: Using ep0 maxpacket: 8
[  120.990109][ T5273] usb 4-1: config 0 has no interfaces?
[  120.997612][ T5273] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  121.006903][ T5273] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.014921][ T5273] usb 4-1: Product: syz
[  121.030406][ T7368] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  121.032376][ T5273] usb 4-1: Manufacturer: syz
[  121.051817][ T7390] Trying to free block not in datazone
[  121.061635][ T7368] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  121.065323][ T7393] loop0: detected capacity change from 0 to 736
[  121.077617][ T5273] usb 4-1: SerialNumber: syz
[  121.082266][ T7368] BTRFS info (device loop4): using free-space-tree
[  121.084027][ T5273] usb 4-1: config 0 descriptor??
[  121.230899][ T7393] Symlink component flag not implemented
[  121.250299][ T7393] Symlink component flag not implemented (121)
[  121.253688][ T5229] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  121.283560][ T7383] loop1: detected capacity change from 0 to 32768
[  121.318303][ T7410] loop2: detected capacity change from 0 to 1024
[  121.330918][ T7410] EXT4-fs: Ignoring removed orlov option
[  121.336725][ T7410] EXT4-fs: Ignoring removed nomblk_io_submit option
[  121.365777][ T7410] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  121.383344][    T9] usb 4-1: USB disconnect, device number 9
[  121.400910][ T7383] gfs2: fsid=_dev_net_tun: Trying to join cluster "lock_nolock", "_dev_net_tun"
[  121.426850][ T7410] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  121.484327][ T7383] gfs2: fsid=_dev_net_tun: Now mounting FS (format 1801)...
[  121.496627][ T7410] EXT4-fs (loop2): invalid journal inode
[  121.502351][ T7410] EXT4-fs (loop2): can't get journal size
[  121.561623][ T7410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  121.578244][ T7418] loop0: detected capacity change from 0 to 1764
[  121.677282][ T7383] gfs2: fsid=_dev_net_tun.0: journal 0 mapped with 16 extents in 0ms
[  121.773818][ T5271] gfs2: fsid=_dev_net_tun.0: jid=0, already locked for use
[  121.788258][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.810166][ T5271] gfs2: fsid=_dev_net_tun.0: jid=0: Looking at journal...
[  121.945232][ T5271] gfs2: fsid=_dev_net_tun.0: jid=0: Journal head lookup took 135ms
[  121.974381][ T5271] gfs2: fsid=_dev_net_tun.0: jid=0: Done
[  121.986721][ T7383] gfs2: fsid=_dev_net_tun.0: first mount done, others may mount
[  122.051961][ T7429] loop3: detected capacity change from 0 to 1024
[  122.059214][ T7429] EXT4-fs: Ignoring removed nomblk_io_submit option
[  122.079189][ T7429] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  122.081026][ T7431] loop0: detected capacity change from 0 to 1024
[  122.227407][ T7421] loop4: detected capacity change from 0 to 32768
[  122.238601][ T7421] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.712 (7421)
[  122.249032][ T7429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.284817][ T5292] hfsplus: b-tree write err: -5, ino 4
[  122.394126][ T7421] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  122.414129][ T7383] gfs2: fsid=_dev_net_tun.0: fatal: invalid metadata block - bh = 2049 (type: exp=14, found=8), function = gfs2_quota_init, file = fs/gfs2/quota.c, line = 1432
[  122.443676][ T7437] input: syz0 as /devices/virtual/input/input7
[  122.456024][ T7421] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  122.468587][ T7383] gfs2: fsid=_dev_net_tun.0: about to withdraw this file system
[  122.483265][ T7421] BTRFS info (device loop4): using free-space-tree
[  122.493308][ T7383] gfs2: fsid=_dev_net_tun.0: Journal recovery skipped for jid 0 until next mount.
