last executing test programs: 3m17.569437655s ago: executing program 0 (id=124): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000002c0)={0xc, 0x0, &(0x7f0000000240)=[@free_buffer], 0x0, 0x0, 0x0}) 3m16.818926642s ago: executing program 0 (id=125): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) gettid() read$msr(r0, &(0x7f0000004600)=""/102400, 0x19000) r1 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$int_in(r1, 0x40000000af01, 0x0) ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000000)=0x200000000) ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000040)) 3m15.83518305s ago: executing program 0 (id=128): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, 0x0, 0x0) syz_usb_connect(0x0, 0x3f, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000000a00)=""/102400, 0x19000) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair(0x1e, 0x1, 0x0, 0x0) close(0xffffffffffffffff) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x4bd) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x5a2119bf86ff29ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000008c0)={0x0, 0x3, 0x3, 0x5}, 0x10}, 0x94) r2 = socket$kcm(0x1e, 0x5, 0x0) setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, 0x0, 0x0) sendmsg$kcm(r2, &(0x7f0000000100)={&(0x7f0000001540)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x40, 0x4, 0x4}}, 0x80, 0x0}, 0x20008044) r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000e40), 0x400, 0x0) r4 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r5, 0x107, 0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000019b40)={0xc, 0xe, &(0x7f0000019c00)=ANY=[@ANYBLOB="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"], 0x0, 0x81}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) connect$can_j1939(r4, 0x0, 0x0) sendfile(r4, r3, 0x0, 0x10000000000008) 3m11.894928695s ago: executing program 0 (id=136): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000002c0)={0xc, 0x0, &(0x7f0000000240)=[@free_buffer], 0x0, 0x0, 0x0}) 3m9.56627322s ago: executing program 0 (id=139): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x20, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4}], 0x1, 0x4001) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000280)=0x8) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) dup2(r0, r3) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c) sendto$inet6(r3, 0x0, 0x0, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c) sendto$inet6(r0, &(0x7f00000001c0)="06", 0x1, 0x1, &(0x7f0000000080)={0xa, 0x6e22, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000300)=ANY=[@ANYRES32=r2], 0x9) 3m7.015156846s ago: executing program 0 (id=141): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x109081, 0x34) fcntl$lock(r1, 0x5, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r1, 0xe, &(0x7f0000000600)={0x7, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/205, 0xcd}, {&(0x7f0000000380)=""/181, 0xb5}, {&(0x7f0000000440)=""/138, 0x8a}, {&(0x7f00000000c0)=""/110, 0x6e}], &(0x7f00000005c0)=[0x1, 0x736, 0x4], 0x4}, 0x20) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000) r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2) close(r5) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000640)) 2m51.684066223s ago: executing program 32 (id=141): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x109081, 0x34) fcntl$lock(r1, 0x5, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r1, 0xe, &(0x7f0000000600)={0x7, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/205, 0xcd}, {&(0x7f0000000380)=""/181, 0xb5}, {&(0x7f0000000440)=""/138, 0x8a}, {&(0x7f00000000c0)=""/110, 0x6e}], &(0x7f00000005c0)=[0x1, 0x736, 0x4], 0x4}, 0x20) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000) r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2) close(r5) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000640)) 15.01289615s ago: executing program 1 (id=562): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000540)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'syzkaller1\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={0xffffffffffffffff, r3, 0x25, 0x4, @void}, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000040)=ANY=[], 0x82) 12.030892716s ago: executing program 2 (id=571): prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r3, 0x1}, 0x14}}, 0x0) r4 = socket$rds(0x15, 0x5, 0x0) sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4000, @remote}, 0x10, 0x0, 0x0, &(0x7f00000004c0)}, 0x0) 11.710320212s ago: executing program 1 (id=573): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1800840, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c73686f72746e616d653d77696e39352c73686f72746e616d653d77696e39352c6e6f6e756d7461696c3d302c696f636861727365743d63703935302c756e695f786c6174653d302c696f636861727365743d69736f383835392d31342c636f6465706167653d3933362c696f636861727365743d6d616363656e746575726f2c6572726f72733d636f6e74696e75652c73686f72746e616d653d6c6f7765722c001f9746c29bccf86286df87c52372eb0f740abad7836f9b876889c29fe743e848b0816c003bd193dc94155d5ed3edb5d6887ee342a6d14ff14e348ab01ac29eaf4ef5cd99f24dc23cfcc1f11cd5f44f3a0dc7f2c618aea1e5810fb8052947ca93fe28e3a77f56b756af352c3756847e1bb79947ddfc"], 0x1, 0x362, &(0x7f0000000900)="$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") statfs(&(0x7f0000000ac0)='.\x00', 0x0) 10.082931682s ago: executing program 1 (id=578): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mtu(0xffffffffffffffff, 0x29, 0x50, 0x0, &(0x7f0000000000)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c) r4 = syz_init_net_socket$ax25(0x3, 0x5, 0xca) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xf32f, 0xfe000000}, &(0x7f00000000c0)=0x10) setsockopt$ax25_SO_BINDTODEVICE(r4, 0x101, 0x19, 0x0, 0x0) syz_emit_ethernet(0x80, &(0x7f0000000580)=ANY=[], 0x0) unshare(0x22020400) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x5, 0x40, 0x6, 0x8}, 0x48) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r5, &(0x7f0000000040)="09000000010001", 0x7) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff) 10.007974136s ago: executing program 3 (id=579): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x109081, 0x34) fcntl$lock(r1, 0x5, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r1, 0xe, &(0x7f0000000600)={0x7, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/205, 0xcd}, {0x0}, {&(0x7f00000000c0)=""/110, 0x6e}], &(0x7f00000005c0)=[0x1, 0x736, 0x4], 0x3}, 0x20) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000) r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2) close(r5) execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000640)) 8.958758118s ago: executing program 3 (id=581): socket(0x2, 0xa, 0x300) r0 = socket(0x2c, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="110000000400000004000000ff"], 0x17) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r1, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r0}, 0x20) r2 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x0}, 0x50) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef91", 0x12) r4 = accept4(r3, 0x0, 0x0, 0x800) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0) 8.52294806s ago: executing program 1 (id=582): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x380407b, 0x0, 0x1, 0x0, &(0x7f0000000040)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) io_destroy(0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000) capset(&(0x7f0000000040)={0x19980330}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x141202, 0x0) 8.335976459s ago: executing program 3 (id=584): r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$TIOCSETD(r1, 0x5423, 0x0) r2 = dup(r1) r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0xfffffffd, 0x15f, 0x0, r2}, &(0x7f00000006c0)=0x0, &(0x7f0000000100)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x80010, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1) chdir(&(0x7f0000000540)='./cgroup\x00') mkdir(&(0x7f00000003c0)='./file0\x00', 0xffe9) syz_io_uring_setup(0x3eeb, &(0x7f0000000480)={0x0, 0x8000, 0x800}, &(0x7f00000001c0), &(0x7f00000003c0)) r5 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_int(r5, 0x29, 0x48, &(0x7f0000000500)=0x625, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8) bind$netlink(r6, 0x0, 0x0) unshare(0x28000600) r7 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901) move_mount(r7, 0x0, r7, 0x0, 0x276) 8.325478039s ago: executing program 5 (id=585): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x8104}, 0x40004) ioctl$COMEDI_CMD(0xffffffffffffffff, 0x80506409, &(0x7f0000000180)={0x1, 0x20, 0xffffffff, 0xd, 0x40, 0x1, 0x2, 0x4, 0x20, 0x1, 0x20, 0x0, &(0x7f0000000600), 0x0, 0x0}) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcd", 0x40}], 0x1}], 0x1, 0x40800) socket$can_raw(0x1d, 0x3, 0x1) pipe(&(0x7f00000001c0)) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@fallback, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x6) r3 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f00000002c0)={0xf0f045, 0x800}) poll(&(0x7f00000000c0)=[{r3, 0xe7d4c009da6c1985}], 0x1, 0x6) 7.30890231s ago: executing program 5 (id=588): syz_mount_image$squashfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4, &(0x7f0000000280)=ANY=[], 0x2, 0x1b5, &(0x7f00000002c0)="$eJzsVc0K00AQ/ibZJo0H8aoIHhRtD23T+HPVk/QBfABLG2sxRW0K2uIhnvoeIvQ1PIiv4EHxUg8ieLBXkcjuzqZJWxARbIX9oPm++XY2O7tbJg/Tp6kP4KeDAe5AwcVZfCCCAHCJtHfX1/zV09zm+IvQ3GT/FfNH5nS+eNRPknh6UOQNoOq42HV+L4xq4Y+m/edis3NSdCAnwz8t7J2PvSvIAJzIiR1bgFEdgnPUwoKjH0tJkKg4/t++cBvefungm+pl77+/GEhxH0Ce57n0hvpH5RzZid7qnEB6F4T6kYu8yJHNTwbXAPx4PXnSSeeL1njSH8WjmKLo+q3wRhjejDoPxkkc6ieVlnD4DyG5CUD21KA0XgPwiRvsGezDlM/jFOyUb9C4LJ81pYnXM3NzFoQ3xVzu7ZDvuIerqAN4ltHWNYVDbakHgguhgi6XCyr2VlcD7cHjZLgEgTgzXEHAMdPWqBVBVASist0lcF6WdoXjHvOKec1svlnmWyRkD8JnjrwM8PC8P5tNu9LSSnmmZu1F5zKULkiuuvGqm7voH7gVCwsLCwsLC4uTxq8AAAD//6x/T6A=") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2) 6.879770641s ago: executing program 3 (id=590): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1800840, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x1, 0x362, &(0x7f0000000900)="$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") statfs(&(0x7f0000000ac0)='.\x00', 0x0) 6.474115291s ago: executing program 2 (id=591): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x109081, 0x34) fcntl$lock(r1, 0x5, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r1, 0xe, &(0x7f0000000600)={0x7, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/205, 0xcd}, {0x0}, {&(0x7f00000000c0)=""/110, 0x6e}], &(0x7f00000005c0)=[0x1, 0x736, 0x4], 0x3}, 0x20) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) msgsnd(0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT], 0x2000, 0x0) msgrcv(0x0, 0x0, 0x0, 0x2, 0x3000) r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff) write$binfmt_script(r5, &(0x7f0000000080)={'#! ', './file1', [{}]}, 0x2) close(r5) execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000640)) 6.408995384s ago: executing program 5 (id=592): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0) socket$inet6(0xa, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = socket$kcm(0x23, 0x5, 0x0) sendmsg$kcm(r4, 0x0, 0x80) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x0, 0xc0, [0x0, 0x200000000180, 0x2000000001b0, 0x2000000001e0], 0x0, 0x0, 0x0}, 0x261) syz_open_dev$sndpcmp(&(0x7f0000000040), 0x1, 0x2800) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x100208f, &(0x7f00000000c0), 0x6, 0x59e, &(0x7f0000001500)="$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") 6.344213417s ago: executing program 4 (id=593): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_mtu(0xffffffffffffffff, 0x29, 0x50, 0x0, &(0x7f0000000000)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c) r4 = syz_init_net_socket$ax25(0x3, 0x5, 0xca) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xf32f, 0xfe000000}, &(0x7f00000000c0)=0x10) setsockopt$ax25_SO_BINDTODEVICE(r4, 0x101, 0x19, 0x0, 0x0) syz_emit_ethernet(0x80, &(0x7f0000000580)=ANY=[], 0x0) unshare(0x22020400) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x5, 0x40, 0x6, 0x8}, 0x48) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) socket$inet6_sctp(0xa, 0x801, 0x84) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff) 5.348696616s ago: executing program 2 (id=594): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x200719, &(0x7f0000000480)={[{@nojournal_checksum}, {@noblock_validity}, {@max_batch_time={'max_batch_time', 0x3d, 0x4f1a7201}}, {@errors_remount}, {@sysvgroups, 0x0}, {@nouid32}, {@noload}, {@nodelalloc}, {@nogrpid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x6}}, {@nogrpid}, {@errors_remount}, {@journal_async_commit}, {@norecovery}, {@bsdgroups}, {@data_ordered}, {@resgid}, {@resgid={'resgid', 0x3d, 0xee01}}, {@bh}], [{@audit}, {@smackfshat}], 0x2c}, 0xa, 0x534, &(0x7f0000000cc0)="$eJzs3M1rXF0ZAPBnbiZfJjFj/axVG61iUGza9HPhoi0K3SiCInUjxCQttWmVJkIbAk1FWnCh9C+ouhNcuXSlG1FxoXRrEdwoQnnJpnm7eLkvd+beyUwmk6/OJCT5/WAy55577tzz3HtO5t5zZiaAI2ss+1OKGI6Ifw1HjNYWmwuM1Z5WV5am311Zmi5Fmn77nVK13OuVpemiaLHdUL4wnkQkPyvFidbd9s8/XLwzNTc3ez/PmFhI8tTdqVuzt2bvTV6+fP7c4KWLkxc6EudQUbnj17/37BvTN5794K+/y7LSPLsxjppK9W/ftvfQs5b8fbn6NBZjzceywRd2UPeDYKQhXaqGn+xfZdi2rNVmp6s36/8xGj1Rrq8bja//dF8rB3RVmqZpf0tu/b1sOW1UKtU2SNPHKXAIlGKrEuv+CwCHRPFG/3olu1Ndmm69Dz7cXl2N6h1QFvdq/qitKVfvYMcqtXuj3i7t/yMRcWP5zfPiGuyoHX8AYO/98WrE02u1647iUVuTxMcayn0wanNDlYj4UEQci4gP59cvH42olv14RHyiYZuRLWcBemvzTw1ar3/+OZgnGi9XOya7/vtqPrfVfP1Xr3mlJ18aqcbfW7p5e272TH5MxqO3P1s+2/rS9WG1P33txS/b7X8sv/4rHtn+s+e1Esn/y+sG6GamFqbeNu7Cq8fVA/uoKf7/RHUCr5xPXmVPxyPik7t4/eyY3f7Sbz/Vbn1T/FmcLfH/ov2Ll3dRoXXSX0d8sXb+l6Pp/NeC78tTEwt3fzwx/3DxK7cb5yfPXro4eWFiIOZmz0wUraLV3/7x5Ft5suU2YpPzX3SNrk6kvXocAx/YsP3XZy4rWao+Xzu/8308efm07T3Nbtt/X+k71XQxP/tgamHh/tmIvtJya/7k2rYPpgabymftf/zUxv3/WMR7v8q3OxERWSP+dER8JiJO5nX/bER8LiJObRL/X659/oftbiG3jr+7svhndnT+2yWu/D1i41U9d/78h5Yd/3ysJf7eePN8tWXCPDv/56up8TxnZmphYKu4NqtpY+ItDh0AAAAcGCcjYjhKyel8oGk4kuT06Yih+gjK/MKXb/7oJ/dmat8RqERvUox0jebjoUk+/lnJl7OtJhuWs/LnquPGaZqmg9lydv8+N7K/ocORN9Sm/2f+19N2s3ZfawEOmh3No+n6cKis7/8vt71l5z+QAeytDnyOBjigys0/XwEcIdt+/+/Wt+CAfbNR/38UsboPVQH22Eb9/7stOVf2pC7A3jL+B0fX7vu/DwPAQef9H46kbX1JfheJY9c3KVMqd2en7RNJ1BL//X4t7PW/AlCJKHKKa5rNX/DfSURnatjz9gFmNc5zBpvOabLhVgPRiaMayZZlyjv4IYa2icF4uFj83EPHmkSyllPaovBg3Pnmi6420f7WBrm+9dYb26MisdjtLlM94L/Zp39LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHfN+AAAA//+Bs8Hk") openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0) 