last executing test programs:

3m54.858268862s ago: executing program 0 (id=1460):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020)

3m54.649117061s ago: executing program 0 (id=1463):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000000)={0x30, r2, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x14, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x8}, {0x8, 0x0, 0x8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4044010}, 0x4044084)

3m54.500531852s ago: executing program 0 (id=1464):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c0000000206050000000000000000000000000005000400000000000900020073797a30000000001400078008000840000028590800064000000000050005000000400005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)

3m54.405292333s ago: executing program 0 (id=1466):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x2000002, &(0x7f00000001c0)={[{@shortad}, {@fileset={'fileset', 0x3d, 0x5}}, {@unhide}, {}, {@volume={'volume', 0x3d, 0x401}}, {@gid_ignore}, {@uid_forget}, {@anchor}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {}, {@noadinicb}]}, 0x1, 0xc47, &(0x7f0000001800)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

3m53.62904389s ago: executing program 0 (id=1473):
r0 = memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
r1 = dup(r0)
write$binfmt_elf32(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="7f454c464a030103ff07000000000000020003"], 0x58)
execveat(r1, &(0x7f0000000080)='\x00', 0x0, 0x0, 0x1000)

3m53.281716542s ago: executing program 0 (id=1476):
r0 = gettid()
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r0}, &(0x7f0000000140)=<r1=>0x0)
timer_settime(r1, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)

3m52.76751903s ago: executing program 32 (id=1476):
r0 = gettid()
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8)
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r0}, &(0x7f0000000140)=<r1=>0x0)
timer_settime(r1, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)

2m18.534725284s ago: executing program 2 (id=2224):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000540)=0x1fb3, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000080, &(0x7f0000006080)={0xa, 0x4e23, 0x4, @loopback, 0x4}, 0x1c)
recvmsg(r0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1b}, 0x2041)

2m18.224334044s ago: executing program 2 (id=2227):
r0 = msgget$private(0x0, 0x84)
msgsnd(r0, &(0x7f0000002580)={0x2}, 0x8, 0x0)
msgsnd(r0, &(0x7f0000005940)={0x3, "9e7271db87f292ab76402ae910c744261f9e936cb47a832922de40262369b0712542a53b7299b4296359e8226cd298fa3ed13ac146d0deadbb89fe4758932fcf426a52cff623cf52901b9a3b73823e1a0a846d8fb33b0cb907b38ece1ab4210f3f856de34654c160ef2b6a85cb63d9a39e74af6575e50ab855679eb0abbb4c48cb4f3115a38256f454c66cea65b4a953b177afa24063a49a419bed5b72c6bb2d23a8a4d89d47a91bfbe0221fadc2c15923e34dea4e92c45fe4d26aba8eca5d3124aad729da653f9ce536d3963c79d880deb3e1a8502de0edf272bb99422e85e3bb30a7c2021cc33fd0d63c607e33e94d42f5cfdc751f964793e0ff3e12e17c6344f275a4f70928181046c6be5adad6f9047a69bc953ddea17c447d0ba36731ee5a129590c1bbeb65a8ee34be280dbdd72029a0d32c9aa7d67ee78fb71fe0bd86ec00f2e10d02d502b2aa6aafb25975326f6772c099b5806f975fcc31f9ed562b80e45d81f482efd50898714f9b98dc681c977b54fe074c9a99926f8760947b1feb14fa5ca403636de495f1296be0373930b139f8deee0bf45c922a22a34440be1a91bcb6ca3a7830735f444defa7b3d2f5b02fae20dbd0c7f47b6cf1a77994a32218436d2e81748e0f128340f10600eb550285b317d9d22abe306ef0a479fbf14bf9cbe6fa74031a81e842efc23e9ab2d14f6d0fb2927145627ab535bcc4e28e4f9098ef1be5cfc91aa31284bfdfbe234ac5374e314c0bb3b0eae0e29b2d43a1c6421bb246cac93ab5c64fa5c5688fa81876cb996e133bd16fe84e2f7ee98e69da0420e7c5ae77111bd078d2066256e1e3bcafe0e65f369bb2bfd05c12162b13a5e043fab22c61f7b0c248dcf93e1475c9145111fb78ab12b348be94b84c0901aac1d3eeeeb231aff481b5dc5af88ebaf126d5402c82b01ff6e3dd49bc9aaf79a38381301bad409b10f6ce9ea5e25f4a42882170f2d7f47fe3012d5f0211b6f35763947502e13bc0f25f013854811d3317d27eb853383ac9f5aec32ffb3e4fcb3b861728356dcd26f12a1ad4a44dcdad69fa9b0c499e0e44b56e43b5b67d6bbe5a76280a565cae6c26849962f87e1e06729c7ae681df45b49c845da04f1c11e3cd22ee12b470e9f1e983811d5b74ad2155a8ea6bdf27b7bbac715f92d44a4c4ad8c038ceb632530ca7ab48cc626736d15faae095065bf60bf21a0f8bb483c59ad45960a7ea0e7746e2787e2a36e910308d0e9cd93890cedd3b2dceec432a2c6e875fa413cde6de5301e807e7a175232a2b4a94ff889688af968339d4bc177f7bbbe307e343028563ca61928fa332cc1fe016431be59c1dd8fbdc27c88cfb0de02f9f0916f2e1acfc175450c9f7de79d28ad3b7937c4f7bd55262e762ccd0a00948112e22bbb7a61e5fe7d82e1032787f7d747ff516416229b9"}, 0x401, 0x0)
msgrcv(r0, 0x0, 0x0, 0x3, 0x1c165beb7100355b)

2m17.218149625s ago: executing program 2 (id=2239):
unshare(0x2040400)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x16, 0x1c, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000008000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000000000008500000008000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m17.070051016s ago: executing program 2 (id=2241):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x104)

2m16.768355257s ago: executing program 2 (id=2245):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f0000000180)={0xc, r1})
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000100)={0xc})

2m16.310375267s ago: executing program 2 (id=2250):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB='1-2:', @ANYRESOCT], 0x31)

2m15.591368095s ago: executing program 33 (id=2250):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB='1-2:', @ANYRESOCT], 0x31)

48.883401891s ago: executing program 5 (id=2921):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r0, &(0x7f0000000140)="f4", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e21, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x0, 0x2ce9}, 0x8)

48.37672366s ago: executing program 5 (id=2925):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0xd)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)

48.163448059s ago: executing program 5 (id=2927):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_MGMT(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x24, r0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x94}, 0x20800)

47.950866887s ago: executing program 5 (id=2930):
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2040d0, &(0x7f0000000c40), 0xff, 0x4b7, &(0x7f0000000640)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x80)
getdents64(r0, &(0x7f0000000000)=""/39, 0x27)

47.439998607s ago: executing program 5 (id=2936):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20000000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_connect$midi(0x2, 0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="12011001000000400c200b104000010203010902380001010740f8090400000001033000132403030406040806470208030803040c08c213240302070670c7d07f"], 0x0)

44.498800998s ago: executing program 5 (id=2959):
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000002100))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0x11e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x63, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

43.790117748s ago: executing program 34 (id=2959):
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000002100))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0x11e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x63, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

3.979221763s ago: executing program 4 (id=3254):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000400)='.\x00', 0xa4000021)
read(r0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)

3.706773599s ago: executing program 4 (id=3256):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x4001, @empty, 'ip6gre0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)
connect$pppoe(r0, &(0x7f0000000200)={0x18, 0x0, {0x0, @local, 'erspan0\x00'}}, 0x1e)

3.407785611s ago: executing program 4 (id=3258):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000580)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x2c, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0xfc}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x2c}, 0x1, 0x1000000, 0x0, 0x24008850}, 0x4004a040)

3.19896549s ago: executing program 1 (id=3260):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r1, &(0x7f0000000440), &(0x7f0000000040)=@udp=r0}, 0x20)
pselect6(0x2000, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x300}, 0x0, &(0x7f0000000100)={0x8}, 0x0, 0x0)

3.127323625s ago: executing program 4 (id=3262):
r0 = semget$private(0x0, 0x5, 0x134)
semop(r0, &(0x7f0000000000)=[{0x3, 0xfff7, 0x1000}], 0x1)
semop(r0, &(0x7f00000000c0)=[{0x3, 0xa78d, 0x1000}], 0x1)
semop(r0, &(0x7f0000000200)=[{0x3, 0x3, 0x800}, {0x3, 0x6}], 0x2)

2.989968219s ago: executing program 1 (id=3263):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x9, 0x7f}, @window={0x3, 0x9, 0x2}, @mss={0x2, 0x400}, @mss={0x2, 0xcb2}, @mss={0x2, 0x3}, @timestamp, @sack_perm], 0x8)

2.810715553s ago: executing program 1 (id=3265):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.665551764s ago: executing program 1 (id=3267):
r0 = syz_open_dev$radio(&(0x7f0000000100), 0x2, 0x2)
r1 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0))
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000140)={0x3, 0x98f907, 0x5})