[  122.513204][ T7383] gfs2: fsid=_dev_net_tun.0: Glock dequeues delayed: 0
[  122.532614][ T5739] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.542180][ T7383] gfs2: fsid=_dev_net_tun.0: File system withdrawn
[  122.595799][ T7383] CPU: 0 UID: 0 PID: 7383 Comm: syz.1.700 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0
[  122.605947][ T7383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  122.616047][ T7383] Call Trace:
[  122.619349][ T7383]  <TASK>
[  122.622292][ T7383]  dump_stack_lvl+0x241/0x360
[  122.626992][ T7383]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.632210][ T7383]  ? __pfx__printk+0x10/0x10
[  122.636815][ T7383]  ? kobject_uevent_env+0x54d/0x8e0
[  122.642032][ T7383]  ? preempt_schedule_thunk+0x1a/0x30
[  122.647424][ T7383]  gfs2_withdraw+0xefa/0x1460
[  122.652131][ T7383]  ? __pfx_gfs2_withdraw+0x10/0x10
[  122.657261][ T7383]  ? __pfx_bit_wait_io+0x10/0x10
[  122.662213][ T7383]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  122.668216][ T7383]  ? __pfx_wake_bit_function+0x10/0x10
[  122.673713][ T7383]  gfs2_metatype_check_ii+0x79/0x90
[  122.678940][ T7383]  gfs2_quota_init+0x10d8/0x1440
[  122.683929][ T7383]  ? __pfx_gfs2_quota_init+0x10/0x10
[  122.689255][ T7383]  ? __pfx_gfs2_find_jhead+0x10/0x10
[  122.694577][ T7383]  ? inode_go_inval+0x25c/0x2c0
[  122.699482][ T7383]  gfs2_make_fs_rw+0x43f/0x5e0
[  122.704279][ T7383]  ? gfs2_reconfigure+0x208/0xbb0
[  122.709331][ T7383]  ? __pfx_gfs2_make_fs_rw+0x10/0x10
[  122.714641][ T7383]  ? do_raw_spin_unlock+0x13c/0x8b0
[  122.719865][ T7383]  gfs2_reconfigure+0x672/0xbb0
[  122.724741][ T7383]  ? security_sb_remount+0x13/0x280
[  122.729983][ T7383]  reconfigure_super+0x445/0x880
[  122.734956][ T7383]  path_mount+0xc22/0xfa0
[  122.739323][ T7383]  __se_sys_mount+0x2d6/0x3c0
[  122.744041][ T7383]  ? __pfx___se_sys_mount+0x10/0x10
[  122.749276][ T7383]  ? do_syscall_64+0x100/0x230
[  122.754073][ T7383]  ? __x64_sys_mount+0x20/0xc0
[  122.758867][ T7383]  do_syscall_64+0xf3/0x230
[  122.763396][ T7383]  ? clear_bhb_loop+0x35/0x90
[  122.768098][ T7383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.774021][ T7383] RIP: 0033:0x7f3d9537b61a
[  122.778461][ T7383] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.798102][ T7383] RSP: 002b:00007f3d96234e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  122.806550][ T7383] RAX: ffffffffffffffda RBX: 00007f3d96234ef0 RCX: 00007f3d9537b61a
[  122.814895][ T7383] RDX: 0000000020000180 RSI: 0000000020000100 RDI: 0000000000000000
[  122.820651][ T7439] loop0: detected capacity change from 0 to 32768
[  122.822862][ T7383] RBP: 0000000020000180 R08: 00007f3d96234ef0 R09: 0000000001a4243c
[  122.822905][ T7383] R10: 0000000001a4243c R11: 0000000000000246 R12: 0000000020000100
[  122.845340][ T7383] R13: 00007f3d96234eb0 R14: 0000000000000000 R15: 0000000020001f80
[  122.853406][ T7383]  </TASK>
[  122.867388][ T7383] gfs2: unable to remount read-write
[  123.051022][ T7439] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  123.147587][ T7439] XFS (loop0): Ending clean mount
[  123.154889][ T7421] BTRFS info (device loop4): rebuilding free space tree
[  123.216145][ T7475] loop3: detected capacity change from 0 to 4096
[  123.273807][ T5232] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  123.328330][ T5331] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  123.406024][ T7479] netlink: 28 bytes leftover after parsing attributes in process `syz.1.733'.
[  123.515933][ T7475] ntfs3: loop3: failed to convert "0000" to iso8859-6
[  123.526498][ T5331] usb 3-1: Using ep0 maxpacket: 32
[  123.527983][ T5229] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  123.535477][ T5331] usb 3-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  123.547503][ T7479] Zero length message leads to an empty skb
[  123.555372][ T5331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.576079][ T5331] usb 3-1: config 0 descriptor??
[  123.585661][ T5331] gspca_main: nw80x-2.14.0 probing 055f:d001
[  123.854924][ T7489] loop4: detected capacity change from 0 to 4096
[  123.937021][ T5273] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  123.955914][   T29] audit: type=1800 audit(1724310532.324:34): pid=7489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.732" name="bus" dev="loop4" ino=33 res=0 errno=0
[  124.129466][ T5273] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  124.143432][ T5273] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.162193][ T5273] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  124.171455][ T5273] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  124.179705][ T5273] usb 4-1: Manufacturer: syz
[  124.187674][ T5273] usb 4-1: config 0 descriptor??
[  124.267031][ T5273] rc_core: IR keymap rc-hauppauge not found
[  124.273149][ T5273] Registered IR keymap rc-empty
[  124.278787][ T5273] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  124.291004][ T5273] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input9
[  124.421917][ T5331] gspca_nw80x: reg_r err -71
[  124.427989][ T5331] nw80x 3-1:0.0: probe with driver nw80x failed with error -71
[  124.439110][ T5331] usb 3-1: USB disconnect, device number 5
[  124.494477][ T5274] IPVS: starting estimator thread 0...
[  124.501733][ T7508] IPVS: sh: SCTP 172.20.20.187:0 - no destination available
[  124.586815][ T7509] IPVS: using max 19 ests per chain, 45600 per kthread
[  124.628155][ T5273] usb 4-1: USB disconnect, device number 10
[  124.795825][ T7515] netlink: 68 bytes leftover after parsing attributes in process `syz.1.746'.
[  124.875331][ T7513] loop0: detected capacity change from 0 to 32768
[  124.886519][ T7513] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.745 (7513)
[  124.910516][ T7513] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  124.921116][ T7513] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  124.930373][ T7513] BTRFS info (device loop0): using free-space-tree
[  124.996148][ T7524] netem: unknown loss type 0
[  125.004203][ T7524] netem: change failed
[  125.005875][ T7528] loop2: detected capacity change from 0 to 64
[  125.222507][ T5232] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  125.592559][ T7563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.753'.