5.016773053s ago: executing program 5 (id=595): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0) r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) fcntl$lock(r2, 0x26, &(0x7f0000000000)) fcntl$lock(r2, 0x25, &(0x7f00000000c0)={0x1, 0x0, 0x7f, 0xffffffffffffffff}) r3 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) removexattr(&(0x7f0000000100)='./cgroup\x00', &(0x7f0000000140)=@known='user.incfs.size\x00') sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x38, 0x0, 0x8, 0x201, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xecf1}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0xa}, @CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x7}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000880}, 0x20008850) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_buf(r5, 0x107, 0x18, &(0x7f0000000040)="86270f75", 0x4) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x1) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 4.811968323s ago: executing program 3 (id=596): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) bpf$PROG_LOAD(0x5, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000180)={0x2, 0x4, 0x1, 0xe}, 0x10) write(0xffffffffffffffff, &(0x7f0000000000)="1c0000001a005f0214f9f4070009010000000000fe03000100000000", 0x1c) 4.073394989s ago: executing program 4 (id=597): setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000000c0)='macvtap0\x00', 0x10) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x2, @local}, 0x10) 3.835331691s ago: executing program 5 (id=598): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x8104}, 0x40004) ioctl$COMEDI_CMD(0xffffffffffffffff, 0x80506409, &(0x7f0000000180)={0x1, 0x20, 0xffffffff, 0xd, 0x40, 0x1, 0x2, 0x4, 0x20, 0x1, 0x20, 0x0, &(0x7f0000000600), 0x0, 0x0}) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcd", 0x40}], 0x1}], 0x1, 0x40800) socket$can_raw(0x1d, 0x3, 0x1) pipe(&(0x7f00000001c0)) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f00000002c0)) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@fallback, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x6) r4 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f00000002c0)={0xf0f045, 0x800}) poll(&(0x7f00000000c0)=[{r4, 0xe7d4c009da6c1985}], 0x1, 0x6) 3.555325025s ago: executing program 4 (id=599): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000740)=0xe) 3.091848938s ago: executing program 2 (id=600): r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$TIOCSETD(r1, 0x5423, 0x0) r2 = dup(r1) r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0xfffffffd, 0x15f, 0x0, r2}, &(0x7f00000006c0)=0x0, &(0x7f0000000100)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x80010, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1) chdir(&(0x7f0000000540)='./cgroup\x00') mkdir(&(0x7f00000003c0)='./file0\x00', 0xffe9) syz_io_uring_setup(0x3eeb, &(0x7f0000000480)={0x0, 0x8000, 0x800}, &(0x7f00000001c0), &(0x7f00000003c0)) r5 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_int(r5, 0x29, 0x48, &(0x7f0000000500)=0x625, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8) bind$netlink(r6, 0x0, 0x0) unshare(0x28000600) r7 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901) move_mount(r7, 0x0, r7, 0x0, 0x276) 2.84235317s ago: executing program 3 (id=601): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r3, 0x1}, 0x14}}, 0x0) r4 = socket$rds(0x15, 0x5, 0x0) sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4000, @remote}, 0x10, 0x0, 0x0, &(0x7f00000004c0)}, 0x0) 2.672227808s ago: executing program 5 (id=602): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r2, 0x1}, 0x14}}, 0x0) r3 = socket$rds(0x15, 0x5, 0x0) sendmsg$rds(r3, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4000, @remote}, 0x10, 0x0, 0x0, &(0x7f00000004c0)}, 0x0) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0000}]}) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r4, 0x4b47, &(0x7f0000000080)={0x0, 0x7a, 0x20f}) 2.64935101s ago: executing program 4 (id=603): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000002c0)={0x38, 0x1, 0x1, 0xf03, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x2}, @CTA_PROTOINFO={0x1c, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0x18, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_HANDSHAKE_SEQ={0xc, 0x3, 0x1, 0x0, 0xffff}, @CTA_PROTOINFO_DCCP_ROLE={0x5, 0x2, 0xf7}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000d00), 0xffffffffffffffff) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000009000000010000050900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000050000000060a010400000000000000000100000008000b400000000028000480240001800b0001007470726f7879000014000280080003400000004808000140000000020900010073797a30"], 0xc4}}, 0x0) socket$rds(0x15, 0x5, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04050400c900", @ANYRES32], 0x7) 2.267278299s ago: executing program 4 (id=604): r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0x541b, 0x0) 2.23162585s ago: executing program 1 (id=605): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_io_uring_setup(0x82e, 0x0, 0x0, &(0x7f0000000080)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) r2 = socket(0x10, 0x3, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0xa, 0x4004, @fd=r2, 0x8000000000000001, &(0x7f0000000640)=[{&(0x7f0000000400)=""/78, 0x4e}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000480)=""/124, 0x7c}, {&(0x7f0000000200)=""/4, 0x4}, {&(0x7f0000000800)=""/206, 0xce}], 0x5, 0x1, 0x1, {0x0, r3}}) io_uring_enter(r0, 0x27e2, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6) syz_mount_image$xfs(&(0x7f0000009740), &(0x7f0000009780)='./file1\x00', 0x0, &(0x7f00000006c0)={[{@gquota}, {@nolargeio}, {@uqnoenforce}]}, 0x1, 0x9793, &(0x7f0000012f40)="$eJzs3QeYJHWhcP1Z2CVnUBFFUVExEiWIKEFAJEhUUECQLDkoQUkiEhQFAUVAcs4555xzzjnnnPmeZXeVux7Q+373ffF6znme3Zmurq6p/v+6qmamerqXnGexOQcGxhgY1hQDI3fzHXMutPGOc16+9057njzFWBNMPnzy8BtMOvzipIOGfxxlYGBglOHLGT5t7EdOOHGUgcHvTP97Y4851qBxBwamG35x9uEfZxr2YeJHR8z39kiNvKKD/nZx0PbD/r3T+EO/xNBPlr7pgrMHBgYmeNfth95kmn+4o9KWnGPeef5u9Te3oVZDhn/+7n+jDfs38f0DAxPfM8CPj3fPO+gDuEtDv+YEOz4wxrofwNf+X9eSc8w730j+Q7fFUYdPm2noNj7yNmhs5Mf5TavMuvvwIXzn8TYwMHQX91+2lf8VLTnHPAsMvPd+fuChscY7/e139ptjPzMwMPazAwNjPzcwMPbzAwNjvzAwMPaLH7RL/f9rjjmnn3Po9j7i8nD2EY/lCehxsffqL+w1MDAw+rB5xn5r2PFinClGHBOqqqrq37s55px+Ljj+j/F+x/+ttp7jlo7/VVVV/3ubb445px96HB/p+D/O+x3/v3vDDWsM+93/7DMNu9VbH+ydqKqqqv9W88yHx/8J3u/4P/4O1+3X8b+qqup/b4su+M7xf5yRjv+TvN/xf43577h0+Hwjvm94812LfOf5Y8Onv/6u6aO+a/pr75o+5F3Leff8o71r+ivvmj7GwMDYjwyf/sbfJ4/9zNDb/ONyxn7p78/HmXTwu6a//K7po71r+ivD12no9NHfNf3Nd80/xt+njzP0vymGf91X32eoq6qq/m1adPp55hp41/Psh08e8cR+fF7o0UdvfecHtb5VVVVVVVVV9d/vrSdPO+vvf/P9iYF3/e3q3/6GdfjvBQYdc84113xgK/rv0aB//H3IFh/0Ov3/bajzGIdNMTCw1hIf9KrUB9D/mr9Vr/8r5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+4t7j/P/f/v5/4J4v7jB81lkmu+Pexf5+y0kHVhv+2c13zLnQah/Aun8A/aee/x9YbdDAwHDfCYZaLjTHootPNTAwsNi9d0w248Dfrpt56HWzTjTqO3/MOTAw1Tv/D5n0PZY8/F0W3nlzh0n+toxj3ln+fG/vO+qgkVbiXc129n0HrrrkyzOM/PHz730//vb+Eku9tO+UI/6WZZSRZhrjPW48Yvkj7svIzsPXfaqh6z71BmuuM/X6G2/yldXWXH6VlVZZaa3pppt2hulnnGG6r80y9cqrrbHSNMP+f48xG/bWFaP+K2M2zshj9uQc7x6zke/bhCcdiGP2j+/q8V8W8c4Sz53toctGjNngf3HMRny9Ud9/zKZYbfgXmnRgyMBy7wzNoIGBSQcPGdho6IVpRx8YmHTI8HknHTrvNyYaZWBgx7/f0UHDX2x02DyDthg6z7/Z+5bMMnxENh0x38ivsz7yiv6z9y05fpxd7hjpfUv+b/V/dPz/B6+ZB/1toEa8AcLweYZ5fcDvM/EP6zvF4HcOcu+1vu/zujjvRI+vNVd9dIn/qdfFofUd533W931ex+8913eqaZ/eY9ii/sfWd6R93QLDrvxX9nUD77+vG5Vuv9KVk4+8r5v/vVfxv2zHI8Zo9JFmeq993Y7zn7v50OUPvP++boHVhr94wN/3daMMDEw66oh93dAd32hDBnYcemG6oRdGHzJwyNAL079zYcyBc4Ze+OoKa6+x4qB3XmZg+HKnGbrc2ScaNGwDuvHAVUff5e23Bw9fl5fG/q/rOvzxMcW7j+dzTDR8MIffdsRyh846YrmvbDPsutGGL/fl/8ZyR9yW1nfSM4ddN/rw5b4y0nKHvM9yR9z2H7aHqQb9lyeqwv7mA31fI9p+x3if9X2f1+HGx9s77lMu+9D/wOtwD3qv9R38/uv7Xu8b8p7r+9hlj+/zP/W64fQ4u2fvYY+VMYY/zt78bzx+R9x25P3YsBcCGbbbH+Nf2Y9N8Q/7sS1HHWWkwX5X7/V97oow//At4m9LW/GAl1cbMfZDRlruP/s+9133ZRDsxyYY6ee5QZvvMzCIxvyRNZ7f8K2d33/Mhwz8158tRoz5iNu+35iP/q+M+cfff8xH/j75vcZ8qs8Mu37ISOv/7jFfZLfZbxwx5qONtNx/Nuajv/+x4x/HfGBgCI35jpMNG7f325++15iPuO2IMR/6dWadaPDA3AMDA1MOH/PR/pUxn/R/5nE+Fsw/7POV/jbpmRkX/vKIMR95jP/ZmI/23xzzze752+N8yneu+/QoA6ONNrDR8htssN60w/4fcXG6Yf/zvuiZFYeN8/sdS9/LaMRt32+7GPyvGE3wLxkN+mdGkw1+L6O/b1qjHrjos/+n+6LB/12jc3hfdMq8w8bt/b4veq8xH3FbOg5O8q7bj/xz6Pu8fhbep3fGZ/5tR/y89+/w+lkjft79X/n6WSN+J7nayDv5+lfr9//u8neXv7v83eUv7j3O/08x4vz/2+Ps/+HhP3QOuXLmW2b/oNf3A+4/+vz/cN//cv5/9ltmvnLoj1bDr3vf87PD5vm3PD8707APEz86Yr6Rzw+OvKL/7Pzs3rtucOX/o/Oz/0eN2Fb/hZ+L2/+7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v8xb3H+f9pRjwP4MHFF/re8BOhQzad9shNP+j1/YD7jz7/P9z3v5z/3/TIaTcdZeBv173v+f9h8zjO/9+34ObL/Duf/x+xrXb+v/5J+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/uPc4/z/7iOcBHD7b3J8d8XyA67fbd48Pen0/4P5Tz//3/v/e2v+7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v8xQ0//z8w0tskLtzjAoPz//+7ew//RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4v/9/DGL/w/yxyz+S+aPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8f5w/ZvFfLn/M4r98/pjF/yf5Yxb/FfLHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/T/PHLP6r549Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv/18scs/uvnj1n8N8gfs/j/LH/M4v/z/DGL/4b5Yxb/jfLHLP4b549Z/DfJH7P4/yJ/zOL/y/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx/1X+mMV/q/wxi/+v88cs/lvnj1n8f5M/ZvHfJn/M4r9t/pjFf7v8MYv/9vljFv/f5o9Z/H+XP2bx3yF/zOL/+/wxi/8f8scs/jvmj1n8d8ofs/j/MX/M4r9z/pjFf5f8MYv/rvljFv8/5Y9Z/P+cP2bx3y1/zOL/l/wxi//u+WMW/z3yxyz+e+aPWfz/mj9m8d8rf8ziv3f+mMV/n/wxi/+++WMW//3yxyz+++ePWfwPyB+z+B+YP2bxPyh/zOJ/cP6Yxf+Q/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMR/0ED+mMV/UP6YxX+U/DGL/6j5Yxb/wfljFv8h+WMW/9Hyxyz+o+ePWfzHyB+z+I+ZP2bxHyt/zOI/dv6YxX+c/DGL/7j5Yxb/8fLHLP7j549Z/CfIH7P4T5g/ZvGfKH/M4j9x/pjFf5L8MYv/h/LHLP4fzh+z+H8kf8ziP2n+mMX/o/ljFv/J8scs/h/LH7P4fzx/zOI/ef6Yxf8T+WMW/0/mj1n8p8gfs/h/Kn/M4v/p/DGL/2fyxyz+U+aPWfw/mz9m8f9c/pjF//P5Yxb/qfLHLP5fyB+z+H8xf8zi/6X8MYv/l/PHLP5fyR+z+H81f8ziP3X+mMV/mvwxi/+0+WMW/+nyxyz+0+ePWfxnyB+z+H8tf8ziP2P+mMV/pvwxi//M+WMW/1nyxyz+X88fs/jPmj9m8f9G/pjFf7b8MYv/N/PHLP7fyh+z+M+eP2bxnyN/zOI/Z/6YxX+u/DGL/7fzxyz+c+ePWfznyR+z+M+bP2bx/07+mMV/vvwxi/9388cs/vPnj1n8F8gfs/gvmD9m8V8of8zi/738MYv/wvljFv9F8scs/ovmj1n8F8sfs/gvnj9m8V8if8zi//38MYv/D/LHLP5L5o9Z/JfKH7P4/zB/zOL/o/wxi//S+WMW/2Xyxyz+y+aPWfx/nD9m8V8uf8ziv3z+mMX/J/ljFv8V8scs/ivmj1n8V8ofs/ivnD9m8V8lf8ziv2r+mMV/tfwxi/9P88cs/qvnj1n818gfs/ivmT9m8V8rf8ziv3b+mMV/nfwxi/+6+WMW//Xyxyz+6+ePWfw3yB+z+P8sf8zi//P8MYv/hvljFv+N8scs/hvnj1n8N8kfs/j/In/M4v/L/DGL/6b5Yxb/zfLHLP6b549Z/LfIH7P4b5k/ZvH/Vf6YxX+r/DGL/6/zxyz+W+ePWfx/kz9m8d8mf8ziv23+mMV/u/wxi//2+WMW/9/mj1n8f5c/ZvHfIX/M4v/7/DGL/x/yxyz+O+aPWfx3yh+z+P8xf8ziv3P+mMV/l/wxi/+u+WMW/z/lj1n8/5w/ZvHfLX/M4v+X/DGL/+75Yxb/PfLHLP575o9Z/P+aP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+F+ZP2bxvyr/d7fliE8s/lfnj1n8r8kfs/hfmz9m8b8uf8zif33+mMX/hvwxi/+N+WMW/5vyxyz+N+ePWfxvyR+z+N+aP2bxvy1/zOJ/e/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/O/JH7P435s/ZvG/L3/M4n9//pjF/4H8MYv/g/ljFv+H8scs/g/nj1n8H8kfs/g/mj9m8X8sf8zi/3j+mMX/ifwxi/+T+WMW/6fyxyz+T+ePWfyfyR+z+D+bP2bxfy5/zOL/fP6Yxf+F/DGL/4v5Yxb/l/LHLP4v549Z/F/JH7P4v5o/ZvF/LX/M4v96/pjF/438MYv/m/ljFv+38scs/m/nj0n83/k0/3/M4j8of8ziP0r+mMV/1Pwxi//g/DGL/5D8MYv/aPljFv/R88cs/mPkj1n8x8wfs/iPlT9m8R87f8ziP07+mMV/3Pwxi/94+WMW//Hzxyz+E+SPWfwnzB+z+E+UP2bxnzh/zOI/Sf6Yxf9D+WMW/w/nj1n8P5I/ZvGfNH/M4v/R/DGL/2T5Yxb/j+WPWfw/nj9m8Z88f8zi/4n8MYv/J/PHLP5T5I9Z/D+VP2bx/3T+mMX/M/ljFv8p88cs/p/NH7P4fy5/zOL/+fwxi/9U+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvGfOn/M4j9N/pjFf9r8MYv/dPljFv/p88cs/jPkj1n8v5Y/ZvGfMX/M4j9T/pjFf+b8MYv/LPljFv+v549Z/GfNH7P4fyN/zOI/W/6Yxf+b+WMW/2/lj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMX/2/ljFv+588cs/vPkj1n8580fs/h/J3/M4j9f/pjF/7v5Yxb/+fPHLP4L5I9Z/BfMH7P4L5Q/ZvH/Xv6YxX/h/DGL/yL5YxL/eo8k/qMs1vaPWfwXzx+z+C+RP2bx/37+mMX/B/ljFv8l88cs/kvlj1n8f5g/ZvH/Uf6YxX/p/DGL/zL5Yxb/ZfPHLP4/zh+z+C+XP2bxXz5/zOL/k/wxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+K+SP2bxXzV/zOK/Wv6Yxf+n+WMW/9Xzxyz+a+SPWfzXzB+z+K+VP2bxXzt/zOK/Tv6YxX/d/DGL/3r5Yxb/9fPHLP4b5I9Z/H+WP2bx/3n+mMV/w/wxi/9G+WMW/43zxyz+m+SPWfx/kT9m8f9l/pjFf9P8MYv/ZvljFv/N88cs/lvkj1n8t8wfs/j/Kn/M4r9V/pjF/9f5Yxb/rfPHLP6/yR+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/2/zxyz+v8sfs/jvkD9m8f99/pjF/w/5Yxb/HfPHLP475Y9Z/P+YP2bx3zl/zOK/S/6YxX/X/DGL/5/yxyz+f84fs/jvlj9m8f9L/pjFf/f8MYv/HvljFv8988cs/n/NH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv/988cs/gfkj1n8D8wfs/gflD9m8T84f8zif0j+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP4n5I9Z/E/MH7P4n5Q/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/mfkj1n8z8wfs/iflT9m8T87f8zif07+mMX/3Pwxi/95+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOJ/Sf6Yxf/S/DGL/2X5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/dfljFv/r88cs/jfkj1n8b8wfs/jflD9m8b85f8zif0v+mMX/1vwxi/9t+WMW/9vzxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/B/MH7P4P5Q/ZvF/OH/M4v9I/pjF/9H8MYv/Y/ljFv/H88cs/k/kj1n8n8wfs/g/lT9m8X86f8zi/0z+mMX/2fwxi/9z+WMW/+fzxyz+L+SPWfxfzB+z+L+UP2bxfzl/zOL/Sv6Yxf/V/DGL/2v5Yxb/1/PHLP5v5I9Z/N/MH3vHf9DAf7z/W/ljlu3/7fwxif+oA/ljFv9B+WMW/1Hyxyz+o+aPWfwH549Z/Ifkj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/3Hyxyz+4+aPWfzHyx+z+I+fP2bxnyB/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A9T+b89/r86p8X/cJX/v57F/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+J+ePWfxPyR+z+J+aP2bxPy1/zOJ/ev6Yxf+M/DGL/5n5Yxb/s/LHLP5n549Z/M/JH7P4n5s/ZvE/L3/M4n9+/pjF/4L8MYv/hfljFv+L8scs/hfnj1n8L8kfs/hfmj9m8b8sf8zif3n+mMX/ivwxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePSfwHD+SPWfwH5Y9Z/EfJH7P4j5o/ZvEfnD9m8R+SP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/MfJH7P4j5s/ZvEfL3/M4j9+/pjFf4L8MYv/hPljFv+J8scs/hPnj1n8J8kfs/h/KH/M4v/h/DGL/0fyxyz+k+aPWfw/mj9m8Z8sf8zi/7H8MYv/x/PHLP6T549Z/D+RP2bx/2T+mMV/ivwxi/+n8scs/p/OH7P4fyZ/zOI/Zf6Yxf+z+WMW/8/lj1n8P58/ZvGfKn/M4v+F/DGL/xfzxyz+X8of+8/2H2vE1MFfzh/7z/b/W4O/kj9m8f9q/pjFf+r8MYv/NPlj/8n+Q/4+dfC0+WP/yf7v3v6nyx+z+E+fP2bxnyF/zOL/tfwxi/+M+WMW/5nyxyz+M+ePWfxnyR+z+H89f8ziP2v+mMX/G/ljFv/Z8scs/t/MH7P4fyt/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP7fzh+z+M+dP2bxnyd/zOI/b/6Yxf87+WMW//nyxyz+380fs/jPnz9m8V8gf8ziv2D+mMV/ofwxi//38scs/gvnj1n8F8kfs/gvmj9m8V8sf8ziv3j+mMV/ifwxi//388cs/j/IH7P4L5k/ZvFfKn/M4v/D/DGL/4/yxyz+S+ePWfyXyR+z+C+bP2bx/3H+mMV/ufwxi//y+WMW/5/kj1n8V8gfs/ivmD9m8V8pf8ziv3L+mMV/lfwxi/+q+WMW/9Xyxyz+P80fs/ivnj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfzXyx+z+K+fP2bx3yB/zOL/s/wxi//P88cs/hvmj1n8N8ofs/hvnD9m8d8kf8zi/4v8MYv/L/PHLP6b5o9Z/DfLH7P4b54/ZvHfIn/M4r9l/pjF/1f5Yxb/rfLHLP6/zh+z+G+dP2bx/03+mMV/m/wxi/+2+WMW/+3yxyz+2+ePWfx/mz9m8f9d/pjFf4f8MYv/7/PHLP5/yB+z+O+YP2bx3yl/zOL/x/wxi//O+WMW/13yxyz