2.507844203s ago: executing program 1 (id=3268):
syz_mount_image$xfs(&(0x7f0000009700), &(0x7f0000009740)='./file0\x00', 0x4000000, &(0x7f0000000040)={[{@filestreams}, {@sysvgroups}, {@noalign}, {@nolazytime}, {@inode32}, {@discard}, {@prjquota}, {@inode64}, {@gquota}, {@nolargeio}, {@nodiscard}]}, 0x1, 0x975c, &(0x7f000001c600)="$eJzs/QWcbXWhuP/PgUM3giBSUmKSEqJIhyJKihKCtKSACCgdSqigCCjd3d2d0t3d3R3/14EDKj5wvd/f/V+8Ps/zYmbPjlnz2Z/3Wou9Z83Ze6n5FptrYGDMgfd6//RvXbTbvcstPtpC6528y+Bb9t5x4SeGXjz8eydjzTH0dM6hp3MNDAwMGrqcQe9dNnj2k04eZmDwwJD//taoI408zKgDAyMPPTt0OQMzv3cyyiHv3+6dD8UDnXTIj9vhvY93G23IQoZ8sczyb609MDAw4t99/5BxTftPd1TaUnPOP9/frD5wG2bo1YP+dt27p4Pf+xjlgIGBUfYb+Oj1Y8hth/u77/3fbMjPHHPygSXu/QR+9v+5lppz/gU/5D9kWxx26GUzD9nGP7wNGvvwer7jYms8NnQKBw2duMF/t718Euv9/1NLzTnfQgMfvR0PLDzvpo++8+5+c/A8AwOD5x0YGDzfwMDg+T9pj/qf6RNd+aqqquoTac65ZhjynH2YDz0eGPH9x7X0uPCyN6d7cGBg8MLvPU8cvPz7zwWrqqqqqqqq6t+zOeeaYW54/j/mxz3/n/TMbcbq+X9VVVVVVVXV/50WnHOuGYY81//Q8//xP+75/7OPH33we3/7P8fM733X25/snaiqqqqqqqqqj22+BfH5/6Qf9/z/ipMmvbrn/1VVVVVVVVX/d1r0nXfe2fzvXmdv6MVTv389Pf8/+5G7l/3EBlxVVVVVVVVV/+3efuqMc/72mu8TD3zo9d7fbejvBQYdd961135iA/33aNA//z5ki096TP9fG+I84hGTDgysvcQnPZT6BPo/81r19f+X8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/cR9x/P+D1/8/+4QV338v+M9POcOtZ/ztO9997//BCy/41Jaf0NA/if5Tj/8PrD5oYGCo75irDwwMLDznootPPTAwcMatM0w5xcAH180y5LrZxh723TeIf/+ficw7Fi94i8neOx2yogyM88Eyjnt3+Qu+s/+wgz40iL9rrFMOPni1pV6Z8cOnU330/Rjmg69GO/nx9/8tyzAfutGIH/HN7y///fvyYeehY596yNin2WCtdadZf+NNvrL6WiusuvKqK6896/QzTTfjrLPONNM0q6y+5srTvvf5o+Zs0nc/z/2vzNmoH56zp+b8+zn78H37qDmb9OPn7N0l7nr5iN96f84G/zfnbO6Pn7NJVx/6g8aaY7iB5d+dm0EDA2PNM9zARkPOTDfCwMBY8w697fhDbvuNsYcZGNj5b3d0yFcjfLAODtpiyG2Wmm+xud7bTQ0M/O30b33E+9kPP3Tkcww9nXPo6Vzv/ZgxB/62Kg6e/aSThxkyF/8wHaOONPIwow4MjDz07NDlDMz63snIZ75/u494n/UPDfTdl1nZ4b2PdxttYGBglCFfTLzC2dsOmfr/hfdp/3/6//8/ec0y6IP1cdDQj6G3ec9rzvkX/NvPencahszdsEMvm3mIyf/wW9v/Q/803klHHJj0Y8b7Ma+L8260fq15xrhb/U+9Lg6Nd/yPGe/HvI7vR453yQf3eOy9Rf2PjfdD+7qF3v08x7+yrxv4+H3dsLSAla+a6MP7uu989BD/YXf5/hyN8KEbfdS+bvy9JtliyPLn+Ph93UJDxj7cP+zrhhkYGGvu9/d1Q3Z88w03sPOQM9MPOTP/cAOHDTkzw7tnRho4b8iZr664zporDblggX9eD6Ye9A9/oAnb2Xwf2s4G/d19H/Shv+8c/N7pKAe8/x5OH7HfHDT0bv2X+wpab8f8mPF+zPtP4TwPuWyl40cc93/q/adovCN+/Hg/6v2yP3K8O7189r3/w+P9YDsb7u+ma4F/ZTub9B+3syF3cdi/2zL+1cdhK8Ht3/t6/A+WtuFmj3/wmGK4Dy33v3pMscDHb2djrv6h79t+v4FBHzc38/8rczPhP+2Dtvz7uflXH29NPfl71w/7MXMzwqzLTfX+3Az/35yb+f+7czPHwLD/ODeDB+YdGBiYYuj+Yb5/ZW7G//i5+VfXm5Hh9u99vfIHF82z4xGXvD83H56L/2pu5vvvzs2kH6w3U7x73WTDDAw//MBGK2ywwXrTvff5/bPTv/f547fBef6VuRzzf2YuJxj8UXP5t1V11AevPuC/2Ab/aZ/+/vLn+e/O5cAHczmw+oc3lvp3rd//ucvfXf7u8neXv7v83eUv7iOO/3/w+v+7jznbLkN/uTHc1ZOMt90nPd5PuP/o4/9Dff/h+P92401y9TADH1z3scdn37vNv+Xx2ZnfOxnlkPdv9+HjgzzQjz4+u9+sM2/zv3R89v+p97fVf+H3cO3/3eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/uI+4vj/tO//HcAj0y3y/NADocM9sfXSi3zS4/2E+48+/j/U9x+O/y+y9NZPDDPwwXUfe/z/vds4jv/f/8Z8O/07H/9/f1vt+H/9F+XvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/uI+4vj/HO//HcDRR++xyft/D3DjWDuc8UmP9xPuP/X4f+//7639v7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y1/c0OP/Ax96e8vvt15gcPz//3Yf4b9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8l8wfs/j/IH/M4r9U/pjF/4f5Yxb/H+WPWfyXzh+z+C+TP2bxXzZ/zOK/XP6Yxf/H+WMW/+Xzxyz+K+SPWfx/kj9m8V8xf8ziv1L+mMV/5fwxi/8q+WMW/1Xzxyz+q+WPWfxXzx+z+P80f8ziv0b+mMV/zfwxi/9a+WMW/7Xzxyz+6+SPWfzXzR+z+P8sf8ziv17+mMV//fwxi/8G+WMW/5/nj1n8N8wfs/j/In/M4r9R/pjFf+P8MYv/JvljFv9f5o9Z/H+VP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP5b5Y9Z/LfOH7P4b5M/ZvHfNn/M4r9d/pjF/9f5Yxb/3+SPWfy3zx+z+O+QP2bx3zF/zOK/U/6Yxf+3+WMW/9/lj1n8f58/ZvHfOX/M4r9L/pjF/w/5Yxb/P+aPWfx3zR+z+P8pf8ziv1v+mMV/9/wxi/8e+WMW/z/nj1n8/5I/ZvHfM3/M4r9X/pjFf+/8MYv/PvljFv9988cs/vvlj1n8988fs/gfkD9m8T8wf8zif1D+mMX/4Pwxi/8h+WMW/0Pzxyz+h+WPWfwPzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/+T8MYv/KfljFv9T88cs/qflj1n8T88fs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/85+WMW/3Pzxyz+5+WPWfzPzx+z+F+QP2bxvzB/zOJ/Uf6Yxf/i/DGL/yX5Yxb/S/PHLP6X5Y9Z/C/PH7P4X5E/ZvH/a/6Yxf/K/DGL/1X5Yxb/q/PHLP7X5I9Z/K/NH7P4X5c/ZvG/Pn/M4n9D/pjF/8b8MYv/TfljFv+b88cs/rfkj1n8b80fs/jflj9m8b89f8zif0f+mMX/zvwxi/9d+WMW/7vzxyz+9+SPWfzvzR+z+N+XP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHLP7v5I9J/AcN5I9Z/Aflj1n8h8kfs/gPmz9m8R+cP2bxHy5/zOI/fP6YxX+E/DGL/4j5Yxb/kfLHLP4j549Z/EfJH7P4j5o/ZvEfLX/M4j96/pjFf4z8MYv/mPljFv+x8scs/mPnj1n8P5U/ZvEfJ3/M4j9u/pjF/9P5Yxb/8fLHLP7j549Z/D+TP2bxnyB/zOL/2fwxi/+E+WMW/4nyxyz+E+ePWfwnyR+z+E+aP2bx/1z+mMV/svf9R/yExvVvmsV/8rZ/zOI/Rf6YxX/K/DGL/1T5Yxb/z+ePWfynzh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/NPljFv9p88cs/tPlj1n8p88fs/jPkD9m8Z8xf8zi/7X8MYv/TPljFv+Z88cs/rPkj1n8Z80fs/h/PX/M4j9b/pjF/xv5Yxb/b+aPWfxnzx+z+H8rf8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+M+XP2bxnz9/zOK/QP6YxX/B/DGL/7fzxyz+38kfs/gvlD9m8f9u/pjFf+H8MYv/9/LHLP7fzx+z+C+SP2bxXzR/zOK/WP6YxX/x/DGL/xL5Yxb/JfPHLP4/yB+z+C+VP2bx/2H+mMX/R/ljFv+l88cs/svkj1n8l80fs/gvlz9m8f9x/pjFf/n8MYv/CvljFv+f5I9Z/FfMH7P4r5Q/ZvFfOX/M4r9K/pjFf9X8MYv/avljFv/V88cs/j/NH7P4r5E/ZvFfM3/M4r9W/pjFf+38MYv/OvljFv9188cs/j/LH7P4r5c/ZvFfP3/M4r9B/pjF/+f5Yxb/DfPHLP6/yB+z+G+UP2bx3zh/zOK/Sf6Yxf+X+WMW/1/lj1n8N80fs/hvlj9m8d88f8ziv0X+mMV/y/wxi/9W+WMW/63zxyz+2+SPWfy3zR+z+G+XP2bx/3X+mMX/N/ljFv/t88cs/jvkj1n8d8wfs/jvlD9m8f9t/pjF/3f5Yxb/3+ePWfx3zh+z+O+SP2bx/0P+mMX/j/ljFv9d88cs/n/KH7P475Y/ZvHfPX/M4r9H/pjF/8/5Yxb/v+SPWfz3zB+z+O+VP2bx3zt/zOK/T/6YxX/f/DGL/375Yxb//fPHLP4H5I9Z/A/MH7P4H5Q/ZvE/OH/M4n9I/pjF/9B/9H/4f31c/6ZZ/A9r+8cs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+T+L9b/v+cxH/QlfljFv+r8scs/lfnj1n8r8kfs/hfmz9m8b8uf8zif33+mMX/hvwxi/+N+WMW/5vyxyz+N+ePWfxvyR+z+N+aP2bxvy1/zOJ/e/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/O/JH7P435s/ZvG/L3/M4n9//pjF/4H8MYv/g/ljFv+H8scs/g/nj1n8H8kfs/g/mj9m8X8sf8zi/3j+mMX/ifwxi/+T+WMW/6fyxyz+T+ePWfyfyR+z+D+bP2bxfy5/zOL/fP6Yxf+F/DGL/4v5Yxb/l/LHLP4v549Z/F/JH7P4v5o/ZvF/Lf/h6UKL/+v5Yxb/N/LHLP5v5o9Z/N/KH7P4v50/ZvF/J39M4v/ul/n/cxb/QfljFv9h8scs/sPmj1n8B+ePWfyHyx+z+A+fP2bxHyF/zOI/Yv6YxX+k/DGL/8j5Yxb/UfLHLP6j5o9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9P5Y9Z/MfJH7P4j5s/ZvH/dP6YxX+8/DGL//j5Yxb/z+SPWfwnyB+z+H82f8ziP2H+mMV/ovwxi//E+WMW/0nyxyz+k+aPWfw/lz9m8Z8sf8ziP3n+mMV/ivwxi/+U+WMW/6nyxyz+n88fs/hPnT9m8f9C/pjF/4v5Yxb/L+WPWfy/nD9m8f9K/pjF/6v5Yxb/afLHLP7T5o8Numi34QYGBv7j/afLH7Ns/9Pnj1n8Z8gfs/jPmD9m8f9a/pjFf6b8MYv/zPljFv9Z8scs/rPmj1n8v54/ZvGfLX/M4v+N/DGL/zfzxyz+s+ePWfy/lT9m8Z8jf8ziP2f+mMV/rvwxi//c+WMW/3nyxyz+8+aPWfznyx+z+M+fP2bxXyB/zOK/YP6Yxf/b+WMW/+/kj1n8F8ofs/h/N3/M4r9w/pjF/3v5Yxb/7+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL/5L5Yxb/H+SPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8l8sfs/j/OH/M4r98/pjFf4X8MYv/T/LHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/6vljFv+f5o9Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv+f5Y9Z/NfLH7P4r58/ZvHfIH/M4v/z/DGL/4b5Yxb/X+SPWfw3yh+z+G+cP2bx3yR/zOL/y/wxi/+v8scs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMV/q/wxi//W+WMW/23yxyz+2+aPWfy3yx+z+P86f8zi/5v8MYv/9vljFv8d8scs/jvmj1n8d8ofs/j/Nn/M4v+7/DGL/+/zxyz+O+ePWfx3yR+z+P8hf8zi/8f8MYv/rvljFv8/5Y9Z/HfLH7P4754/ZvHfI3/M4v/n/DGL/1/yxyz+e+aPWfz3yh+z+O+dP2bx3yd/zOK/b/6YxX+//DGL//75Yxb/A/LHLP4H5o9Z/A/KH7P4H5w/ZvE/JH/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+f80fs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMX/nfwxif+wA/ljFv9B+WMW/2Hyxyz+w+aPWfwH549Z/IfLH7P4D58/ZvEfIX/M4j9i/pjFf6T8MYv/yPljFv9R8scs/qPmj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/0/lj1n8x8kfs/iPmz9m8f90/pjFf7z8MYv/+PljFv/P5I9Z/CfIH7P4fzZ/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP6T5o9Z/D+XP2bxnyx/zOI/ef6YxX+K/DGL/5T5Yxb/qfLHLP6fzx+z+E+dP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8ziP2P+mMX/a/ljFv+Z8scs/jPnj1n8Z8kfs/jPmj9m8f96/pjFf7b8MYv/N/LHLP7fzB+z+M+eP2bx/1b+mMV/jvwxi/+c+WMW/7nyxyz+c+ePWfznyR+z+M+bP2bxny9/zOI/f/6YxX+B/DGL/4L5Yxb/b+ePWfy/kz9m8V8of8zi/938MYv/wvljFv/v5Y9Z/L+fP2bxXyR/zOK/aP6YxX+x/DGL/+L5Yxb/JfLHLP5L5o9Z/H+QP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8V8uf8zi/+P8MYv/8vljFv8V8scs/j/JH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/qvnj1n8f5o/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n8f5Y/ZvFfL3/M4r9+/pjFf4P8MYv/z/PHLP4b5o9Z/H+RP2bx3yh/zOK/cf6YxX+T/DGL/y/zxyz+v8ofs/hvmj9m8d8sf8ziv3n+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfy3yR+z+G+bP2bx3y5/zOL/6/wxi/9v8scs/tvnj1n8d8gfs/jvmD9m8d8pf8zi/9v8MYv/7/LHLP6/zx+z+O+cP2bx3yV/zOL/h/wxi/8f88cs/rvmj1n8/5Q/ZvHfLX/M4r97/pjFf4/8MYv/n/PHLP5/yR+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+P81f8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMW/3fyxyT+gwfyxyz+g/LHLP7D5I9Z/IfNH7P4D84fs/gPlz9m8R8+f8ziP0L+mMV/xPwxi/9I+WMW/5Hzxyz+o+SPWfxHzR+z+I+WP2bxHz1/zOI/Rv6YxX/M/DGL/1j5Yxb/sfPHLP6fyh+z+I+TP2bxHzd/zOL/6fwxi/94+WMW//Hzxyz+n8kfs/hPkD9m8f9s/pjFf8L8MYv/RPljFv+J88cs/pPkj1n8J80fs/h/Ln/M4j9Z/pjFf/L8MYv/FPljFv8p88cs/lPlj1n8P58/ZvGfOn/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+0+SPWfynzR+z+E+XP2bxnz5/zOI/Q/6YxX/G/DGL/9fyxyz+M+WPWfxnzh+z+M+SP2bxnzV/zOL/9fwxi/9s+WMW/2/kj1n8v5k/ZvGfPX/M4v+t/DGL/xz5Yxb/OfPHLP5z5Y9Z/OfOH7P4z5M/ZvGfN3/M4j9f/pjFf/78MYv/AvljFv8F88cs/t/OH7P4fyd/zOK/UP6Yxf+7+WMW/4Xzxyz+38sfs/h/P3/M4r9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8l8wfs/j/IH/M4r9U/pjF/4f5Yxb/H+WPWfyXzh+z+C+TP2bxXzZ/zOK/XP6Yxf/H+WMW/+Xzxyz+K+SPWfx/kj9m8V8xf8ziv1L+mMV/5fwxi/8q+WMW/1Xzxyz+q+WPWfxXzx+z+P80f8ziv0b+mMV/zfwxi/9a+WMW/7Xzxyz+6+SPWfzXzR+z+P8sf8ziv17+mMV//fwxi/8G+WMW/5/nj1n8N8wfs/j/In/M4r9R/pjFf+P8MYv/JvljFv9f5o9Z/H+VP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP5b5Y9Z/LfOH7P4b5M/ZvHfNn/M4r9d/pjF/9f5Yxb/3+SPWfy3zx+z+O+QP2bx3zF/zOK/U/6Yxf+3+WMW/9/lj1n8f58/ZvHfOX/M4r9L/pjF/w/5Yxb/P+aPWfx3zR+z+P8pf8ziv1v+mMV/9/wxi/8e+WMW/z/nj1n8/5I/ZvHfM3/M4r9X/pjFf+/8MYv/PvljFv9988cs/vvlj1n8988fs/gfkD9m8T8wf8zif1D+mMX/4Pwxi/8h+WMW/0Pzxyz+h+WPWfwPzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/+T8MYv/KfljFv9T88cs/qflj1n8T88fs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/85+WMW/3Pzxyz+5+WPWfzPzx+z+F+QP2bxvzB/zOJ/Uf6Yxf/i/DGL/yX5Yxb/S/PHLP6X5Y9Z/C/PH7P4X5E/ZvH/a/6Yxf/K/DGL/1X5Yxb/q/PHLP7X5I9Z/K/NH7P4X5c/ZvG/Pn/M4n9D/pjF/8b8MYv/TfljFv+b88cs/rfkj1n8b80fs/jflj9m8b89f8zif0f+mMX/zvwxi/9d+WMW/7vzxyz+9+SPWfzvzR+z+N+XP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHLP7v5I9J/IcbyB+z+A/KH7P4D5M/ZvEfNn/M4j84f8ziP1z+mMV/+Pwxi/8I+WMW/xHzxyz+I+WPWfxHzh+z+I+SP2bxHzV/zOI/Wv6YxX/0/DGL/xj5Yxb/MfPHLP5j5Y9Z/MfOH7P4fyp/zOI/Tv6YxX/c/DGL/6fzxyz+4+WPWfzHzx+z+H8mf8ziP0H+mMX/s/ljFv8J88cs/hPlj1n8J84fs/hPkj9m8Z80f8zi/7n8MYv/ZPljFv/J88cs/lPkj1n8p8wfs/hPlT9m8f98/pjFf+r8MYv/F/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/GfPHLP5fyx+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/9fzxyz+s+WPWfy/kT9m8f9m/pjFf/b8MYv/t/LHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/fPljFv/588cs/gvkj1n8F8wfs/h/O3/M4v+d/DGL/0L5Yxb/7+aPWfwXzh+z+H8vf8zi//38MYv/IvljFv9F88cs/ovlj1n8F88fs/gvkT9m8V8yf8zi/4P8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/H+ePWfyXzx+z+K+QP2bx/0n+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf9v8MYv/dvljFv9f549Z/H+TP2bx3z5/zOK/Q/6YxX/H/DGL/075Yxb/3+aPWfx/lz9m8f99/pjFf+f8MYv/LvljFv8/5I9Z/P+YP2bx3zV/zOL/p/wxi/9u+WMW/93zxyz+e+SPWfz/nD9m8f9L/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/6/5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzxyz+L+WPWfxfzh+z+L+SP2bxfzV/zOL/Wv6Yxf/1/DGL/xv5Yxb/N/PHLP5v5Y9Z/N/OH7P4v5M/JvEffiB/zOI/KH/M4j9M/pjFf9j8MYv/4Pwxi/9w+WMW/+Hzxyz+I+SPWfxHzB+z+I+UP2bxHzl/zOI/Sv6YxX/U/DGL/2j5Yxb/0fPHLP5j5I9Z/MfMH7P4j5U/ZvEfO3/M4v+p/DGL/zj5Yxb/cfPHLP6fzh+z+I+XP2bxHz9/zOL/mfwxi/8E+WMW/8/mj1n8J8wfs/hPlD9m8Z84f8ziP0n+mMV/0vwxi//n8scs/pPlj1n8J88fs/hPkT9m8Z8yf8ziP1X+mMX/8/ljFv+p88cs/l/IH7P4fzF/zOL/pfwxi/+X88cs/l/JH7P4fzV/zOI/Tf6YxX/a/DGL/3T5Yxb/6fPHLP4z5I9Z/GfMH7P4fy1/zOI/U/6YxX/m/DGL/yz5Yxb/WfPHLP5fzx+z+M+WP2bx/0b+mMX/m/ljFv/Z88cs/t/KH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/vPlj1n8588fs/gvkD9m8V8wf8zi/+38MYv/d/LHLP4L5Y9Z/L+bP2bxXzh/zOL/vfwxi//388cs/ovkj1n8F80fs/gvlj9m8V88f8ziv0T+mMV/yfwxi/8P8scs/kvlj1n8f5g/ZvH/Uf6YxX/p/LH/UP9BH7Iefpn8sf9Q/3f7++1/2fwxi/9y+WMW/x/nj1n8l88fs/ivkD9m8f9J/pjFf8X8sUEXDRo6M//Z/ivlj1m2/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf9v8MYv/dvljFv9f549Z/H+TP2bx3z5/zOK/Q/6YxX/H/DGL/075Yxb/3+aPWfx/lz9m8f99/pjFf+f8MYv/LvljFv8/5I9Z/P+YP2bx3zV/zOL/p/wxi/9u+WMW/93zxyz+e+SPWfz/nD9m8f9L/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/6/5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzHxgJLrP4v5Q/ZvF/OX/M4v9K/pjF/9X8MYv/a/ljFv/X88cs/m/kj1n838wfs/i/lT9m8X87f8zi/07+mMR/hIH8MYv/oPwxi/8w+WMW/2Hzxyz+g/PHLP7D5Y9Z/IfPH7P4j5A/ZvEfMX/M4j9S/pjFf+T8MYv/KPljFv9R88cs/qPlj1n8R88fs/iPkT9m8R8zf8ziP1b+QxvxH85Z/MfOH7P4fyp/zOI/Tv6YxX/c/DGL/6fzxyz+4+WPWfzHzx+z+H8mf8ziP0H+mMX/s/ljFv8J88cs/hPlj1n8J84fs/hPkj9m8Z80f8zi/7n8MYv/ZPljFv/J88cs/lPkj1n8p8wfs/hPlT9m8f98/pjFf+r8MYv/F/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/GfPHLP5fyx+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/9fzxyz+s+WPWfy/kT9m8f9m/pjFf/b8MYv/t/LHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/fPljFv/588cs/gvkj1n8F8wfs/h/O3/M4v+d/DGL/0L5Yxb/7+aPWfwXzh+z+H8vf8zi//38MYv/IvljFv9F88cs/ovlj1n8F88fs/gvkT9m8V8yf8zi/4P8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/H+ePWfyXzx+z+K+QP2bx/0n+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf1v0b42w+G+XNmbx/3X+mMX/N/ljFv/t88cs/jvkj1n8d3zP/613Pqlx/Ztm8d+p7R+z+P82f8zi/7v8MYv/7/PHLP47549Z/HfJH7P4/yF/zOL/x/wxi/+u+WMW/z/lj1n8d8sfs/jvnj9m8d8jf8zi/+f8MYv/X/LHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjFf7/8MYv//vljFv8D8scs/gfmj1n8D8ofs/gfnD9m8T8kf8zif2j+mMX/sPwxi//h+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/E/LHLP4n5o9Z/E/KH7P4n5w/ZvE/JX/M4n9q/pjF/7T8MYv/6fljFv8z8scs/mfmj1n8z8ofs/ifnT9m8T8nf8zif27+mMX/vPwxi//5+WMW/wvyxyz+F+aPWfwvyh+z+F+cP2bxvyR/zOJ/af6Yxf+y/DGL/+X5Yxb/K/LHLP5/zR+z+F+ZP2bxvyp/zOJ/df6Yxf+a/DGL/7X5Yxb/6/LHLP7X549Z/G/IH7P435g/ZvG/KX/M4n9z/pjF/5b8MYv/rfljFv/b8scs/rfnj1n878gfs/jfmT9m8b8rf8zif3f+mMX/nvwxi/+9+WMW//vyxyz+9+ePWfwfyB+z+D+YP2bxfyh/zOL/cP6Yxf+R/DGL/6P5Yxb/x/LHLP6P549Z/J/IH7P4P5k/ZvF/Kn/M4v90/pjF/5n8MYv/s/ljFv/n8scs/s/nj1n8X8gfs/i/mD9m8X8pf8zi/3L+mMX/lfwxi/+r+WMW/9fyxyz+r+ePWfzfyB+z+L+ZP2bxfyt/zOL/dv6Yxf+d/DGJ/4gD+WMW/0H5Yxb/YfLHLP7D5o9Z/Afnj1n8h8sfs/gPnz9m8R8hf8ziP2L+mMV/pPwxi//I+WMW/1Hyxyz+o+aPWfxHyx+z+I+eP2bxHyN/zOI/Zv6YxX+s/DGL/9j5Yxb/T+WPWfzHyR+z+I+bP2bx/3T+mMV/vPwxi//4+WMW/8/kj1n8J8gfs/h/Nn/M4j9h/pjFf6L8MYv/xPljFv9J8scs/pPmj1n8P5c/ZvGfLH/M4j95/pjFf4r8MYv/lPljFv+p8scs/p/PH7P4T50/ZvH/Qv6Yxf+L+WMW/y/lj1n8v5w/ZvH/Sv6Yxf+r+WMW/2nyxyz+0+aPWfynyx+z+E+fP2bxnyF/zOI/Y/6Yxf9r+WMW/5nyxyz+M+ePWfxnyR+z+M+aP2bx/3r+mMV/tvwxi/838scs/t/MH7P4z54/ZvH/Vv6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvGfL3/M4j9//pjFf4H8MYv/gvljFv9v549Z/L+TP2bxXyh/zOL/3fwxi//C+WMW/+/lj1n8v58/ZvFfJH/M4r9o/pjFf7H8MYv/4vljFv8l8scs/kvmj1n8f5A/ZvFfKn/M4v/D/DGL/4/yxyz+S+ePWfyXyR+z+C+bP2bxXy5/zOL/4/wxi//y+WMW/xXyxyz+P8kfs/ivmD9m8V8pf8ziv3L+mMV/lfwxi/+q+WMW/9Xyxyz+q+ePWfx/mj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfx/lj9m8V8vf8ziv37+mMV/g/wxi//P88cs/hvmj1n8f5E/ZvHfKH/M4r9x/pjFf5P8MYv/L/PHLP6/yh+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/rfLHLP5b549Z/LfJH7P4b5s/ZvHfLn/M4v/r/DGL/2/yxyz+2+ePWfx3yB+z+O+YP2bx3yl/zOL/2/wxi//v8scs/r/PH7P475w/ZvHfJX/M4v+H/DGL/x/zxyz+u+aPWfz/lD9m8d8tf8ziv3v+mMV/j/wxi/+f88cs/n/JH7P475k/ZvHfK3/M4r93/pjFf5/8MYv/vvljFv/98scs/vvnj1n8D8gfs/gfmD9m8T8of8zif3D+mMX/kPwxi/+h+WMW/8Pyxyz+h+ePWfyPyB+z+B+ZP2bxPyp/zOJ/dP6Yxf+Y/DGL/7H5Yxb/4/LHLP7H549Z/E/IH7P4n5g/ZvE/KX/M4n9y/pjF/5T8MYv/qfljFv/T8scs/qfnj1n8z8gfs/ifmT9m8T8rf8zif3b+mMX/nPwxi/+5+WMW//Pyxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf+S/DGL/6X5Yxb/y/LHLP6X549Z/K/IH7P4/zV/zOJ/Zf6Yxf+q/DGL/9X5Yxb/a/LHLP7X5o9Z/K/LH7P4X58/ZvG/IX/M4n9j/pjF/6b8MYv/zfljFv9b8scs/rfmj1n8b8sfs/jfnj9m8b8jf8zif2f+mMX/rvwxi//d+WMW/3vyxyz+9+aPWfzvyx+z+N+fP2bxfyB/zOL/YP6Yxf+h/DGL/8P5Yxb/R/LHLP6P5o9Z/B/LH7P4P54/ZvF/In/M4v9k/pjF/6n8MYP/oMEDIz6dP2bwH7L9P5M/ZvF/Nn/M4v9c/pjF//n8MYv/C/ljFv8X88cs/i/lj1n8X84fs/i/kj9m8X81f8zi/1r+mMX/9fwxi/8b+WMW/zfzxyz+b+WPWfzfzh+z+L+TPybxH2kgf8ziPyh/zOI/TP6YxX/Y/DGL/+D8MYv/cPljFv/h88cs/iPkj1n8R8wfs/iPlD9m8R85f8ziP0r+mMV/1Pwxi/9o+WMW/9Hzxyz+Y+SPWfzHzB+z+I+VP2bxHzt/zOL/qfwxi/84+WMW/3Hzxyz+n84fs/iPlz9m8R8/f8zi/5n8MYv/BPljFv/P5o9Z/CfMH7P4T5Q/ZvGfOH/M4j9J/pjFf9L8MYv/5/LHLP6T5Y9Z/CfPH7P4T5E/ZvGfMn/M4j9V/pjF//P5Yxb/qfPHLP5fyB+z+H8xf8zi/6X8MYv/l/PHLP5fyR+z+H81f8ziP03+mMV/2oGBzT+pIf07Z/Gfru0fs/hPnz9m8Z8hf8ziP2P+mMX/a/ljFv+Z8scs/jPnj1n8Z8kfs/jPmj9m8f96/pjFf7b8MYv/N/LHLP7fzB+z+M+eP2bx/1b+mMV/jvwxi/+c+WMW/7nyxyz+c+ePWfznyR+z+M+bP2bxny9/zOI/f/6YxX+B/DGL/4L5Yxb/b+ePWfy/kz9m8V8of8zi/938MYv/wvljFv/v5Y9Z/L+fP2bxXyR/zOK/aP6YxX+x/DGL/+L5Yxb/JfLHLP5L5o9Z/H+QP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8V8uf8zi/+P8MYv/8vljFv8V8scs/j/JH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/qvnj1n8f5o/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n8f5Y/ZvFfL3/M4r9+/pjFf4P8MYv/z/PHLP4b5o9Z/H+RP2bx3yh/zOK/cf6YxX+T/DGL/y/zxyz+v8ofs/hvmj9m8d8sf8ziv3n+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfy3yR+z+G+bP2bx3y5/zOL/6/wxi/9v8scs/tvnj1n8d8gfs/jvmD9m8d8pf8zi/9v8MYv/7/LHLP6/zx+z+O+cP2bx3yV/zOL/h/wxi/8f88cs/rvmj1n8/5Q/ZvHfLX/M4r97/pjFf4/8MYv/n/PHLP5/yR+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+P81f8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMW/3fyxyT+Iw/kj1n8B+WPWfyHyR+z+A+bP2bxH5w/ZvEfLn/M4j98/pjFf4T8MYv/iPljFv+R8scs/iPnj1n8R8kfs/iPmj9m8R8tf8ziP3r+mMV/jPwxi/+Y+WMW/7Hyxyz+Y+ePWfw/lT9m8R8nf8ziP27+mMX/0/ljFv/x8scs/uPnj1n8P5M/ZvGfIH/M4v/Z/DGL/4T5Yxb/ifLHLP4T549Z/CfJH7P4T5o/ZvH/XP6YxX+y/DGL/+T5Yxb/KfLHLP5T5o9Z/KfKH7P4fz5/zOI/df6Yxf8L+WMW/y/mj1n8v5Q/ZvH/cv6Yxf8r+WMW/6/mj1n8p8kfs/hPmz9m8Z8uf8ziP33+mMV/hvwxi/+M+WMW/6/lj1n8Z8ofs/jPnD9m8Z8lf8ziP2v+mMX/6/ljFv/Z8scs/t/IH7P4fzN/zOI/e/6Yxf9b+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6YxX++/DGL//z5Yxb/BfLHLP4L5o9Z/L+dP2bx/07+mMV/ofwxi/9388cs/gvnj1n8v5c/ZvH/fv6YxX+R/DGL/6L5Yxb/xfLHLP6L549Z/JfIH7P4L5k/ZvH/Qf6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMV/ufwxi/+P88cs/svnj1n8V8gfs/j/JH/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/ivnj9m8f9p/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8f9Z/pjFf738MYv/+vljFv8N8scs/j/PH7P4b5g/ZvH/Rf6YxX+j/DGL/8b5Yxb/TfLHLP6/zB+z+P8qf8ziv2n+mMV/s/wxi//m+WMW/y3yxyz+W+aPWfy3yh+z+G+dP2bx3yZ/zOK/bf6YxX+7/DGL/6/zxyz+v8kfs/hvnz9m8d8hf8ziv2P+mMV/p/wxi/9v88cs/r/LH7P4/z5/zOK/c/6YxX+X/DGL/x/yxyz+f8wfs/jvmj9m8f9T/pjFf7f8MYv/7vljFv898scs/n/OH7P4/yV/zOK/Z/6YxX+v/DGL/975Yxb/ffLHLP775o9Z/PfLH7P4758/ZvE/IH/M4n9g/pjF/6D8MYv/wfljFv9D8scs/ofmj1n8D8sfs/gfnj9m8T8if8zif2T+mMX/qPwxi//R+WMW/2Pyxyz+x+aPWfyPyx+z+B+fP2bxPyF/zOJ/Yv6Yxf+k/DGL/8n5Yxb/U/LHLP6n5o9Z/E/LH7P4n54/ZvE/I3/M4n9m/pjF/6z8MYv/2fljFv9z8scs/ufmj1n8z8sfs/ifnz9m8b8gf8zif2H+mMX/ovwxi//F+WMW/0vyxyz+l+aPWfwvyx+z+F+eP2bxvyJ/zOL/1/wxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePWfzfyR+T+I8ykD9m8R+UP2bxHyZ/zOI/bP6YxX9w/pjFf7j8MYv/8PljFv8R8scs/iPmj1n8R8ofs/iPnD9m8R8lf8ziP2r+mMV/tPwxi//o+WMW/zHyxyz+Y+aPWfzHyh+z+I+dP2bx/1T+mMV/nPwxi/+4+WMW/0/nj1n8x8sfs/iPnz9m8f9M/pjFf4L8MYv/Z/PHLP4T5o9Z/CfKH7P4T5w/ZvGfJH/M4j9p/pjF/3P5Yxb/yfLHLP6T549Z/KfIH7P4T5k/ZvGfKn/M4v/5/DGL/9T5Yxb/L+SPWfy/mD9m8f9S/pjF/8v5Yxb/r+SPWfy/mj9m8Z8mf8ziP23+mMV/uvwxi//0+WMW/xnyxyz+M+aPWfy/lj9m8Z8pf8ziP3P+mMV/lvwxi/+s+WMW/6/nj1n8Z8sfs/h/I3/M4v/N/DGL/+z5Yxb/b+WPWfznyB+z+M+ZP2bxnyt/zOI/d/6YxX+e/DGL/7z5Yxb/+fLHLP7z549Z/BfIH7P4L5g/ZvH/dv6Yxf87+WMW/4Xyxyz+380fs/gvnD9m8f9e/pjF//v5Yxb/RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4r9k/pjF/wf5Yxb/pfLHLP4/zB+z+P8of8ziv3T+mMV/mfwxi/+y+WMW/+Xyxyz+P84fs/gvnz9m8V8hf8zi/5P8MYv/ivljFv+V8scs/ivnj1n8V8kfs/ivmj9m8V8tf8ziv3r+mMX/p/ljFv818scs/mvmj1n818ofs/ivnT9m8V8nf8ziv27+mMX/Z/ljFv/18scs/uvnj1n8N8gfs/j/PH/M4r9h/pjF/xf5Yxb/jfLHLP4b549Z/DfJH7P4/zJ/zOL/q/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx3yp/zOK/df6YxX+b/DGL/7b5Yxb/7fLHLP6/zh+z+P8mf8ziv33+mMV/h/wxi/+O+WMW/53yxyz+v80fs/j/Ln/M4v/7/DGL/875Yxb/XfLHLP5/yB+z+P8xf8ziv2v+mMX/T/ljFv/d8scs/rvnj1n898gfs/j/OX/M4v+X/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mflj7/sPjDgw8J/sf1b+mGX7Pzt/zOJ/Tv6Yxf/c/DGL/3n5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4n9J/pjF/9L8MYv/ZfljFv/L88cs/lfkj1n8/5o/ZvG/Mn/M4n9V/pjF/+r8MYv/NfljFv9r88cs/tflj1n8r88fs/jfkD9m8b8xf8zif1P+mMX/5vwxi/8t+WMW/1vzxyz+t+WPWfxvzx+z+N+RP2bxvzN/zOJ/V/6Yxf/u/DGL/z35Yxb/e/PHLP735Y9Z/O/PH7P4P5A/ZvF/MH/M4v9Q/pjF/+H8MYv/I/ljFv9H88cs/o/ljzn8k/+oHP4DozzRWoBZ/J/MH7P4P5U/ZvF/On/M4v9M/pjF/9n8MYv/c/ljFv/n88cs/i/kj1n8X8wfs/i/lD9m8X85f8zi/0r+mMX/1fwxi/9r+WMW/9fzxyz+b+SPWfzfzB+z+L+VP2bxfzt/zOL/Tv6YxH/Ugfwxi/+g/DGL/zD5Yxb/YfPHLP6D88cs/sPlj1n8h88fs/iPkD9m8R8xf8ziP1L+mMV/5Pwxi/8o+WMW/1Hzxyz+o+WPWfxHzx+z+I+RP2bxHzN/zOI/Vv6YxX/s/DGL/6fyxyz+4+SPWfzHzR+z+H86f8ziP17+mMV//Pwxi/9n8scs/hPkj1n8P5s/ZvGfMH/M4j9R/pjFf+L8MYv/JPljFv9J88cs/p/LH7P4T5Y/ZvGfPH/M4j9F/pjFf8r8MYv/VPljFv/P549Z/KfOH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi/80+WMW/2nzxyz+0+WPWfynzx+z+M+QP2bxnzF/zOL/tfwxi/9M+WMW/5nzxyz+s+SPWfxnzR+z+H89f8ziP1v+mMX/G/ljFv9v5o9Z/GfPH7P4fyt/zOI/R/6YxX/O/DGL/1z5Yxb/ufPHLP7z5I9Z/OfNH7P4z5c/ZvGfP3/M4r9A/pjFf8H8MYv/t/PHLP7fyR+z+C+UP2bx/27+mMV/4fwxi//38scs/t/PH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv8l88cs/j/IH7P4L5U/ZvH/Yf6Yxf9H+WMW/6Xzxyz+y+SPWfyXzR+z+C+XP2bx/3H+mMV/+fwxi/8K+WMW/5/kj1n8V8wfs/ivZPT/F+6wxX9lo/+/kMV/lfwxi/+q+WMW/9Xyxyz+q+ePWfx/mj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfx/lj9m8V8vf8ziv37+mMV/g/wxi//P88cs/hvmj1n8f5E/ZvHfKH/M4r9x/pjFf5P8MYv/L/PHLP6/yh+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/rfLHLP5b549Z/LfJH7P4b5s/ZvHfLn/M4v/r/DGL/2/yxyz+2+ePWfx3yB+z+O+YP2bx3yl/zOL/2/wxi//v8scs/r/PH7P475w/ZvHfJX/M4v+H/DGL/x/zxyz+u+aPWfz/lD9m8d8tf8ziv3v+mMV/j/wxi/+f88cs/n/JH7P475k/ZvHfK3/M4r93/pjFf5/8MYv/vvljFv/98scs/vvnj1n8D8gfs/gfmD9m8T8of8zif3D+mMX/kPwxi/+h+WMW/8Pyxyz+h+ePWfyPyB+z+B+ZP2bxPyp/zOJ/dP6Yxf+Y/DGL/7H5Yxb/4/LHLP7H549Z/E/IH7P4n5g/ZvE/KX/M4n9y/pjF/5T8MYv/qfljFv/T8scs/qfnj1n8z8gfs/ifmT9m8T8rf8zif3b+mMX/nPwxi/+5+WMW//Pyxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf+S/DGL/6X5Yxb/y/LHLP6X549Z/K/IH7P4/zV/zOJ/Zf6Yxf+q/DGL/9X5Yxb/a/LHLP7X5o9Z/K/LH7P4X58/ZvG/IX/M4n9j/pjF/6b8MYv/zfljFv9b8scs/rfmj1n8b8sfs/jfnj9m8b8jf8zif2f+mMX/rvwxi//d+WMW/3vyxyz+9+aPWfzvyx+z+N+fP2bxfyB/zOL/YP6Yxf+h/DGL/8P5Yxb/R/LHLP6P5o9Z/B/LH7P4P54/ZvF/In/M4v9k/pjF/6n8MYv/0/ljFv9n8scs/s/mj1n8n8sfs/g/nz9m8X8hf8zi/2L+mMX/pfwxi//L+WMW/1fyxyz+r+aPWfxfyx+z+L+eP2bxfyN/zOL/Zv6Yxf+t/DGL/9v5Yxb/d/LHJP6jDeSPWfwH5Y9Z/IfJH7P4D5s/ZvEfnD9m8R8uf8ziP3z+mMV/hPwxi/+I+WMW/5Hyxyz+I+ePWfxHyR+z+I+aP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/D+VP2bxHyd/zOI/bv6Yxf/T+WMW//Hyxyz+4+ePWfw/kz9m8Z8gf8zi/9n8MYv/hPljFv+J8scs/hPnj1n8J8kfs/hPmj9m8f9c/pjFf7L8MYv/5PljFv8p8scs/lPmj1n8p8ofs/h/Pn/M4j91/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfynyR+z+E+bP2bxny5/zOI/ff6YxX+G/DGL/4z5Yxb/r+WPWfxnyh+z+M+cP2bxnyV/7B/8h1425ic8pv9PfYT/rPljlu3/6/ljFv/Z8scs/t/IH7P4fzN/zOI/e/6Yxf9b+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6YxX++/DGL//z5Yxb/BfLHLP4L5o9Z/L+dP2bx/07+mMV/ofwxi/9388cs/gvnj1n8v5c/ZvH/fv6YxX+R/DGL/6L5Yxb/xfLHLP6L549Z/JfIH7P4L5k/ZvH/Qf6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMV/ufwxi/+P88cs/svnj1n8V8gfs/j/JH/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/ivnj9m8f9p/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8f9Z/pjFf738MYv/+vljFv8N8scs/j/PH7P4b5g/ZvH/Rf6YxX+j/DGL/8b5Yxb/TfLHLP6/zB+z+P8qf8ziv2n+mMV/s/wxi//m+WMW/y3yxyz+W+aPWfy3yh+z+G+dP2bx3yZ/zOK/bf6YxX+7/DGL/6/zxyz+v8kfs/hvnz9m8d8hf8ziv2P+mMV/p/wxi/9v88cs/r/LH7P4/z5/zOK/c/6YxX+X/LH/VP8RP+T/h/yx/1T/gQ/5/zF/zOK/a/6Yxf9P+WMW/93yxyz+u+ePWfz3yB+z+P85f8zi/5f8MYv/nvljFv+98scs/nvnj1n898kfs/jvmz9m8d8vf8ziv3/+mMX/gPwxi/+B+WMW/4Pyxyz+B+ePWfwPyR+z+B+aP2bxPyx/zOJ/eP6Yxf+I/DGL/5H5Yxb/o/LHLP5H549Z/I/JH7P4H5s/ZvE/Ln/M4n98/pjF/4T8MYv/ifljFv+T8scs/ifnj1n8T8kfs/ifmj9m8T8tf8zif3r+mMX/jPwxi/+Z+WMW/7Pyxyz+Z+ePWfzPyR+z+J+bP2bxPy9/zOJ/fv6Yxf+C/DGL/4X5Yxb/i/LHLP4X549Z/C/JH7P4X5o/ZvG/LH/M4n95/pjF/4r8MYv/X/PHLP5X5o9Z/K/KH7P4X50/ZvG/Jn/M4n9t/pjF/7r8MYv/9fljFv8b8scs/jfmj1n8b8ofs/jfnD9m8b8lf8zif2v+mMX/tvwxi//t+WMW/zvyxyz+d+aPWfzvyh+z+N+dP2bxvyd/zOJ/b/6Yxf++/DGL//35Yxb/B/LHLP4P5o9Z/B/KH7P4P5w/ZvF/5MP+W/wvj+vfNIv/o23/mMX/sfwxi//j+WMW/yfyxyz+T+aPWfyfyh+z+D+dP2bxfyZ/zOL/bP6Yxf+5/DGL//P5Yxb/F/LHLP4v5o9Z/F/KH7P4v5w/ZvF/JX/M4v9q/pjF/7X8MYv/6/ljFv838scs/m/mj1n838ofs/i/nT9m8X8nf0ziP/pA/pjFf1D+mMV/mPwxi/+w+WMW/8H5Yxb/4fLHLP7D549Z/EfIH7P4j5g/ZvEfKX/M4j9y/pjFf5T8MYv/qPljFv/R8scs/qPnj1n8x8gfs/iPmT9m8R8rf8ziP3b+mMX/U/ljFv9x8scs/uPmj1n8P50/ZvEfL3/M4j9+/pjF/zP5Yxb/CfLHLP6fzR+z+E+YP2bxnyh/zOI/cf6YxX+S/DGL/6T5Yxb/z+WPWfwnyx+z+E+eP2bxnyJ/zOI/Zf6YxX+q/DGL/+fzxyz+U+ePWfy/kD9m8f9i/pjF/0v5Yxb/L+ePWfy/kj9m8f9q/pjFf5r8MYv/tPljFv/p8scs/tPnj1n8Z8gfs/jPmD9m8f9a/pjFf6b8MYv/zPljFv9Z8scs/rPmj1n8v54/ZvGfLX/M4v+N/DGL/zfzxyz+s+ePWfy/lT9m8Z8jf8ziP2f+mMV/rvwxi//c+WMW/3nyxyz+8+aPWfznyx+z+M+fP2bxXyB/zOK/YP6Yxf/b+WMW/+/kj1n8F8ofs/h/N3/M4r9w/pjF/3v5Yxb/7+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL/5L5Yxb/H+SPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8l8sfs/j/OH/M4r98/pjFf4X8MYv/T/LHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/6vljFv+f5o9Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv+f5Y9Z/NfLH7P4r58/ZvHfIH/M4v/z/DGL/4b5Yxb/X+SPWfw3yh+z+G+cP2bx3yR/zOL/y/wxi/+v8scs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMV/q/wxi//W+WMW/23yxyz+2+aPWfy3yx+z+P86f8zi/5v8MYv/9vljFv8d8scs/jvmj1n8d8ofs/j/Nn/M4v+7/DGL/+/zxyz+O+ePWfx3yR+z+P8hf8zi/8f8MYv/rvljFv8/5Y9Z/HfLH7P4754/ZvHfI3/M4v/n/DGL/1/yxyz+e+aPWfz3yh+z+O+dP2bx3yd/zOK/b/6YxX+//DGL//75Yxb/A/LHLP4H5o9Z/A/KH7P4H5w/ZvE/JH/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+f80fs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMX/nfwxif8YA/ljFv9B+WMW/2Hyxyz+w+aPWfwH549Z/IfLH7P4D58/ZvEfIX/M4j9i/pjFf6T8MYv/yPljFv9R8scs/qPmj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/0/lj1n8x8kfs/iPmz9m8f90/pjFf7z8MYv/+PljFv/P5I9Z/CfIH7P4fzZ/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP6T5o9Z/D+X//+PnbsP97qu7zj+454sZ592Xeo122UXGnNtRiKjUQtRUTzenDLRzHuEw01yIzcSYApstFLHpkvdLNjEwjFnq5Y43Fx3KxqWNVsjtlY5xbUwxhwsMmfsOnAOwdnbc+182ffr8v14/ME5v9/x/Ut5Xi9/Py+uq1CW/sP0D2Xpf5z+oSz9j9c/lKX/a/UPZek/XP9Qlv6/oH8oS/8T9A9l6f+L+oey9H+d/qEs/X9J/1CW/r+sfyhL/xP1D2Xp/3r9Q1n6j9A/lKX/G/QPZel/kv6hLP1H6h/K0v9k/UNZ+o/SP5Sl/6/oH8rSf7T+oSz936h/KEv/X9U/lKX/GP1DWfq/Sf9Qlv5v1j+Upf+v6R/K0v8t+oey9B+rfyhL/1P0D2XpP07/UJb+p+ofytL/NP1DWfqfrn8oS//x+oey9D9D/1CW/mfqH8rSf4L+oSz9z9I/lKV/m/6hLP3P1j+Upf85+oey9D9X/1CW/ufpH8rSv13/UJb+b9U/lKX/2/QPZel/vv6hLP3frn8oS/8L9A9l6T9R/1CW/hfqH8rS/yL9Q1n6v0P/UJb+F+sfytL/nfqHsvS/RP9Qlv6X6h/K0v8y/UNZ+l+ufyhL/yv0D2Xpf6X+oSz9r9I/lKX/JP1DWfpfrX8oS//J+oey9J+ifyhL/w79Q1n6T9U/lKX/NP1DWfpP1z+Upf8M/UNZ+r9L/1CW/tfoH8rSf6b+oSz9Z+kfytJ/tv6hLP3n6B/K0v9a/UNZ+s/VP5Sl/zz9Q1n6z9c/lKX/Av1DWfpfp38oS/+F+oey9H+3/qEs/RfpH8rSf7H+oSz9l+gfytL/ev1DWfq/R/9Qlv436B/K0v9G/UNZ+i/VP5Sl/zL9Q1n6L9c/lKX/r+sfytL/N/QPZem/Qv9Qlv7v1T+Upf9v6h/K0v99+oey9H+//qEs/W/SP5Sl/836h7L0v0X/UJb+v6V/KEv/lfqHsvT/bf1DWfr/jv6hLP1v1T+Upf9t+oey9P9d/UNZ+n9A/1CW/rfrH8rS/w79Q1n636l/KEv/39M/lKX/7+sfytL/Lv1DWfp/UP9Qlv4f0j+Upf8q/UNZ+q/WP5Sl/x/oH8rS/w/1D2Xpf7f+oSz91+gfytL/Hv1DWfp/WP9Qlv4f0T+Upf9a/UNZ+t+rfyhL/z/SP5Sl/zr9Q1n6/7H+oSz979M/lKX/n+gfytL/fv1DWfp/VP9Qlv5/qn8oS/+P6R/K0v/j+oey9P+E/qEs/f9M/1CW/p/UP5Sl/wP6h7L0X69/KEv/B/UPZen/5/qHsvTfoH8oS/+H9A9l6f8X+oey9P9L/UNZ+j+sfyhL/7/SP5Sl/6f0D2Xp/2n9Q1n6f0b/UJb+n9U/lKX/5/QPZen/1/qHsvT/vP6hLP2/oH8oS/+N+oey9P+i/qEs/f9G/1CW/pv0D2Xp/4j+oSz9v6R/KEv/L+sfytL/Uf1DWfp/Rf9Qlv5f1T+Upf/f6h/K0v8x/UNZ+n9N/1CW/n+nfyhL/6/rH8rS/+/1D2Xpv1n/UJb+39A/lKX/Fv1DWfr/g/6hLP3/Uf9Qlv7f1D+Upf8/6R/K0v9b+oey9P+2/qEs/b+jfyhL/8f1D2Xp/8/6h7L0f0L/UJb+T+ofytJ/q/6hLP2f0j+Upf+/6B/K0v+7+oey9P9X/UNZ+n9P/1CW/tv0D2Xp/7T+oSz9v69/KEv/7fqHsvT/N/1DWfrv0D+Upf+/6x/K0v8Z/UNZ+v+H/qEs/XfqH8rSf5f+oSz9/1P/UJb+P9A/lKX/bv1DWfr/UP9Qlv7P6h/K0v9H+oey9H9O/1CW/v+lfyhL/+f1D2Xp/2P9Q1n679E/lKT/K1v6h7L076d/KEv//vqHsvQfoH8oS/+B+oey9B+kfyhL/8H6h7L0H6J/KEv/ofqHsvR/mf6hLP0P0z+Upf/L9Q9l6f8K/UNZ+h+ufyhL/5/RP5Sl/xH6h15y/QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP6/mb94yTWTZs7smOcb3/jGN/u/ebH/zQQAAPxf+8mH/hf77wQAAAAAAAAAAAAAAAAAAADyauL/TuzF/mcEAAAAAAAAAAAAAICfdm3tp24f0O+gpwYc+ODnH+3Y+3XU7ounr137YOn+2vXjc4KX7H/ggz179uxZ/czY8V0Ph7Rarc7/tVd2PR7a87jz9Zcdu+rofY/KuM/f+fgVEw8/d9762wZ+Y/Ut7U8P2vvsoNZVU2fM7HhD/1arnD6otajzwUn9Wq1y5qDWrZ0PRnY+mDCota7zwcl7H7ys9ZnOB6+fPGfmlM4nzqr8ewYvFW3ty1oDDlps66B/Gxy4/2XHPjG9+2svL9n9agNbXfsftv5LR/X4WbcX2H/365dTe+6/z/+AwAvq2/6f3dL9tZeX/B/v/x/etHtJ9LMX3n/365fT7B/qE3z+P2ijPT/39/j8/5rgJfffnzJ00+2d+2+78L5Xdz018H/z+f8nr19O77n//gd9/u/8HD+++/P/kFarnHGIvx2QSlv78u29vf/3vv+BP9fjpt+B+7/nK1tf0bn/e59rreh6alAf9z++t/f/m3r8vQJ909a+Zk+P9/8+7L81PHjJ/fvftv7wvZ//t94/+cgDftaX/Z/Rc/8jFsy6dsT8xUtOnDFr0rSOaR2zx4wcfdKoMWNGjx6x9xPBvl8P8TcFkji09//WYT1u+rVaHfvvN953y/jO/e94aMVHup4a2sf9n9nr+/9rvP9DaFj/1uDBrUWTFiyYd9K+X7sfjtz3676/LNh/H/77/7gTuv6y7j8z7NdqHb3/fvgVY4Z07v/6uWVD11OD+7j/Cb3uf9zBf1YJ9M0hvv9P6XFz0P5P2Xbjws79H/+DV23teqqv//1/Vq/7v9v7PxyKtvZWrW+infs/ecjys6tdlzZ//gf1aWL/x+68dVe163K2/UN9mtj/xJVvvrradTnH/qE+Tez/wVlXrqx2Xc61f6hPE/t//md3HVPtupxn/1CfJvb/2HefWlvturTbP9Snif1/8K72k6tdl7faP9Snif2feN0Px1a7Lm+zf6hPE/uf+vIL1lW7LufbP9Snif2fvee0I6tdl7fbP9Snif33W/69ZdWuywX2D/VpYv9PTlo5p9p1mWj/UJ8m9r/u2OHPVrsuF9o/1KeJ/a94+o0Tql2Xi+wf6tPE/r96x6rHql2Xd9g/1KeJ/X/isletqnZdLrZ/qE8T+//RsIcOq3Zd3mn/UJ8m9r9587oHql2XS+wf6tPE/levGzCs2nW51P6hPk3sf+lZ0x6tdl0us3+oTxP7HzX6y5dWuy6X2z/Up4n9H/25bz1V7bpcYf9Qnyb2f8HDC+dXuy5X2j/Up4n9Lzzm4z+udl2usn+oTxP7f0vHMdOrXZdJ9g/1aWL/5bbDNle7LlfbP9Snif1fsmPNuGrXZbL9Q32a2P+GI77wsWrXZYr9Q32a2P/OubPHVLsuHfYP9Wli/99579L3VbsuU+0f6tPE/m9/7uul2nWZZv9Qnyb2v23kJZdVuy7T7R/q08T+15z7zCPVrssM+4f6NLH/lRseX1DturzL/qE+Tex/48Zznqh2Xa6xf6hPE/s/fviIw6tdl5n2D/VpYv9zLl7xoWrXZZb9Q32a2P/p99/x2mrXZbb9Q32a2P/Qr439ZLXrMsf+oT5N7P/TY9//qWrX5Vr7h/o0sf9d4447odp1mWv/UJ8m9r/lgZF3Vrsu8+wf6tPE/j/wyF0Vr8t8+4f6NLH/ua97fke167LA/qE+Tez/TRMvWlztulxn/1CfJvZ/5N0Tvljtuiy0f6hPE/u//NvfP7/adXm3/UN9mtj/cUdd/epq12WR/UN9mtj/9Bmbbq52XRbbP9Snif2PX71lVLXrssT+oT5N7P+IJ+ffU+26XG//UJ8m9r99wFHnVbsu77F/qE8T+7/3hoe/We263GD/UJ8m9n/zTR/tqHZdbrR/qE8T+//s7sE7q12XpfYPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/zQ4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAPHAgAAAADC/K2D6N0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICjAAAA//8mu+jL")
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f00000001c0)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}, {@nomblk_io_submit}, {@nomblk_io_submit}, {@nobh}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000740)=ANY=[])