[  125.654811][ T7565] pim6reg: entered allmulticast mode
[  125.680214][ T7565] pim6reg: left allmulticast mode
[  126.217537][ T7593] loop2: detected capacity change from 0 to 512
[  126.240940][ T7561] loop3: detected capacity change from 0 to 32768
[  126.252633][ T7593] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  126.300025][ T7593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.313014][ T7561] XFS (loop3): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  126.327021][ T7593] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.367833][ T7561] XFS (loop3): Ending clean mount
[  126.410361][ T7609] loop4: detected capacity change from 0 to 2048
[  126.470498][ T5739] XFS (loop3): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  126.560820][ T7615] netlink: 'syz.0.782': attribute type 29 has an invalid length.
[  126.614513][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.645342][ T7615] netlink: 'syz.0.782': attribute type 29 has an invalid length.
[  127.183447][ T7624] loop1: detected capacity change from 0 to 32768
[  127.191032][ T7645] syz.4.794[7645] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  127.191131][ T7645] syz.4.794[7645] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  127.208208][ T7645] syz.4.794[7645] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  127.223181][ T7624] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.787 (7624)
[  127.298961][ T7624] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  127.327176][ T7624] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  127.335898][ T7624] BTRFS info (device loop1): using free-space-tree
[  127.345355][ T7651] loop0: detected capacity change from 0 to 512
[  127.363243][ T7651] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  127.409595][ T7651] EXT4-fs (loop0): 1 truncate cleaned up
[  127.414627][ T7667] loop3: detected capacity change from 0 to 16
[  127.416070][ T7651] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.431451][ T7667] erofs: (device loop3): mounted with root inode @ nid 36.
[  127.462463][ T7667] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 0 @ lcn 0 of nid 36
[  127.474960][ T7667] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 0 of nid 36
[  127.475805][ T7651] fscrypt (loop0, inode 18): Unsupported encryption flags (0x10)
[  127.597782][ T5221] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  127.614389][ T5232] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.577670][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  128.588365][ T7721] netlink: 596 bytes leftover after parsing attributes in process `syz.2.821'.
[  128.767014][    T9] usb 1-1: Using ep0 maxpacket: 32
[  128.788961][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.802766][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.817132][    T9] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  128.831593][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.848795][    T9] usb 1-1: config 0 descriptor??
[  129.203194][ T7758] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  129.210570][ T7758] IPv6: NLM_F_CREATE should be set when creating new route
[  129.217891][ T7758] IPv6: NLM_F_CREATE should be set when creating new route
[  129.271234][    T9] kone 0003:1E7D:2CED.0004: unknown main item tag 0x0
[  129.298347][    T9] kone 0003:1E7D:2CED.0004: unknown main item tag 0x0
[  129.315014][    T9] kone 0003:1E7D:2CED.0004: unknown main item tag 0x0
[  129.335865][    T9] kone 0003:1E7D:2CED.0004: unknown main item tag 0x0
[  129.353663][    T9] kone 0003:1E7D:2CED.0004: unknown main item tag 0x0
[  129.371728][    T9] kone 0003:1E7D:2CED.0004: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.0-1/input0
[  129.426547][ T7769] netlink: 56 bytes leftover after parsing attributes in process `syz.4.844'.
[  129.465445][    T9] kone 0003:1E7D:2CED.0004: couldn't init struct kone_device
[  129.481744][    T9] kone 0003:1E7D:2CED.0004: couldn't install mouse
[  129.503411][    T9] kone 0003:1E7D:2CED.0004: probe with driver kone failed with error -5
[  129.525857][    T9] usb 1-1: USB disconnect, device number 6
[  129.582946][ T7778] loop4: detected capacity change from 0 to 512
[  129.594539][ T7778] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  129.631579][ T7778] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.848: iget: bad extended attribute block 19
[  129.647057][ T7778] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.848: couldn't read orphan inode 15 (err -117)
[  129.672594][ T7778] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.706169][ T7778] EXT4-fs error (device loop4): ext4_readdir:260: inode #12: block 13: comm syz.4.848: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=0
[  129.736647][ T5273] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  129.769899][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.779535][   T57] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  129.888297][ T7792] loop4: detected capacity change from 0 to 512
[  129.913503][ T7792] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  129.913609][ T7792] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.918026][ T5273] usb 3-1: config 1 has an invalid descriptor of length 95, skipping remainder of the config
[  129.918053][ T5273] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  129.918952][ T5273] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  129.918980][ T5273] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  129.919002][ T5273] usb 3-1: SerialNumber: syz
[  129.935254][ T7792] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  129.935693][ T7792] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  129.935720][ T7792] EXT4-fs error (device loop4): ext4_acquire_dquot:6855: comm syz.4.854: Failed to acquire dquot type 0
[  129.981048][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  130.057990][   T57] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  130.068012][   T57] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.082600][   T57] usb 2-1: config 0 descriptor??
[  130.089752][   T57] cp210x 2-1:0.0: cp210x converter detected
[  130.140756][ T5273] usb 3-1: 0:2 : does not exist
[  130.174327][ T7798] netlink: 12 bytes leftover after parsing attributes in process `syz.3.857'.