+u+aPWfz/lD9m8f9z/pjFf7f8MYv/X/LHLP67549Z/PfIH7P475k/ZvH/a/6YxX+v/DGL/975Yxb/ffLHLP77Sv1H/yfXW/z3k/r/syz+++ePWfwPyB+z+B+YP2bxPyh/zOJ/cP6Yxf+Q/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1Q+/rth/USv37ZvG/ru0fs/hfnz9m8b8hf8zif2P+mMX/pvwxi//N+WMW/1vyxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOJ/Z/6Yxf+u/DGL/935Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv9H8scs/o/mj1n8H8sfs/g/nj9m8X8if8zi/2T+mMX/qfwxi//T+WMW/2fyxyz+z+aPWfyfyx+z+D+fP2bxfyF/zOL/Yv6Yxf+l/DGL/8v5Yxb/V/LHLP6v5o9Z/F/LH7P4v54/ZvF/I3/M4v9m/pjF/638MYv/2/ljEv8hA/ljFv9B+WMW/1Hyxyz+o+aPWfwH549Z/Ifkj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/3Hyxyz+4+aPWfzHyx+z+I+fP2bxnyB/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8T8hf8zif2L+mMX/pPwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bxPyN/zOJ/Zv6Yxf+s/DGL/9n5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D8+0AOAsvg/ET9m8X8yf8zi/1T+mMX/6fwxi/8z+WMW/2fzxyz+z+WPWfyfzx+z+L+QP2bxfzF/zOL/Uv6Yxf/l/DGL/yv5Yxb/V/PHLP6v5Y9Z/F/PH7P4v5E/ZvF/M3/M4v9W/pjF/+38MYn/aAP5Yxb/QfljFv9R8scs/qPmj1n8B+ePWfyH5I9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9x8scs/uPmj1n8x8sfs/iPnz9m8Z8gf8ziP2H+mMV/ovwxi//E+WMW/0nyxyz+H8ofs/h/OH/M4v+R/DGL/6T5Yxb/j+aPWfwnyx+z+H8sf8zi//H8MYv/5PljFv9P5I9Z/D+ZP2bxnyJ/zOL/qfwxi/+n88cs/p/JH7P4T5k/ZvH/bP6Yxf9z+WMW/8/nj1n8p8ofs/h/IX/M4v/F/DGL/5fyxyz+X84fs/h/JX/M4v/V/DGL/9T5Yxb/afLHLP7T5o9Z/KfLH7P4T58/ZvGfIX/M4v+1/DGL/4z5Yxb/mfLHLP4z549Z/GfJH7P4fz1/zOI/a/6Yxf8b+WMW/9nyxyz+38wfs/h/K3/M4j97/pjFf478MYv/nPljFv+58scs/t/OH7P4z50/ZvGfJ3/M4j9v/pjF/zv5Yxb/+fLHLP7fzR+z+M+fP2bxXyB/zOK/YP6YxX+h/DGL//fyxyz+C+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL//fzxyz+P8gfs/gvmT9m8V8qf8zi/8P8MYv/j/LHLP5L549Z/JfJH7P4L5s/ZvH/cf6YxX+5/DGL//L5Yxb/n+SPWfxXyB+z+K+YP2bxXyl/zOK/cv6YxX+V/DGL/6r5Yxb/1fLHLP4/zR+z+K+eP2bxXyN/zOK/Zv6YxX+t/DGL/9r5Yxb/dfLHLP7r5o9Z/NfLH7P4r58/ZvHfIH/M4v+z/DGL/8/zxyz+G+aPWfw3yh+z+G+cP2bx3yR/zOL/i/wxi/8v88cs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMX/V/ljFv+t8scs/r/OH7P4b50/ZvH/Tf6YxX+b/DGL/7b5Yxb/7fLHLP7b549Z/H+bP2bx/13+mMV/h/wxi//v88cs/n/IH7P475g/ZvHfKX/M4v/H/DGL/875Yxb/XfLHLP675o9Z/P+UP2bx/3P+mMV/t/wxi/9f8scs/rvnj1n898gfs/jvmT9m8f9r/pjFf6/8MYv/3vljFv998scs/vvmj1n898sfs/jvnz9m8T8gf8zif2D+mMX/oPwxi//B+WMW/0Pyxyz+h+aPWfwPyx+z+B+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvE/IX/M4n9i/pjF/6T8MYv/yfljFv9T8scs/qfmj1n8T8sfs/ifnj9m8T8jf8zif2b+mMX/rPwxi//Z+WMW/3Pyxyz+5+aPWfzPyx+z+J+fP2bxvyB/zOJ/Yf6Yxf+i/DGL/8X5Yxb/S/LHLP6X5o9Z/C/LH7P4X54/ZvG/In/M4n9l/pjF/6r8MYv/1fljFv9r8scs/tfmj1n8r8sfs/hfnz9m8b8hf8zif2P+mMX/pvwxi//N+WMW/1vyxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOJ/Z/6Yxf+u/DGL/935Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv9H8scs/o/mj1n8H8sfs/g/nj9m8X8if8zi/2T+mMX/qfwxi//T+WMW/2fyxyz+z+aPWfyfyx+z+D+fP2bxfyF/zOL/Yv6Yxf+l/DGL/8v5Yxb/V/LHLP6v5o9Z/F/LH7P4v54/ZvF/I3/M4v9m/pjF/638MYv/2/ljEv/RB/LHLP6D8scs/qPkj1n8R80fs/gPzh+z+A/JH7P4j5Y/ZvEfPX/M4j9G/pjFf8z8MYv/WPljFv+x88cs/uPkj1n8x80fs/iPlz9m8R8/f8ziP0H+mMV/wvwxi/9E+WMW/4nzxyz+k+SPWfw/lD9m8f9w/pjF/yP5Yxb/SfPHLP4fzR+z+E+WP2bx/1j+mMX/4/ljFv/J88cs/p/IH7P4fzJ/zOI/Rf6Yxf9T+WMW/0/nj1n8P5M/ZvGfMn/M4v/Z/DGL/+fyxyz+n88fs/hPlT9m8f9C/pjF/4v5Yxb/L+WPWfy/nD9m8f9K/pjF/6v5Yxb/qfPHLP7T5I9Z/KfNH7P4T5c/ZvGfPn/M4j9D/pjF/2v5Yxb/GfPHLP4z5Y9Z/GfOH7P4z5I/ZvH/ev6YxX/W/DGL/zfyxyz+s+WPWfy/mT9m8f9W/pjFf/b8MYv/HPljFv8588cs/nPlj1n8v50/ZvGfO3/M4j9P/pjFf978MYv/d/LHLP7z5Y9Z/L+bP2bxnz9/zOK/QP6YxX/B/DGL/0L5Yxb/7+WPWfwXzh+z+C+SP2bxXzR/zOK/WP6YxX/x/DGL/xL5Yxb/7+ePWfx/kD9m8V8yf8ziv1T+mMX/h/ljFv8f5Y9Z/JfOH7P4L5M/ZvFfNn/M4v/j/DGL/3L5Yxb/5fPHLP4/yR+z+K+QP2bxXzF/zOK/Uv6YxX/l/DGL/yr5Yxb/VfPHLP6r5Y9Z/H+aP2bxXz1/zOK/Rv6YxX/N/DGL/1r5Yxb/tfPHLP7r5I9Z/NfNH7P4r5c/ZvFfP3/M4r9B/pjF/2f5Yxb/n+ePWfw3zB+z+G+UP2bx3zh/zOK/Sf6Yxf8X+WMW/1/mj1n8N80fs/hvlj9m8d88f8ziv0X+mMV/y/wxi/+v8scs/lvlj1n8f50/ZvHfOn/M4v+b/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4/zZ/zOL/u/wxi/8O+WMW/9/nj1n8/5A/ZvHfMX/M4r9T/pjF/4/5Yxb/nfPHLP675I9Z/HfNH7P4/yl/zOL/5/wxi/9u+WMW/7/kj1n8d88fs/jvkT9m8d8zf8zi/9f8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/hflz9m8b8+f8zif0P+mMX/xvwxi/9N+WMW/5vzxyz+t+SPWfxvzR+z+N+WP2bxvz1/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP735I9Z/O/NH7P435c/ZvG/P3/M4v9A/pjF/8H8MYv/Q/ljFv+H88cs/o/kj1n8H80fs/g/lj9m8X88f8zi/0T+mMX/yfwxi/9T+WMW/6fzxyz+z+SPWfyfzR+z+D+XP2bxfz5/zOL/Qv6Yxf/F/DGL/0v5Yxb/l/PHLP6v5I9Z/F/NH7P4v5Y/ZvF/PX/M4v9G/pjF/838MYv/W/ljFv+388ck/mMM5I9Z/Aflj1n8R8kfs/iPmj9m8R+cP2bxH5I/ZvEfLX/M4j96/pjFf4z8MYv/mPljFv+x8scs/mPnj1n8x8kfs/iPmz9m8R8vf8ziP37+mMV/gvwxi/+E+WMW/4nE/m9v/t7XWfwnFvu/Xxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8T8hf8zif2L+mMX/pPwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bxPyN/zOJ/Zv6Yxf+s/DGL/9n5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMS/zEH8scs/oPyxyz+o+SPWfxHzR+z+A/OH7P4D8kfs/iPlj9m8R89f8ziP0b+mMV/zPwxi/9Y+WMW/7Hzxyz+4+SPWfzHzR+z+I+XP2bxHz9/zOI/Qf6YxX/C/DGL/0T5Yxb/ifPHLP6T5I9Z/D+UP2bx/3D+mMX/I/ljFv9J88cs/h/NH7P4T5Y/ZvH/WP6Yxf/j+WMW/8nzxyz+n8gfs/h/Mn/M4j9F/pjF/1P5Yxb/T+ePWfw/kz9m8Z8yf8zi/9n8MYv/5/LHLP6fzx+z+E+VP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+p88cs/tPkj1n8p80fs/hPlz9m8Z8+f8ziP0P+mMX/a/ljFv8Z88cs/jPlj1n8Z84fs/jPkj9m8f96/pjFf9b8MYv/N/LHLP6z5Y9Z/L+ZP2bx/1b+mMV/9vwxi/8c+WMW/znzxyz+c+WPWfy/nT9m8Z87f8ziP0/+mMV/3vwxi/938scs/vPlj1n8v5s/ZvGfP3/M4r9A/pjFf8H8MYv/QvljFv/v5Y9Z/BfOH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv/v549Z/H+QP2bxXzJ/zOK/VP6Yxf+H+WMW/x/lj1n8l84fs/gvkz9m8V82f8zi/+P8MYv/cvljFv/l88cs/j/JH7P4r5A/ZvFfMX/M4r9S/pjFf+X8MYv/KvljFv9V88cs/qvlj1n8f5o/ZvFfPX/M4r9G/pjFf838MYv/WvljFv+188cs/uvkj1n8180fs/ivlz9m8V8/f8ziv0H+mMX/Z/ljFv+f549Z/DfMH7P4b5Q/ZvHfOH/M4r9J/pjF/xf5Yxb/X+aPWfw3zR+z+G+WP2bx3zx/zOK/Rf6YxX/L/DGL/6/yxyz+W+WPWfx/nT9m8d86f8zi/5v8MYv/NvljFv9t88cs/tvlj1n8t88fs/j/Nn/M4v+7/DGL/w75Yxb/3+ePWfz/kD9m8d8xf8ziv1P+mMX/j/ljFv+d88cs/rvkj1n8d80fs/j/KX/M4v/n/DGL/275Yxb/v+SPWfx3zx+z+O+RP2bx3zN/zOL/1/wxi/9e+WMW/73zxyz+++SPWfz3zR+z+O+XP2bx3z9/zOJ/QP6Yxf/A/DGL/0H5Yxb/g/PHLP6H5I9Z/A/NH7P4H5Y/ZvE/PH/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMW/7fzxyT+Yw3kj1n8B+WPWfxHyR+z+I+aP2bxH5w/ZvEfkj9m8R8tf8ziP3r+mMV/jPwxi/+Y+WMW/7Hyxyz+Y+ePWfzHyR+z+I+bP2bxHy9/zOI/fv6YxX+C/DGL/4T5Yxb/ifLHLP4T549Z/CfJH7P4fyh/zOL/4fwxi/9H8scs/pPmj1n8P5o/ZvGfLH/M4v+x/DGL/8fzxyz+k+ePWfw/kT9m8f9k/pjFf4r8MYv/p/LHLP6fzh+z+H8mf8ziP2X+mMX/s/ljFv/P5Y9Z/D+fP2bxnyp/zOL/hfwxi/8X88cs/l/KH7P4fzl/zOL/lfwxi/9X88cs/lPnj1n8p8kfs/hPmz9m8Z8uf8ziP33+mMV/hvwxi//X8scs/jPmj1n8Z8ofs/jPnD9m8Z8lf8zi//X8MYv/rPljFv9v5I9Z/GfLH7P4fzN/zOL/rfwxi//s+WMW/znyxyz+c+aPWfznyh+z+H87f8ziP3f+mMV/nvwxi/+8+WMW/+/kj1n858sfs/h/N3/M4j9//pjFf4H8MYv/gvljFv+F8scs/t/LH7P4L5w/ZvFfJH/M4r9o/pjFf7H8MYv/4vljFv8l8scs/t/PH7P4/yB/zOK/ZP6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMX/x/ljFv/l8scs/svnj1n8f5I/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/j/NH/M4r96/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8V8vf8ziv37+mMV/g/wxi//P8scs/j/PH7P4b5g/ZvHfSOY/+r84n8V/Y5n/v5rFf5P8MYv/L/LHLP6/zB+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/X+WPWfy3yh+z+P86f8ziv3X+mMX/N/ljFv9t8scs/tvmj1n8t8sfs/hvnz9m8f9t/pjF/3f5Yxb/HfLHLP6/zx+z+P8hf8ziv2P+mMV/p/wxi/8f88cs/jvnj1n8d8kfs/jvmj9m8f9T/pjF/8/5Yxb/3fLHLP5/yR+z+O+eP2bx3yN/zOK/Z/6Yxf+v+WMW/73yxyz+e+ePWfz3yR+z+O+bP2bx3y9/zOK/f/6Yxf+A/DGL/4H5Yxb/g/LHLP4H549Z/A/JH7P4H5o/ZvE/LH/M4n94/pjF/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+J+ePWfxPyR+z+J+aP2bxPy1/zOJ/ev6Yxf+M/DGL/5n5Yxb/s/LHLP5n549Z/M/JH7P4n5s/ZvE/L3/M4n9+/pjF/4L8MYv/hfljFv+L8scs/hfnj1n8L8kfs/hfmj9m8b8sf8zif3n+mMX/ivwxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePSfzHHsgfs/gPyh+z+I+SP2bxHzV/zOI/OH/M4j8kf8ziP1r+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4T5I/ZvH/UP6Yxf/D+WMW/4/kj1n8J80fs/h/NH/M4j9Z/pjF/2P5Yxb/j+ePWfwnzx+z+H8if8zi/8n8MYv/FPljFv9P5Y9Z/D+dP2bx/0z+mMV/yvwxi/9n88cs/p/LH7P4fz5/zOI/Vf6Yxf8L+WMW/y/mj1n8v5Q/ZvH/cv6Yxf8r+WMW/6/mj1n8p84fs/hPkz9m8Z82f8ziP13+mMV/+vwxi/8M+WMW/6/lj1n8Z8wfs/jPlD9m8Z85f8ziP0v+mMX/6/ljFv9Z88cs/t/IH7P4z5Y/ZvH/Zv6Yxf9b+WMW/9nzxyz+c+SPWfznzB+z+M+VP2bx/3b+mMV/7vwxi/88+WMW/3nzxyz+38kfs/jPlz9m8f9u/pjFf/78MYv/AvljFv8F88cs/gvlj1n8v5c/ZvFfOH/M4r9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8v58/ZvH/Qf6YxX/J/DGL/1L5Yxb/H+aPWfx/lD9m8V86f8ziv0z+mMV/2fwxi/+P88cs/svlj1n8l88fs/j/JH/M4r9C/pjFf8X8MYv/SvljFv+V88cs/qvkj1n8V80fs/ivlj9m8f9p/pjFf/X8MYv/GvljFv8188cs/mvlj1n8184fs/ivkz9m8V83f8ziv17+mMV//fwxi/8G+WMW/5/lj1n8f54/ZvHfMH/M4r9R/pjFf+P8MYv/JvljFv9f5I9Z/H+ZP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP6/yh+z+G+VP2bx/3X+mMV/6/wxi/9v8scs/tvkj1n8t80fs/hvlz9m8d8+f8zi/9v8MYv/7/LHLP475I9Z/H+fP2bx/0P+mMV/x/wxi/9O+WMW/z/mj1n8d84fs/jvkj9m8d81f8zi/6f8MYv/n/PHLP675Y9Z/P+SP2bx3z1/zOK/R/6YxX/P/DGL/1/zxyz+e+WPWfz3zh+z+O+TP2bx3zd/zOK/X/6YxX///DGL/wH5Yxb/A/PHLP4H5Y9Z/A/OH7P4H5I/ZvE/NH/M4n9Y/pjF//D8MYv/EfljFv8j88cs/kflj1n8j84fs/gfkz9m8T82f8zif1z+mMX/+Pwxi/8J+WMW/xPzxyz+J+WPWfxPzh+z+J+SP2bxPzV/zOJ/Wv6Yxf/0/DGL/xn5Yxb/M/PHLP5n5Y9Z/M/OH7P4n5M/ZvE/N3/M4n9e/pjF//z8MYv/BfljFv8L88cs/hflj1n8L84fs/hfkj9m8b80f8zif1n+mMX/8vwxi/8V+WMW/yvzxyz+V+WPWfyvzh+z+F+TP2bxvzZ/zOJ/Xf6Yxf/6/DGL/w35Yxb/G/PHLP435Y9Z/G/OH7P435I/ZvG/NX/M4n9b/pjF//b8MYv/HfljFv8788cs/nflj1n8784fs/jfkz9m8b83f8zif1/+mMX//vwxi/8D+WMW/wfzxyz+D+WPWfwfzh+z+D+SP2bxfzR/zOL/WP6Yxf/x/DGL/xP5Yxb/J/PHLP5P5Y9Z/J/OH7P4P5M/ZvF/Nn/M4v9c/pjF//n8MYv/C/ljFv8X88cs/i/lj1n8X84fs/i/kj9m8X81f8zi/1r+mMX/9fwxi/8b+WMW/zfzxyz+b+WPWfzfzh+T+I8zkD9m8R+UP2bxHyV/zOI/av6YxX9w/pjFf0j+mMV/tPwxi//o+WMW/zHyxyz+Y+aPWfzHyh+z+I+dP2bxHyd/zOI/bv6YxX+8/DGL//j5Yxb/CfLHLP4T5o9Z/CfKH7P4T5w/ZvGfJH/M4v+h/DGL/4ff0/+tt99++//Nqv07ZvH/SNs/ZvGfNH/M4v/R/DGL/2T5Yxb/j+WPWfw/nj9m8Z88f8zi/4n8MYv/J/PHLP5T5I9Z/D+VP2bx/3T+mMX/M/ljFv8p88cs/p/NH7P4fy5/zOL/+fwxi/9U+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvGfOn/M4j9N/pjFf9r8MYv/dPljFv/p88cs/jPkj1n8v5Y/ZvGfMX/M4j9T/pjFf+b8MYv/LPljFv+v549Z/GfNH7P4fyN/zOI/W/6Yxf+b+WMW/2/lj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMX/2/ljFv+588cs/vPkj1n8580fs/h/J3/M4j9f/pjF/7v5Yxb/+fPHLP4L5I9Z/BfMH7P4L5Q/ZvH/Xv6YxX/h/DGL/yL5Yxb/RfPHLP6L5Y9Z/BfPH7P4L5E/ZvH/fv6Yxf8H+WMW/yXzxyz+S+WPWfx/mD9m8f9R/pjFf+n8MYv/MvljFv9l88cs/j/OH7P4L5c/ZvFfPn/M4v+T/DGL/wr5Yxb/FfPHLP4r5Y9Z/FfOH7P4r5I/ZvFfNX/M4r9a/pjF/6f5Yxb/1fPHLP5r5I9Z/NfMH7P4r5U/ZvFfO3/M4r9O/pjFf938MYv/evljFv/188cs/hvkj1n8f5Y/ZvH/ef6YxX/D/DGL/0b5Yxb/jfPHLP6b5I9Z/H+RP2bx/2X+mMV/0/wxi/9m+WMW/83zxyz+W+SPWfy3zB+z+P8qf8ziv1X+mMX/1/ljFv+t88cs/r/JH7P4b5M/ZvHfNn/M4r9d/pjFf/v8MYv/b/PHLP6/yx+z+O+QP2bx/33+mMX/D/ljFv8d88cs/jvlj1n8/5g/ZvHfOX/M4r9L/pjFf9f8MYv/n/LHLP5/zh+z+O+WP2bx/0v+mMV/9/wxi/8e+WMW/z3zxyz+f80fs/jvlT9m8d87f8ziv0/+mMV/3/wxi/9++WMW//3zxyz+B+SPWfwPzB+z+B+UP2bxPzh/zOJ/SP6Yxf/Q/DGL/2H5Yxb/w/PHLP5H5I9Z/I/MH7P4H5U/ZvE/On/M4n9M/pjF/9j8MYv/cfljFv/j88cs/ifkj1n8T8wfs/iflD9m8T85f8zif0r+mMX/1Pwxi/9p+WMW/9Pzxyz+Z+SPWfzPzB+z+J+VP2bxPzt/zOJ/Tv6Yxf/c/DGL/3n5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4n9J/pjF/9L8MYv/ZfljFv/L88cs/lfkj1n8r8wfs/hflT9m8b86f8zif03+mMX/2vwxi/91+WMW/+vzxyz+N+SPWfxvzB+z+N+UP2bxvzl/zOJ/S/6Yxf/W/DGL/235Yxb/2/PHLP535I9Z/O/MH7P435U/ZvG/O3/M4n9P/pjF/978MYv/ffljFv/788cs/g/kj1n8H8x/aINGHgOL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHJP7jDuSPWfwH5Y9Z/EfJH7P4j5o/ZvEfnD9m8R+SP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/MfJH7P4j5s/ZvEfL3/M4j9+/pjFf4L8MYv/hPljFv+J8scs/hPnj1n8J8kfs/h/KH/M4v/h/DGL/0fyxyz+k+aPWfw/mj9m8Z8sf8zi/7H8MYv/x/PHLP6T549Z/D+RP2bx/2T+mMV/ivwxi/+n8scs/p/OH7P4fyZ/zOI/Zf6Yxf+z+WMW/8/lj1n8P58/ZvGfKn/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+U+ePWfynyR+z+E+bP2bxny5/zOI/ff6YxX+G/DGL/9fyxyz+M+aPWfxnyh+z+M+cP2bxnyV/zOL/9fwxi/+s+WMW/2/kj1n8Z8sfs/h/M3/M4v+t/DGL/+z5Yxb/OfLHLP5z5o9Z/OfKH7P4fzt/zOI/d/6YxX+e/DGL/7z5Yxb/7+SPWfznyx+z+H83f8ziP3/+mMV/gfwxi/+C+WMW/4Xyxyz+38sfs/gvnD9m8V8kf8ziv2j+mMV/sfwxi//i+WMW/yXyxyz+388fs/j/IH/M4r9k/pjFf6n8MYv/D/PHLP4/yh+z+C+dP2bxXyZ/zOK/bP6Yxf/H+WMW/+Xyxyz+y+ePWfx/kj9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1Xyxyz+q+aPWfxXyx+z+P80f8ziv3r+mMV/jfwxi/+a+WMW/7Xyxyz+a+ePWfzXyR+z+K+bP2bxXy9/zOK/fv6YxX+D/DGL/8/yxyz+P88fs/hvmD9m8d8of8ziv3H+mMV/k/wxi/8v8scs/r/MH7P4b5o/ZvHfLH/M4r95/pjFf4v8MYv/lvljFv9f5Y9Z/LfKH7P4/zp/zOK/df6Yxf83+WMW/23yxyz+2+aPWfy3yx+z+G+fP2bx/23+mMX/d/ljFv8d8scs/r/PH7P4/yF/zOK/Y/6YxX+n/DGL/x/zxyz+O+ePWfx3yR+z+O+aP2bx/1P+mMX/z/ljFv/d8scs/n/JH7P4754/ZvHfI3/M4r9n/pjF/6/5Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mfljFv+z8scs/mfnj1n8z8kfs/ifmz9m8T8vf8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfwvyR+z+F+aP2bxvyx/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvG/Ln/M4n99/pjF/4b8MYv/jfljFv+b8scs/jfnj1n8b8kfs/jfmj9m8b8tf8zif3v+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfzvyR+z+N+bP2bxvy9/zOJ/f/6Yxf+B/DGL/4P5Yxb/h/LHLP4P549Z/B/JH7P4P5o/ZvF/LH/M4v94/pjF/4n8MYv/k/ljFv+n8scs/k/nj1n8n8kfs/g/mz9m8X8uf8zi/3z+mMX/hfwxi/+L+WMW/5fyxyz+L+ePWfxfyR+z+L+aP2bxfy1/zOL/ev6Yxf+N/DGL/5v5Yxb/t/LHLP5v549J/McbyB+z+A/KH7P4j5I/ZvEfNX/M4j84f8ziPyR/zOI/Wv6YxX/0/DGL/xj5Yxb/MfPHLP5j5Y9Z/MfOH7P4j5M/ZvEfN3/M4j9e/pjFf/z8MYv/BPljFv8J88cs/hPlj1n8J84fs/hPkj9m8f9Q/pjF/8P5Yxb/j+SPWfwnzR+z+H80f8ziP1n+mMX/Y/ljFv+P549Z/CfPH7P4fyJ/zOL/yfwxi/8U+WMW/0/lj1n8P50/ZvH/TP6YxX/K/DGL/2fzxyz+n8sfs/h/Pn/M4j9V/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfynzh+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/r+WPWfxnzB+z+M+UP2bxnzl/zOI/S/6Yxf/r+WMW/1nzxyz+38gfs/jPlj9m8f9m/pjF/1v5Yxb/2fPHLP5z5I9Z/OfMH7P4z5U/ZvH/dv6YxX/u/DGL/zz5Yxb/efPHLP7fyR+z+M+XP2bx/27+mMV//vwxi/8C+WMW/wXzxyz+C+WPWfy/lz9m8V84f8ziv0j+mMV/0fwxi/9i+WMW/8Xzxyz+S+SPWfy/nz9m8f9B/pjFf8n8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/4/zxyz+y+WPWfyXzx+z+P8kf8ziv0L+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bx/2n+mMV/9fwxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOK/Xv6YxX/9/DGL/wb5Yxb/n+WPWfx/nj9m8d8wf8ziv1H+mMV/4/wxi/8m+WMW/1/kj1n8f5k/ZvHfNH/M4r9Z/pjFf/P8MYv/FvljFv8t88cs/r/KH7P4b5U/ZvH/df6YxX/r/DGL/2/yxyz+2+SPWfy3zR+z+G+XP2bx3z5/zOL/2/wxi//v8scs/jvkj1n8f58/ZvH/Q/6YxX/H/DGL/075Yxb/P+aPWfx3zh+z+O+SP2bx3zV/zOL/p/wxi/+f88cs/rvlj1n8/5I/ZvHfPX/M4r9H/pjFf8/8MYv/X/PHLP575Y9Z/PfOH7P475M/ZvHfN3/M4r9f/pjFf//8MYv/AfljFv8D88cs/gflj1n8D84fs/gfkj9m8T80f8zif1j+mMX/8Pwxi/8R+WMW/yPzxyz+R+WPWfyPzh+z+B+TP2bxPzZ/zOJ/XP6Yxf/4/DGL/wn5Yxb/E/PHLP4n5Y9Z/E/OH7P4n5I/ZvE/NX/M4n9a/pjF/3Sx/5D3uc7if4bY//2y+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMR//IH8MYv/oPwxi/8o+WMW/1Hzxyz+g/PHLP5D8scs/qPlj1n8R88fs/iPkT9m8R8zf8ziP1b+mMV/7Pwxi/84+WMW/3Hzxyz+4+WPWfzHzx+z+E+QP2bxnzB/zOI/Uf6YxX/i/DGL///HHj1lgWIYUAB8bV9jfcS2bdu2bdu2bdu2bdu2bSf/OXcFuTNbmOH9Ry3/I/iPWv5H9B+1/I/kP2r5H9l/1PI/iv+o5X9U/1HL/2j+o5b/0f1HLf9j+I9a/sf0H7X8j+U/avkf23/U8j+O/6jlf1z/Ucv/eP6jlv/x/Uct/xP4j1r+J/QftfxP5D9q+Z/Yf9TyP4n/qOV/Uv9Ry/9k/qOW/8n9Ry3/U/iPWv6n9B+1/E/lP2r5n9p/1PI/jf+o5X9a/1HL/3T+o5b/