2.076016408s ago: executing program 4 (id=3269):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000085c, &(0x7f00000007c0)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESDEC=0x0, @ANYBLOB=',discard,\x00', @ANYRESDEC=0x0, @ANYRESOCT=0x0, @ANYBLOB="dd812246da16e3f3744109adecbf790b293943c866e410686871297a5f0d7ae82908f6ba144c43d8299b393f0bf8d5ce774794f45e41d2baac5bb21da7bfa7953e1b99f77929f7a4f3069219c59678f7fd86f2371cd5238783f37d25cfb853f3330632288112a663e0547534d398a77ef57503cb1b1b2548726354308bb8723bedc0c1997f043d9ff1745bc4f980882eb24cce51c0f9e6cfac5596d0013f775910ea2f18d46216b9ecd3508b347cf690c1db6bd77bff73e719be2d22b0bc374048d493bb3262859982a98b7f523ea4e8044ab6de9cdbee0cc9540eb8f06aa7b239e62bc6fab71a2ca0ff472263f9fcca9c45", @ANYRESOCT, @ANYRESHEX, @ANYRES32, @ANYRESHEX], 0xc1, 0x151a, &(0x7f0000002a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

1.68025785s ago: executing program 4 (id=3272):
r0 = syz_usb_connect$uac1(0x2, 0x72, &(0x7f0000000280)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x2466, 0x8010, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x3, 0x1, 0x3, 0xa0, 0x2, "", {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x2, 0xa}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0x2, 0x6, 0x0, {0x7, 0x25, 0x1, 0xc, 0x3, 0x40}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x3, 0x7, 0x10, {0x7, 0x25, 0x1, 0xc, 0x8, 0x401}}}}}}}}]}}, &(0x7f0000000680)={0x0, 0x0, 0x39, 0x0})
syz_usb_control_io(r0, &(0x7f0000001f80)={0x2c, 0x0, &(0x7f0000001e80)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc09}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

919.327831ms ago: executing program 1 (id=3280):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000180)={{0x3, 0x4}, 'syz1\x00', 0x35})
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x3)

760.0023ms ago: executing program 6 (id=3281):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4820, @broadcast}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x23)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000100)=0xffda)

727.633263ms ago: executing program 6 (id=3283):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x81, 0xfffff038}, {0x20, 0x22, 0x0, 0xfffff00c}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000180), 0x4000190, 0x0)

631.611934ms ago: executing program 3 (id=3284):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='attr/exec\x00')
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000180), 0x2000090, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

592.158677ms ago: executing program 6 (id=3285):
r0 = epoll_create(0x7)
r1 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0x60000000})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080))

512.000541ms ago: executing program 3 (id=3286):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x4, &(0x7f0000000280)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x8, 0xfffff010}, {0x40, 0xfd}, {0x6, 0xba, 0xa, 0xfffb}]}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x7}, 0x1c)

422.808613ms ago: executing program 3 (id=3287):
syz_mount_image$nilfs2(&(0x7f0000000480), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x1, 0xeec, &(0x7f0000001e40)="$eJzs3U9sHNUZAPA3a6/txCZeAwUDJaTQikDBDkmkprcgoh4Rl96D8odGMWnU0ANRIKYHRCVEkSJOFQcqLpRKKVKRQJWqqKe2p1a99YR6oVKVSkE9tJESV1m/We8+e7rrsT1r7/5+0rdv37zZ+b7xRs7MePZtAIZWrfl4+PBsFsJ7n1859trJ7NM7yx5prbGv+ZjFXiOEUG/rZ8n2vogLbt24dGKtNgsHm495Pzx/vfXayRDCYtgXroVG+Hh+4auP3n9u/ydvTtz3zsWzr2/R7rek+wEAAIPo6p8W/vbEP/741MzNq3uPhvHW8pXj9WWT8bj/QFyQL6+Fzn7WFu3GkvVGYtSS9UaS9UaTPKMF+erJduoF6411yTfStmyt/QQAAICdKD+vbYSsNtfRr9Xm5pbP++/4Ynosmzt3ZuH0hT4VCgAAAJT278vNm26FEEIIIYQQQggxwLE03e8rEAAAAMCwSecLW2Vxc2fqam2t0Vv+68/W1n49bIKq//3Lv7Pyf/iG3zgAAJQ3qEeT+X7lx9H5PAbpPIIjyevWe/xfS7Yzus46i+YV7Fiebd+3qaj+9Oe6XRXVv973sV+K6k/nw9yuiupP5+ncrorqH6+4jrKK6p+ouI6yiurfVXEdZRXVv7viOsoqqn+y4jrKKqp/quI6yiqq/66K6yirqP49FddRVlH9O+W22qL6GxXXUVZR/TMV11FWUf13V1xHWUX131NxHWUV1X9vxXX0y8OxzX8Oe5Px9vPn9Jxup5zjAQAAwLD7r/n/hBBCiFXRvA9iG9QhxGBHtg1qEEKI4YnL/b4AAQAAAPRd/rmA/APoS1E+PtJlfLR9fGJlhXy83uX1Y13Gx7uMAwAAACH89q3TD7ybrXzOf6Pz4eXzRu0Kn94OJeYxSie6W2/+jc57ttH865i3zPQJAAAAVCb73rXbTx774JWZm1f3Hm07+70dz3fzeUBH4wnrZ7Gf3xcwlfSz/Bz6aGeeWsF66fWBu4q298IGdxQAAACGWH7+3ghZba7tvLsRarW5uZXz8dlQz06fWTh1IPbz72f5w3R9/M7yZyquGwAAAOjdyvn+2uf/+ff4zoaxbO7cmYXTF5b7U63l9Vr7dYHpleVZ+3WBRrL8YMHyQ7Gff3/nD6Z3NZfPnfjhwsnN3nkAAAAYEhdevXj2xYWFUz/yxBNPPGk96fdvJgAAYLN9+eWV+o8PTf1u+fP/K/Pf5Z//3xf7jTi335/jCvl9AvnnAFZ9Xv94Z57povXOd67XSNYbiTGe1D3Rtp3QnG+w83UzRfkandsZK8g3meSbSvKl8xSMJuvn+fYky9P5CfP1ppPl6eSAo0mOLMn/aAAAAIBi86+8fH7+wqsXnz7z8osvnXrp1LlDB49898iRA89855n55n398+139wMAAAA70cpNv/2uBAAAAAAAAAAAAAAAAAAAAIZXFV8n1u99BAAAgGH3r8shhEUhhCgdS+P9r0GILjG2DWoQQgghhFiO5ne7V5+31u/rDwAAAMDwuXXj0on2dpXFbFPztbbWWG5ux7x5O/X0X2fuRL7a9WdHOl6/e1OrYdhV/e9f/p2V/8M3Njf/RP6k599/ySXjo+XyPj7/y9n2/A+O9pg/3f8XyuXfn+R/PPSWf+mDJP/xcvmfSPLv7jH/qv0/Xy7/kzH/bOzvf6zX/J3v/3hs8/3Y1WP+byf7fzL0mj/Z/0aPCRNPxfwAMIwG9QaA/CghP46ejP18f+PhZhhJXrfe4/9asp3RDVfeud38OOj+2M+Pl6aSvLn11j+ZbO+uknWm0rq2q6L6N+t93GpF9dcrrqOsovrHKq6jrKL6xyuuo6yi+icqrqOsovp7PQ/tt6L6d8p15aL6Jyuuo6yi+qcqrqOsovrX+/94vxTVv6fiOsoqqn+64jrKKqq/5GW1yhXVP1NxHWUV1X93xXWUVVT/PRXXUVZR/fdWXEe/PBTbovPh/PxzOo7l/UbSH1/jZzmo1xYAAABgp/mn+f+EEEIIIUpF836ZbVBHf6Ltbrm+1yI2I/6ztKzfdQghti6Wlvp48YG+29pPMwOwXfn9P9y8/8PN+z/cvP/8P/k9/FnSz410GR/tMl7vMj6WjKf/Xse7jN+TbHcpv64Z3dtl/Gtdxvd0Gb+/y/hsl/EHuow/2GX8oS7jAAAADIf7Yuv8EAAAAAbXa7/67O3fPH78xszNq3uPhrFV884fiP3x+Lf1t2I/nfc+V49/8/9J7P8itr+P7d+T9d1/AgAAAFsv/54Yf/8HAACAwZV/T6nzfwAAABhcM7F1/g8AAACD6+7YOv8HAACAAZZNrL04tvl1gUdj2+u8fgDA9vf12D4c272xfSS234htfhzwWGy/WVF9AMDm+fn3f3rk3Wxlvv9DyfituDxvV1lcvlKQ1Tpn8t8V292x/VaP9aTfB9Br/tyeHvNsVf7pDeYHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAZHrfl4+PBsFsJ7n1859rOxt/9yZ9kjrTX2NR+z2GuEEOqt1+WjK/1fxxVv3bh0or29HdssHAxZyFrLw/PXW5kmQwiLYV+4Fhrh4/mFrz56/7n9n7w5cd87F8++voU/go79AwAAgEH0vwAAAP//cFQjcg==")
syz_mount_image$vfat(&(0x7f00000030c0), &(0x7f00000031c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20084, 0x0, 0xec, 0x0, &(0x7f0000003100))
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