[  130.184380][ T5273] usb 3-1: USB disconnect, device number 6
[  130.388737][ T5274] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  130.462416][ T7809] loop4: detected capacity change from 0 to 512
[  130.474283][ T7809] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  130.483898][ T7809] EXT4-fs (loop4): orphan cleanup on readonly fs
[  130.492774][ T7809] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  130.505316][ T7809] EXT4-fs warning (device loop4): ext4_enable_quotas:7073: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  130.513940][   T57] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[  130.528677][ T7809] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  130.540653][ T7809] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #16: comm syz.4.861: casefold flag without casefold feature
[  130.554025][ T7809] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.861: couldn't read orphan inode 16 (err -117)
[  130.557145][   T57] usb 2-1: cp210x converter now attached to ttyUSB0
[  130.575445][ T7809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.597445][ T5274] usb 1-1: Using ep0 maxpacket: 8
[  130.609143][ T5274] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  130.632912][ T5274] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  130.647533][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.649149][ T5274] usb 1-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  130.689258][ T5274] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.714861][ T5274] usb 1-1: config 0 descriptor??
[  130.790139][ T7816] loop2: detected capacity change from 0 to 512
[  130.800234][ T7812] loop3: detected capacity change from 0 to 4096
[  130.815091][ T7816] EXT4-fs: Ignoring removed bh option
[  130.825572][   T57] usb 2-1: USB disconnect, device number 7
[  130.835322][ T7816] EXT4-fs error (device loop2): __ext4_iget:4982: inode #15: block 1803188595: comm syz.2.864: invalid block
[  130.841073][ T7812] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  130.858621][   T57] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  130.875004][ T7816] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.864: couldn't read orphan inode 15 (err -117)
[  130.910663][   T57] cp210x 2-1:0.0: device disconnected
[  130.920139][ T7816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.947836][   T29] audit: type=1326 audit(1724310539.324:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7820 comm="syz.4.866" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6623b79e79 code=0x0
[  130.958747][ T7812] ntfs3: loop3: ino=1b, "file0" failed to parse mft record
[  130.979654][ T7812] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  130.994771][ T7812] ntfs3: loop3: ino=1b, "file0" attr_set_size
[  131.002652][ T7822] ntfs3: loop3: ino=1b, "file0" failed to parse mft record
[  131.015002][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.149808][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.158276][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.165892][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.181146][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.190022][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.198990][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.209495][ T5274] playstation 0003:054C:0CE6.0005: unknown main item tag 0x0
[  131.218528][ T5274] playstation 0003:054C:0CE6.0005: hidraw0: USB HID v0.00 Device [HID 054c:0ce6] on usb-dummy_hcd.0-1/input0
[  131.367410][ T5274] playstation 0003:054C:0CE6.0005: Invalid reportID received, expected 9 got 119
[  131.387708][ T5274] playstation 0003:054C:0CE6.0005: Failed to retrieve DualSense pairing info: -22
[  131.415512][ T5274] playstation 0003:054C:0CE6.0005: Failed to get MAC address from DualSense
[  131.443863][ T5274] playstation 0003:054C:0CE6.0005: Failed to create dualsense.
[  131.474605][ T5274] playstation 0003:054C:0CE6.0005: probe with driver playstation failed with error -22
[  131.532503][   T53] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.578243][ T5274] usb 1-1: USB disconnect, device number 7
[  131.611518][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  131.632946][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  131.640463][   T53] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.681171][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  131.694013][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  131.705215][   T52] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  131.713000][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  131.743009][   T53] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.753455][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  131.799586][ T5271] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  131.829826][   T53] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.936625][    T9] usb 3-1: Using ep0 maxpacket: 8
[  131.943324][    T9] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  131.967174][    T9] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  131.978705][    T9] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  131.985941][ T7835] chnl_net:caif_netlink_parms(): no params data found
[  131.988773][    T9] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  131.988823][    T9] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  131.988848][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.051813][ T5271] usb 2-1: Using ep0 maxpacket: 32
[  132.062243][ T5271] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  132.074921][   T53] bridge_slave_1: left allmulticast mode
[  132.080793][   T53] bridge_slave_1: left promiscuous mode
[  132.087145][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.094794][ T5271] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  132.109076][   T53] bridge_slave_0: left allmulticast mode
[  132.114750][   T53] bridge_slave_0: left promiscuous mode
[  132.120939][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.145971][ T5271] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  132.167358][ T5271] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  132.175838][ T5271] usb 2-1: Product: syz
[  132.180442][ T5271] usb 2-1: Manufacturer: syz
[  132.185080][ T5271] usb 2-1: SerialNumber: syz
[  132.194583][ T5271] usb 2-1: config 0 descriptor??