6f1HLf8z+I9a/mf0H7X8z+Q/avmf2X/U8j+L/6jlf1b/Ucv/bP6jlv/Z/Uct/3P4j1r+5/QftfzP5T9q+Z/bf9TyP4//qOV/Xv9Ry/98/qOW//n9Ry3/C/iPWv4X9B+1/C/kP2r5X9h/1PK/iP+o5X9R/1HL/2L+o5b/xf1HLf9L+I9a/pf0H7X8L+U/avlf2n/U8r+M/6jlf1n/Ucv/cv6jlv/l/Uct/yv4j1r+V/Qftfyv5D9q+V/Zf9Tyv4r/qOV/Vf9Ry/9q/qOW/9X9Ry3/a/iPWv7X9B+1/K/lP2r5X9t/1PK/jv+o5X9d/1HL/3r+o5b/9f1HLf8b+I9a/jf0H7X8b+Q/avnf2H/U8r+J/6jlf1P/Ucv/Zv6jlv/N/Uct/1v4j1r+t/Qftfxv5T9q+d/af9Tyv43/qOV/W/9Ry/92/qOW/+39Ry3/O/iPWv539B+1/O/kP2r539l/1PK/i/+o5X9X/1HL/27+o5b/3f1HLf97+I9a/vf0H7X87+U/avnf23/U8r+P/6jlf1//Ucv/fv6jlv/9/Uct/wf4j1r+D/Qftfwf5D9q+T/Yf9Tyf4j/qOX/UP9Ry/9h/qOW/8P9Ry3/R/iPWv6P9B+1/B/lP2r5P9p/1PJ/jP+o5f9Y/1HL/3H+o5b/4/1HLf8n+I9a/k/0H7X8n+Q/avk/2X/U8n+K/6jl/1T/Ucv/af6jlv/T/Uct/2f4j1r+z/Qftfyf5T9q+T/bf9Tyf47/qOX/XP9Ry/95/qOW//P9Ry3/F/iPWv4v9B+1/F/kP2r5v9h/1PJ/if+o5f9S/1HL/2X+o5b/y/1HLf9X+I9a/q/0H7X8X+U/avm/2n/U8n+N/6jl/1r/Ucv/df6jlv/r/Uct/zf4j1r+b/Qftfzf5D9q+b/Zf9Tyf4v/qOX/Vv9Ry/9t/qOW/9v9Ry3/d/iPWv7v9B+1/N/lP2r5v9t/1PJ/j/+o5f9e/1HL/33+o5b/+/1HLf8P+I9a/h/0H7X8P+Q/avl/2H/U8v+I/6jl/1H/Ucv/Y/6jlv/H/Uct/0/4j1r+n/Qftfw/5T9q+X/af9Ty/4z/qOX/Wf9Ry/9z/qOW/+f9Ry3/L/iPWv5f9B+1/L/kP2r5f9l/1PL/iv+o5f9V/1HL/2v+o5b/1/1HLf9v+I9a/t/0H7X8v+U/avl/23/U8v+O/6jl/13/Ucv/e/6jlv/3/Uct/x/4j1r+P/Qftfx/5D9q+f/Yf9Ty/4n/qOX/U/9Ry/9n/v9p4ICi/8/9Ry3/X/iPWv6/9B+1/H/lP2r5/9p/1PL/jf+o5f9b/1HL/3f+o5b/7/1HLf8/+I9a/n/0H7X8/+Q/avn/2X/U8v+L/6jl/1f/Ucv/b/6jlv/f/Uct/3/4j1r+//Qftfz/5T8q+R9ugP+o5f8//qOW///6j1r+/+c/avkf6D9q+f+//6jlfxD/Ucv/oP6jlv/B/Ect/4P7j1r+h/AftfwP6T9q+R/Kf9TyP7T/qOV/GP9Ry/+w/qN/3T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/s3e3sXmVhR/HT9d2T3/27+YcXkMGg003cWVrVyaDzYf6WDBVx2LABLKFlVEpzD0EN1CrQYnBGCYjQUTdpm4CiTHjxTABYSVRiVPROBENcQjqIqaGiYxoXGrutndp77XNetXr2ot9Pi/a+5zyO92WfHdO2ZoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ0uZtt9ywtqOjbZMXXnjhxcCLU/07E5Daa9Gf6h8JAAAAAAAAAAAAAAAwkhzfTnSqf44AAAAAAHC6aWl9V3d11ZBT1YMP5vy8rfd906tXXr/n+cdXlt/3f/jyYS45YfBBT09Pz0vNXTP7DycVRVH6bNP7jydXjkvX7+y6fHvfUSh++2xz67btzQd3fuXrD8+dOn1Obe/Z2mLNde0dbUsmFEWori22lg4aqooiTKwttpcOGksHk2qL+0sHS3sPphQHSgcXXruhY13pxAmfGk47La2fLaqHFFsM+d1gcP+dXZt2ld+Pcsny1WqK/v7rmn+4t+JjZSP0X75+qKrsf8w/QWBEY+v/9oXl96Nc8oT7/6PtdauG+9jI/ZevHyboH9IZ5vl/SKO9z/t79s8Y4fl/7jCXHNj/9C8ru0r93/TLF+r7T9WczPN/6fP1HYXqyv4nDHn+Lz3H15Sf/ycVRagd5y8HnFZaWj/XPdr9v7L7of3XnFWxqRrc/9FVe6pL/R++64H395+qPan+B64faka5/1d95sDQHyswNi2tu3sq7v9j6L9YMMwlB/qfv/vYVaX+z9h5ZN+gj42l/9rK/hdvufETizdvu6W+/ca169vWt93U2NjQtHRZU+NFyxf3PhL0vR3nrwqcHsZ3/y+mVmyqiqJtYL/ow8teKvV/8Nx//K3/1OQx9j9x1Pv/c+7/MKzzJxQTJxZb127Zsqmh7235sLHvbd9/Nkz/J379P2L/88r/H7D8dXfpC/KB/W/e+dWPlPq/d9KqB/pPTRxj/5NG67/ztc8LRBjn/X9dxWZI/+2vfmddqf8/vXL8UP+psX79P3nU/ne5/8N4tLRW/IWf/7FS/6v/dXi4Pyc4CWGKP/+DdHL0v3XaL74Ztw5T9Q/p5Oh/6ea2yL9sG/5P/5BOjv5/taPqSNw6nKF/SCdH/1/rfnBj3DpM0z+kk6P//bMfeSpuHf5f/5BOjv6Pr59+Vdw61Okf0snR/2Vf2rs6bh2m6x/SydF/1SvTnohbhxn6h3Ry9F9fdfan4tbhdfqHdHL0f13nwy/GrcNM/UM6Ofr//M5fR36fTni9/iGdHP0/9cetO+LWYZb+IZ0c/b8wq70+bh3O1D+kk6P/+2944pG4dXiD/iGdHP0//a0PHotbh6B/SCdH/9949siauHWYrX9IJ0f/+xYe+0PcOpylf0gnR////ujVH4hbhzfqH9LJ0X/Yv/y7cetwtv4hnRz9X/HkXQ1x6zBH/5BOjv47V9x2Z9w6nKN/SCdH/03NC2fHrcO5+od0cvQ/489/vztuHebqH9LJ0f/H7ntv5b/7fZLCefqHdHL0f/OG1Y/GrcP5+od0cvS/ckbPBXHrME//kE6O/g8fve9HceswX/+QTo7+775zyRVx6/Am/UM6Ofr/wa3ndcetw5v1D+nk6P/l2jtujVuHBfqHdHL0/+Wf1SyLW4eF+od0cvT/44e+vytuHd6if0gnR/8vvu+xc+LW4QL9Qzo5+t998awvxq3DW/UP6eTo/93PbFwftw6L9A/p5Oh/8t7fH41bh3r9Qzo5+p+/6uCH4tbhQv1DOjn637Boze/i1mGx/iGdHP0/c+DpQ3HrsET/kE6O/nc89unmuHVo0D+kk6P/xy/r+E/cOjTqH9LJ0f8/m37y8bh1WKp/SCdH/2ce+vYX4tahSf+QTo7+r35w8sy4dbhI/5BOjv43XjP7e3HrsEz/kE6O/i+Z+9ClcevwNv1DOjn6f89fV9wctw4X6x/SydF/3T33PBe3Dsv1D+nk6H/etbdfE7cOl+gf0snR//Vz6p+MW4dL9Q/p5Oj/juMtC+LWYYX+IZ0c/Xfd9vy+uHVYqX9IJ0f/3Z98uS5uHd6uf0gnR/97p1x5b9w6vEP/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8lx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirswIEMAAAAgDB/6zzaDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADATwEAAP///rjRtw==") r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) ioctl$XFS_IOC_FSGETXATTRA(r4, 0x801c582d, &(0x7f00000003c0)) r5 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0) read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8) r6 = gettid() r7 = socket(0x10, 0x803, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x403, 0xfffffff9, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x59808, 0x55007}, [@IFLA_NET_NS_PID={0x8, 0x13, r6}, @IFLA_ALT_IFNAME={0x14, 0x35, 'vlan0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4802}, 0x4000010) r8 = openat$6lowpan_enable(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$6lowpan_enable(r8, &(0x7f0000019240)='1', 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') 1.800847112s ago: executing program 4 (id=606): syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.kill\x00', 0x275a, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0) ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000180)={'pcmad\x00', [0x4f29, 0x0, 0xc13e, 0x4, 0x5, 0x5, 0xfffffffd, 0x4, 0x54c2cff4, 0xfd, 0x0, 0x200, 0x1, 0x9, 0x6, 0x104, 0xfffffffe, 0x10000, 0x7, 0xc, 0x89, 0x80000000, 0xffe, 0x20001e5f, 0x8000000, 0xe69, 0x3, 0x1, 0x4086, 0x0, 0xfffffff8]}) sched_setaffinity(0x0, 0xfffffffffffffd7a, &(0x7f0000000580)=0x8000000002) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x24, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0) ptrace(0x10, 0x0) ptrace$setopts(0x4200, 0x0, 0x8, 0x100001) read$msr(r0, &(0x7f000001aa40)=""/102392, 0x18ff8) socket$inet_udp(0x2, 0x2, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x200084, &(0x7f0000000300)={[{@dir_umask={'dir_umask', 0x3d, 0x7}}, {@creator={'creator', 0x3d, "fddb3dde"}}, {@creator={'creator', 0x3d, "8c10b081"}}, {@codepage={'codepage', 0x3d, 'default'}}, {@part={'part', 0x3d, 0x9}}, {@uid}, {}, {@type={'type', 0x3d, "0642729c"}}, {@gid}, {@file_umask={'file_umask', 0x3d, 0x7}}]}, 0x2, 0x376, &(0x7f0000000480)="$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") 884.724467ms ago: executing program 1 (id=607): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000540)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000004c0)={'syzkaller1\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={r1, r3, 0x25, 0x4, @void}, 0x10) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000040)=ANY=[], 0x82) 608.51192ms ago: executing program 2 (id=608): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0) r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) fcntl$lock(r2, 0x26, &(0x7f0000000000)) fcntl$lock(r2, 0x25, &(0x7f00000000c0)={0x1, 0x0, 0x7f, 0xffffffffffffffff}) r3 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) removexattr(&(0x7f0000000100)='./cgroup\x00', &(0x7f0000000140)=@known='user.incfs.size\x00') sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x38, 0x0, 0x8, 0x201, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xecf1}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0xa}, @CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x7}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000880}, 0x20008850) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_buf(r5, 0x107, 0x18, &(0x7f0000000040)="86270f75", 0x4) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x1) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 0s ago: executing program 2 (id=609): socket$inet6_sctp(0xa, 0x1, 0x84) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) getsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1a, 0x0, &(0x7f00000001c0)) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_mgmt(0x0, r4) sendmsg$NLBL_MGMT_C_ADDDEF(r4, 0x0, 0xa000000) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="500000000001010400000000141a000002000010240001801400018008000100e000000108000200e00000010c00028005000100000000001800028014000180080001"], 0x50}}, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a1b000000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x122}}, 0x0) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r6, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe) connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @any, 0x7}, 0xe) sendmmsg$inet(r6, &(0x7f0000000b00), 0x0, 0x40800) shutdown(r6, 0x1) kernel console output (not intermixed with test programs): 0:50:50:50:50 [ 91.193160][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.226069][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 91.286235][ T4373] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.298790][ T4373] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.325450][ T4367] XFS (loop2): Mounting V5 Filesystem [ 91.357493][ T47] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.408074][ T47] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.479466][ T4367] XFS (loop2): Starting recovery (logdev: internal) [ 91.503676][ T4367] XFS (loop2): Ending recovery (logdev: internal) [ 91.581944][ T4367] syz.2.6 (4367) used greatest stack depth: 19216 bytes left [ 91.687556][ T4382] loop1: detected capacity change from 0 to 2048 [ 91.715059][ T4269] XFS (loop2): Unmounting Filesystem [ 91.922218][ T126] cfg80211: failed to load regulatory.db [ 91.969055][ T4382] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 92.597092][ T4382] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2: bg 0: block 234: padding at end of block bitmap is not set [ 92.677008][ T4382] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 490 with error 28 [ 92.692997][ T4382] EXT4-fs (loop1): This should not happen!! Data will be lost [ 92.692997][ T4382] [ 92.705942][ T4382] EXT4-fs (loop1): Total free blocks count 0 [ 92.729787][ T4382] EXT4-fs (loop1): Free/Dirty block details [ 92.738577][ T4382] EXT4-fs (loop1): free_blocks=0 [ 92.744083][ T4382] EXT4-fs (loop1): dirty_blocks=496 [ 92.749465][ T4382] EXT4-fs (loop1): Block reservation details [ 92.755892][ T4382] EXT4-fs (loop1): i_reserved_data_blocks=31 [ 92.914224][ T4395] capability: warning: `syz.0.8' uses 32-bit capabilities (legacy support in use) [ 93.631386][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 93.740181][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 94.372671][ T4403] loop1: detected capacity change from 0 to 4096 [ 94.380175][ T4403] ======================================================= [ 94.380175][ T4403] WARNING: The mand mount option has been deprecated and [ 94.380175][ T4403] and is ignored by this kernel. Remove the mand [ 94.380175][ T4403] option from the mount to silence this warning. [ 94.380175][ T4403] ======================================================= [ 95.148520][ T4416] process 'syz.0.12' launched './file1' with NULL argv: empty string added [ 96.700552][ T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!! [ 96.720532][ T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!! [ 96.730532][ T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!! [ 96.740529][ T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!! [ 96.750529][ T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!! [ 97.023603][ T4417] tipc: Started in network mode [ 97.278069][ T4417] tipc: Node identity aaaaaaaaaa33, cluster identity 4711 [ 97.561221][ T4417] tipc: Enabled bearer , priority 10 [ 98.320542][ T0] NOHZ tick-stop error: local softirq work is pending, handler #308!!! [ 98.330569][ T0] NOHZ tick-stop error: local softirq work is pending, handler #30a!!! [ 98.340543][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 98.350543][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 98.360546][ T0] NOHZ tick-stop error: local softirq work is pending, handler #38a!!! [ 98.535143][ T4442] autofs4:pid:4442:autofs_fill_super: called with bogus options [ 99.196521][ T22] tipc: Node number set to 10070698 [ 100.253599][ T4451] binder: 4450:4451 ioctl c0306201 0 returned -14 [ 100.344683][ T4457] syz.0.23 uses obsolete (PF_INET,SOCK_PACKET) [ 100.603051][ T4463] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 100.610820][ T4463] IPv6: NLM_F_CREATE should be set when creating new route [ 100.618334][ T4463] IPv6: NLM_F_CREATE should be set when creating new route [ 100.625790][ T4463] IPv6: NLM_F_CREATE should be set when creating new route [ 101.142504][ T4464] loop4: detected capacity change from 0 to 128 [ 101.252872][ T4464] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 101.264896][ T4464] ext4 filesystem being mounted at /3/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 101.297110][ C1] vkms_vblank_simulate: vblank timer overrun [ 101.818693][ T4470] loop3: detected capacity change from 0 to 128 [ 101.871438][ T4470] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 101.911875][ T4470] ext4 filesystem being mounted at /3/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 102.095716][ T4478] block device autoloading is deprecated and will be removed. [ 102.131449][ T4477] loop1: detected capacity change from 0 to 512 [ 102.140242][ T4477] EXT4-fs: Ignoring removed nomblk_io_submit option [ 105.082279][ T4477] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 105.129281][ T4477] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.29: invalid indirect mapped block 2683928664 (level 1) [ 105.147390][ T4477] EXT4-fs (loop1): Remounting filesystem read-only [ 105.156562][ T4477] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.29: bg 0: block 361: padding at end of block bitmap is not set [ 105.173566][ T4477] EXT4-fs (loop1): Remounting filesystem read-only [ 105.181567][ T4477] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 105.195861][ T4477] EXT4-fs (loop1): Remounting filesystem read-only [ 105.207379][ T4477] EXT4-fs (loop1): 1 truncate cleaned up [ 105.213314][ T4477] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 105.675486][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 105.762729][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 105.851502][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 106.470087][ T4499] autofs4:pid:4499:autofs_fill_super: called with bogus options [ 107.233126][ T4505] fuse: Bad value for 'fd' [ 107.319122][ T26] audit: type=1326 audit(1774495793.027:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62bb9c799 code=0x7ffc0000 [ 107.515883][ T26] audit: type=1326 audit(1774495793.027:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62bb9c799 code=0x7ffc0000 [ 107.599991][ T26] audit: type=1326 audit(1774495793.057:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62bb9c799 code=0x7ffc0000 [ 107.739014][ T26] audit: type=1326 audit(1774495793.067:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 107.894518][ T26] audit: type=1326 audit(1774495793.067:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 108.097042][ T26] audit: type=1326 audit(1774495793.067:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 108.221137][ T26] audit: type=1326 audit(1774495793.067:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 108.700866][ T26] audit: type=1326 audit(1774495793.077:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 108.722997][ C1] vkms_vblank_simulate: vblank timer overrun [ 108.806106][ T26] audit: type=1326 audit(1774495793.077:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 109.077851][ T26] audit: type=1326 audit(1774495793.077:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4485 comm="syz.0.