408.636101ms ago: executing program 6 (id=3288):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000002080)={'vxcan1\x00', <r1=>0x0})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x2, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000480)={&(0x7f0000000040)=@can={{0x3, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "11e97f5d0c1f526b"}, 0x10}, 0x1, 0x0, 0x0, 0x2}, 0x20044850)

247.800789ms ago: executing program 6 (id=3289):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f00000053c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x60, 0x0)

202.00923ms ago: executing program 3 (id=3290):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="02000000"], 0x8)

170.152253ms ago: executing program 6 (id=3291):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000004480)="$eJzs3c9vVNUeAPBzb/seLQ94LY8FLzFxEkk0apqWlVoSSymUFioGhRg3w7QdoDrtkHZqXLCoOxJXJi6MC6KJu65IF27xT3DjEtckunBjQkKsmZk7be/tTDrWTivk80nonXt+z3znnjl3cTlxonJ7bik3t5QrLOTKMzeXTuc+KZeW54sh3icH3T/t6UScxP7gXDl34b3rp0P4Yfanx+vr6+uhqjs0NbTl9e+/3Z3ZemyIM3Wq7TZvba98GEI4sW1cVV0hhA++DyEKIZxN0kaTY28I4Vio512/+/mN3B6N5sGj4pn806l7a8OnJlfvr7V+71EIX5f+//qt+V9e6hr++dU96h4AAAAAAAAAAAAAAAAAgGfc+NUr194dHAoPo9C9Gm1/Xnc8ObZ6PnZ9z7zY1nifJKX/7vsGAAAAAAAAAAAAAAAAAACAf5LN5/9z0fEmz/+PJceRFvXX3+78GOmciXeujJ0fHEr2f4+25b+RJP16tiv0N9n3Pbv/+9lM/eb7v2/vZ7ca42v02xeieCB1HscDAyF8m2z8fjI6HJfKS5XXbpaXF2b3bBjPrHT867v3p6KTbOjfbvxHM+13fv///237NlXPb+zdV+y5lo5/V8ty330WtRX/c5l6+xF/di8d/+5aWu/WAiP1CaAa/y+6d47/WKb9TsX/WAghF1XHmkvNANU1TDW91XqFtHT8/1VLS02dyQfZ6vp/kon/+Uz7BzX/r2R/iGgqHf9/19J6UiU2r//+eOfr/0Km/YOIf3X8K37/25KO/6F6YneqSO2TbHf+H8+036n4X4uTcR6LUt+A1aie3ur/qyMtHf+ebfmb939xW+u/i5n6+3X/1+i3cf/XmP5fier3fzSXjn9vy3LtXv8TmXqdnv9Haus/disd/8O1tPTaua/2t934T2ba71T8a6uSnkb8N+eTPw7V07+x/mtLOv7/qSfGW0us1P7W1n/Rzuv/S5n2D2L9Vx3/StzZXp8X6fgfaVmuGv8f2/j9v5yp1/n4hzBorb9r6fgfbVmudv337Bz/qUy9Tsf/5U42DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAMGE2OfSGKB1LncTwwEMK55PxkOBxNF2bz06XyzMdLIYwl6blwPLpVKk8XSvm5hfJsMV8olcozIZxP8k+EnmipVK7k5wt3Lmy01RvdLhYWK9PFQiWEMJ6kvxCONtqanqvMF+6EEC5u5P03Li/euV1YyM/OLb41ODg4GCY2xtAfFT+tFBcq9d7ruSFMbtTti7YMrpZ9aWMsR6KPysuLC4VSLf3yljql8kyhtKXOVJL3ZeiPKovLCzOFSjFfKt9q9HeQRpLj2MTV969eHtqWfyOqH0f3d1gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/EUPh9/8KoTQXT+LQwi5KHkRJf9SHjwqnsk/nbq3NnxqcvX+2uNmZQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiTHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzSP0oDQRQH4DdjoaXHsFp2O9sVRbRwRfAEegwPo0fxEt7BIkXaFCGQzELYP7BNUn1f82B+zLwH8wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACWe3zr3l/rJiLF1fYy4vfz7/84fy71+276/sUZZuR0nl66+4e6Kf+eRvltOVq1eZ9u1l8fMVF7P4M9Ge7TwbjP0Ny+zc3X972OlKuIaEt+k3KuqmVvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOzYgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCwAAAAAI87eOom8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//0OnJ0Q=")
r0 = creat(&(0x7f00000000c0)='./file3\x00', 0x2)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x147c7c, 0x0)
ioctl$FICLONE(r0, 0x40049409, r1)

67.976944ms ago: executing program 3 (id=3292):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x7}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r0}, {}, {0x46, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x5, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r2, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, &(0x7f0000001200), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x8, 0x0, 0x0}}, 0x10)

0s ago: executing program 3 (id=3293):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setownex(r2, 0xf, &(0x7f0000000140)={0x2, r0})
sendmmsg$unix(r1, &(0x7f0000011500)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)='n', 0x1}], 0x1, 0x0, 0x0, 0x4004040}}], 0x1, 0x40015)

kernel console output (not intermixed with test programs):