[  132.202642][ T5271] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  132.218215][ T5271] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  132.265203][    T9] usb 3-1: GET_CAPABILITIES returned 0
[  132.271030][    T9] usbtmc 3-1:16.0: can't read capabilities
[  132.435891][ T5271] usb 2-1: USB disconnect, device number 8
[  132.447159][ T5271] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  132.473058][    T9] usb 3-1: USB disconnect, device number 7
[  132.578437][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  132.592250][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  132.603047][   T53] bond0 (unregistering): Released all slaves
[  132.825561][ T7835] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.833074][ T7835] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.840387][ T7835] bridge_slave_0: entered allmulticast mode
[  132.847478][ T7835] bridge_slave_0: entered promiscuous mode
[  132.863696][ T7835] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.871093][ T7835] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.878522][ T7835] bridge_slave_1: entered allmulticast mode
[  132.885597][ T7835] bridge_slave_1: entered promiscuous mode
[  133.000650][ T7835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.039486][ T1266] ieee802154 phy0 wpan0: encryption failed: -22
[  133.045926][ T1266] ieee802154 phy1 wpan1: encryption failed: -22
[  133.148754][   T53] hsr_slave_0: left promiscuous mode
[  133.150809][ T7867] loop2: detected capacity change from 0 to 1024
[  133.187552][   T53] hsr_slave_1: left promiscuous mode
[  133.197306][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  133.204765][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.244905][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  133.266189][ T7867] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.266435][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.362905][ T7867] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  133.373544][   T53] veth1_macvtap: left promiscuous mode
[  133.386202][   T53] veth0_macvtap: left promiscuous mode
[  133.392007][   T53] veth1_vlan: left promiscuous mode
[  133.400175][   T53] veth0_vlan: left promiscuous mode
[  133.406587][ T7867] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  133.419748][ T7867] EXT4-fs (loop2): This should not happen!! Data will be lost
[  133.419748][ T7867] 
[  133.430644][ T7867] EXT4-fs (loop2): Total free blocks count 0
[  133.436880][ T7867] EXT4-fs (loop2): Free/Dirty block details
[  133.443614][ T7867] EXT4-fs (loop2): free_blocks=68451041280
[  133.449690][ T7867] EXT4-fs (loop2): dirty_blocks=16
[  133.455023][ T7867] EXT4-fs (loop2): Block reservation details
[  133.481542][ T7867] EXT4-fs (loop2): i_reserved_data_blocks=1
[  133.756589][ T5231] Bluetooth: hci1: command tx timeout
[  133.774216][ T7879] coredump: 409(syz.1.889): written to core: VMAs: 3, size 4096; core: 2771 bytes, pos 8192
[  133.812436][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.854755][ T7857] loop0: detected capacity change from 0 to 32768
[  133.883354][ T7857] XFS: ikeep mount option is deprecated.
[  133.920319][ T7857] XFS: ikeep mount option is deprecated.
[  133.988240][ T7857] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.198790][ T7857] XFS (loop0): Ending clean mount
[  134.229558][ T7857] XFS (loop0): Quotacheck needed: Please wait.
[  134.306718][ T7857] XFS (loop0): Quotacheck: Done.
[  134.426211][ T5232] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.488329][   T53] team0 (unregistering): Port device team_slave_1 removed
[  134.595688][ T7896] loop2: detected capacity change from 0 to 32768
[  134.611190][ T7896] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.893 (7896)
[  134.642491][ T7896] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  134.665292][   T53] team0 (unregistering): Port device team_slave_0 removed
[  134.674171][ T7896] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  134.674238][ T7899] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  134.701627][ T7896] BTRFS info (device loop2): using free-space-tree
[  135.019258][ T6516] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  135.518698][ T7835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.659733][ T7835] team0: Port device team_slave_0 added
[  135.680428][ T7835] team0: Port device team_slave_1 added
[  135.716943][ T7931] binder: 7929:7931 ioctl 400c620e 200002c0 returned -22
[  135.729072][ T7932] loop4: detected capacity change from 0 to 256
[  135.753799][ T7932] exfat: Deprecated parameter 'utf8'
[  135.779867][ T7932] exfat: Deprecated parameter 'namecase'
[  135.785888][ T7932] exfat: Deprecated parameter 'namecase'
[  135.814543][ T7932] exfat: Deprecated parameter 'utf8'
[  135.833715][ T7934] team0: Device ipvlan0 failed to register rx_handler
[  135.852155][ T5231] Bluetooth: hci1: command tx timeout
[  135.861383][ T7932] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d)
[  135.909706][ T7835] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.917548][ T7835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.995016][ T7835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  136.032082][ T7835] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.064978][ T7835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.102953][ T7835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.126264][ T7939] syz_tun: entered promiscuous mode
[  136.140874][ T7941] loop0: detected capacity change from 0 to 512
[  136.142226][ T7939] syz_tun: left promiscuous mode
[  136.157578][ T7941] EXT4-fs: journaled quota format not specified
[  136.222999][ T7945] loop4: detected capacity change from 0 to 512
[  136.269346][ T7945] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.905: corrupted in-inode xattr: invalid ea_ino
[  136.292120][ T7945] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.905: couldn't read orphan inode 15 (err -117)
[  136.323766][ T7945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.382072][ T7835] hsr_slave_0: entered promiscuous mode
[  136.434794][ T7835] hsr_slave_1: entered promiscuous mode
[  136.473475][ T7835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  136.493735][ T7835] Cannot create hsr debugfs directory
[  136.495951][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.675305][ T7956] loop2: detected capacity change from 0 to 1024
[  136.746872][ T7956] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  136.786482][ T7956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.835060][ T7959] loop0: detected capacity change from 0 to 4096
[  136.864181][ T7959] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  136.968959][ T6516] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.971567][ T7959] ntfs3: loop0: Failed to initialize $Extend/$Reparse.