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 110.728243][ T4532] loop0: detected capacity change from 0 to 128 [ 110.891713][ T4532] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 110.991587][ T4532] ext4 filesystem being mounted at /11/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 111.023586][ C1] vkms_vblank_simulate: vblank timer overrun [ 111.235845][ T4543] md: superblock version -2147471259 not known [ 111.242440][ T4543] md: couldn't set array info. -22 [ 111.272910][ T4543] loop3: detected capacity change from 0 to 512 [ 111.282054][ T4543] EXT4-fs: Ignoring removed nomblk_io_submit option [ 112.454676][ T4543] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 112.471769][ T4543] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.46: invalid indirect mapped block 2683928664 (level 1) [ 112.487535][ T4543] EXT4-fs (loop3): Remounting filesystem read-only [ 112.494943][ T4543] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.46: bg 0: block 361: padding at end of block bitmap is not set [ 112.511705][ T4543] EXT4-fs (loop3): Remounting filesystem read-only [ 112.518389][ T4543] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 112.532000][ T4543] EXT4-fs (loop3): Remounting filesystem read-only [ 112.540710][ T4543] EXT4-fs (loop3): 1 truncate cleaned up [ 112.546514][ T4543] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 112.899031][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 114.050754][ T4553] fuse: Unknown parameter '0x0000000000000005' [ 114.182437][ T4279] EXT4-fs (loop0): unmounting filesystem. [ 114.550673][ T26] kauditd_printk_skb: 8 callbacks suppressed [ 114.550720][ T26] audit: type=1326 audit(1774495800.157:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.206021][ T26] audit: type=1326 audit(1774495800.167:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.265432][ T26] audit: type=1326 audit(1774495800.167:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.394798][ T26] audit: type=1326 audit(1774495800.167:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 115.508520][ T26] audit: type=1326 audit(1774495800.167:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.578617][ T26] audit: type=1326 audit(1774495800.167:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.623549][ T26] audit: type=1326 audit(1774495800.167:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.658044][ T26] audit: type=1326 audit(1774495800.167:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.687866][ T26] audit: type=1326 audit(1774495800.167:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 115.724149][ T26] audit: type=1326 audit(1774495800.167:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4556 comm="syz.4.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 115.924268][ T4570] loop2: detected capacity change from 0 to 128 [ 116.094601][ T4570] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 116.110047][ T4570] ext4 filesystem being mounted at /10/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 117.417041][ T4582] Zero length message leads to an empty skb [ 119.817589][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 121.040811][ T4612] md: superblock version -2147471259 not known [ 121.047054][ T4612] md: couldn't set array info. -22 [ 121.101958][ T4612] loop1: detected capacity change from 0 to 512 [ 121.111734][ T4612] EXT4-fs: Ignoring removed nomblk_io_submit option [ 122.305884][ T4612] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 122.382102][ T4612] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.64: invalid indirect mapped block 2683928664 (level 1) [ 122.402315][ T4612] EXT4-fs (loop1): Remounting filesystem read-only [ 122.410270][ T4612] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.64: bg 0: block 361: padding at end of block bitmap is not set [ 122.426525][ T4612] EXT4-fs (loop1): Remounting filesystem read-only [ 122.433240][ T4612] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 122.443597][ T4612] EXT4-fs (loop1): Remounting filesystem read-only [ 122.452562][ T4612] EXT4-fs (loop1): 1 truncate cleaned up [ 122.458347][ T4612] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 122.483034][ T4611] loop2: detected capacity change from 0 to 128 [ 122.793835][ T4611] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 122.926229][ T4611] ext4 filesystem being mounted at /11/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 122.988075][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 123.259202][ T26] kauditd_printk_skb: 62 callbacks suppressed [ 123.259259][ T26] audit: type=1326 audit(1774495808.967:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62bb9c799 code=0x7ffc0000 [ 123.374838][ T4625] md: superblock version -2147471259 not known [ 123.381164][ T4625] md: couldn't set array info. -22 [ 123.413072][ T4625] loop4: detected capacity change from 0 to 512 [ 123.422626][ T4625] EXT4-fs: Ignoring removed nomblk_io_submit option [ 123.505958][ T4625] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 123.520361][ T4625] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.60: invalid indirect mapped block 2683928664 (level 1) [ 123.537263][ T4625] EXT4-fs (loop4): Remounting filesystem read-only [ 123.544736][ T4625] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.60: bg 0: block 361: padding at end of block bitmap is not set [ 123.563156][ T4625] EXT4-fs (loop4): Remounting filesystem read-only [ 123.569812][ T4625] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 123.581730][ T4625] EXT4-fs (loop4): Remounting filesystem read-only [ 123.590737][ T4625] EXT4-fs (loop4): 1 truncate cleaned up [ 123.597262][ T4625] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 124.749121][ T26] audit: type=1326 audit(1774495808.967:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62bb9c799 code=0x7ffc0000 [ 124.771455][ T26] audit: type=1326 audit(1774495808.967:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 124.793935][ T26] audit: type=1326 audit(1774495808.997:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 124.930896][ T26] audit: type=1326 audit(1774495808.997:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 124.979782][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 125.856601][ T26] audit: type=1326 audit(1774495809.007:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 125.879631][ T26] audit: type=1326 audit(1774495809.007:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 125.902069][ T26] audit: type=1326 audit(1774495809.007:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 125.924653][ T26] audit: type=1326 audit(1774495809.007:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 125.946884][ T26] audit: type=1326 audit(1774495809.007:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4620 comm="syz.0.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe62bb5cfce code=0x7ffc0000 [ 126.043332][ T4633] fuse: Unknown parameter '0x0000000000000005' [ 126.228632][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 126.451450][ T4641] loop2: detected capacity change from 0 to 128 [ 127.011477][ T4641] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 127.044707][ T4641] ext4 filesystem being mounted at /12/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 127.680066][ T4650] fuse: Unknown parameter 'user_id00000000000000000000' [ 128.757192][ T4657] loop1: detected capacity change from 0 to 128 [ 129.106565][ T4657] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 129.119428][ T4657] ext4 filesystem being mounted at /14/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 130.048270][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 130.937181][ T26] kauditd_printk_skb: 59 callbacks suppressed [ 130.937196][ T26] audit: type=1326 audit(1774495816.647:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 131.840319][ T4693] loop4: detected capacity change from 0 to 128 [ 131.901957][ T26] audit: type=1326 audit(1774495816.647:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 131.984343][ T4693] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 132.013908][ T4693] ext4 filesystem being mounted at /13/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 132.052540][ T26] audit: type=1326 audit(1774495816.647:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.179338][ T26] audit: type=1326 audit(1774495816.647:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.252734][ T26] audit: type=1326 audit(1774495816.647:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.345840][ T26] audit: type=1326 audit(1774495816.647:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.465610][ T26] audit: type=1326 audit(1774495816.657:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.487730][ C0] vkms_vblank_simulate: vblank timer overrun [ 132.590627][ T26] audit: type=1326 audit(1774495816.657:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.679012][ T26] audit: type=1326 audit(1774495816.657:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.747742][ T26] audit: type=1326 audit(1774495816.657:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4681 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 132.770175][ C0] vkms_vblank_simulate: vblank timer overrun [ 132.921390][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.928185][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.252687][ T4707] fuse: Unknown parameter '0x0000000000000005' [ 133.469182][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 133.492258][ T4713] autofs4:pid:4713:autofs_fill_super: called with bogus options [ 134.821075][ T4725] loop2: detected capacity change from 0 to 128 [ 135.238142][ T4725] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 135.411340][ T4725] ext4 filesystem being mounted at /17/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 135.443217][ C0] vkms_vblank_simulate: vblank timer overrun [ 137.609266][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 137.984513][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 138.029987][ T4762] loop1: detected capacity change from 0 to 128 [ 138.083668][ T4762] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 138.102315][ T4762] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 138.209766][ T4768] binder: 4767:4768 ioctl c0306201 0 returned -14 [ 138.356981][ T4770] fuse: Unknown parameter '0x0000000000000005' [ 139.525175][ T4790] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 139.532607][ T4790] IPv6: NLM_F_CREATE should be set when creating new route [ 139.540012][ T4790] IPv6: NLM_F_CREATE should be set when creating new route [ 139.547512][ T4790] IPv6: NLM_F_CREATE should be set when creating new route [ 140.797884][ T4800] loop4: detected capacity change from 0 to 128 [ 141.005025][ T4800] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 141.044301][ T4800] ext4 filesystem being mounted at /16/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 141.650156][ T26] kauditd_printk_skb: 335 callbacks suppressed [ 141.650240][ T26] audit: type=1326 audit(1774495827.357:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.257938][ T26] audit: type=1326 audit(1774495827.357:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.329557][ T26] audit: type=1326 audit(1774495827.357:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.354886][ T26] audit: type=1326 audit(1774495827.357:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 142.380098][ T26] audit: type=1326 audit(1774495827.357:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.684325][ T26] audit: type=1326 audit(1774495827.357:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.900849][ T26] audit: type=1326 audit(1774495827.357:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.923329][ T26] audit: type=1326 audit(1774495827.357:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.945739][ T26] audit: type=1326 audit(1774495827.357:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 142.968732][ T26] audit: type=1326 audit(1774495827.357:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4807 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 143.106969][ T4819] loop3: detected capacity change from 0 to 128 [ 143.126333][ T4819] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 143.150851][ T4819] ext4 filesystem being mounted at /23/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 143.550638][ T4824] fuse: Unknown parameter '0x0000000000000005' [ 144.018782][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 144.167592][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 144.216416][ T4838] binder: 4837:4838 ioctl c0306201 0 returned -14 [ 147.696313][ T4860] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 149.357886][ T4869] fuse: Unknown parameter '0x0000000000000005' [ 149.666295][ T4878] loop2: detected capacity change from 0 to 128 [ 149.678462][ T4878] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 149.745567][ T4884] loop4: detected capacity change from 0 to 128 [ 149.782439][ T4878] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 149.814317][ C1] vkms_vblank_simulate: vblank timer overrun [ 149.900425][ T4885] md: superblock version -2147471259 not known [ 149.907088][ T4885] md: couldn't set array info. -22 [ 149.936106][ T4885] loop1: detected capacity change from 0 to 512 [ 149.945208][ T4885] EXT4-fs: Ignoring removed nomblk_io_submit option [ 149.987484][ T4885] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 150.004677][ T4885] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.121: invalid indirect mapped block 2683928664 (level 1) [ 150.021088][ T4885] EXT4-fs (loop1): Remounting filesystem