=c000003e syscall=202 compat=0 ip=0x7f9ed6f9c799 code=0x7ffc0000
[  349.046577][   T28] audit: type=1326 audit(1773204322.706:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11498 comm="syz.1.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ed6f9c799 code=0x7ffc0000
[  349.106613][   T28] audit: type=1326 audit(1773204322.706:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11498 comm="syz.1.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f9ed6f9c799 code=0x7ffc0000
[  349.166555][   T28] audit: type=1326 audit(1773204322.706:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11498 comm="syz.1.1978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ed6f9c799 code=0x7ffc0000
[  349.901409][T11530] loop5: detected capacity change from 0 to 7
[  349.922574][ T5780] Dev loop5: unable to read RDB block 7
[  349.933314][ T5780]  loop5: unable to read partition table
[  349.940747][ T5780] loop5: partition table beyond EOD, truncated
[  349.974486][T11530] Dev loop5: unable to read RDB block 7
[  349.996690][T11530]  loop5: unable to read partition table
[  350.004880][T11530] loop5: partition table beyond EOD, truncated
[  350.011597][T11530] loop_reread_partitions: partition scan of loop5 (úùƒWå¡™‰ü�¾Ã½¸*‹ºÐ	œëÜ%õ«µ4FLQkÝŠ5) failed (rc=-5)
[  350.097139][ T5813] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  350.291058][ T5813] usb 3-1: Using ep0 maxpacket: 8
[  350.302957][ T5813] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  350.323029][ T5813] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.352695][ T5813] pvrusb2: Hardware description: Terratec Grabster AV400
[  350.375365][ T5813] pvrusb2: **********
[  350.385283][ T5813] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  350.410787][ T5813] pvrusb2: Important functionality might not be entirely working.
[  350.435865][ T5813] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  350.473964][ T5813] pvrusb2: **********
[  350.575630][ T2319] pvrusb2: Invalid write control endpoint
[  350.766159][ T2319] pvrusb2: Invalid write control endpoint
[  350.782368][T11542] loop1: detected capacity change from 0 to 8192
[  350.790847][ T2319] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  350.820890][T11542] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  350.832804][ T2319] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  350.866393][ T2319] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  350.886357][ T2319] pvrusb2: Device being rendered inoperable
[  350.919033][ T2319] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  350.926888][   T23] usb 3-1: USB disconnect, device number 19
[  350.940790][ T2319] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  350.994196][ T2319] pvrusb2: Attached sub-driver cx25840
[  351.009128][T11542] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  351.019005][ T2319] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  351.045730][T11542] ntfs3: loop1: Failed to load $Extend (-2).
[  351.061744][ T2319] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  351.065065][T11542] ntfs3: loop1: Failed to initialize $Extend.
[  351.467371][T11551] loop4: detected capacity change from 0 to 512
[  352.229945][T11578] loop2: detected capacity change from 0 to 512
[  352.252253][T11578] EXT4-fs: Ignoring removed nobh option
[  352.275122][T11578] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  352.332411][T11578] EXT4-fs (loop2): 1 truncate cleaned up
[  352.358021][T11578] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  352.588081][T11097] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.123418][T11574] loop1: detected capacity change from 0 to 32768
[  353.160898][T11574] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.2011 (11574)
[  353.222537][T11574] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  353.246899][T11574] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  353.274666][T11574] BTRFS info (device loop1): setting nodatacow, compression disabled
[  353.291084][T11574] BTRFS info (device loop1): disabling tree log
[  353.307007][T11574] BTRFS info (device loop1): turning on sync discard
[  353.324129][T11574] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  353.346358][T11574] BTRFS info (device loop1): force zstd compression, level 3
[  353.369568][T11574] BTRFS info (device loop1): using free space tree
[  353.535155][T11574] BTRFS info (device loop1): enabling ssd optimizations
[  353.956060][ T5771] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  354.142794][T11628] loop2: detected capacity change from 0 to 512
[  354.210575][T11628] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 49, start 000000c8)
[  354.286562][T11628] FAT-fs (loop2): Filesystem has been set read-only
[  354.306246][T11630] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 49, start 000000c8)
[  354.387984][T11630] FAT-fs (loop2): error, invalid access to FAT (entry 0x000000c8)
[  354.461361][ T5780] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop1 scanned by udevd (5780)
[  355.613959][T11653] vlan2: entered promiscuous mode
[  355.641044][T11653] bond0: entered promiscuous mode
[  355.650932][T11653] bond_slave_0: entered promiscuous mode
[  355.667878][T11653] bond_slave_1: entered promiscuous mode
[  356.312312][T11671] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  356.548812][T11673] loop4: detected capacity change from 0 to 4096
[  356.651705][T11682] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  356.828946][T11686] loop1: detected capacity change from 0 to 512
[  356.856389][T11686] EXT4-fs: Ignoring removed oldalloc option
[  356.888092][T11686] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  356.945106][T11686] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  356.972858][T11686] EXT4-fs (loop1): 1 truncate cleaned up
[  357.020181][T11686] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.043599][T11692] loop2: detected capacity change from 0 to 64
[  357.244649][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.736596][ T1527] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[  357.928799][ T1527] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  357.946603][ T1527] usb 3-1: config 0 has no interface number 0
[  357.953449][ T1527] usb 3-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  357.978200][ T1527] usb 3-1: config 0 interface 1 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  357.989715][ T1527] usb 3-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  358.012576][ T1527] usb 3-1: config 0 interface 1 has no altsetting 0
[  358.020824][ T1527] usb 3-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00
[  358.044652][ T1527] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.064358][ T1527] usb 3-1: config 0 descriptor??
[  358.444402][T11730] loop1: detected capacity change from 0 to 8192
[  358.466260][T11730] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  358.517029][T11730] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  358.537189][T11730] REISERFS (device loop1): using ordered data mode
[  358.543879][T11730] reiserfs: using flush barriers
[  358.575325][T11730] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  358.653402][T11730] REISERFS (device loop1): checking transaction log (loop1)
[  358.724018][ T1527] input: HID 145f:0212 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.1/0003:145F:0212.000F/input/input37
[  358.875532][T11730] REISERFS (device loop1): Using tea hash to sort names
[  358.897174][ T1527] input: HID 145f:0212 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.1/0003:145F:0212.000F/input/input38
[  358.910399][T11730] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  358.963107][T11730] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  358.982262][ T1527] uclogic 0003:145F:0212.000F: input,hidraw0: USB HID v4.06 Keypad [HID 145f:0212] on usb-dummy_hcd.2-1/input1
[  359.079820][T11730] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 5) not found (pos 2)
[  359.187961][T11744] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  359.210130][ T1527] usb 3-1: USB disconnect, device number 20
[  359.302252][    T8] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  359.315837][T11740] fido_id[11740]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory
[  359.440727][    T8] hid-generic 0000:0000:0000.0010: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  360.800492][T11776] netlink: 'syz.1.2092': attribute type 25 has an invalid length.
[  360.874215][T11760] loop2: detected capacity change from 0 to 32768
[  360.962194][T11760] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  361.069438][T11760] XFS (loop2): Ending clean mount
[  361.197197][T11097] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  361.770320][T11799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2098'.
[  362.579649][T11819] loop4: detected capacity change from 0 to 4096
[  362.611057][T11819] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  362.724879][T11819] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  362.984878][T11830] loop6: detected capacity change from 0 to 8
[  363.046969][T11830] Dev loop6: unable to read RDB block 8
[  363.052659][T11830]  loop6: unable to read partition table
[  363.095143][T11830] loop6: partition table beyond EOD, truncated
[  363.119797][T11830] loop_reread_partitions: partition scan of loop6 (úùƒå¡™‰ü�¾CêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö�˜Èµ4FLQkÝŠ) failed (rc=-5)
[  363.432692][T11837] loop4: detected capacity change from 0 to 8192
[  363.480405][T11837] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  363.573898][T11837] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  363.634692][T11837] REISERFS (device loop4): using ordered data mode
[  363.662697][T11837] reiserfs: using flush barriers
[  363.726007][T11837] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  363.782488][T11837] REISERFS (device loop4): checking transaction log (loop4)
[  363.810409][T11837] REISERFS (device loop4): Using r5 hash to sort names
[  363.823651][T11837] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  363.876918][T11837] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  363.934845][T11837] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  363.993935][T11845] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  364.053347][T11847] loop1: detected capacity change from 0 to 1024
[  364.069500][T11845] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  364.247760][ T5781] Bluetooth: hci0: command tx timeout
[  364.308372][T11847] hfsplus: found bad thread record in catalog
[  364.315820][T11847] hfsplus: found bad thread record in catalog
[  364.372941][T11839] loop2: detected capacity change from 0 to 40427
[  364.380784][T11850] hfsplus: found bad thread record in catalog
[  364.408581][T11839] F2FS-fs (loop2): inline encryption not supported
[  364.418478][T11839] F2FS-fs (loop2): invalid crc value
[  364.440506][T11839] F2FS-fs (loop2): Found nat_bits in checkpoint
[  364.490467][   T49] hfsplus: found bad thread record in catalog
[  364.539041][   T49] hfsplus: found bad thread record in catalog
[  364.565616][T11854] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2121'.
[  364.585362][T11839] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  364.966308][T11865] netlink: 'syz.3.2125': attribute type 29 has an invalid length.
[  364.983326][T11864] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2126'.
[  365.007028][T11865] netlink: 'syz.3.2125': attribute type 29 has an invalid length.
[  365.037329][T11868] netlink: 'syz.3.2125': attribute type 29 has an invalid length.
[  365.476595][  T967] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  365.604547][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  365.604565][   T28] audit: type=1326 audit(2000000009.720:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.636712][   T28] audit: type=1326 audit(2000000009.750:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.671643][   T28] audit: type=1326 audit(2000000009.790:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.702234][   T28] audit: type=1326 audit(2000000009.820:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.726188][  T967] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  365.737895][  T967] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  365.756609][  T967] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  365.776275][  T967] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.785877][   T28] audit: type=1326 audit(2000000009.820:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.825005][T11872] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  365.848257][  T967] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  365.855684][   T28] audit: type=1326 audit(2000000009.870:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  365.943129][   T28] audit: type=1326 audit(2000000009.870:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  366.014019][   T28] audit: type=1326 audit(2000000009.870:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  366.079023][T11893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2137'.
[  366.092099][   T28] audit: type=1326 audit(2000000009.880:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  366.130305][   T28] audit: type=1326 audit(2000000009.880:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x7ffc0000
[  366.352391][   T23] usb 3-1: USB disconnect, device number 21
[  367.155762][T11919] loop4: detected capacity change from 0 to 1024
[  367.176360][T11919] EXT4-fs: Ignoring removed nomblk_io_submit option
[  367.227373][T11919] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  367.249341][T11919] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  367.259559][T11919] System zones: 0-1, 3-36
[  367.277728][T11919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  367.296589][ T1527] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  367.386937][T11929] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2150'.
[  367.498446][ T1527] usb 2-1: Using ep0 maxpacket: 16
[  367.532695][ T1527] usb 2-1: config 0 has an invalid interface number: 251 but max is 0
[  367.551226][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.561700][ T1527] usb 2-1: config 0 has no interface number 0
[  367.594131][ T1527] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  367.617323][ T1527] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  367.661302][ T1527] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  367.686733][ T1527] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.716787][ T1527] usb 2-1: Product: syz
[  367.721049][ T1527] usb 2-1: Manufacturer: syz
[  367.725707][ T1527] usb 2-1: SerialNumber: syz
[  367.778880][ T1527] usb 2-1: config 0 descriptor??
[  367.789025][T11915] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  367.796406][T11915] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  367.840901][T11937] program syz.2.2155 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  367.982383][T11944] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2158'.
[  368.093241][T11915] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  368.102209][T11915] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  368.725008][ T1527] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  368.758978][ T1527] asix 2-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  368.777751][ T1527] asix: probe of 2-1:0.251 failed with error -71
[  368.820568][ T1527] usb 2-1: USB disconnect, device number 19
[  369.237371][T11957] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2164'.
[  369.548993][T11966] tipc: Started in network mode
[  369.553976][T11966] tipc: Node identity ac14140f, cluster identity 4711
[  369.563084][T11966] tipc: New replicast peer: 255.255.255.255
[  369.572356][T11966] tipc: Enabled bearer <udp:syz2>, priority 10
[  369.670691][T11969] loop1: detected capacity change from 0 to 1024
[  369.807596][  T967] kernel read not supported for file /dsp1 (pid: 967 comm: kworker/0:2)
[  370.179422][T11984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2177'.
[  370.349915][T11991] loop2: detected capacity change from 0 to 64
[  370.687705][    T8] tipc: Node number set to 2886997007
[  370.961102][ T5813] IPVS: starting estimator thread 0...
[  371.058337][T12012] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2188'.
[  371.078716][T12010] IPVS: using max 16 ests per chain, 38400 per kthread
[  371.089217][T12014] overlayfs: upper fs does not support file handles, falling back to index=off.
[  371.099186][T12014] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[  371.622128][T12003] loop4: detected capacity change from 0 to 40427
[  371.639217][T12003] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x7ffff
[  371.674105][T12003] F2FS-fs (loop4): Image doesn't support compression
[  371.689517][T12003] F2FS-fs (loop4): Image doesn't support compression
[  371.726236][T12003] F2FS-fs (loop4): invalid crc value
[  371.755711][T12003] F2FS-fs (loop4): Found nat_bits in checkpoint
[  371.916797][T12003] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  372.122407][ T9899] syz-executor: attempt to access beyond end of device
[  372.122407][ T9899] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  372.151310][ T9899] F2FS-fs (loop4): Remounting filesystem read-only
[  372.376315][T12025] loop1: detected capacity change from 0 to 32768
[  372.432428][T12025] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  372.450369][T12025] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  372.461834][T12025] BTRFS info (device loop1): setting nodatasum
[  372.472997][T12025] BTRFS info (device loop1): force zlib compression, level 3
[  372.502639][T12025] BTRFS info (device loop1): use zlib compression, level 3
[  372.515508][T12025] BTRFS info (device loop1): turning on flush-on-commit
[  372.547613][T12025] BTRFS info (device loop1): enabling auto defrag
[  372.554210][T12025] BTRFS info (device loop1): max_inline at 4096
[  372.600159][T12025] BTRFS info (device loop1): using free space tree
[  372.655951][T12050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2204'.
[  372.776593][T12025] BTRFS info (device loop1): enabling ssd optimizations
[  373.064220][T12068] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2207'.
[  373.213406][ T5771] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  374.247708][T12103] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2220'.
[  374.286580][    T8] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  374.486660][    T8] usb 2-1: Using ep0 maxpacket: 16
[  374.494453][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  374.509431][T12109] loop4: detected capacity change from 0 to 256
[  374.516126][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  374.526627][    T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  374.541399][    T8] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  374.559583][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.578827][T12109] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  374.601874][    T8] usb 2-1: config 0 descriptor??
[  375.031312][    T8] microsoft 0003:045E:07DA.0011: unbalanced collection at end of report description
[  375.048224][    T8] microsoft 0003:045E:07DA.0011: parse failed
[  375.054714][    T8] microsoft: probe of 0003:045E:07DA.0011 failed with error -22
[  375.292972][    T8] usb 2-1: USB disconnect, device number 20
[  375.395493][T12133] vxcan1: tx address claim with dest, not broadcast
[  375.695745][T12127] loop4: detected capacity change from 0 to 40427
[  375.737734][T12127] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x7ffff
[  375.743635][T12141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2240'.
[  375.779440][T12127] F2FS-fs (loop4): invalid crc value
[  375.804239][T12127] F2FS-fs (loop4): Found nat_bits in checkpoint
[  376.031023][T12127] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  376.410456][ T9899] syz-executor: attempt to access beyond end of device
[  376.410456][ T9899] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  376.426942][ T9899] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  376.556668][  T967] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  376.719770][   T75] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.738866][  T967] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  376.764824][  T967] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  376.803731][  T967] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  376.842213][  T967] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.919739][T12154] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  376.936037][  T967] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[  376.991434][   T75] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.325818][   T75] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.374962][T12161] input: syz0 as /devices/virtual/input/input39
[  377.531191][    T8] usb 2-1: USB disconnect, device number 21
[  377.560924][   T75] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.694270][T12165] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.709466][T12165] bridge_slave_0: left allmulticast mode
[  377.731520][T12165] bridge_slave_0: left promiscuous mode
[  377.740146][T12165] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.756206][T12165] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  378.221236][ T5779] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  378.235521][ T5779] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  378.245546][ T5779] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  378.256739][ T5779] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  378.281656][ T5779] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  378.292956][ T5779] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  379.019502][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  379.025898][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  379.802676][T12172] chnl_net:caif_netlink_parms(): no params data found
[  380.417626][ T5779] Bluetooth: hci1: command tx timeout
[  380.549567][T12172] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.563568][T12172] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.580383][T12172] bridge_slave_0: entered allmulticast mode
[  380.598600][T12172] bridge_slave_0: entered promiscuous mode
[  380.713356][T12172] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.734622][T12172] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.765613][T12172] bridge_slave_1: entered allmulticast mode
[  380.780556][T12172] bridge_slave_1: entered promiscuous mode
[  380.891269][   T75] hsr_slave_0: left promiscuous mode
[  380.897795][   T75] hsr_slave_1: left promiscuous mode
[  380.904135][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  380.912856][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  380.922753][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  380.930975][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  380.940054][   T75] bridge_slave_1: left allmulticast mode
[  380.951740][   T75] bridge_slave_1: left promiscuous mode
[  380.967830][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.991860][   T75] bridge_slave_0: left allmulticast mode
[  381.000452][   T75] bridge_slave_0: left promiscuous mode
[  381.015435][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.123304][   T75] veth1_macvtap: left promiscuous mode
[  381.131019][T12243] loop4: detected capacity change from 0 to 512
[  381.138033][   T75] veth0_macvtap: left promiscuous mode
[  381.145878][   T75] veth1_vlan: left promiscuous mode
[  381.151936][   T75] veth0_vlan: left promiscuous mode
[  381.204758][T12243] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2270: inode has both inline data and extents flags
[  381.264926][T12243] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2270: couldn't read orphan inode 15 (err -117)
[  381.349608][T12243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.812266][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.156919][T12255] vcan0: tx address claim with dlc 0
[  382.465943][T12262] loop4: detected capacity change from 0 to 128
[  382.477652][T12262] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  382.491294][T12262] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  382.511197][ T5779] Bluetooth: hci1: command tx timeout
[  382.634385][ T3477] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  383.056900][ T5813] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  383.143611][   T75] team0 (unregistering): Port device team_slave_1 removed
[  383.224471][   T75] team0 (unregistering): Port device team_slave_0 removed
[  383.256935][ T5813] usb 5-1: Using ep0 maxpacket: 16
[  383.285185][ T5813] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  383.296548][ T5813] usb 5-1: config 0 has no interface number 0
[  383.302780][ T5813] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  383.314622][ T5813] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  383.336862][ T5813] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  383.346283][ T5813] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  383.354854][ T5813] usb 5-1: Product: syz
[  383.359560][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  383.366853][ T5813] usb 5-1: SerialNumber: syz
[  383.407707][ T5813] usb 5-1: config 0 descriptor??
[  383.421604][ T5813] cm109 5-1:0.8: invalid payload size 0, expected 4
[  383.443716][ T5813] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input40
[  383.550118][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  383.681489][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  383.696804][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  383.704911][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  383.712441][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  383.719914][   T23] usb 5-1: USB disconnect, device number 10
[  383.726543][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  383.733549][    C1] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  383.764460][   T23] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  384.561441][   T75] bond0 (unregistering): Released all slaves
[  384.568118][ T5779] Bluetooth: hci1: command tx timeout
[  384.783697][T12172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.823939][T12172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  385.027488][T12172] team0: Port device team_slave_0 added
[  385.084315][T12172] team0: Port device team_slave_1 added
[  385.214204][T12172] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.236629][T12172] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.316508][T12172] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  385.371397][T12172] batman_adv: batadv0: Adding interface: batadv_slave_1
[  385.379124][T12172] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.456625][T12172] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.693595][T12172] hsr_slave_0: entered promiscuous mode
[  385.737113][T12172] hsr_slave_1: entered promiscuous mode
[  386.170079][T12321] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2301'.
[  386.472789][T12172] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  386.522102][T12172] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  386.586669][T12172] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  386.625704][T12172] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  386.648174][ T5779] Bluetooth: hci1: command tx timeout
[  386.989670][T12172] 8021q: adding VLAN 0 to HW filter on device bond0
[  387.048668][T12172] 8021q: adding VLAN 0 to HW filter on device team0
[  387.084316][ T3449] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.091559][ T3449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  387.146482][ T3449] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.153755][ T3449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  387.328157][T12172] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  387.371369][T12326] loop4: detected capacity change from 0 to 32768
[  387.484975][T12326] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  387.716065][T12326] XFS (loop4): Ending clean mount
[  388.012422][T12172] 8021q: adding VLAN 0 to HW filter on device batadv0
[  388.039770][ T9899] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  388.151464][T12350] loop1: detected capacity change from 0 to 32768
[  388.226991][T12350] (syz.1.2311,12350,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  388.305944][T12350] (syz.1.2311,12350,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  388.476656][T12350] JBD2: Ignoring recovery information on journal
[  388.697233][T12350] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  389.382247][T12172] veth0_vlan: entered promiscuous mode
[  389.422206][T12172] veth1_vlan: entered promiscuous mode
[  389.538277][T12172] veth0_macvtap: entered promiscuous mode
[  389.563954][T12172] veth1_macvtap: entered promiscuous mode
[  389.649444][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  389.667630][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.698552][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  389.730006][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.753803][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  389.786522][T12350] syz.1.2311 (12350) used greatest stack depth: 18864 bytes left
[  389.795115][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.816227][T12172] batman_adv: batadv0: Interface activated: batadv_slave_0
[  389.858914][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  389.890859][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.906559][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  389.930584][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.945870][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  389.968122][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  389.985134][T12172] batman_adv: batadv0: Interface activated: batadv_slave_1
[  390.074955][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  390.092766][T12172] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  390.118812][T12172] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  390.136856][T12172] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  390.173137][T12172] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  390.403808][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  390.437599][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.504741][   T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  390.522904][   T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  390.808458][T12435] program syz.5.2251 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  392.756026][T12495] IPv6: NLM_F_CREATE should be specified when creating new route
[  392.770980][T12495] netlink: 'syz.4.2346': attribute type 1 has an invalid length.
[  393.030712][T12502] tap0: tun_chr_ioctl cmd 1074025677
[  393.039500][T12502] tap0: linktype set to 778
[  393.085925][T12482] loop1: detected capacity change from 0 to 32768
[  393.426074][T12511] ieee802154 phy0 wpan0: encryption failed: -22
[  393.629763][T12507] loop5: detected capacity change from 0 to 8192
[  393.715943][T12507] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  393.752854][T12528] input: syz1 as /devices/virtual/input/input41
[  393.780513][T12507] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  393.837153][T12507] REISERFS (device loop5): using ordered data mode
[  393.844005][T12507] reiserfs: using flush barriers
[  393.906803][T12507] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  394.011494][T12507] REISERFS (device loop5): checking transaction log (loop5)
[  394.056693][T12532] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2359'.
[  394.099854][T12532] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2359'.
[  394.160415][T12535] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2360'.
[  394.387086][T12507] REISERFS (device loop5): Using tea hash to sort names
[  394.414657][T12507] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  394.787783][T12542] loop1: detected capacity change from 0 to 8192
[  394.831573][T12542] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  394.917209][T12542] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  395.005082][T12542] REISERFS (device loop1): using ordered data mode
[  395.012088][T12542] reiserfs: using flush barriers
[  395.033739][T12542] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  395.130079][T12542] REISERFS (device loop1): checking transaction log (loop1)
[  395.529502][T12542] REISERFS (device loop1): Using tea hash to sort names
[  395.571380][T12542] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  396.236705][  T967] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  396.459013][  T967] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  396.479776][  T967] usb 5-1: config 0 has no interfaces?
[  396.485363][  T967] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  396.545226][  T967] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.578359][  T967] usb 5-1: config 0 descriptor??
[  396.914790][  T967] usb 5-1: USB disconnect, device number 11
[  398.881413][T12645] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  398.951112][T12623] loop4: detected capacity change from 0 to 40427
[  398.984048][T12623] F2FS-fs (loop4): invalid crc value
[  399.004147][T12623] F2FS-fs (loop4): Found nat_bits in checkpoint
[  399.215667][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  399.215683][   T28] audit: type=1326 audit(2000000043.330:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12653 comm="syz.3.2396" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc66999c799 code=0x0