[  136.994074][ T7966] netlink: 4 bytes leftover after parsing attributes in process `syz.4.917'.
[  137.053346][ T7966] netlink: 4 bytes leftover after parsing attributes in process `syz.4.917'.
[  137.185353][ T7974] loop4: detected capacity change from 0 to 512
[  137.193053][ T7974] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  137.294921][ T7974] EXT4-fs (loop4): 1 orphan inode deleted
[  137.314836][ T7835] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  137.322194][ T7974] EXT4-fs (loop4): 1 truncate cleaned up
[  137.328876][ T7974] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.345042][ T7835] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  137.365050][ T7835] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  137.385232][ T7974] EXT4-fs error (device loop4): ext4_find_dest_de:2067: inode #12: block 7: comm syz.4.920: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[  137.408975][ T7835] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  137.470079][ T7974] EXT4-fs (loop4): Remounting filesystem read-only
[  137.575287][ T5229] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.615715][ T7835] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.646883][ T7835] 8021q: adding VLAN 0 to HW filter on device team0
[  137.674287][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.681492][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.731341][ T7195] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.738508][ T7195] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.855611][ T7835] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  137.887170][ T7835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  137.926579][ T5231] Bluetooth: hci1: command tx timeout
[  137.935579][ T7996] program syz.2.930 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  138.351814][ T7990] loop4: detected capacity change from 0 to 32768
[  138.357144][ T7835] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.457600][ T7835] veth0_vlan: entered promiscuous mode
[  138.475035][ T7994] loop0: detected capacity change from 0 to 32768
[  138.504419][ T7835] veth1_vlan: entered promiscuous mode
[  138.587631][ T8013] tipc: Started in network mode
[  138.594634][ T8013] tipc: Node identity -name-of, cluster identity 4711
[  138.602093][ T8013] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  138.614865][ T7835] veth0_macvtap: entered promiscuous mode
[  138.635915][ T7835] veth1_macvtap: entered promiscuous mode
[  138.805446][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.824349][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.874569][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.906575][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.922246][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.932818][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.942739][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.953277][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.964588][ T7835] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.975652][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.986193][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.996093][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.006597][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.016482][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.027072][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.037096][ T7835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.038799][ T8017] loop2: detected capacity change from 0 to 32768
[  139.047602][ T7835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.048783][ T7835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.077948][ T7835] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.086766][ T7835] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.095485][ T7835] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.104361][ T7835] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.151814][ T8017] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  139.304027][ T7193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.308819][ T8036] loop0: detected capacity change from 0 to 8
[  139.333282][ T7193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.333309][ T8017] XFS (loop2): Ending clean mount
[  139.358904][ T8036] squashfs image failed sanity check
[  139.373142][ T8038] hsr0: entered promiscuous mode
[  139.380020][ T8017] XFS (loop2): Quotacheck needed: Please wait.
[  139.397930][ T8038] macsec1: entered allmulticast mode
[  139.403243][ T8038] hsr0: entered allmulticast mode
[  139.418834][ T8038] hsr_slave_0: entered allmulticast mode
[  139.426699][ T8038] hsr_slave_1: entered allmulticast mode
[  139.456005][ T8038] hsr0: left allmulticast mode
[  139.463570][ T8017] XFS (loop2): Quotacheck: Done.
[  139.471469][ T8038] hsr_slave_0: left allmulticast mode
[  139.492818][ T8038] hsr_slave_1: left allmulticast mode
[  139.513079][ T6516] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  139.543381][ T7190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.567873][ T7190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.829501][   T29] audit: type=1326 audit(1724310548.204:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[  139.904549][   T29] audit: type=1326 audit(1724310548.204:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[  139.957208][   T29] audit: type=1326 audit(1724310548.234:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[  139.996722][ T5231] Bluetooth: hci1: command tx timeout
[  140.050655][   T29] audit: type=1326 audit(1724310548.234:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[  140.131591][   T29] audit: type=1326 audit(1724310548.234:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd555f79e79 code=0x7ffc0000
[  140.156738][ T5271] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  140.186558][   T29] audit: type=1326 audit(1724310548.234:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd555f78810 code=0x7ffc0000
[  140.236887][   T29] audit: type=1326 audit(1724310548.234:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd555f79a7b code=0x7ffc0000
[  140.276516][   T29] audit: type=1326 audit(1724310548.234:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd555f79a7b code=0x7ffc0000
[  140.326518][   T29] audit: type=1326 audit(1724310548.234:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd555f79a7b code=0x7ffc0000
[  140.359904][ T8063] [U] ~
[  140.386585][   T29] audit: type=1326 audit(1724310548.234:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8047 comm="syz.0.948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd555f79a7b code=0x7ffc0000
[  140.390134][ T5271] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98
[  140.446056][ T5271] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.468516][ T5271] usb 1-1: config 0 descriptor??