read-only [ 150.028447][ T4885] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.121: bg 0: block 361: padding at end of block bitmap is not set [ 150.047338][ T4885] EXT4-fs (loop1): Remounting filesystem read-only [ 150.054036][ T4885] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 150.064022][ T4885] EXT4-fs (loop1): Remounting filesystem read-only [ 150.071870][ T4885] EXT4-fs (loop1): 1 truncate cleaned up [ 150.077690][ T4885] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 150.297895][ T4884] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 150.497075][ T4884] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 150.530834][ C1] vkms_vblank_simulate: vblank timer overrun [ 151.326471][ T4891] binder: 4890:4891 ioctl c0306201 0 returned -14 [ 151.675318][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 151.816105][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 153.529115][ T4914] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 153.901159][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 155.477471][ T4920] fuse: Unknown parameter 'fd0x0000000000000005' [ 156.912584][ T4937] loop2: detected capacity change from 0 to 512 [ 156.921827][ T4937] EXT4-fs: Ignoring removed nomblk_io_submit option [ 157.520139][ T4937] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 158.134683][ T4937] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.137: invalid indirect mapped block 2683928664 (level 1) [ 158.150699][ T4937] EXT4-fs (loop2): Remounting filesystem read-only [ 158.163597][ T4937] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.137: bg 0: block 361: padding at end of block bitmap is not set [ 158.181606][ T4937] EXT4-fs (loop2): Remounting filesystem read-only [ 158.188560][ T4937] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 158.199790][ T4937] EXT4-fs (loop2): Remounting filesystem read-only [ 158.208585][ T4937] EXT4-fs (loop2): 1 truncate cleaned up [ 158.214474][ T4937] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 158.660396][ T4942] loop1: detected capacity change from 0 to 128 [ 158.693615][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 158.882968][ T4942] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 159.077021][ T4949] md: superblock version -2147471259 not known [ 159.083384][ T4949] md: couldn't set array info. -22 [ 159.112291][ T4949] loop2: detected capacity change from 0 to 512 [ 159.121419][ T4949] EXT4-fs: Ignoring removed nomblk_io_submit option [ 160.358418][ T4949] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 160.372597][ T4949] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.140: invalid indirect mapped block 2683928664 (level 1) [ 160.396965][ T4949] EXT4-fs (loop2): Remounting filesystem read-only [ 160.404663][ T4949] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.140: bg 0: block 361: padding at end of block bitmap is not set [ 160.421321][ T4949] EXT4-fs (loop2): Remounting filesystem read-only [ 160.428337][ T4949] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 160.439002][ T4949] EXT4-fs (loop2): Remounting filesystem read-only [ 160.447648][ T4949] EXT4-fs (loop2): 1 truncate cleaned up [ 160.453604][ T4949] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 160.480184][ T4949] EXT4-fs error (device loop2): ext4_empty_dir:3145: inode #2: block 5: comm syz.2.140: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 160.503089][ T4949] EXT4-fs (loop2): Remounting filesystem read-only [ 160.509764][ T4949] EXT4-fs warning (device loop2): ext4_empty_dir:3147: inode #2: comm syz.2.140: directory missing '.' [ 160.538871][ T4942] ext4 filesystem being mounted at /29/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 161.219264][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 161.355792][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 161.484564][ T4958] loop0: detected capacity change from 0 to 128 [ 161.652967][ T4958] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 161.892970][ T4958] ext4 filesystem being mounted at /32/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 163.263877][ T4968] fuse: Bad value for 'fd' [ 164.184288][ T4964] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 164.191618][ T4964] IPv6: NLM_F_CREATE should be set when creating new route [ 164.198869][ T4964] IPv6: NLM_F_CREATE should be set when creating new route [ 164.206141][ T4964] IPv6: NLM_F_CREATE should be set when creating new route [ 164.634291][ T4974] fuse: Unknown parameter 'fd0x0000000000000005' [ 166.071029][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 167.699474][ T4996] loop2: detected capacity change from 0 to 128 [ 167.721082][ T4996] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 167.730862][ T4996] ext4 filesystem being mounted at /30/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 168.876596][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 168.930165][ T5010] md: superblock version -2147471259 not known [ 168.936749][ T5010] md: couldn't set array info. -22 [ 168.972670][ T5010] loop1: detected capacity change from 0 to 512 [ 168.982374][ T5010] EXT4-fs: Ignoring removed nomblk_io_submit option [ 169.088732][ T5010] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 169.103545][ T5010] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.154: invalid indirect mapped block 2683928664 (level 1) [ 169.118660][ T5010] EXT4-fs (loop1): Remounting filesystem read-only [ 169.125526][ T5010] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.154: bg 0: block 361: padding at end of block bitmap is not set [ 169.141040][ T5010] EXT4-fs (loop1): Remounting filesystem read-only [ 169.147680][ T5010] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 169.158197][ T5010] EXT4-fs (loop1): Remounting filesystem read-only [ 169.167222][ T5010] EXT4-fs (loop1): 1 truncate cleaned up [ 169.173086][ T5010] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 169.198060][ T5010] EXT4-fs error (device loop1): ext4_empty_dir:3145: inode #2: block 5: comm syz.1.154: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 169.219374][ T5010] EXT4-fs (loop1): Remounting filesystem read-only [ 169.226042][ T5010] EXT4-fs warning (device loop1): ext4_empty_dir:3147: inode #2: comm syz.1.154: directory missing '.' [ 171.360919][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 172.543729][ T5033] fuse: Unknown parameter '0x0000000000000006' [ 173.851247][ T5039] loop4: detected capacity change from 0 to 512 [ 173.861971][ T5039] EXT4-fs: Ignoring removed nomblk_io_submit option [ 175.087198][ T5039] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 175.131563][ T5039] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.160: invalid indirect mapped block 2683928664 (level 1) [ 175.147219][ T5039] EXT4-fs (loop4): Remounting filesystem read-only [ 175.154723][ T5039] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.160: bg 0: block 361: padding at end of block bitmap is not set [ 175.172784][ T5039] EXT4-fs (loop4): Remounting filesystem read-only [ 175.179699][ T5039] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 175.190431][ T5039] EXT4-fs (loop4): Remounting filesystem read-only [ 175.200798][ T5039] EXT4-fs (loop4): 1 truncate cleaned up [ 175.206593][ T5039] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 176.494263][ T4279] EXT4-fs (loop0): unmounting filesystem. [ 177.441539][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 178.648146][ T4290] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 178.657761][ T4290] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 178.666942][ T4290] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 178.675401][ T4290] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 178.683729][ T4290] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 178.691486][ T4290] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 179.016063][ T4437] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.284086][ T4437] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.501577][ T4437] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.386616][ T26] kauditd_printk_skb: 63 callbacks suppressed [ 180.386631][ T26] audit: type=1326 audit(1774495865.447:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 180.630613][ T26] audit: type=1326 audit(1774495865.447:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 180.653648][ T26] audit: type=1326 audit(1774495865.447:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 180.676818][ T26] audit: type=1326 audit(1774495865.447:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 180.707230][ T4437] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.711122][ T4290] Bluetooth: hci4: command 0x0409 tx timeout [ 180.729195][ T26] audit: type=1326 audit(1774495865.457:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 180.799552][ T26] audit: type=1326 audit(1774495865.457:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 180.834652][ T26] audit: type=1326 audit(1774495865.457:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 181.032361][ T26] audit: type=1326 audit(1774495865.457:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 181.061843][ T5086] loop1: detected capacity change from 0 to 128 [ 181.091903][ T26] audit: type=1326 audit(1774495865.457:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 181.122669][ T26] audit: type=1326 audit(1774495865.457:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5071 comm="syz.4.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 181.313302][ T5086] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 181.355461][ T5086] ext4 filesystem being mounted at /34/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 181.778405][ T5107] fuse: Bad value for 'fd' [ 181.903680][ T5109] loop2: detected capacity change from 0 to 512 [ 181.936896][ T5109] EXT4-fs: Ignoring removed nomblk_io_submit option [ 182.013868][ T5109] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 182.029661][ T5109] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.173: invalid indirect mapped block 2683928664 (level 1) [ 182.046131][ T5109] EXT4-fs (loop2): Remounting filesystem read-only [ 182.053007][ T5109] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.173: bg 0: block 361: padding at end of block bitmap is not set [ 182.069500][ T5109] EXT4-fs (loop2): Remounting filesystem read-only [ 182.076191][ T5109] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 182.790646][ T4290] Bluetooth: hci4: command 0x041b tx timeout [ 184.332942][ T5064] chnl_net:caif_netlink_parms(): no params data found [ 184.870722][ T4290] Bluetooth: hci4: command 0x040f tx timeout [ 184.881688][ T5109] EXT4-fs (loop2): Remounting filesystem read-only [ 184.941364][ T5109] EXT4-fs (loop2): 1 truncate cleaned up [ 184.984756][ T5109] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 185.176466][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 185.248191][ T5064] bridge0: port 1(bridge_slave_0) entered blocking state [ 185.270891][ T5064] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.279399][ T5064] device bridge_slave_0 entered promiscuous mode [ 185.426012][ T5064] bridge0: port 2(bridge_slave_1) entered blocking state [ 185.451010][ T5064] bridge0: port 2(bridge_slave_1) entered disabled state [ 185.520793][ T5064] device bridge_slave_1 entered promiscuous mode [ 186.591208][ T5064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 186.762574][ T5064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 186.961093][ T4290] Bluetooth: hci4: command 0x0419 tx timeout [ 187.336733][ T26] kauditd_printk_skb: 66 callbacks suppressed [ 187.336844][ T26] audit: type=1326 audit(1774495873.037:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 187.673549][ T5064] team0: Port device team_slave_0 added [ 187.756528][ T5064] team0: Port device team_slave_1 added [ 187.958234][ T26] audit: type=1326 audit(1774495873.037:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 187.980682][ T26] audit: type=1326 audit(1774495873.037:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.003570][ T26] audit: type=1326 audit(1774495873.037:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 188.025750][ C1] vkms_vblank_simulate: vblank timer overrun [ 188.032269][ T26] audit: type=1326 audit(1774495873.047:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.063511][ T26] audit: type=1326 audit(1774495873.047:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.187423][ T26] audit: type=1326 audit(1774495873.047:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.238457][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 188.272991][ T26] audit: type=1326 audit(1774495873.047:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.305897][ T5064] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 188.484193][ T5064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 188.510197][ C1] vkms_vblank_simulate: vblank timer overrun [ 188.521298][ T5064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 188.547297][ T4437] device hsr_slave_0 left promiscuous mode [ 188.586359][ T4437] device hsr_slave_1 left promiscuous mode [ 188.604648][ T26] audit: type=1326 audit(1774495873.047:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 188.642265][ T4437] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.663273][ T26] audit: type=1326 audit(1774495873.047:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 188.672032][ T4437] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 189.028829][ T4437] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 189.161773][ T4437] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 189.188583][ T4437] device bridge_slave_1 left promiscuous mode [ 189.210417][ T4437] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.311503][ T4437] device bridge_slave_0 left promiscuous mode [ 189.435056][ T4437] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.051127][ T5185] ceph: No mds server is up or the cluster is laggy [ 190.886193][ T4437] device veth1_macvtap left promiscuous mode [ 190.916728][ T4437] device veth0_macvtap left promiscuous mode [ 191.457286][ T4437] device veth1_vlan left promiscuous mode [ 191.477877][ T4437] device veth0_vlan left promiscuous mode [ 193.362335][ T26] kauditd_printk_skb: 61 callbacks suppressed [ 193.362354][ T26] audit: type=1326 audit(1774495877.777:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 193.412514][ T26] audit: type=1326 audit(1774495877.777:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 193.435367][ T26] audit: type=1326 audit(1774495877.777:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 193.487830][ T26] audit: type=1326 audit(1774495877.777:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 193.562782][ T26] audit: type=1326 audit(1774495877.787:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 193.959160][ T26] audit: type=1326 audit(1774495877.787:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 194.008894][ T26] audit: type=1326 audit(1774495877.787:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 194.031589][ T26] audit: type=1326 audit(1774495877.787:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 194.061693][ T26] audit: type=1326 audit(1774495877.797:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 194.092005][ T26] audit: type=1326 audit(1774495877.797:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5209 comm="syz.3.