[  399.258014][T12623] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  399.374211][T12647] f2fs_ckpt-7:4: attempt to access beyond end of device
[  399.374211][T12647] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  399.419124][T12647] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  400.460646][T12668] loop1: detected capacity change from 0 to 32768
[  400.471089][T12679] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿÿ
[  400.496626][T12668] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.2402 (12668)
[  400.550824][T12668] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  400.588507][T12668] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  400.634030][T12668] BTRFS info (device loop1): enabling auto defrag
[  400.663366][T12668] BTRFS info (device loop1): use no compression
[  400.695230][T12668] BTRFS info (device loop1): max_inline at 4096
[  400.739047][T12668] BTRFS info (device loop1): using free space tree
[  400.917151][T12668] BTRFS info (device loop1): enabling ssd optimizations
[  400.946482][T12668] BTRFS info (device loop1): auto enabling async discard
[  401.299218][T12711] loop4: detected capacity change from 0 to 1024
[  401.405959][T12711] hfsplus: bad catalog entry type
[  401.501567][ T5771] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  401.546010][   T34] hfsplus: b-tree write err: -5, ino 25
[  401.557236][   T34] hfsplus: b-tree write err: -5, ino 4
[  401.562881][   T34] hfsplus: b-tree write err: -5, ino 2
[  401.585840][   T34] hfsplus: b-tree write err: -5, ino 26
[  401.964182][T12681] loop5: detected capacity change from 0 to 40427
[  401.997862][T12681] F2FS-fs (loop5): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  402.046500][T12681] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  402.094344][T12681] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x35f7
[  402.139912][T12681] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x7ffff
[  402.176546][T12681] F2FS-fs (loop5): Image doesn't support compression
[  402.209175][T12681] F2FS-fs (loop5): invalid crc value
[  402.289922][T12681] F2FS-fs (loop5): Found nat_bits in checkpoint
[  402.570478][T12681] F2FS-fs (loop5): Start checkpoint disabled!
[  402.611400][T12681] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  402.634705][T12681] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  402.790718][T12681] syz.5.2407: attempt to access beyond end of device
[  402.790718][T12681] loop5: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  402.865288][T12681] F2FS-fs (loop5): inject checkpoint error in f2fs_balance_fs of f2fs_write_single_data_page+0x105a/0x1a00
[  402.905390][T12681] syz.5.2407: attempt to access beyond end of device
[  402.905390][T12681] loop5: rw=2049, sector=53256, nr_sectors = 8 limit=40427
[  402.934813][T12737] loop1: detected capacity change from 0 to 128
[  402.974155][T12717] loop4: detected capacity change from 0 to 32768
[  402.998871][T12681] F2FS-fs (loop5): Stopped filesystem due to reason: 1
[  403.006079][T12681] syz.5.2407: attempt to access beyond end of device
[  403.006079][T12681] loop5: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  403.032387][T12717] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  403.052411][T12717] JBD2: Ignoring recovery information on journal
[  403.167112][T12717] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  403.476882][T12749] (syz.4.2416,12749,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  403.761514][ T9899] ocfs2: Unmounting device (7,4) on (node local)
[  403.993592][T12756] batadv0: entered promiscuous mode
[  404.011010][T12756] macsec2: entered allmulticast mode
[  404.020912][T12756] batadv0: entered allmulticast mode
[  404.072495][T12756] batadv0: left allmulticast mode
[  404.082291][T12756] batadv0: left promiscuous mode
[  404.239635][T12760] loop5: detected capacity change from 0 to 128
[  404.356938][T12760] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  404.382936][T12760] hpfs: filesystem error: improperly stopped
[  404.390831][T12760] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  404.404477][T12760] hpfs: You really don't want any checks? You are crazy...
[  404.423457][T12760] hpfs: hpfs_map_sector(): read error
[  404.432003][T12760] hpfs: code page support is disabled
[  404.447420][T12760] hpfs: hpfs_map_4sectors(): unaligned read
[  404.453930][T12760] hpfs: hpfs_map_4sectors(): unaligned read
[  404.460603][T12760] hpfs: filesystem error: unable to find root dir
[  404.701595][T12773] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2433'.
[  406.306543][    T8] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  406.516495][    T8] usb 2-1: Using ep0 maxpacket: 16
[  406.525354][    T8] usb 2-1: unable to get BOS descriptor or descriptor too short
[  406.543982][    T8] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  406.563472][    T8] usb 2-1: config 1 interface 0 altsetting 127 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  406.579211][    T8] usb 2-1: config 1 interface 0 has no altsetting 0
[  406.598257][    T8] usb 2-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice= 0.40
[  406.613301][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  406.622967][    T8] usb 2-1: Product: syz
[  406.632568][    T8] usb 2-1: Manufacturer: syz
[  406.639250][    T8] usb 2-1: SerialNumber: syz
[  406.646679][T12768] Bluetooth: hci0: command 0x0406 tx timeout
[  406.656765][  T967] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  406.684301][    T8] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input42
[  406.876555][  T967] usb 6-1: Using ep0 maxpacket: 16
[  406.902528][  T967] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[  406.913641][  T967] usb 6-1: config 0 has no interface number 0
[  406.915399][ T5123] bcm5974 2-1:1.0: could not read from device
[  406.931975][  T967] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  406.953769][  T967] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  406.972216][    T8] bcm5974 2-1:1.0: could not read from device
[  406.988588][  T967] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  407.001885][  T967] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  407.012898][  T967] usb 6-1: Product: syz
[  407.019324][ T5123] bcm5974 2-1:1.0: could not read from device
[  407.026724][  T967] usb 6-1: SerialNumber: syz
[  407.046828][    T8] input: failed to attach handler mousedev to device input42, error: -5
[  407.057656][  T967] usb 6-1: config 0 descriptor??
[  407.070073][  T967] cm109 6-1:0.8: invalid payload size 0, expected 4
[  407.082697][    T8] usb 2-1: USB disconnect, device number 22
[  407.087452][ T5123] bcm5974 2-1:1.0: could not read from device
[  407.117008][  T967] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.8/input/input43
[  407.149737][ T5772] bcm5974 2-1:1.0: could not read from device
[  407.164514][T12838] fuse: Bad value for 'fd'
[  407.319427][    C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  407.322548][   T23] usb 6-1: USB disconnect, device number 2
[  407.326455][    C0] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  407.355043][   T23] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  407.944585][T12854] loop1: detected capacity change from 0 to 512
[  407.963849][T12854] EXT4-fs: Ignoring removed nobh option
[  408.006342][T12854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.027741][T12854] ext4 filesystem being mounted at /597/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  408.176621][   T28] audit: type=1800 audit(2000000052.290:88): pid=12854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2465" name="file1" dev="loop1" ino=15 res=0 errno=0
[  408.434733][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.039969][    T9] kernel write not supported for file /cpu/0/msr (pid: 9 comm: kworker/0:1)
[  409.230420][T12860] loop5: detected capacity change from 0 to 32768
[  409.301397][T12860] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  409.541089][T12860] XFS (loop5): Ending clean mount
[  409.607500][T12860] XFS (loop5): Quotacheck needed: Please wait.
[  409.716149][T12870] loop4: detected capacity change from 0 to 32768
[  409.812153][T12860] XFS (loop5): Quotacheck: Done.
[  410.180468][T12172] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  410.407084][T12906] loop1: detected capacity change from 0 to 32768
[  410.435454][T12906] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.2478 (12906)
[  410.527474][T12906] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  410.556618][T12906] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  410.596800][T12906] BTRFS info (device loop1): using free space tree
[  410.764108][T12906] BTRFS info (device loop1): enabling ssd optimizations
[  410.771322][T12906] BTRFS info (device loop1): auto enabling async discard
[  411.351913][ T5771] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  411.418651][T12964] loop4: detected capacity change from 0 to 256
[  411.477774][T12964] exfat: Deprecated parameter 'utf8'
[  411.483264][T12964] exfat: Deprecated parameter 'namecase'
[  411.491296][T12964] exfat: Deprecated parameter 'namecase'
[  411.498374][T12964] exfat: Deprecated parameter 'utf8'
[  411.593287][T12964] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  411.739280][ T5780] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 10 /dev/loop1 scanned by udevd (5780)
[  412.096020][T12978] loop5: detected capacity change from 0 to 256
[  412.142093][T12978] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  412.216617][T12978] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  412.358370][T12978] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  412.842977][T12998] macsec0: entered promiscuous mode
[  413.498668][T13022] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2507'.
[  413.996836][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  414.193566][    T9] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  414.210985][    T9] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  414.247303][    T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  414.276498][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  414.307536][    T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  414.342735][    T9] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  414.362438][    T9] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  414.390301][    T9] usb 6-1: Product: syz
[  414.394544][    T9] usb 6-1: Manufacturer: syz
[  414.443334][    T9] cdc_wdm 6-1:1.0: skipping garbage
[  414.456516][    T9] cdc_wdm 6-1:1.0: skipping garbage
[  414.469092][    T9] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  414.495617][    T9] cdc_wdm 6-1:1.0: Unknown control protocol
[  415.075902][    C0] cdc_wdm 6-1:1.0: nonzero urb status received: -EPIPE
[  415.279856][    T9] usb 6-1: USB disconnect, device number 3
[  415.990963][T13054] loop4: detected capacity change from 0 to 32768
[  416.108328][T13054] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  416.415909][T13054] XFS (loop4): Ending clean mount
[  416.433477][T13054] XFS (loop4): Quotacheck needed: Please wait.
[  416.523966][T13090] loop5: detected capacity change from 0 to 1764
[  416.616869][T13054] XFS (loop4): Quotacheck: Done.
[  416.636980][ T5872] blk_print_req_error: 11 callbacks suppressed
[  416.636999][ T5872] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  416.762162][ T9899] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  417.965524][T13114] netlink: 'syz.5.2526': attribute type 10 has an invalid length.
[  417.993981][T13114] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2526'.
[  418.054709][T13114] ipvlan2: entered promiscuous mode
[  418.084220][T13114] bridge0: port 3(ipvlan2) entered blocking state
[  418.104264][T13111] loop4: detected capacity change from 0 to 8192
[  418.136728][T13114] bridge0: port 3(ipvlan2) entered disabled state
[  418.148334][T13111] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  418.167089][T13114] ipvlan2: entered allmulticast mode
[  418.201950][T13114] bridge0: entered allmulticast mode
[  418.206928][T13111] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  418.233940][T13114] ipvlan2: left allmulticast mode
[  418.253051][T13111] REISERFS (device loop4): using ordered data mode
[  418.276520][T13111] reiserfs: using flush barriers
[  418.281621][T13114] bridge0: left allmulticast mode
[  418.296983][T13111] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  418.327883][T13111] REISERFS (device loop4): checking transaction log (loop4)
[  418.391742][T13119] netlink: 'syz.3.2527': attribute type 15 has an invalid length.
[  418.599219][T13111] REISERFS (device loop4): Using tea hash to sort names
[  418.606994][T13111] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  418.889332][T13132] loop5: detected capacity change from 0 to 1024
[  419.095995][   T49] hfsplus: b-tree write err: -5, ino 25
[  419.108765][   T49] hfsplus: b-tree write err: -5, ino 4
[  419.134840][   T49] hfsplus: b-tree write err: -5, ino 2
[  420.130746][T13160] syzkaller0: tun_chr_ioctl cmd 2147767521
[  420.778124][T13180] batadv_slave_1: entered allmulticast mode
[  420.788040][T13180] batadv_slave_1: left allmulticast mode
[  421.714057][T13210] loop1: detected capacity change from 0 to 2048
[  421.784951][T13210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.839310][T13210] ext4 filesystem being mounted at /616/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.985986][T13198] loop4: detected capacity change from 0 to 32768
[  421.991666][T13210] EXT4-fs (loop1): shut down requested (2)
[  422.128266][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.172044][T13198] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  422.206808][T13230] 9pnet_fd: p9_fd_create_tcp (13230): problem binding to privport
[  422.372195][T13198] XFS (loop4): Ending clean mount
[  422.428707][T13222] loop5: detected capacity change from 0 to 8192
[  422.458073][T13222] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  422.527299][T13222] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  422.580595][T13222] REISERFS (device loop5): using ordered data mode
[  422.587491][T13222] reiserfs: using flush barriers
[  422.599149][T13222] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  422.616721][T13222] REISERFS (device loop5): checking transaction log (loop5)
[  422.710974][ T9899] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  422.989752][T13222] REISERFS (device loop5): Using tea hash to sort names
[  423.007347][T13222] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  423.576632][  T967] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  423.760850][  T967] usb 2-1: Using ep0 maxpacket: 8
[  423.801341][  T967] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  423.817162][  T967] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.825246][  T967] usb 2-1: Product: syz
[  423.856509][  T967] usb 2-1: Manufacturer: syz
[  423.861288][  T967] usb 2-1: SerialNumber: syz
[  423.882360][  T967] usb 2-1: config 0 descriptor??
[  423.909504][  T967] gspca_main: se401-2.14.0 probing 047d:5003
[  424.542849][  T967] usb 2-1: reset high-speed USB device number 23 using dummy_hcd
[  424.636051][T13281] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2586'.
[  424.662896][T13281] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2586'.
[  425.212931][T13295] netlink: 'syz.4.2591': attribute type 10 has an invalid length.
[  425.226670][T13295] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2591'.
[  425.244188][  T967] gspca_se401: write req failed req 0x57 val 0x00 error -71
[  425.255051][  T967] se401: probe of 2-1:0.0 failed with error -71
[  425.271905][  T967] usb 2-1: USB disconnect, device number 23
[  425.299246][T13295] ipvlan2: entered promiscuous mode
[  425.316293][T13295] bridge0: port 4(ipvlan2) entered blocking state
[  425.327583][T13295] bridge0: port 4(ipvlan2) entered disabled state
[  425.334520][T13295] ipvlan2: entered allmulticast mode
[  425.341933][T13295] bridge0: entered allmulticast mode
[  425.352525][T13295] ipvlan2: left allmulticast mode
[  425.368445][T13295] bridge0: left allmulticast mode
[  426.159149][T13314] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.194823][T13314] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.562612][T13319] loop5: detected capacity change from 0 to 4096
[  426.601736][T13319] ntfs3: loop5: Different NTFS sector size (2048) and media sector size (512).
[  426.614458][T13323] netem: change failed
[  426.821779][  T967] kernel read not supported for file /dsp (pid: 967 comm: kworker/0:2)
[  427.824682][T13343] loop4: detected capacity change from 0 to 512
[  428.124519][T13349] IPv6: NLM_F_CREATE should be specified when creating new route
[  428.341474][T13333] loop1: detected capacity change from 0 to 40427
[  428.376906][T13333] F2FS-fs (loop1): invalid crc value
[  428.399911][T13333] F2FS-fs (loop1): Found nat_bits in checkpoint
[  428.537911][T13358] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2623'.
[  428.596644][T13333] F2FS-fs (loop1): Start checkpoint disabled!
[  428.627844][T13333] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  428.812988][T13333] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[  429.385107][T13365] loop6: detected capacity change from 0 to 524287999
[  430.163062][T13382] loop1: detected capacity change from 0 to 128
[  430.217298][T13382] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  430.269752][T13382] hpfs: filesystem error: improperly stopped
[  430.306540][T13382] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  430.314878][T13382] hpfs: You really don't want any checks? You are crazy...
[  430.353262][T13382] hpfs: hpfs_map_sector(): read error
[  430.367092][T13382] hpfs: code page support is disabled
[  430.392278][T13382] hpfs: hpfs_map_4sectors(): unaligned read
[  430.428399][T13382] hpfs: hpfs_map_4sectors(): unaligned read
[  430.434389][T13382] hpfs: filesystem error: unable to find root dir
[  430.590740][T13373] loop5: detected capacity change from 0 to 32768
[  430.656089][T13373] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  430.758252][T13373] XFS (loop5): Ending clean mount
[  430.787995][T13373] XFS (loop5): Quotacheck needed: Please wait.
[  430.897718][T13373] XFS (loop5): Quotacheck: Done.
[  431.135343][T12172] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  431.594956][T13409] loop4: detected capacity change from 0 to 8192
[  431.621467][T13409] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  431.636244][T13409] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  431.685589][T13409] REISERFS (device loop4): using ordered data mode
[  431.740953][T13409] reiserfs: using flush barriers
[  431.785129][T13409] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  431.831094][T13409] REISERFS (device loop4): checking transaction log (loop4)
[  432.030400][T13409] REISERFS (device loop4): Using tea hash to sort names
[  432.048857][T13409] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  432.817991][T13421] loop5: detected capacity change from 0 to 64
[  433.000251][T13421] hfs: request for non-existent node 131072 in B*Tree
[  433.066595][T13421] hfs: request for non-existent node 131072 in B*Tree
[  433.851887][T13449] fuse: Bad value for 'fd'
[  434.008058][T13454] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2661'.
[  434.363972][T13435] loop4: detected capacity change from 0 to 40427
[  434.420007][T13435] F2FS-fs (loop4): invalid crc value
[  434.449594][T13435] F2FS-fs (loop4): Found nat_bits in checkpoint
[  434.556546][    T9] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  434.618833][T13435] F2FS-fs (loop4): Start checkpoint disabled!
[  434.651958][T13435] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  434.770804][T13435] syz.4.2646: attempt to access beyond end of device
[  434.770804][T13435] loop4: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  434.810582][    T9] usb 6-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  434.819805][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.840678][    T9] usb 6-1: Product: syz
[  434.866500][    T9] usb 6-1: Manufacturer: syz
[  434.871186][    T9] usb 6-1: SerialNumber: syz
[  434.898412][    T9] usb 6-1: config 0 descriptor??
[  434.921738][    T9] gspca_main: sq905c-2.14.0 probing 2770:9052
[  434.940179][T13466] loop1: detected capacity change from 0 to 32768
[  435.039237][T13466] JBD2: Ignoring recovery information on journal
[  435.096300][   T11] kworker/u4:0: attempt to access beyond end of device
[  435.096300][   T11] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  435.146784][   T11] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  435.176858][   T11] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  435.191708][T13466] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  435.394431][   T28] audit: type=1800 audit(2000000079.510:89): pid=13466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2664" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  435.556046][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  435.757125][  T967] usb 6-1: USB disconnect, device number 4
[  436.685495][T13482] loop4: detected capacity change from 0 to 32768
[  436.774049][T13482] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  436.892510][T13482] XFS (loop4): Ending clean mount
[  436.921183][T13482] XFS (loop4): Quotacheck needed: Please wait.
[  437.082939][T13482] XFS (loop4): Quotacheck: Done.
[  437.202567][ T9899] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  437.213482][T13515] loop1: detected capacity change from 0 to 2048
[  437.248920][T13515] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  437.311313][T13515] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  437.389650][   T28] audit: type=1800 audit(2000000081.510:90): pid=13515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2682" name=E5 dev="loop1" ino=1367 res=0 errno=0
[  437.544806][T13498] loop5: detected capacity change from 0 to 32768
[  437.620748][   T28] audit: type=1800 audit(2000000081.740:91): pid=13498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2678" name="file2" dev="loop5" ino=5 res=0 errno=0
[  437.856702][    T9] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  438.072449][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.084037][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.100217][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  438.109475][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.120465][    T9] usb 2-1: config 0 descriptor??
[  438.571526][    T9] logitech-djreceiver 0003:046D:C71F.0012: unbalanced delimiter at end of report description
[  438.607406][    T9] logitech-djreceiver 0003:046D:C71F.0012: logi_dj_probe: parse failed
[  438.617976][    T9] logitech-djreceiver: probe of 0003:046D:C71F.0012 failed with error -22
[  438.855225][   T23] usb 2-1: USB disconnect, device number 24
[  439.571973][T13563] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2704'.
[  439.810701][T13571] loop5: detected capacity change from 0 to 164
[  440.204175][T13579] loop1: detected capacity change from 0 to 64
[  440.334024][ T5771] hfs: node 4:3 still has 1 user(s)!
[  440.421439][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  440.428118][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  440.626649][T13588] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.661757][T13588] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.696622][T13588] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.749485][T13588] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.776455][T13588] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.812961][T13588] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.823867][T13588] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.841604][T13588] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.889203][T13588] batadv_slave_0: entered promiscuous mode
[  440.908999][T13588] batman_adv: batadv0: Adding interface: macsec1
[  440.934073][T13594] loop1: detected capacity change from 0 to 512
[  440.940688][T13588] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  440.976260][T13588] batman_adv: batadv0: Interface activated: macsec1
[  440.994825][T13594] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  441.017397][T13594] EXT4-fs (loop1): orphan cleanup on readonly fs
[  441.034541][T13594] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.2718: Block bitmap for bg 0 marked uninitialized
[  441.130260][T13594] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6651: Corrupt filesystem
[  441.152440][T13594] EXT4-fs (loop1): 1 orphan inode deleted
[  441.160037][T13594] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  441.192711][T13594] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  441.205016][T13594] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  441.226196][T13594] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.2718: Block bitmap for bg 0 marked uninitialized
[  441.271678][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.632907][T13614] trusted_key: encrypted_key: keyword 'uew' not recognized
[  441.751435][T13618] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2729'.
[  443.048224][T13650] loop1: detected capacity change from 0 to 1024
[  443.101342][T13650] hfsplus: bad catalog entry type
[  443.222243][   T11] hfsplus: b-tree write err: -5, ino 25
[  443.241821][   T11] hfsplus: b-tree write err: -5, ino 4
[  443.266587][   T11] hfsplus: b-tree write err: -5, ino 2
[  443.278400][   T11] hfsplus: b-tree write err: -5, ino 26
[  443.475841][T13639] loop4: detected capacity change from 0 to 40427
[  443.494579][T13639] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  443.532426][T13639] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  443.552139][T13639] F2FS-fs (loop4): invalid crc value
[  443.594527][T13639] F2FS-fs (loop4): Found nat_bits in checkpoint
[  443.860865][T13639] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  443.886663][T13639] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  443.963659][T13670] loop1: detected capacity change from 0 to 4096
[  444.026518][T13670] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[  444.056799][T13639] syz.4.2738: attempt to access beyond end of device
[  444.056799][T13639] loop4: rw=2051, sector=36912, nr_sectors = 8152 limit=40427
[  444.099665][T13639] syz.4.2738: attempt to access beyond end of device
[  444.099665][T13639] loop4: rw=2051, sector=45096, nr_sectors = 20440 limit=40427
[  444.178220][T13639] F2FS-fs (loop4): Issue discard(4614, 4614, 1019) failed, ret: -5
[  444.186261][T13639] F2FS-fs (loop4): Issue discard(5637, 5637, 2555) failed, ret: -5
[  444.322075][T13674] syz.4.2738: attempt to access beyond end of device
[  444.322075][T13674] loop4: rw=2051, sector=65536, nr_sectors = 65536 limit=40427
[  444.376533][T13674] F2FS-fs (loop4): Issue discard(8192, 8192, 8192) failed, ret: -5
[  444.777473][T13668] loop5: detected capacity change from 0 to 32768
[  444.854142][T13668] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  445.054005][T13668] XFS (loop5): Ending clean mount
[  445.080908][T13668] XFS (loop5): Quotacheck needed: Please wait.
[  445.246547][T13668] XFS (loop5): Quotacheck: Done.
[  445.646147][T12172] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  445.689498][T13708] loop1: detected capacity change from 0 to 64
[  445.824531][T13711] netlink: 201392 bytes leftover after parsing attributes in process `syz.4.2766'.
[  446.227512][T13719] loop4: detected capacity change from 0 to 64
[  446.313164][   T28] audit: type=1800 audit(2000000090.430:92): pid=13719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2770" name="file2" dev="loop4" ino=6 res=0 errno=0
[  446.817815][T13735] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2775'.
[  446.994340][T13739] loop5: detected capacity change from 0 to 2048
[  447.030705][T13739] EXT4-fs: Ignoring removed oldalloc option
[  447.078110][T13739] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002]
[  447.110604][T13739] System zones: 0-7
[  447.138167][T13739] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.225021][T13739] EXT4-fs error (device loop5): ext4_find_extent:936: inode #2: comm syz.5.2777: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  447.259584][T13739] EXT4-fs (loop5): Remounting filesystem read-only
[  447.396264][T12172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.601701][T13730] loop1: detected capacity change from 0 to 32768
[  447.676767][T13730] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  447.774020][T13730] XFS (loop1): Ending clean mount
[  447.786288][T13730] XFS (loop1): Quotacheck needed: Please wait.
[  447.919008][T13730] XFS (loop1): Quotacheck: Done.
[  448.040395][T13743] loop4: detected capacity change from 0 to 32768
[  448.164244][ T5771] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  448.720960][T13750] loop5: detected capacity change from 0 to 32768
[  448.748924][T13764] loop1: detected capacity change from 0 to 164
[  448.754116][T13750] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.2781 (13750)
[  448.782778][T13764] Unable to read rock-ridge attributes
[  448.834355][T13764] Unable to read rock-ridge attributes
[  448.834501][T13750] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  448.909767][T13750] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  448.937975][T13750] BTRFS info (device loop5): allowing degraded mounts
[  448.944873][T13750] BTRFS info (device loop5): enabling ssd optimizations
[  448.991071][T13750] BTRFS info (device loop5): allowing degraded mounts
[  449.016832][T13750] BTRFS info (device loop5): using free space tree
[  449.156095][T13784] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  449.168997][T13784] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  449.266818][ T5839] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  449.445224][T12172] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  449.466688][ T5839] usb 5-1: Using ep0 maxpacket: 32
[  449.481514][ T5839] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  449.499726][ T5839] usb 5-1: config 0 has no interface number 0
[  449.514230][ T5839] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  449.526345][ T5839] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.555705][ T5839] usb 5-1: Product: syz
[  449.579910][ T5839] usb 5-1: Manufacturer: syz
[  449.584693][ T5839] usb 5-1: SerialNumber: syz
[  449.601180][ T5839] usb 5-1: config 0 descriptor??
[  449.638809][ T5839] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  449.745616][T13794] loop1: detected capacity change from 0 to 256
[  449.771392][T13794] exfat: Deprecated parameter 'utf8'
[  449.784860][T13794] exfat: Deprecated parameter 'namecase'
[  449.829968][ T5839] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  449.839837][T13794] exfat: Deprecated parameter 'namecase'
[  449.845570][T13794] exfat: Deprecated parameter 'utf8'
[  449.890046][T13794] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  449.898984][ T5839] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  450.257581][    C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  450.287735][ T5839] usb 5-1: USB disconnect, device number 12
[  450.339501][T13797] loop5: detected capacity change from 0 to 1024
[  450.371774][ T5839] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  450.436763][ T5839] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  450.459559][ T5839] quatech2 5-1:0.51: device disconnected
[  450.475679][   T28] audit: type=1800 audit(2000000094.590:93): pid=13797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2790" name="file1" dev="loop5" ino=2 res=0 errno=0
[  450.852419][T13804] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  451.071542][T13813] loop1: detected capacity change from 0 to 16
[  451.097530][T13813] erofs: (device loop1): mounted with root inode @ nid 36.
[  452.237744][T13844] loop5: detected capacity change from 0 to 1024
[  452.338513][   T49] hfsplus: b-tree write err: -5, ino 25
[  452.344377][   T49] hfsplus: b-tree write err: -5, ino 4
[  452.383557][   T49] hfsplus: b-tree write err: -5, ino 2
[  452.528416][T13851] loop5: detected capacity change from 0 to 128
[  452.546037][T13851] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  452.601510][T13851] hpfs: filesystem error: improperly stopped
[  452.634446][T13851] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  452.654349][T13851] hpfs: You really don't want any checks? You are crazy...
[  452.693195][T13851] hpfs: hpfs_map_sector(): read error
[  452.725013][T13851] hpfs: code page support is disabled
[  452.741738][T13851] hpfs: hpfs_map_4sectors(): unaligned read
[  452.759888][T13851] hpfs: hpfs_map_4sectors(): unaligned read
[  452.794562][T13851] hpfs: filesystem error: unable to find root dir
[  452.912239][T13861] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2820'.
[  453.180796][T13861] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2820'.
[  453.469010][T13861] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2820'.
[  453.750673][T13889] ªªªªªª: renamed from vlan0 (while UP)
[  454.185875][T13903] raw_sendmsg: syz.3.2837 forgot to set AF_INET. Fix it!
[  454.286212][T13905] loop4: detected capacity change from 0 to 512
[  454.311808][T13881] loop1: detected capacity change from 0 to 32768
[  454.331567][T13905] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  454.398464][T13881] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  454.413245][T13905] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  454.422641][T13905] System zones: 1-12
[  454.446701][T13905] EXT4-fs (loop4): 1 truncate cleaned up