[  140.482103][ T5271] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  140.502683][ T5271] ftdi_sio ttyUSB0: unknown device type: 0xc698
[  140.519620][ T8067] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  140.697039][ T5271] usb 1-1: USB disconnect, device number 8
[  140.697700][ T8056] loop4: detected capacity change from 0 to 32768
[  140.703739][ T5271] ftdi_sio 1-1:0.0: device disconnected
[  140.724694][ T8076] loop3: detected capacity change from 0 to 16
[  140.737335][ T8076] erofs: (device loop3): mounted with root inode @ nid 36.
[  140.772429][ T8056] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  140.930929][ T8056] XFS (loop4): Ending clean mount
[  141.030909][ T5229] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  141.227816][ T8107] netlink: 201400 bytes leftover after parsing attributes in process `syz.2.972'.
[  141.413461][ T8115] loop2: detected capacity change from 0 to 512
[  141.483470][ T8115] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  141.503587][ T8115] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  141.524459][ T8115] System zones: 0-1, 15-15, 18-18, 34-34
[  141.548314][ T8115] EXT4-fs (loop2): orphan cleanup on readonly fs
[  141.562864][ T8115] EXT4-fs warning (device loop2): ext4_enable_quotas:7073: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  141.675669][ T8115] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  141.699440][ T8115] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.975: bad orphan inode 16
[  141.724445][ T8115] ext4_test_bit(bit=15, block=18) = 1
[  141.730232][ T8115] is_bad_inode(inode)=0
[  141.744456][ T8115] NEXT_ORPHAN(inode)=0
[  141.748999][ T8115] max_ino=32
[  141.752265][ T8115] i_nlink=2
[  141.761451][ T8115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.791234][ T8115] fscrypt (loop2, inode 16): Error -61 getting encryption context
[  141.979394][ T8139] netlink: 200 bytes leftover after parsing attributes in process `syz.4.982'.
[  141.992172][ T8139] netlink: 8 bytes leftover after parsing attributes in process `syz.4.982'.
[  142.087033][ T5274] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  142.105186][ T8141] loop4: detected capacity change from 0 to 512
[  142.137156][ T8141] EXT4-fs: Ignoring removed bh option
[  142.164246][ T8141] EXT4-fs error (device loop4): __ext4_iget:4982: inode #15: block 1803188595: comm syz.4.983: invalid block
[  142.200660][ T8138] loop3: detected capacity change from 0 to 8192
[  142.255511][ T8141] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.983: couldn't read orphan inode 15 (err -117)
[  142.302521][ T8141] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.318318][ T5274] usb 3-1: Using ep0 maxpacket: 32
[  142.327676][ T5274] usb 3-1: New USB device found, idVendor=0572, idProduct=cb07, bcdDevice=f6.19
[  142.338386][ T5274] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.346569][ T5274] usb 3-1: Product: syz
[  142.351709][ T5274] usb 3-1: Manufacturer: syz
[  142.356417][ T5274] usb 3-1: SerialNumber: syz
[  142.366534][ T5274] usb 3-1: config 0 descriptor??
[  142.384397][ T5274] usb-storage 3-1:0.0: USB Mass Storage device detected
[  142.392003][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.405942][ T8147] FAT-fs (loop3): Filesystem has been set read-only
[  142.423568][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.431040][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.432627][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.450590][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.459915][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.468817][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.477788][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.486709][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.495389][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.504228][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.512902][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.521780][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.530502][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.539234][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.547900][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.552335][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  142.557025][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.573983][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.582789][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.591645][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.600301][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.615293][ T8147] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 2070)
[  142.615365][ T8136] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000a: 0000 [#1] PREEMPT SMP KASAN PTI
[  142.636466][ T8136] KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]
[  142.644853][ T8136] CPU: 0 UID: 0 PID: 8136 Comm: syz.3.981 Not tainted 6.11.0-rc4-next-20240822-syzkaller #0
[  142.654909][ T8136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  142.664945][ T8136] RIP: 0010:pick_task_fair+0xc3/0x280