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f9079d5cfce code=0x7ffc0000 [ 194.369276][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.376340][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.751161][ T4319] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 195.861074][ T4437] team0 (unregistering): Port device team_slave_1 removed [ 195.901052][ T4437] team0 (unregistering): Port device team_slave_0 removed [ 195.944241][ T4319] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 195.955405][ T4319] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 195.964923][ T4319] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 195.979283][ T4319] usb 5-1: config 0 descriptor?? [ 195.989306][ T4437] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 196.002919][ T4319] pwc: Askey VC010 type 2 USB webcam detected. [ 196.050123][ T4437] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 196.392711][ T4437] bond0 (unregistering): Released all slaves [ 196.397476][ T4319] pwc: recv_control_msg error -32 req 02 val 2b00 [ 196.440120][ T4319] pwc: recv_control_msg error -32 req 02 val 2700 [ 196.447835][ T4319] pwc: recv_control_msg error -32 req 02 val 2c00 [ 196.455219][ T4319] pwc: recv_control_msg error -32 req 04 val 1000 [ 196.465669][ T4319] pwc: recv_control_msg error -32 req 04 val 1300 [ 196.474197][ T4319] pwc: recv_control_msg error -32 req 04 val 1400 [ 196.487150][ T5064] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.494573][ T5064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.496637][ T4319] pwc: recv_control_msg error -32 req 02 val 2000 [ 196.524043][ T5064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.532666][ T4319] pwc: recv_control_msg error -32 req 02 val 2100 [ 196.584737][ T4319] pwc: recv_control_msg error -32 req 04 val 1500 [ 196.601811][ T4319] pwc: recv_control_msg error -32 req 02 val 2500 [ 196.617857][ T4319] pwc: recv_control_msg error -32 req 02 val 2400 [ 196.629509][ T4319] pwc: recv_control_msg error -32 req 02 val 2600 [ 196.637073][ T4319] pwc: recv_control_msg error -32 req 02 val 2900 [ 196.644574][ T4319] pwc: recv_control_msg error -32 req 02 val 2800 [ 196.854772][ T4319] pwc: recv_control_msg error -71 req 04 val 1200 [ 196.886815][ T4319] pwc: Registered as video103. [ 196.909415][ T5064] device hsr_slave_0 entered promiscuous mode [ 196.914834][ T4319] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input5 [ 196.961423][ T5064] device hsr_slave_1 entered promiscuous mode [ 196.976672][ T5235] loop3: detected capacity change from 0 to 4096 [ 196.999893][ T4319] usb 5-1: USB disconnect, device number 2 [ 197.119151][ T5064] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 197.127093][ T5064] Cannot create hsr debugfs directory [ 197.392383][ T5242] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 197.554709][ T4322] libceph: connect (1)[c::]:6789 error -101 [ 197.618080][ T4322] libceph: mon0 (1)[c::]:6789 connect error [ 198.251544][ T5244] ceph: No mds server is up or the cluster is laggy [ 198.791138][ T5254] fuse: Unknown parameter '0x0000000000000006' [ 199.657617][ T4322] libceph: connect (1)[c::]:6789 error -101 [ 199.670637][ T4322] libceph: mon0 (1)[c::]:6789 connect error [ 201.103557][ T5263] binder: 5262:5263 ioctl c0306201 0 returned -14 [ 201.131013][ T5064] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 201.590167][ T5064] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 201.655366][ T5064] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 201.697212][ T5064] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 202.735660][ T5064] 8021q: adding VLAN 0 to HW filter on device bond0 [ 202.826069][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 202.845253][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 202.878749][ T5064] 8021q: adding VLAN 0 to HW filter on device team0 [ 202.935246][ T4628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 202.964885][ T4628] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 203.013655][ T4628] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.020876][ T4628] bridge0: port 1(bridge_slave_0) entered forwarding state [ 203.193230][ T4628] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 203.282415][ T26] kauditd_printk_skb: 65 callbacks suppressed [ 203.282431][ T26] audit: type=1326 audit(1774495888.997:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5288 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 203.412004][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 203.468835][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 203.615133][ T4437] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.622382][ T4437] bridge0: port 2(bridge_slave_1) entered forwarding state [ 203.675819][ T26] audit: type=1326 audit(1774495888.997:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5288 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 203.874758][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 203.995218][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 204.009359][ T26] audit: type=1326 audit(1774495888.997:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5288 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 204.032440][ T26] audit: type=1326 audit(1774495888.997:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5288 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 204.054909][ T26] audit: type=1326 audit(1774495888.997:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5288 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 204.083787][ T5295] ceph: No mds server is up or the cluster is laggy [ 204.144990][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 204.195994][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 204.350153][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 204.370158][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 205.170581][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 205.221512][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 205.251613][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 205.299402][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 205.341575][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 205.361884][ T5064] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 206.455202][ T5327] loop1: detected capacity change from 0 to 64 [ 208.272626][ T4289] Bluetooth: hci0: command 0x0406 tx timeout [ 208.278684][ T4290] Bluetooth: hci3: command 0x0406 tx timeout [ 208.285037][ T4287] Bluetooth: hci1: command 0x0406 tx timeout [ 208.291092][ T4288] Bluetooth: hci2: command 0x0406 tx timeout [ 209.475627][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 209.485323][ T4437] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 209.516047][ T5064] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 209.980621][ T4320] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 210.183344][ T4320] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 210.212874][ T5381] loop3: detected capacity change from 0 to 512 [ 210.406883][ T5386] loop1: detected capacity change from 0 to 64 [ 210.729463][ T4320] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 210.770884][ T5381] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.238: inode has both inline data and extents flags [ 210.810682][ T5381] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.238: couldn't read orphan inode 15 (err -117) [ 210.815691][ T4320] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.831327][ T5381] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 211.106144][ T4320] usb 3-1: config 0 descriptor?? [ 211.329962][ T4320] pwc: Askey VC010 type 2 USB webcam detected. [ 211.928854][ T4320] pwc: recv_control_msg error -32 req 02 val 2b00 [ 211.947178][ T4320] pwc: recv_control_msg error -32 req 02 val 2700 [ 211.961447][ T4320] pwc: recv_control_msg error -32 req 02 val 2c00 [ 211.982079][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 211.989232][ T4320] pwc: recv_control_msg error -32 req 04 val 1000 [ 212.733412][ T4320] pwc: recv_control_msg error -32 req 04 val 1300 [ 212.762126][ T4320] pwc: recv_control_msg error -32 req 04 val 1400 [ 212.780603][ T4320] pwc: recv_control_msg error -32 req 02 val 2000 [ 212.813596][ T4320] pwc: recv_control_msg error -32 req 02 val 2100 [ 212.833789][ T4320] pwc: recv_control_msg error -32 req 04 val 1500 [ 212.844862][ T4320] pwc: recv_control_msg error -32 req 02 val 2500 [ 212.867456][ T4320] pwc: recv_control_msg error -32 req 02 val 2400 [ 212.887616][ T4320] pwc: recv_control_msg error -32 req 02 val 2600 [ 212.933608][ T4320] pwc: recv_control_msg error -32 req 02 val 2900 [ 212.958327][ T4320] pwc: recv_control_msg error -32 req 02 val 2800 [ 213.192537][ T4320] pwc: recv_control_msg error -71 req 04 val 1200 [ 213.337302][ T4320] pwc: Registered as video103. [ 213.405663][ T4320] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input6 [ 213.453235][ T4320] usb 3-1: USB disconnect, device number 2 [ 213.756437][ T5418] fuse: Bad value for 'fd' [ 213.770740][ T5404] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 213.781546][ T5404] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 213.966935][ T5404] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 214.008836][ T7] libceph: connect (1)[c::]:6789 error -101 [ 214.035731][ T7] libceph: mon0 (1)[c::]:6789 connect error [ 214.156301][ T5404] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 214.262472][ T5419] ceph: No mds server is up or the cluster is laggy [ 214.300872][ T5404] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 214.325395][ T5404] Bluetooth: hci0: Suspend notifier action (1) failed: -4 [ 214.361286][ T5404] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 214.367321][ T5404] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 214.382586][ T4332] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 214.406284][ T4332] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 214.480646][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 214.492655][ T5404] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 214.501809][ T4322] libceph: connect (1)[c::]:6789 error -101 [ 214.507810][ T4322] libceph: mon0 (1)[c::]:6789 connect error [ 214.528139][ T5427] loop2: detected capacity change from 0 to 128 [ 214.531554][ T5404] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 214.541474][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 214.583275][ T5404] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 214.596796][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 214.622592][ T5404] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 214.656059][ T5427] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 214.696740][ T4345] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 214.701808][ T5404] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 214.720597][ T5404] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 214.732772][ T5427] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 214.770358][ T5404] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 214.851825][ T5064] device veth0_vlan entered promiscuous mode [ 215.030921][ T4287] Bluetooth: hci1: command 0x0c1a tx timeout [ 215.124060][ T5064] device veth1_vlan entered promiscuous mode [ 215.168969][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 215.223801][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 215.265865][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 215.317608][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 215.347828][ T4412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 215.378224][ T5064] device veth0_macvtap entered promiscuous mode [ 215.416821][ T5064] device veth1_macvtap entered promiscuous mode [ 215.425876][ T5443] loop1: detected capacity change from 0 to 764 [ 215.438097][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 215.670755][ T26] audit: type=1326 audit(1774495901.337:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 215.725905][ T26] audit: type=1326 audit(1774495901.337:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 215.776656][ T26] audit: type=1326 audit(1774495901.337:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 215.826755][ T26] audit: type=1326 audit(1774495901.337:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 216.810303][ T4287] Bluetooth: hci3: command 0x0c1a tx timeout [ 216.811460][ T4290] Bluetooth: hci4: command 0x0c1a tx timeout [ 216.817575][ T4287] Bluetooth: hci0: command 0x0c1a tx timeout [ 216.823565][ T4289] Bluetooth: hci2: command 0x0c1a tx timeout [ 217.110879][ T4289] Bluetooth: hci1: command 0x0406 tx timeout [ 217.124096][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 217.558365][ T26] audit: type=1326 audit(1774495901.337:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 217.764732][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.856704][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.920587][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.940941][ T26] audit: type=1326 audit(1774495901.337:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 218.041486][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.210361][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.391810][ T26] audit: type=1326 audit(1774495901.337:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 218.401245][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.425274][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.453194][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.643107][ T26] audit: type=1326 audit(1774495901.337:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 218.658479][ T5064] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 218.674207][ T4796] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 218.724249][ T4796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 218.768524][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.817200][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.827211][ T26] audit: type=1326 audit(1774495901.337:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 218.870673][ T4290] Bluetooth: hci3: command 0x0406 tx timeout [ 218.876755][ T4290] Bluetooth: hci0: command 0x0406 tx timeout [ 218.884068][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.900558][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.920536][ T26] audit: type=1326 audit(1774495901.337:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5436 comm="syz.4.