[  454.469778][T13905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.588603][T13881] XFS (loop1): Ending clean mount
[  454.689736][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.785679][ T5771] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  456.043812][T13952] loop4: detected capacity change from 0 to 256
[  456.219651][T13952] exfat: Deprecated parameter 'utf8'
[  456.261095][T13952] exfat: Deprecated parameter 'namecase'
[  456.299365][T13952] exfat: Deprecated parameter 'namecase'
[  456.357718][T13952] exfat: Deprecated parameter 'utf8'
[  456.472763][T13952] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[  457.118789][ T5813] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  457.253172][T13953] loop5: detected capacity change from 0 to 131072
[  457.273884][T13953] F2FS-fs (loop5): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  457.282576][T13953] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  457.292547][T13953] F2FS-fs (loop5): invalid crc value
[  457.326548][ T5813] usb 2-1: Using ep0 maxpacket: 16
[  457.349661][ T5813] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  457.369229][T13953] F2FS-fs (loop5): Found nat_bits in checkpoint
[  457.396671][ T5813] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  457.431328][T13953] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  457.438527][T13953] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  457.456665][ T5813] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  457.465850][ T5813] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.525384][ T5813] usb 2-1: Product: syz
[  457.541886][ T5813] usb 2-1: Manufacturer: syz
[  457.582026][ T5813] usb 2-1: SerialNumber: syz
[  457.876064][ T5813] usb 2-1: 0:2 : does not exist
[  457.933653][ T5813] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  458.028464][ T5813] usb 2-1: USB disconnect, device number 25
[  458.129369][ T5780] udevd[5780]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  458.328700][T13978] loop4: detected capacity change from 0 to 8192
[  458.363748][T13978] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  458.386812][T13978] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  458.396138][T13978] REISERFS (device loop4): using ordered data mode
[  458.421891][T13978] reiserfs: using flush barriers
[  458.462510][T13978] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  458.479374][T13978] REISERFS (device loop4): checking transaction log (loop4)
[  458.722592][T13978] REISERFS (device loop4): Using tea hash to sort names
[  458.764398][T13978] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  459.876563][ T5813] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  460.087335][ T5813] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  460.097739][ T5813] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  460.108904][ T5813] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  460.125949][ T5813] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  460.146859][ T5813] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  460.155039][ T5813] usb 6-1: Product: syz
[  460.159792][ T5813] usb 6-1: Manufacturer: syz
[  460.164445][ T5813] usb 6-1: SerialNumber: syz
[  460.205944][T14022] loop1: detected capacity change from 0 to 2048
[  460.241979][T14022] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  460.419897][ T5813] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  460.649153][ T5813] usb 6-1: USB disconnect, device number 5
[  460.671508][ T5813] usblp0: removed
[  461.137889][T14044] loop5: detected capacity change from 0 to 7
[  461.247482][T14044] support for the xor transformation has been removed.
[  461.378457][T14050] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  461.464148][T14054] loop1: detected capacity change from 0 to 512
[  461.978759][T14066] loop4: detected capacity change from 0 to 764
[  462.963481][T14076] loop1: detected capacity change from 0 to 32768
[  462.978592][T14075] loop5: detected capacity change from 0 to 32768
[  463.057510][T14076] JBD2: Ignoring recovery information on journal
[  463.081870][T14075] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  463.191074][T14076] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  463.250718][T14075] XFS (loop5): Ending clean mount
[  463.293102][T14075] XFS (loop5): Quotacheck needed: Please wait.
[  463.478508][ T5771] ocfs2: Unmounting device (7,1) on (node local)
[  463.504896][T14075] XFS (loop5): Quotacheck: Done.
[  463.790364][T12172] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  463.819343][T14110] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2918'.
[  463.866786][T14110] netem: unknown loss type 0
[  465.005304][T14137] loop5: detected capacity change from 0 to 512
[  465.069265][T14137] EXT4-fs error (device loop5): __ext4_iget:5071: inode #17: block 1803188595: comm syz.5.2930: invalid block
[  465.082141][T14137] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2930: couldn't read orphan inode 17 (err -117)
[  465.119418][T14137] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  465.278719][T14137] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz.5.2930: path /: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.417923][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.438132][    C1] vkms_vblank_simulate: vblank timer overrun
[  465.507737][T12172] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm syz-executor: bg 0: block 7: invalid block bitmap
[  465.573107][T12172] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6651: Corrupt filesystem
[  465.642676][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.749940][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.810588][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.870743][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.898828][T14160] loop1: detected capacity change from 0 to 256
[  465.911360][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  465.931298][T14160] exfat: Deprecated parameter 'namecase'
[  465.958312][T14160] exfat: Deprecated parameter 'namecase'
[  465.985513][T12172] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /126/bus: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  466.015330][T14162] loop4: detected capacity change from 0 to 512
[  466.044154][T14162] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  466.050382][T14160] exFAT-fs (loop1): failed to load upcase table (idx : 0x00000c00, chksum : 0x54b6a122, utbl_chksum : 0xe619d30d)
[  466.102263][T14162] EXT4-fs (loop4): orphan cleanup on readonly fs
[  466.142898][T14162] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:512: comm syz.4.2942: Block bitmap for bg 0 marked uninitialized
[  466.186617][T14162] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6651: Corrupt filesystem
[  466.218912][T14162] EXT4-fs (loop4): 1 orphan inode deleted
[  466.248679][T14162] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  466.324207][T14162] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  466.364684][T14162] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  466.405759][T14162] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:512: comm syz.4.2942: Block bitmap for bg 0 marked uninitialized
[  466.473109][T14162] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:512: comm syz.4.2942: Block bitmap for bg 0 marked uninitialized
[  466.527419][T14162] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:512: comm syz.4.2942: Block bitmap for bg 0 marked uninitialized
[  466.574277][T14162] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:512: comm syz.4.2942: Block bitmap for bg 0 marked uninitialized
[  466.740388][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.960197][T14183] netlink: 'syz.3.2951': attribute type 5 has an invalid length.
[  466.968651][T14183] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2951'.
[  468.099885][T14195] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  468.110709][T14195] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  468.270290][T12172] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.472619][ T3449] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.586673][ T5839] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  468.671370][T14206] loop1: detected capacity change from 0 to 4096
[  468.680749][ T3449] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.763405][T14207] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  468.786982][ T5839] usb 5-1: Using ep0 maxpacket: 32
[  468.822732][ T5839] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  468.867339][ T5839] usb 5-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  468.936459][ T5839] usb 5-1: config 0 interface 0 has no altsetting 0
[  468.967590][ T5839] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  468.971332][ T3449] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.998000][ T5839] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.036492][ T5839] usb 5-1: Product: syz
[  469.040743][ T5839] usb 5-1: Manufacturer: syz
[  469.045382][ T5839] usb 5-1: SerialNumber: syz
[  469.071799][ T5839] usb 5-1: config 0 descriptor??
[  469.203295][T14212] loop1: detected capacity change from 0 to 256
[  469.213500][ T3449] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.258691][T14211] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2964'.
[  469.305882][T14212] FAT-fs (loop1): Directory bread(block 64) failed
[  469.326949][T14212] FAT-fs (loop1): Directory bread(block 65) failed
[  469.345582][T14212] FAT-fs (loop1): Directory bread(block 66) failed
[  469.355802][T14212] FAT-fs (loop1): Directory bread(block 67) failed
[  469.363716][T14212] FAT-fs (loop1): Directory bread(block 68) failed
[  469.377340][T14212] FAT-fs (loop1): Directory bread(block 69) failed
[  469.385554][T14212] FAT-fs (loop1): Directory bread(block 70) failed
[  469.405431][T14212] FAT-fs (loop1): Directory bread(block 71) failed
[  469.419024][T14212] FAT-fs (loop1): Directory bread(block 72) failed
[  469.425736][T14212] FAT-fs (loop1): Directory bread(block 73) failed
[  469.521348][ T5839] gs_usb 5-1:0.0: Configuring for 1 interfaces
[  470.018617][ T5839] usb 5-1: USB disconnect, device number 13
[  470.052964][T12768] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  470.069771][T12768] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  470.084216][T12768] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  470.096843][T12768] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  470.106991][T12768] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  470.116686][T12768] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  471.547878][T14218] chnl_net:caif_netlink_parms(): no params data found
[  471.982114][T14218] bridge0: port 1(bridge_slave_0) entered blocking state
[  471.998102][T14218] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.012088][T14218] bridge_slave_0: entered allmulticast mode
[  472.042795][T14218] bridge_slave_0: entered promiscuous mode
[  472.089278][ T3449] hsr_slave_0: left promiscuous mode
[  472.117655][ T3449] hsr_slave_1: left promiscuous mode
[  472.150177][ T3449] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  472.168805][T12768] Bluetooth: hci1: command tx timeout
[  472.187211][ T3449] batman_adv: batadv0: Removing interface: batadv_slave_0
[  472.257779][ T3449] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.265292][ T3449] batman_adv: batadv0: Removing interface: batadv_slave_1
[  472.309855][ T3449] batman_adv: batadv0: Interface deactivated: macsec1
[  472.334473][ T3449] batman_adv: batadv0: Removing interface: macsec1
[  472.347523][ T3449] bridge_slave_1: left allmulticast mode
[  472.353255][ T3449] bridge_slave_1: left promiscuous mode
[  472.377096][ T3449] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.395770][ T3449] bridge_slave_0: left allmulticast mode
[  472.402218][ T3449] bridge_slave_0: left promiscuous mode
[  472.436654][ T3449] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.552384][ T3449] batadv_slave_0: left promiscuous mode
[  472.570120][T14289] loop4: detected capacity change from 0 to 4096
[  472.582755][ T3449] veth1_macvtap: left promiscuous mode
[  472.606703][ T3449] veth0_macvtap: left promiscuous mode
[  472.620631][T14289] EXT4-fs (loop4): Test dummy encryption mode enabled
[  472.631294][ T3449] veth1_vlan: left promiscuous mode
[  472.644859][ T3449] veth0_vlan: left promiscuous mode
[  472.650975][T14289] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  472.664082][T14289] System zones: 0-5
[  472.677936][T14289] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.705037][T14289] EXT4-fs (loop4): shut down requested (0)
[  473.016024][T14282] loop1: detected capacity change from 0 to 32768
[  473.057812][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.133224][T14282] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  473.383247][T14282] XFS (loop1): Ending clean mount
[  473.429135][T14282] XFS (loop1): Quotacheck needed: Please wait.
[  473.554774][T14282] XFS (loop1): Quotacheck: Done.
[  473.608760][   T28] audit: type=1800 audit(2000000117.730:94): pid=14282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2980" name="file2" dev="loop1" ino=4423 res=0 errno=0
[  473.720088][ T5771] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  474.266082][T12768] Bluetooth: hci1: command tx timeout
[  474.407514][ T3449] team0 (unregistering): Port device team_slave_1 removed
[  474.492615][ T3449] team0 (unregistering): Port device team_slave_0 removed
[  474.580583][ T3449] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  474.663520][ T3449] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  475.660447][ T3449] bond0 (unregistering): Released all slaves
[  475.842076][T14218] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.850883][T14218] bridge0: port 2(bridge_slave_1) entered disabled state
[  475.865788][T14218] bridge_slave_1: entered allmulticast mode
[  475.874892][T14218] bridge_slave_1: entered promiscuous mode
[  476.041072][  T967] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  476.070590][T14218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  476.123375][T14218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  476.276925][  T967] usb 2-1: Using ep0 maxpacket: 32
[  476.308290][  T967] usb 2-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  476.325043][T14218] team0: Port device team_slave_0 added
[  476.331544][  T967] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.336913][T12768] Bluetooth: hci1: command tx timeout
[  476.356856][  T967] usb 2-1: config 0 descriptor??
[  476.365963][  T967] gspca_main: sunplus-2.14.0 probing 041e:400b
[  476.415851][T14218] team0: Port device team_slave_1 added
[  476.636604][T14218] batman_adv: batadv0: Adding interface: batadv_slave_0
[  476.643655][T14218] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.714088][T14218] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  476.784410][T14218] batman_adv: batadv0: Adding interface: batadv_slave_1
[  476.809753][T14218] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  476.863182][T14218] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  477.083538][T14218] hsr_slave_0: entered promiscuous mode
[  477.147132][T14218] hsr_slave_1: entered promiscuous mode
[  477.202103][  T967] gspca_sunplus: reg_w_riv err -71
[  477.216612][  T967] sunplus: probe of 2-1:0.0 failed with error -71
[  477.237024][  T967] usb 2-1: USB disconnect, device number 26
[  477.671720][T14218] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  477.685476][T14218] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  477.726269][T14218] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  477.779182][  T967] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  477.781085][T14218] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  477.986977][  T967] usb 5-1: Using ep0 maxpacket: 32
[  478.020500][  T967] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  478.039910][  T967] usb 5-1: config 0 has no interface number 0
[  478.077019][  T967] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  478.097963][  T967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  478.106050][  T967] usb 5-1: Product: syz
[  478.120679][  T967] usb 5-1: Manufacturer: syz
[  478.157386][  T967] usb 5-1: SerialNumber: syz
[  478.166196][  T967] usb 5-1: config 0 descriptor??
[  478.171748][T14218] 8021q: adding VLAN 0 to HW filter on device bond0
[  478.190155][  T967] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  478.241071][T14218] 8021q: adding VLAN 0 to HW filter on device team0
[  478.308777][   T34] bridge0: port 1(bridge_slave_0) entered blocking state
[  478.316049][   T34] bridge0: port 1(bridge_slave_0) entered forwarding state
[  478.397344][   T34] bridge0: port 2(bridge_slave_1) entered blocking state
[  478.404567][   T34] bridge0: port 2(bridge_slave_1) entered forwarding state
[  478.419526][T12768] Bluetooth: hci1: command tx timeout
[  478.441443][  T967] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  478.456918][  T967] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  478.881033][    C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  478.902811][  T967] usb 5-1: USB disconnect, device number 14
[  478.929287][  T967] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  479.001769][  T967] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  479.053596][  T967] quatech2 5-1:0.51: device disconnected
[  479.120751][T14389] loop1: detected capacity change from 0 to 2048
[  479.149531][T14389] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  479.282719][T14218] 8021q: adding VLAN 0 to HW filter on device batadv0
[  479.924112][T14413] loop4: detected capacity change from 0 to 1024
[  480.219728][T14218] veth0_vlan: entered promiscuous mode
[  480.273171][T14218] veth1_vlan: entered promiscuous mode
[  480.358141][T14218] veth0_macvtap: entered promiscuous mode
[  480.378652][T14218] veth1_macvtap: entered promiscuous mode
[  480.460612][T14427] loop1: detected capacity change from 0 to 1024
[  480.471628][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.516478][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.544995][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.594237][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.630273][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.670747][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.708923][T14218] batman_adv: batadv0: Interface activated: batadv_slave_0
[  480.744280][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.777956][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.794397][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.826871][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.853997][T14218] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.873581][T14218] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.888978][ T3449] hfsplus: b-tree write err: -5, ino 8
[  480.902563][T14218] batman_adv: batadv0: Interface activated: batadv_slave_1
[  480.934923][T14441] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  480.942674][T14441] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  480.962962][T14218] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  481.001173][T14218] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  481.040186][T14218] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  481.086449][T14218] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  481.094031][T14445] loop1: detected capacity change from 0 to 1024
[  481.113118][T14447] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3028'.
[  481.123830][T14447] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3028'.
[  481.384156][   T28] audit: type=1800 audit(2000000125.510:95): pid=14445 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3026" name="file1" dev="loop1" ino=3 res=0 errno=0
[  481.478040][ T3477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.514402][ T3477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  481.619199][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  481.646638][   T49] hfsplus: b-tree write err: -5, ino 3
[  481.649231][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.355902][T14479] loop6: detected capacity change from 0 to 512
[  482.465576][T14479] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.531401][T14479] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  482.843147][T14218] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.042952][T14499] loop1: detected capacity change from 0 to 512
[  483.108943][T14499] EXT4-fs: Ignoring removed nobh option
[  483.175130][T14499] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.231290][T14499] ext4 filesystem being mounted at /763/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  483.412313][T14499] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 3: comm syz.1.3044: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[  483.496636][   T23] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  483.635536][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.700190][   T23] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  483.741334][   T23] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.779018][   T23] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.820484][   T23] usb 7-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00
[  483.846671][   T23] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.895734][   T23] usb 7-1: config 0 descriptor??
[  484.146680][ T5759] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  484.243782][T14514] loop4: detected capacity change from 0 to 32768
[  484.271810][T14514] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.3046 (14514)
[  484.313304][T14514] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  484.346038][   T23] wacom 0003:056A:0010.0013: ignoring exceeding usage max
[  484.359913][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  484.384056][T14514] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  484.393455][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  484.420311][   T23] wacom 0003:056A:0010.0013: Unknown device_type for 'HID 056a:0010'. Assuming pen.
[  484.438818][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  484.440673][T14514] BTRFS info (device loop4): enabling auto defrag
[  484.472374][   T23] wacom 0003:056A:0010.0013: hidraw0: USB HID v0.00 Device [HID 056a:0010] on usb-dummy_hcd.6-1/input0
[  484.486710][ T5759] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  484.497048][T14514] BTRFS info (device loop4): use no compression
[  484.503425][T14514] BTRFS info (device loop4): max_inline at 4096
[  484.519910][ T5759] usb 2-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  484.533335][   T23] input: Wacom Graphire Pen as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:056A:0010.0013/input/input44
[  484.547828][T14514] BTRFS info (device loop4): using free space tree
[  484.560897][ T5759] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.590301][ T5759] usb 2-1: Product: syz
[  484.594573][ T5759] usb 2-1: Manufacturer: syz
[  484.606749][ T5759] usb 2-1: SerialNumber: syz
[  484.624194][ T5759] usb 2-1: config 0 descriptor??
[  484.688532][   T23] usb 7-1: USB disconnect, device number 2
[  484.866563][T14514] BTRFS info (device loop4): enabling ssd optimizations
[  484.879909][T14514] BTRFS info (device loop4): auto enabling async discard
[  484.890223][ T5759] adutux 2-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  485.024364][T14539] fido_id[14539]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  485.199889][    T9] usb 2-1: USB disconnect, device number 27
[  485.350194][ T9899] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  486.416004][T14593] macvlan0: entered promiscuous mode
[  486.452593][T14593] netlink: 'syz.3.3065': attribute type 2 has an invalid length.
[  486.488091][T14593] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3065'.
[  486.714654][T14604] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3068'.
[  486.946630][    T8] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  487.166502][    T8] usb 7-1: Using ep0 maxpacket: 32
[  487.174042][    T8] usb 7-1: config 0 has an invalid interface number: 51 but max is 0
[  487.192767][    T8] usb 7-1: config 0 has no interface number 0
[  487.215772][    T8] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  487.240276][    T8] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  487.259057][    T8] usb 7-1: Product: syz
[  487.263314][    T8] usb 7-1: Manufacturer: syz
[  487.298211][    T8] usb 7-1: SerialNumber: syz
[  487.320925][    T8] usb 7-1: config 0 descriptor??
[  487.344905][    T8] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  487.571898][    T8] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  487.618031][    T8] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  487.726153][T14630] ip6tnl1: entered allmulticast mode
[  487.805132][T14638] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3076'.
[  488.039359][T14642] loop1: detected capacity change from 0 to 128
[  488.107265][    C0] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -71
[  488.118285][ T5839] usb 7-1: USB disconnect, device number 3
[  488.201641][ T5839] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  488.276649][ T5839] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  488.327495][ T5839] quatech2 7-1:0.51: device disconnected
[  488.602894][T14660] loop4: detected capacity change from 0 to 512
[  488.666995][T14660] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.3083: iget: bad i_size value: 38620345925642
[  488.790712][T14660] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.3083: couldn't read orphan inode 15 (err -117)
[  488.829094][T14660] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  489.054551][ T9899] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.453572][T14690] loop6: detected capacity change from 0 to 64
[  490.246305][T14694] loop1: detected capacity change from 0 to 40427
[  490.266835][T14694] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  490.274660][T14694] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  490.315739][T14694] F2FS-fs (loop1): Found nat_bits in checkpoint
[  490.410956][T14694] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  490.432063][T14694] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  491.536194][T14740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3110'.
[  491.567104][T14740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3110'.
[  491.676507][ T5813] usb 2-1: new full-speed USB device number 28 using dummy_hcd
[  491.858488][ T5813] usb 2-1: config 0 has no interfaces?
[  491.864473][ T5813] usb 2-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  491.888947][ T5813] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.927836][ T5813] usb 2-1: config 0 descriptor??
[  492.240472][ T5813] usb 2-1: USB disconnect, device number 28
[  492.912530][T14783] program syz.1.3128 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  493.151484][T14790] loop1: detected capacity change from 0 to 1024
[  493.249428][T14793] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3132'.
[  493.468292][T14797] loop6: detected capacity change from 0 to 128
[  493.492850][T14443] hfsplus: b-tree write err: -5, ino 25
[  493.500098][T14443] hfsplus: b-tree write err: -5, ino 4
[  493.505752][T14443] hfsplus: b-tree write err: -5, ino 2
[  493.531902][T14797] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  493.545609][T14797] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  493.655003][T14218] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  493.781955][T12768] block nbd0: Receive control failed (result -22)
[  493.842363][T14804] nbd0: detected capacity change from 0 to 32
[  493.902912][   T97] block nbd0: Dead connection, failed to find a fallback
[  493.912678][   T97] block nbd0: shutting down sockets
[  493.921300][   T97] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  493.933241][   T97] buffer_io_error: 10 callbacks suppressed
[  493.933257][   T97] Buffer I/O error on dev nbd0, logical block 0, async page read
[  493.975275][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  493.984836][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.006754][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.016005][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.026700][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.035902][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.048876][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.058805][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.097903][   T97] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.108253][   T97] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.116440][   T97] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.125583][   T97] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.134622][   T97] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.144068][   T97] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.145385][T14815] netlink: 27 bytes leftover after parsing attributes in process `syz.4.3141'.
[  494.152909][ T5872] ldm_validate_partition_table(): Disk read failed.
[  494.246681][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.255833][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.264074][   T24] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  494.273342][   T24] Buffer I/O error on dev nbd0, logical block 0, async page read
[  494.282934][ T5872] Dev nbd0: unable to read RDB block 0
[  494.289238][ T5872]  nbd0: unable to read partition table
[  494.299604][ T5872] ldm_validate_partition_table(): Disk read failed.
[  494.307199][ T5872] Dev nbd0: unable to read RDB block 0
[  494.313631][ T5872]  nbd0: unable to read partition table
[  494.742480][ T5839] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  494.937747][ T5839] usb 5-1: Using ep0 maxpacket: 32
[  494.958618][ T5839] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  494.986752][ T5839] usb 5-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  495.016989][ T5839] usb 5-1: config 0 interface 0 has no altsetting 0
[  495.048070][ T5839] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  495.066434][ T5839] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.076457][ T5839] usb 5-1: Product: syz
[  495.080693][ T5839] usb 5-1: Manufacturer: syz
[  495.095825][ T5839] usb 5-1: SerialNumber: syz
[  495.121719][ T5839] usb 5-1: config 0 descriptor??
[  495.168671][T14813] loop6: detected capacity change from 0 to 32768
[  495.264816][T14813] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  495.394961][T14813] XFS (loop6): Ending clean mount
[  495.414443][  T967] XFS (loop6): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x10 
[  495.444050][  T967] XFS (loop6): Unmount and run xfs_repair
[  495.466639][  T967] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  495.474158][  T967] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  495.512629][  T967] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10  ................
[  495.542890][ T5839] gs_usb 5-1:0.0: Configuring for 1 interfaces
[  495.543716][  T967] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d  ..BNy.B..... ...
[  495.586471][  T967] 00000030: 00 00 00 00 0f 8d d2 a2 00 00 18 00 00 00 40 37  ..............@7
[  495.606180][  T967] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  495.626504][  T967] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  495.635467][  T967] 00000060: 00 00 00 00 00 f0 00 00 00 00 00 00 00 00 00 00  ................
[  495.662474][  T967] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  495.680046][T14813] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x10 len 4 error 74
[  495.712262][T14813] XFS (loop6): Failed to initialize disk quotas.
[  495.952805][ T5839] gs_usb 5-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  495.983630][T14218] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  496.051231][ T5839] usb 5-1: USB disconnect, device number 15
[  496.337469][    C0] vkms_vblank_simulate: vblank timer overrun
[  497.642480][T14896] option changes via remount are deprecated (pid=14895 comm=syz.4.3166)
[  497.692945][T14900] loop6: detected capacity change from 0 to 512
[  497.903027][T14906] 9pnet_fd: Insufficient options for proto=fd
[  498.272881][T14918] program syz.4.3173 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  498.521619][T14924] bridge0: entered promiscuous mode
[  498.547066][T14924] macvlan2: entered promiscuous mode
[  498.700361][T14929] loop1: detected capacity change from 0 to 1024
[  498.791564][T14929] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  498.864941][   T28] audit: type=1800 audit(2000000142.980:96): pid=14929 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3177" name="file2" dev="loop1" ino=840 res=0 errno=0
[  499.039629][T14900] loop6: detected capacity change from 0 to 32768
[  499.094855][T14900] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  499.316336][T14951] loop4: detected capacity change from 0 to 2048
[  499.343682][T14953] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3182'.
[  499.361746][T14951] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  499.407983][T14951] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  499.509055][T14900] XFS (loop6): Ending clean mount
[  499.825603][T14965] loop1: detected capacity change from 0 to 2048
[  499.892428][T14965] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  499.917304][T14218] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  500.731396][T14983] overlayfs: missing 'lowerdir'
[  500.821409][T14992] netlink: 'syz.6.3189': attribute type 11 has an invalid length.