[  142.670326][ T8136] Code: 00 00 80 3b 00 74 08 4c 89 ef e8 58 7d 01 00 0f 1f 44 00 00 4c 89 ef e8 6b f8 01 00 49 89 c4 48 8d 58 51 48 89 d8 48 c1 e8 03 <0f> b6 04 28 84 c0 75 5e 80 3b 00 74 2e 48 8b 3c 24 4c 89 e6 ba 01
[  142.689905][ T8136] RSP: 0018:ffffc900183af998 EFLAGS: 00010006
[  142.695969][ T8136] RAX: 000000000000000a RBX: 0000000000000051 RCX: 0000000000000804
[  142.703935][ T8136] RDX: 0000000000000070 RSI: dffffc0000000000 RDI: ffff88802a554858
[  142.711881][ T8136] RBP: dffffc0000000000 R08: ffff888073322027 R09: 0000000000000000
[  142.719831][ T8136] R10: ffff888073322018 R11: ffffffff81666610 R12: 0000000000000000
[  142.727779][ T8136] R13: ffff88802a554800 R14: ffff8880b903eb10 R15: 1ffff11017207d62
[  142.735730][ T8136] FS:  0000555576474500(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  142.744642][ T8136] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  142.751922][ T8136] CR2: 000000110c439b0e CR3: 000000001f046000 CR4: 00000000003506f0
[  142.759874][ T8136] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  142.767822][ T8136] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  142.775787][ T8136] Call Trace:
[  142.779042][ T8136]  <TASK>
[  142.781951][ T8136]  ? __die_body+0x5f/0xb0
[  142.786258][ T8136]  ? die_addr+0xb0/0xe0
[  142.790394][ T8136]  ? exc_general_protection+0x3dd/0x5d0
[  142.795923][ T8136]  ? asm_exc_general_protection+0x26/0x30
[  142.801619][ T8136]  ? __pfx_pick_task_fair+0x10/0x10
[  142.806794][ T8136]  ? pick_task_fair+0xc3/0x280
[  142.811534][ T8136]  ? pick_task_fair+0xb5/0x280
[  142.816362][ T8136]  __schedule+0x30b9/0x4b30
[  142.820847][ T8136]  ? __pfx___schedule+0x10/0x10
[  142.825671][ T8136]  ? schedule+0x90/0x320
[  142.829888][ T8136]  ? __pfx_lock_release+0x10/0x10
[  142.834891][ T8136]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  142.840765][ T8136]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  142.846634][ T8136]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  142.852962][ T8136]  ? schedule+0x90/0x320
[  142.857179][ T8136]  schedule+0x14b/0x320
[  142.861311][ T8136]  do_nanosleep+0x197/0x600
[  142.865788][ T8136]  ? do_nanosleep+0x80/0x600
[  142.870387][ T8136]  ? __pfx_do_nanosleep+0x10/0x10
[  142.875385][ T8136]  ? __asan_memset+0x23/0x50
[  142.879948][ T8136]  ? __hrtimer_init+0x170/0x250
[  142.884792][ T8136]  hrtimer_nanosleep+0x21f/0x480
[  142.889705][ T8136]  ? __pfx_hrtimer_nanosleep+0x10/0x10
[  142.895139][ T8136]  ? __pfx_hrtimer_wakeup+0x10/0x10
[  142.900314][ T8136]  ? __pfx_get_timespec64+0x10/0x10
[  142.905489][ T8136]  __se_sys_clock_nanosleep+0x32b/0x3c0
[  142.911009][ T8136]  ? __pfx___se_sys_clock_nanosleep+0x10/0x10
[  142.917050][ T8136]  ? do_syscall_64+0x100/0x230
[  142.921791][ T8136]  ? do_syscall_64+0xb6/0x230
[  142.926445][ T8136]  do_syscall_64+0xf3/0x230
[  142.930925][ T8136]  ? clear_bhb_loop+0x35/0x90
[  142.935579][ T8136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.941446][ T8136] RIP: 0033:0x7ff0ca7abf65
[  142.945836][ T8136] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 c6 57 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 1f 58 ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[  142.965415][ T8136] RSP: 002b:00007ffc8214f620 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  142.973803][ T8136] RAX: ffffffffffffffda RBX: 00007ff0ca915f80 RCX: 00007ff0ca7abf65
[  142.981756][ T8136] RDX: 00007ffc8214f660 RSI: 0000000000000000 RDI: 0000000000000000
[  142.989894][ T8136] RBP: 00007ff0ca917a80 R08: 0000000000000000 R09: 7fffffffffffffff
[  142.997840][ T8136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000022da4
[  143.005789][ T8136] R13: 00007ffc8214f780 R14: 00007ffc8214f7a0 R15: ffffffffffffffff
[  143.014263][ T8136]  </TASK>
[  143.017257][ T8136] Modules linked in:
[  143.021129][ T8136] ---[ end trace 0000000000000000 ]---
[  143.026643][ T8136] RIP: 0010:pick_task_fair+0xc3/0x280
[  143.031992][ T8136] Code: 00 00 80 3b 00 74 08 4c 89 ef e8 58 7d 01 00 0f 1f 44 00 00 4c 89 ef e8 6b f8 01 00 49 89 c4 48 8d 58 51 48 89 d8 48 c1 e8 03 <0f> b6 04 28 84 c0 75 5e 80 3b 00 74 2e 48 8b 3c 24 4c 89 e6 ba 01
[  143.051580][ T8136] RSP: 0018:ffffc900183af998 EFLAGS: 00010006
[  143.057621][ T8136] RAX: 000000000000000a RBX: 0000000000000051 RCX: 0000000000000804
[  143.065568][ T8136] RDX: 0000000000000070 RSI: dffffc0000000000 RDI: ffff88802a554858
[  143.073528][ T8136] RBP: dffffc0000000000 R08: ffff888073322027 R09: 0000000000000000
[  143.081476][ T8136] R10: ffff888073322018 R11: ffffffff81666610 R12: 0000000000000000
[  143.089424][ T8136] R13: ffff88802a554800 R14: ffff8880b903eb10 R15: 1ffff11017207d62
[  143.097375][ T8136] FS:  0000555576474500(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  143.106279][ T8136] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  143.112836][ T8136] CR2: 000000110c439b0e CR3: 000000001f046000 CR4: 00000000003506f0
[  143.120784][ T8136] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  143.128733][ T8136] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  143.136680][ T8136] Kernel panic - not syncing: Fatal exception
[  144.207132][ T8136] Shutting down cpus with NMI
[  144.212039][ T8136] Kernel Offset: disabled
[  144.216365][ T8136] Rebooting in 86400 seconds..