[  501.052289][T14998] sctp: Trying to GSO but underlying device doesn't support it.
[  501.386585][ T5813] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  501.447213][T15018] vxcan1: tx address claim with dest, not broadcast
[  501.606654][ T5813] usb 5-1: Using ep0 maxpacket: 8
[  501.614270][ T5813] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  501.633358][ T5813] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  501.646746][    T9] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  501.664155][ T5813] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  501.684920][ T5813] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  501.719887][ T5813] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  501.735900][ T5813] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.752745][ T5813] usb 5-1: Product: syz
[  501.760030][ T5813] usb 5-1: Manufacturer: syz
[  501.764830][ T5813] usb 5-1: SerialNumber: syz
[  501.773627][T15004] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  501.784507][ T5813] cdc_ether: probe of 5-1:1.0 failed with error -22
[  501.793916][ T5813] usbtest 5-1:1.0: Linux user mode ISO test driver
[  501.806687][ T5813] usbtest 5-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[  501.854124][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  501.860720][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  501.867192][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  501.891917][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  501.913038][    T9] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  501.924127][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  501.946585][    T9] usb 2-1: SerialNumber: syz
[  502.041269][ T5813] usb 5-1: USB disconnect, device number 16
[  502.188434][    T9] usb 2-1: 0:2 : does not exist
[  502.223136][    T9] usb 2-1: USB disconnect, device number 29
[  502.564333][T15048] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3211'.
[  503.219823][T15069] loop4: detected capacity change from 0 to 1024
[  503.445611][T15073] hfsplus: request for non-existent node 16777216 in B*Tree
[  503.473792][T15073] hfsplus: request for non-existent node 16777216 in B*Tree
[  503.739269][T15050] loop6: detected capacity change from 0 to 40427
[  503.786028][T15050] F2FS-fs (loop6): Invalid segment/section count (31, 24 x 1)
[  503.811865][T15050] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  503.854828][T15050] F2FS-fs (loop6): invalid crc value
[  503.882532][T15050] F2FS-fs (loop6): Ignore s_resuid=0, s_resgid=60928 w/o reserve_root
[  503.957339][T15050] F2FS-fs (loop6): Found nat_bits in checkpoint
[  504.147426][T15050] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  504.164847][T15050] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  504.528691][T14218] syz-executor: attempt to access beyond end of device
[  504.528691][T14218] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  504.563834][T14218] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  504.973158][T15107] loop1: detected capacity change from 0 to 4096
[  505.012291][T15107] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  506.380691][T15154] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3238'.
[  506.396957][T15149] loop1: detected capacity change from 0 to 4096
[  506.417509][T15149] EXT4-fs: inline encryption not supported
[  506.459020][T15149] EXT4-fs (loop1): Test dummy encryption mode enabled
[  506.502145][T15149] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  506.541752][T15149] System zones: 0-5
[  506.590384][T15149] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  506.956579][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.147701][T15143] loop6: detected capacity change from 0 to 32768
[  509.549527][T15213] loop6: detected capacity change from 0 to 40427
[  509.586887][T15213] F2FS-fs (loop6): Image doesn't support compression
[  509.609297][T15213] F2FS-fs (loop6): invalid crc value
[  509.886993][T15213] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  510.078130][T14218] syz-executor: attempt to access beyond end of device
[  510.078130][T14218] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  510.104291][T14218] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  510.832717][T15260] loop4: detected capacity change from 0 to 256
[  510.930934][T15260] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  511.296134][T15266] netlink: 'syz.3.3273': attribute type 3 has an invalid length.
[  511.336639][T15256] loop1: detected capacity change from 0 to 32768
[  511.337091][T15266] netlink: 'syz.3.3273': attribute type 3 has an invalid length.
[  511.381213][T15256] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  511.474842][T15256] XFS (loop1): Ending clean mount
[  511.521131][T15256] XFS (loop1): Quotacheck needed: Please wait.
[  511.539038][T15282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3275'.
[  511.548172][T15282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3275'.
[  511.563810][T15282] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  511.574652][T15282] macvlan2: entered allmulticast mode
[  511.584553][T15282] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  511.661220][    T9] usb 5-1: new full-speed USB device number 17 using dummy_hcd
[  511.717167][T15256] XFS (loop1): Quotacheck: Done.
[  511.888221][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  511.923920][    T9] usb 5-1: not running at top speed; connect to a high speed hub
[  511.953332][ T5771] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  511.967229][    T9] usb 5-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40
[  511.979549][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  511.999520][    T9] usb 5-1: Product: syz
[  512.006433][    T9] usb 5-1: Manufacturer: syz
[  512.011309][    T9] usb 5-1: SerialNumber: syz
[  512.294026][ T1527] kernel write not supported for file /2228/attr/exec (pid: 1527 comm: kworker/1:2)
[  512.903812][    T9] usb 5-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  512.916926][    T9] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  512.963444][    T9] usb 5-1: USB disconnect, device number 17
[  512.984757][T15316] 
[  512.987165][T15316] =====================================================
[  512.994128][T15316] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected
[  513.001635][T15316] syzkaller #0 Not tainted
[  513.006080][T15316] -----------------------------------------------------
[  513.013042][T15316] syz.3.3293/15316 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[  513.020801][T15316] ffffffff8ce0a058 (tasklist_lock){.+.+}-{2:2}, at: send_sigurg+0xf0/0x3c0
[  513.029487][T15316] 
[  513.029487][T15316] and this task is already holding:
[  513.036887][T15316] ffff888031632618 (&f->f_owner.lock){....}-{2:2}, at: send_sigurg+0x29/0x3c0
[  513.045825][T15316] which would create a new lock dependency:
[  513.051752][T15316]  (&f->f_owner.lock){....}-{2:2} -> (tasklist_lock){.+.+}-{2:2}
[  513.059581][T15316] 
[  513.059581][T15316] but this new dependency connects a HARDIRQ-irq-safe lock:
[  513.069071][T15316]  (&dev->event_lock#2){-.-.}-{2:2}
[  513.069117][T15316] 
[  513.069117][T15316] ... which became HARDIRQ-irq-safe at:
[  513.082080][T15316]   lock_acquire+0x19e/0x420
[  513.086730][T15316]   _raw_spin_lock_irqsave+0xb4/0x100
[  513.092162][T15316]   input_event+0x7a/0xc0
[  513.096545][T15316]   psmouse_report_standard_packet+0x53/0x200
[  513.102620][ T5780] udevd[5780]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  513.118391][T15316]   psmouse_process_byte+0x478/0x670
[  513.123736][T15316]   psmouse_handle_byte+0x43/0x490
[  513.128904][T15316]   ps2_interrupt+0x164/0x980
[  513.133632][T15316]   serio_interrupt+0x8b/0x130
[  513.138441][T15316]   i8042_interrupt+0x385/0x710
[  513.143336][T15316]   __handle_irq_event_percpu+0x271/0x940
[  513.149114][T15316]   handle_irq_event+0x8b/0x1e0
[  513.154099][T15316]   handle_edge_irq+0x247/0xb30
[  513.159032][T15316]   __common_interrupt+0x13b/0x230
[  513.164284][T15316]   common_interrupt+0x5d/0xd0
[  513.169092][T15316]   asm_common_interrupt+0x26/0x40
[  513.174245][T15316]   handle_softirqs+0x1b0/0x820
[  513.179143][T15316]   __irq_exit_rcu+0xd3/0x190
[  513.183857][T15316]   irq_exit_rcu+0x9/0x20
[  513.188226][T15316]   sysvec_apic_timer_interrupt+0xa4/0xc0
[  513.194030][T15316]   asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  513.200147][T15316]   unwind_next_frame+0x1e0/0x2970
[  513.205307][T15316]   arch_stack_walk+0x144/0x190
[  513.210204][T15316]   stack_trace_save+0xaa/0x100
[  513.215111][T15316]   kasan_set_track+0x4e/0x70
[  513.219840][T15316]   __kasan_slab_alloc+0x6c/0x80
[  513.224821][T15316]   slab_post_alloc_hook+0x6e/0x4b0
[  513.230080][T15316]   kmem_cache_alloc+0x11a/0x2d0
[  513.235070][T15316]   alloc_empty_file+0x9e/0x1d0
[  513.239992][T15316]   path_openat+0x113/0x3230
[  513.244627][T15316]   do_filp_open+0x1f5/0x430
[  513.249401][T15316]   do_open_execat+0x14c/0x410
[  513.254272][T15316]   bprm_execve+0x567/0x1700
[  513.258920][T15316]   kernel_execve+0x8bd/0x9c0
[  513.263658][T15316]   call_usermodehelper_exec_async+0x20b/0x350
[  513.269875][T15316]   ret_from_fork+0x48/0x80
[  513.274422][T15316]   ret_from_fork_asm+0x11/0x20
[  513.279317][T15316] 
[  513.279317][T15316] to a HARDIRQ-irq-unsafe lock:
[  513.286367][T15316]  (tasklist_lock){.+.+}-{2:2}
[  513.286400][T15316] 
[  513.286400][T15316] ... which became HARDIRQ-irq-unsafe at:
[  513.299117][T15316] ...
[  513.299129][T15316]   lock_acquire+0x19e/0x420
[  513.306390][T15316]   _raw_read_lock+0x36/0x50
[  513.311028][T15316]   do_wait+0x294/0xae0
[  513.315248][T15316]   kernel_wait+0xd7/0x1c0
[  513.319730][T15316]   call_usermodehelper_exec_work+0xb9/0x220
[  513.325775][T15316]   process_scheduled_works+0xa5d/0x15d0
[  513.331470][T15316]   worker_thread+0xa55/0xfc0
[  513.336197][T15316]   kthread+0x2fa/0x390
[  513.340407][T15316]   ret_from_fork+0x48/0x80
[  513.344964][T15316]   ret_from_fork_asm+0x11/0x20
[  513.349874][T15316] 
[  513.349874][T15316] other info that might help us debug this:
[  513.349874][T15316] 
[  513.360146][T15316] Chain exists of:
[  513.360146][T15316]   &dev->event_lock#2 --> &f->f_owner.lock --> tasklist_lock
[  513.360146][T15316] 
[  513.373442][T15316]  Possible interrupt unsafe locking scenario:
[  513.373442][T15316] 
[  513.381816][T15316]        CPU0                    CPU1
[  513.387231][T15316]        ----                    ----
[  513.392640][T15316]   lock(tasklist_lock);
[  513.396930][T15316]                                local_irq_disable();
[  513.403727][T15316]                                lock(&dev->event_lock#2);
[  513.410979][T15316]                                lock(&f->f_owner.lock);
[  513.418054][T15316]   <Interrupt>
[  513.421541][T15316]     lock(&dev->event_lock#2);
[  513.426445][T15316] 
[  513.426445][T15316]  *** DEADLOCK ***
[  513.426445][T15316] 
[  513.434626][T15316] 2 locks held by syz.3.3293/15316:
[  513.439866][T15316]  #0: ffff8880213d0680 (&u->lock){+.+.}-{2:2}, at: queue_oob+0x1e2/0x4f0
[  513.448471][T15316]  #1: ffff888031632618 (&f->f_owner.lock){....}-{2:2}, at: send_sigurg+0x29/0x3c0
[  513.457863][T15316] 
[  513.457863][T15316] the dependencies between HARDIRQ-irq-safe lock and the holding lock:
[  513.468412][T15316]    -> (&dev->event_lock#2){-.-.}-{2:2} {
[  513.474301][T15316]       IN-HARDIRQ-W at:
[  513.478582][T15316]                           lock_acquire+0x19e/0x420
[  513.485315][T15316]                           _raw_spin_lock_irqsave+0xb4/0x100
[  513.492834][T15316]                           input_event+0x7a/0xc0
[  513.499304][T15316]                           psmouse_report_standard_packet+0x53/0x200
[  513.507520][T15316]                           psmouse_process_byte+0x478/0x670
[  513.514959][T15316]                           psmouse_handle_byte+0x43/0x490
[  513.522217][T15316]                           ps2_interrupt+0x164/0x980
[  513.529047][T15316]                           serio_interrupt+0x8b/0x130
[  513.535940][T15316]                           i8042_interrupt+0x385/0x710
[  513.542929][T15316]                           __handle_irq_event_percpu+0x271/0x940
[  513.550814][T15316]                           handle_irq_event+0x8b/0x1e0
[  513.551828][T15312] loop6: detected capacity change from 0 to 32768
[  513.557804][T15316]                           handle_edge_irq+0x247/0xb30
[  513.557830][T15316]                           __common_interrupt+0x13b/0x230
[  513.557854][T15316]                           common_interrupt+0x5d/0xd0
[  513.585360][T15316]                           asm_common_interrupt+0x26/0x40
[  513.592628][T15316]                           handle_softirqs+0x1b0/0x820
[  513.599621][T15316]                           __irq_exit_rcu+0xd3/0x190
[  513.606444][T15316]                           irq_exit_rcu+0x9/0x20
[  513.612918][T15316]                           sysvec_apic_timer_interrupt+0xa4/0xc0
[  513.620874][T15316]                           asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  513.629094][T15316]                           unwind_next_frame+0x1e0/0x2970
[  513.636393][T15316]                           arch_stack_walk+0x144/0x190
[  513.643404][T15316]                           stack_trace_save+0xaa/0x100
[  513.650413][T15316]                           kasan_set_track+0x4e/0x70
[  513.657246][T15316]                           __kasan_slab_alloc+0x6c/0x80
[  513.664326][T15316]                           slab_post_alloc_hook+0x6e/0x4b0
[  513.671680][T15316]                           kmem_cache_alloc+0x11a/0x2d0
[  513.678769][T15316]                           alloc_empty_file+0x9e/0x1d0
[  513.685772][T15316]                           path_openat+0x113/0x3230
[  513.692497][T15316]                           do_filp_open+0x1f5/0x430
[  513.699324][T15316]                           do_open_execat+0x14c/0x410
[  513.706267][T15316]                           bprm_execve+0x567/0x1700
[  513.713000][T15316]                           kernel_execve+0x8bd/0x9c0
[  513.719824][T15316]                           call_usermodehelper_exec_async+0x20b/0x350
[  513.728119][T15316]                           ret_from_fork+0x48/0x80
[  513.734776][T15316]                           ret_from_fork_asm+0x11/0x20
[  513.741784][T15316]       IN-SOFTIRQ-W at:
[  513.746080][T15316]                           lock_acquire+0x19e/0x420
[  513.752831][T15316]                           _raw_spin_lock_irqsave+0xb4/0x100
[  513.760346][T15316]                           input_event+0x7a/0xc0
[  513.766826][T15316]                           psmouse_report_standard_packet+0x53/0x200
[  513.775049][T15316]                           psmouse_process_byte+0x478/0x670
[  513.782486][T15316]                           psmouse_handle_byte+0x43/0x490
[  513.789747][T15316]                           ps2_interrupt+0x164/0x980
[  513.796566][T15316]                           serio_interrupt+0x8b/0x130
[  513.803464][T15316]                           i8042_interrupt+0x385/0x710
[  513.810460][T15316]                           __handle_irq_event_percpu+0x271/0x940
[  513.818412][T15316]                           handle_irq_event+0x8b/0x1e0
[  513.825409][T15316]                           handle_edge_irq+0x247/0xb30
[  513.832403][T15316]                           __common_interrupt+0x13b/0x230
[  513.839634][T15316]                           common_interrupt+0x5d/0xd0
[  513.846497][T15316]                           asm_common_interrupt+0x26/0x40
[  513.853717][T15316]                           handle_softirqs+0x1b0/0x820
[  513.860674][T15316]                           __irq_exit_rcu+0xd3/0x190
[  513.867447][T15316]                           irq_exit_rcu+0x9/0x20
[  513.873880][T15316]                           sysvec_apic_timer_interrupt+0xa4/0xc0
[  513.881705][T15316]                           asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  513.889973][T15316]                           unwind_next_frame+0x1e0/0x2970
[  513.897194][T15316]                           arch_stack_walk+0x144/0x190
[  513.904155][T15316]                           stack_trace_save+0xaa/0x100
[  513.911155][T15316]                           kasan_set_track+0x4e/0x70
[  513.918051][T15316]                           __kasan_slab_alloc+0x6c/0x80
[  513.925095][T15316]                           slab_post_alloc_hook+0x6e/0x4b0
[  513.932408][T15316]                           kmem_cache_alloc+0x11a/0x2d0
[  513.939469][T15316]                           alloc_empty_file+0x9e/0x1d0
[  513.946439][T15316]                           path_openat+0x113/0x3230
[  513.953138][T15316]                           do_filp_open+0x1f5/0x430
[  513.959825][T15316]                           do_open_execat+0x14c/0x410
[  513.966707][T15316]                           bprm_execve+0x567/0x1700
[  513.973414][T15316]                           kernel_execve+0x8bd/0x9c0
[  513.980251][T15316]                           call_usermodehelper_exec_async+0x20b/0x350
[  513.988512][T15316]                           ret_from_fork+0x48/0x80
[  513.995121][T15316]                           ret_from_fork_asm+0x11/0x20
[  514.002088][T15316]       INITIAL USE at:
[  514.006290][T15316]                          lock_acquire+0x19e/0x420
[  514.012897][T15316]                          _raw_spin_lock_irqsave+0xb4/0x100
[  514.020285][T15316]                          input_inject_event+0xab/0x320
[  514.027335][T15316]                          led_trigger_event+0x133/0x210
[  514.034380][T15316]                          kbd_led_trigger_activate+0xbd/0x100
[  514.041947][T15316]                          led_trigger_set+0x52c/0x950
[  514.048837][T15316]                          led_trigger_set_default+0x1a0/0x1e0
[  514.056499][T15316]                          led_classdev_register_ext+0x733/0x9b0
[  514.064257][T15316]                          input_leds_connect+0x4eb/0x6b0
[  514.071386][T15316]                          input_register_device+0xcdc/0x1070
[  514.078881][T15316]                          atkbd_connect+0x70a/0x9b0
[  514.085580][T15316]                          serio_driver_probe+0x7a/0xa0
[  514.092526][T15316]                          really_probe+0x25b/0xb20
[  514.099139][T15316]                          __driver_probe_device+0x18c/0x330
[  514.106533][T15316]                          driver_probe_device+0x4f/0x420
[  514.113681][T15316]                          __driver_attach+0x44e/0x6e0
[  514.120543][T15316]                          bus_for_each_dev+0x235/0x2b0
[  514.127538][T15316]                          serio_handle_event+0x1a2/0x860
[  514.134667][T15316]                          process_scheduled_works+0xa5d/0x15d0
[  514.142342][T15316]                          worker_thread+0xa55/0xfc0
[  514.149032][T15316]                          kthread+0x2fa/0x390
[  514.155201][T15316]                          ret_from_fork+0x48/0x80
[  514.161716][T15316]                          ret_from_fork_asm+0x11/0x20
[  514.168604][T15316]     }
[  514.171389][T15316]     ... key      at: [<ffffffff9762ca80>] input_allocate_device.__key.5+0x0/0x20
[  514.180707][T15316]   -> (&client->buffer_lock){....}-{2:2} {
[  514.186685][T15316]      INITIAL USE at:
[  514.190812][T15316]                        lock_acquire+0x19e/0x420
[  514.197285][T15316]                        _raw_spin_lock+0x2e/0x40
[  514.203718][T15316]                        evdev_pass_values+0xcb/0xab0
[  514.210497][T15316]                        evdev_events+0x1d8/0x330
[  514.216936][T15316]                        input_pass_values+0x905/0x12f0
[  514.223902][T15316]                        input_event_dispose+0x346/0x6c0
[  514.230948][T15316]                        input_inject_event+0x1f9/0x320
[  514.237918][T15316]                        evdev_write+0x35f/0x490
[  514.244262][T15316]                        vfs_write+0x296/0x990
[  514.250433][T15316]                        ksys_write+0x150/0x260
[  514.256710][T15316]                        do_syscall_64+0x55/0xa0
[  514.263067][T15316]                        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.270896][T15316]    }
[  514.273587][T15316]    ... key      at: [<ffffffff9762cd20>] evdev_open.__key.28+0x0/0x20
[  514.281940][T15316]    ... acquired at:
[  514.285939][T15316]    _raw_spin_lock+0x2e/0x40
[  514.290639][T15316]    evdev_pass_values+0xcb/0xab0
[  514.295705][T15316]    evdev_events+0x1d8/0x330
[  514.300393][T15316]    input_pass_values+0x905/0x12f0
[  514.305616][T15316]    input_event_dispose+0x346/0x6c0
[  514.310919][T15316]    input_inject_event+0x1f9/0x320
[  514.316145][T15316]    evdev_write+0x35f/0x490
[  514.320746][T15316]    vfs_write+0x296/0x990
[  514.325191][T15316]    ksys_write+0x150/0x260
[  514.329712][T15316]    do_syscall_64+0x55/0xa0
[  514.334332][T15316]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.340476][T15316] 
[  514.342828][T15316]  -> (&new->fa_lock){....}-{2:2} {
[  514.348066][T15316]     INITIAL USE at:
[  514.352090][T15316]                      lock_acquire+0x19e/0x420
[  514.358353][T15316]                      _raw_write_lock_irq+0xaf/0xf0
[  514.365061][T15316]                      fasync_remove_entry+0xf4/0x1c0
[  514.371874][T15316]                      __fput+0x7f3/0x970
[  514.377614][T15316]                      task_work_run+0x1d4/0x260
[  514.383998][T15316]                      exit_to_user_mode_loop+0xe6/0x110
[  514.391040][T15316]                      exit_to_user_mode_prepare+0xee/0x180
[  514.398352][T15316]                      syscall_exit_to_user_mode+0x1a/0x50
[  514.405575][T15316]                      do_syscall_64+0x61/0xa0
[  514.411752][T15316]                      entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.419418][T15316]     INITIAL READ USE at:
[  514.423950][T15316]                           lock_acquire+0x19e/0x420
[  514.430640][T15316]                           _raw_read_lock_irqsave+0xbc/0x100
[  514.438124][T15316]                           kill_fasync+0x192/0x4b0
[  514.444736][T15316]                           lease_break_callback+0x26/0x30
[  514.451954][T15316]                           __break_lease+0x4a5/0x12b0
[  514.458830][T15316]                           do_dentry_open+0x823/0x1500
[  514.465785][T15316]                           path_openat+0x27f1/0x3230
[  514.472551][T15316]                           do_filp_open+0x1f5/0x430
[  514.479299][T15316]                           do_sys_openat2+0x134/0x1d0
[  514.486182][T15316]                           __x64_sys_open+0x11f/0x140
[  514.493083][T15316]                           do_syscall_64+0x55/0xa0
[  514.499697][T15316]                           entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.507806][T15316]   }
[  514.510447][T15316]   ... key      at: [<ffffffff97333b20>] fasync_insert_entry.__key+0x0/0x20
[  514.519240][T15316]   ... acquired at:
[  514.523144][T15316]    _raw_read_lock_irqsave+0xbc/0x100
[  514.528617][T15316]    kill_fasync+0x192/0x4b0
[  514.533231][T15316]    evdev_pass_values+0x54b/0xab0
[  514.538355][T15316]    evdev_events+0x1d8/0x330
[  514.543048][T15316]    input_pass_values+0x905/0x12f0
[  514.548271][T15316]    input_event_dispose+0x346/0x6c0
[  514.553578][T15316]    input_inject_event+0x1f9/0x320
[  514.558791][T15316]    evdev_write+0x35f/0x490
[  514.563402][T15316]    vfs_write+0x296/0x990
[  514.567841][T15316]    ksys_write+0x150/0x260
[  514.572380][T15316]    do_syscall_64+0x55/0xa0
[  514.577005][T15316]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.583133][T15316] 
[  514.585474][T15316] -> (&f->f_owner.lock){....}-{2:2} {
[  514.590880][T15316]    INITIAL USE at:
[  514.594795][T15316]                    lock_acquire+0x19e/0x420
[  514.600884][T15316]                    _raw_write_lock_irq+0xaf/0xf0
[  514.607425][T15316]                    __f_setown+0x3b/0x330
[  514.613251][T15316]                    generic_setlease+0xe58/0x1290
[  514.619778][T15316]                    fcntl_setlease+0x26c/0x340
[  514.626041][T15316]                    do_fcntl+0x1db/0x1490
[  514.631867][T15316]                    __se_sys_fcntl+0xc9/0x1a0
[  514.638064][T15316]                    do_syscall_64+0x55/0xa0
[  514.644068][T15316]                    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.651559][T15316]    INITIAL READ USE at:
[  514.655925][T15316]                         lock_acquire+0x19e/0x420
[  514.662455][T15316]                         _raw_read_lock_irq+0xb7/0x100
[  514.669409][T15316]                         do_fcntl+0x3d9/0x1490
[  514.675671][T15316]                         __se_sys_fcntl+0xc9/0x1a0
[  514.682270][T15316]                         do_syscall_64+0x55/0xa0
[  514.688716][T15316]                         entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.696638][T15316]  }
[  514.699157][T15316]  ... key      at: [<ffffffff97332ea0>] init_file.__key+0x0/0x20
[  514.706997][T15316]  ... acquired at:
[  514.710819][T15316]    _raw_read_lock_irqsave+0xbc/0x100
[  514.716302][T15316]    send_sigio+0x33/0x360
[  514.720756][T15316]    kill_fasync+0x228/0x4b0
[  514.725368][T15316]    lease_break_callback+0x26/0x30
[  514.730591][T15316]    __break_lease+0x4a5/0x12b0
[  514.735485][T15316]    do_dentry_open+0x823/0x1500
[  514.740464][T15316]    path_openat+0x27f1/0x3230
[  514.745344][T15316]    do_filp_open+0x1f5/0x430
[  514.750040][T15316]    do_sys_openat2+0x134/0x1d0
[  514.754929][T15316]    __x64_sys_open+0x11f/0x140
[  514.759810][T15316]    do_syscall_64+0x55/0xa0
[  514.764438][T15316]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  514.770525][T15316] 
[  514.772865][T15316] 
[  514.772865][T15316] the dependencies between the lock to be acquired
[  514.772873][T15316]  and HARDIRQ-irq-unsafe lock:
[  514.786432][T15316] -> (tasklist_lock){.+.+}-{2:2} {
[  514.791598][T15316]    HARDIRQ-ON-R at:
[  514.795600][T15316]                     lock_acquire+0x19e/0x420
[  514.801768][T15316]                     _raw_read_lock+0x36/0x50
[  514.807952][T15316]                     do_wait+0x294/0xae0
[  514.813784][T15316]                     kernel_wait+0xd7/0x1c0
[  514.819786][T15316]                     call_usermodehelper_exec_work+0xb9/0x220
[  514.827359][T15316]                     process_scheduled_works+0xa5d/0x15d0
[  514.834577][T15316]                     worker_thread+0xa55/0xfc0
[  514.840836][T15316]                     kthread+0x2fa/0x390
[  514.846577][T15316]                     ret_from_fork+0x48/0x80
[  514.852679][T15316]                     ret_from_fork_asm+0x11/0x20
[  514.859125][T15316]    SOFTIRQ-ON-R at:
[  514.863127][T15316]                     lock_acquire+0x19e/0x420
[  514.869301][T15316]                     _raw_read_lock+0x36/0x50
[  514.875480][T15316]                     do_wait+0x294/0xae0
[  514.881227][T15316]                     kernel_wait+0xd7/0x1c0
[  514.887243][T15316]                     call_usermodehelper_exec_work+0xb9/0x220
[  514.894828][T15316]                     process_scheduled_works+0xa5d/0x15d0
[  514.902049][T15316]                     worker_thread+0xa55/0xfc0
[  514.908321][T15316]                     kthread+0x2fa/0x390
[  514.914062][T15316]                     ret_from_fork+0x48/0x80
[  514.920146][T15316]                     ret_from_fork_asm+0x11/0x20
[  514.926593][T15316]    INITIAL USE at:
[  514.930508][T15316]                    lock_acquire+0x19e/0x420
[  514.936607][T15316]                    _raw_write_lock_irq+0xaf/0xf0
[  514.943129][T15316]                    copy_process+0x2275/0x3d80
[  514.949387][T15316]                    kernel_clone+0x24b/0x8a0
[  514.955472][T15316]                    user_mode_thread+0x111/0x180
[  514.961897][T15316]                    rest_init+0x27/0x300
[  514.967660][T15316]                    arch_call_rest_init+0xe/0x10
[  514.974115][T15316]                    start_kernel+0x459/0x4e0
[  514.980205][T15316]                    x86_64_start_reservations+0x2a/0x30
[  514.987251][T15316]                    copy_bootdata+0x0/0xe0
[  514.993173][T15316]                    secondary_startup_64_no_verify+0x179/0x17b
[  515.000820][T15316]    INITIAL READ USE at:
[  515.005174][T15316]                         lock_acquire+0x19e/0x420
[  515.011689][T15316]                         _raw_read_lock+0x36/0x50
[  515.018241][T15316]                         do_wait+0x294/0xae0
[  515.024361][T15316]                         kernel_wait+0xd7/0x1c0
[  515.030733][T15316]                         call_usermodehelper_exec_work+0xb9/0x220
[  515.038668][T15316]                         process_scheduled_works+0xa5d/0x15d0
[  515.046239][T15316]                         worker_thread+0xa55/0xfc0
[  515.052837][T15316]                         kthread+0x2fa/0x390
[  515.058915][T15316]                         ret_from_fork+0x48/0x80
[  515.065360][T15316]                         ret_from_fork_asm+0x11/0x20
[  515.072219][T15316]  }
[  515.074746][T15316]  ... key      at: [<ffffffff8ce0a058>] tasklist_lock+0x18/0x40
[  515.082478][T15316]  ... acquired at:
[  515.086421][T15316]    _raw_read_lock+0x36/0x50
[  515.091196][T15316]    send_sigurg+0xf0/0x3c0
[  515.095813][T15316]    sk_send_sigurg+0x6f/0xc0
[  515.100520][T15316]    queue_oob+0x3f1/0x4f0
[  515.104954][T15316]    unix_stream_sendmsg+0xaf0/0xbf0
[  515.110257][T15316]    ____sys_sendmsg+0x5ba/0x960
[  515.115207][T15316]    ___sys_sendmsg+0x2a6/0x360
[  515.120069][T15316]    __sys_sendmmsg+0x2ca/0x510
[  515.124946][T15316]    __x64_sys_sendmmsg+0xa0/0xb0
[  515.129985][T15316]    do_syscall_64+0x55/0xa0
[  515.134599][T15316]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  515.140683][T15316] 
[  515.143019][T15316] 
[  515.143019][T15316] stack backtrace:
[  515.148927][T15316] CPU: 1 PID: 15316 Comm: syz.3.3293 Not tainted syzkaller #0
[  515.156418][T15316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  515.166616][T15316] Call Trace:
[  515.169923][T15316]  <TASK>
[  515.172870][T15316]  dump_stack_lvl+0x18c/0x250
[  515.177569][T15316]  ? load_image+0x400/0x400
[  515.182106][T15316]  ? show_regs_print_info+0x20/0x20
[  515.187332][T15316]  ? load_image+0x400/0x400
[  515.191866][T15316]  ? print_shortest_lock_dependencies+0xf4/0x160
[  515.198212][T15316]  __lock_acquire+0x6851/0x7d40
[  515.203101][T15316]  ? verify_lock_unused+0x140/0x140
[  515.208319][T15316]  ? verify_lock_unused+0x140/0x140
[  515.213545][T15316]  lock_acquire+0x19e/0x420
[  515.218063][T15316]  ? send_sigurg+0xf0/0x3c0
[  515.222601][T15316]  ? read_lock_is_recursive+0x20/0x20
[  515.227991][T15316]  ? do_raw_read_lock+0x3d/0x90
[  515.232877][T15316]  ? _raw_read_lock_irqsave+0xc8/0x100
[  515.238367][T15316]  ? _raw_read_lock+0x50/0x50
[  515.243086][T15316]  ? __lock_acquire+0x7d40/0x7d40
[  515.248147][T15316]  ? do_raw_spin_lock+0x11f/0x2c0
[  515.253202][T15316]  _raw_read_lock+0x36/0x50
[  515.257772][T15316]  ? send_sigurg+0xf0/0x3c0
[  515.262314][T15316]  send_sigurg+0xf0/0x3c0
[  515.266673][T15316]  sk_send_sigurg+0x6f/0xc0
[  515.271217][T15316]  queue_oob+0x3f1/0x4f0
[  515.275479][T15316]  ? scm_stat_add+0xc0/0xc0
[  515.280012][T15316]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x10
[  515.286122][T15316]  ? security_socket_getpeersec_dgram+0x83/0xa0
[  515.292399][T15316]  unix_stream_sendmsg+0xaf0/0xbf0
[  515.297556][T15316]  ? aa_sk_perm+0x83c/0x970
[  515.302106][T15316]  ? unix_show_fdinfo+0x270/0x270
[  515.307164][T15316]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x2f0
[  515.313601][T15316]  ? aa_sock_msg_perm+0x94/0x150
[  515.318569][T15316]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  515.323910][T15316]  ? security_socket_sendmsg+0x80/0xa0
[  515.329388][T15316]  ? unix_show_fdinfo+0x270/0x270
[  515.334442][T15316]  ____sys_sendmsg+0x5ba/0x960
[  515.339315][T15316]  ? __asan_memset+0x22/0x40
[  515.343943][T15316]  ? __sys_sendmsg_sock+0x30/0x30
[  515.348976][T15316]  ? __import_iovec+0x5f2/0x850
[  515.353857][T15316]  ? import_iovec+0x73/0xa0
[  515.358373][T15316]  ___sys_sendmsg+0x2a6/0x360
[  515.363088][T15316]  ? __sys_sendmsg+0x2a0/0x2a0
[  515.367883][T15316]  __sys_sendmmsg+0x2ca/0x510
[  515.372591][T15316]  ? __ia32_sys_sendmsg+0x90/0x90
[  515.377638][T15316]  ? __ia32_sys_get_robust_list+0x110/0x110
[  515.383556][T15316]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  515.389553][T15316]  ? lock_chain_count+0x20/0x20
[  515.394434][T15316]  __x64_sys_sendmmsg+0xa0/0xb0
[  515.399304][T15316]  do_syscall_64+0x55/0xa0
[  515.403751][T15316]  ? clear_bhb_loop+0x40/0x90
[  515.408449][T15316]  ? clear_bhb_loop+0x40/0x90
[  515.413153][T15316]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  515.419064][T15316] RIP: 0033:0x7fc66999c799
[  515.423512][T15316] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  515.443221][T15316] RSP: 002b:00007fc66a7dc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  515.451656][T15316] RAX: ffffffffffffffda RBX: 00007fc669c15fa0 RCX: 00007fc66999c799
[  515.459660][T15316] RDX: 0000000000000001 RSI: 0000200000011500 RDI: 0000000000000003
[  515.467665][T15316] RBP: 00007fc669a32c99 R08: 0000000000000000 R09: 0000000000000000
[  515.475725][T15316] R10: 0000000000040015 R11: 0000000000000246 R12: 0000000000000000
[  515.483724][T15316] R13: 00007fc669c16038 R14: 00007fc669c15fa0 R15: 00007ffeed888408
[  515.491732][T15316]  </TASK>
[  515.541705][T15312] JBD2: Ignoring recovery information on journal
[  515.648140][T15312] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  515.720452][   T28] audit: type=1800 audit(2000000159.840:97): pid=15312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3291" name="bus" dev="loop6" ino=17059 res=0 errno=0
[  515.780164][T14218] ocfs2: Unmounting device (7,6) on (node local)
[  515.899492][T15321] input: syz1 as /devices/virtual/input/input47