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 218.950671][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.983063][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 219.082495][ T5064] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 219.093276][ T5064] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 219.106202][ T5064] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 219.113950][ T4289] Bluetooth: hci2: command 0x0406 tx timeout [ 219.113988][ T4289] Bluetooth: hci4: command 0x0406 tx timeout [ 219.335632][ T4796] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 219.371203][ T4796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 219.816062][ T5064] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.039240][ T5064] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.180558][ T5064] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.198601][ T5064] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.156536][ T5481] ceph: No mds server is up or the cluster is laggy [ 221.511546][ T4290] Bluetooth: hci4: command 0x0405 tx timeout [ 221.906270][ T5495] md: superblock version -2147471259 not known [ 221.912647][ T5495] md: couldn't set array info. -22 [ 221.947119][ T5495] loop4: detected capacity change from 0 to 512 [ 221.956307][ T5495] EXT4-fs: Ignoring removed nomblk_io_submit option [ 223.216338][ T5495] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 223.245000][ T4628] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 223.295011][ T5495] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.262: invalid indirect mapped block 2683928664 (level 1) [ 223.310942][ T5495] EXT4-fs (loop4): Remounting filesystem read-only [ 223.318370][ T5495] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.262: bg 0: block 361: padding at end of block bitmap is not set [ 223.336040][ T5495] EXT4-fs (loop4): Remounting filesystem read-only [ 223.342927][ T5495] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 223.355085][ T5495] EXT4-fs (loop4): Remounting filesystem read-only [ 223.362631][ T5495] EXT4-fs (loop4): 1 truncate cleaned up [ 223.368486][ T5495] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 223.391182][ T5494] EXT4-fs error (device loop4): ext4_empty_dir:3145: inode #2: block 5: comm syz.4.262: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 223.413181][ T5494] EXT4-fs (loop4): Remounting filesystem read-only [ 223.420033][ T5494] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #2: comm syz.4.262: directory missing '.' [ 223.530852][ T4628] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 223.694855][ T5498] netlink: 12 bytes leftover after parsing attributes in process `syz.1.261'. [ 223.728183][ T5498] netlink: 68 bytes leftover after parsing attributes in process `syz.1.261'. [ 223.873724][ T4332] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 223.909380][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 223.918090][ T4332] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 223.958815][ T4332] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.023811][ T4430] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 224.413656][ T26] kauditd_printk_skb: 59 callbacks suppressed [ 224.413672][ T26] audit: type=1326 audit(1774495910.127:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5503 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 224.456014][ T5519] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 224.463400][ T5519] IPv6: NLM_F_CREATE should be set when creating new route [ 224.470734][ T5519] IPv6: NLM_F_CREATE should be set when creating new route [ 224.478002][ T5519] IPv6: NLM_F_CREATE should be set when creating new route [ 224.738053][ T26] audit: type=1326 audit(1774495910.127:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5503 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 224.816829][ T26] audit: type=1326 audit(1774495910.157:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5503 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 224.851505][ T26] audit: type=1326 audit(1774495910.157:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5503 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 224.953449][ T26] audit: type=1326 audit(1774495910.157:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5503 comm="syz.2.263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 225.079385][ T26] audit: type=1326 audit(1774495910.517:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 225.122262][ T26] audit: type=1326 audit(1774495910.517:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 225.271508][ T26] audit: type=1326 audit(1774495910.527:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 225.355245][ T26] audit: type=1326 audit(1774495910.547:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 225.438519][ T26] audit: type=1326 audit(1774495910.607:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5508 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5c2e39c502 code=0x7ffc0000 [ 227.254774][ T5546] loop3: detected capacity change from 0 to 64 [ 228.078261][ T5548] loop2: detected capacity change from 0 to 40427 [ 228.115827][ T5548] F2FS-fs (loop2): invalid crc value [ 228.173040][ T5548] F2FS-fs (loop2): Found nat_bits in checkpoint [ 228.217280][ T5548] F2FS-fs (loop2): Start checkpoint disabled! [ 228.251368][ T5548] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 231.170211][ T5560] ceph: No mds server is up or the cluster is laggy [ 231.483239][ T4332] kworker/u4:6: attempt to access beyond end of device [ 231.483239][ T4332] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 232.010791][ T5585] loop4: detected capacity change from 0 to 128 [ 232.048669][ T5585] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 232.059568][ T5585] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 232.878195][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 233.701673][ T5608] md: superblock version -2147471259 not known [ 233.707963][ T5608] md: couldn't set array info. -22 [ 233.738388][ T5608] loop5: detected capacity change from 0 to 512 [ 233.747972][ T5608] EXT4-fs: Ignoring removed nomblk_io_submit option [ 235.009772][ T5608] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 235.077590][ T5608] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.286: invalid indirect mapped block 2683928664 (level 1) [ 235.093344][ T5608] EXT4-fs (loop5): Remounting filesystem read-only [ 235.101422][ T5608] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.286: bg 0: block 361: padding at end of block bitmap is not set [ 235.117577][ T5608] EXT4-fs (loop5): Remounting filesystem read-only [ 235.124292][ T5608] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 235.136629][ T5608] EXT4-fs (loop5): Remounting filesystem read-only [ 235.144426][ T5608] EXT4-fs (loop5): 1 truncate cleaned up [ 235.150303][ T5608] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 235.178757][ T5608] EXT4-fs error (device loop5): ext4_empty_dir:3145: inode #2: block 5: comm syz.5.286: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 235.200248][ T5608] EXT4-fs (loop5): Remounting filesystem read-only [ 235.207023][ T5608] EXT4-fs warning (device loop5): ext4_empty_dir:3147: inode #2: comm syz.5.286: directory missing '.' [ 236.908574][ T5064] EXT4-fs (loop5): unmounting filesystem. [ 238.684946][ T5639] tipc: Resetting bearer [ 240.211379][ T5639] tipc: Disabling bearer [ 240.404600][ T5648] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 240.651078][ T5658] md: superblock version -2147471259 not known [ 240.657744][ T5658] md: couldn't set array info. -22 [ 240.685680][ T5658] loop3: detected capacity change from 0 to 512 [ 240.694475][ T5658] EXT4-fs: Ignoring removed nomblk_io_submit option [ 241.966738][ T5658] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 242.020140][ T5658] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.299: invalid indirect mapped block 2683928664 (level 1) [ 242.035950][ T5658] EXT4-fs (loop3): Remounting filesystem read-only [ 242.043715][ T5658] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.299: bg 0: block 361: padding at end of block bitmap is not set [ 242.059836][ T5658] EXT4-fs (loop3): Remounting filesystem read-only [ 242.066648][ T5658] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 242.077135][ T5658] EXT4-fs (loop3): Remounting filesystem read-only [ 242.085029][ T5658] EXT4-fs (loop3): 1 truncate cleaned up [ 242.091266][ T5658] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 242.114265][ T5657] EXT4-fs error (device loop3): ext4_empty_dir:3145: inode #2: block 5: comm syz.3.299: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 242.135583][ T5657] EXT4-fs (loop3): Remounting filesystem read-only [ 242.142936][ T5657] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #2: comm syz.3.299: directory missing '.' [ 242.488922][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 244.293527][ T5678] loop2: detected capacity change from 0 to 4096 [ 245.414800][ T5684] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 247.638831][ T5709] loop5: detected capacity change from 0 to 64 [ 248.893718][ T5725] Bluetooth: MGMT ver 1.22 [ 250.621090][ T5739] netlink: 12 bytes leftover after parsing attributes in process `syz.1.318'. [ 253.317174][ T5765] loop4: detected capacity change from 0 to 4096 [ 253.860063][ T5780] binder_alloc: 5779: binder_alloc_buf, no vma [ 255.300942][ T5806] tipc: Started in network mode [ 255.316187][ T5806] tipc: Node identity 3a77449555e6, cluster identity 4711 [ 255.336607][ T5806] tipc: Enabled bearer , priority 0 [ 255.447083][ T5809] loop3: detected capacity change from 0 to 764 [ 255.759299][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.766106][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.060168][ T5810] device syzkaller0 entered promiscuous mode [ 256.091309][ T5810] tipc: Resetting bearer [ 256.120118][ T5815] loop4: detected capacity change from 0 to 4096 [ 256.276744][ T5805] tipc: Resetting bearer [ 256.430757][ T5824] netlink: 12 bytes leftover after parsing attributes in process `syz.1.344'. [ 256.823679][ T5833] autofs4:pid:5833:autofs_fill_super: called with bogus options [ 257.832367][ T26] kauditd_printk_skb: 63 callbacks suppressed [ 257.832383][ T26] audit: type=1326 audit(1774495943.547:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5836 comm="syz.3.348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 257.860747][ C0] vkms_vblank_simulate: vblank timer overrun [ 257.898256][ T26] audit: type=1326 audit(1774495943.577:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5836 comm="syz.3.348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 257.940510][ T26] audit: type=1326 audit(1774495943.577:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5836 comm="syz.3.348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 257.983790][ T26] audit: type=1326 audit(1774495943.577:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5836 comm="syz.3.348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 258.006050][ C0] vkms_vblank_simulate: vblank timer overrun [ 258.041910][ T26] audit: type=1326 audit(1774495943.577:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5836 comm="syz.3.348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 259.611401][ T5805] tipc: Disabling bearer [ 259.627155][ T3599] tipc: Node number set to 1871791253 [ 259.964673][ T5857] loop3: detected capacity change from 0 to 764 [ 260.663845][ T5855] loop2: detected capacity change from 0 to 4096 [ 261.172501][ T5875] autofs4:pid:5875:autofs_fill_super: called with bogus options [ 264.553824][ T26] audit: type=1326 audit(1774495950.267:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 264.576018][ C0] vkms_vblank_simulate: vblank timer overrun [ 264.661764][ T26] audit: type=1326 audit(1774495950.267:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 264.721601][ T26] audit: type=1326 audit(1774495950.267:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 264.846100][ T26] audit: type=1326 audit(1774495950.267:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f4cb1d5cfce code=0x7ffc0000 [ 264.922334][ T26] audit: type=1326 audit(1774495950.267:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 265.000563][ T26] audit: type=1326 audit(1774495950.267:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 265.033208][ T4320] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 265.116426][ T26] audit: type=1326 audit(1774495950.267:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 265.138767][ C0] vkms_vblank_simulate: vblank timer overrun [ 265.329576][ T26] audit: type=1326 audit(1774495950.307:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 265.359655][ T4320] usb 2-1: Using ep0 maxpacket: 32 [ 265.373537][ T4320] usb 2-1: config 0 has an invalid interface number: 67 but max is 0 [ 266.033180][ T5917] vivid-009: kernel_thread() failed [ 266.137418][ T4320] usb 2-1: config 0 has no interface number 0 [ 266.151173][ T4320] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 266.182050][ T4320] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 266.190166][ T4320] usb 2-1: Product: syz [ 266.235713][ T4320] usb 2-1: Manufacturer: syz [ 266.240399][ T4320] usb 2-1: SerialNumber: syz [ 266.242886][ T26] audit: type=1326 audit(1774495950.307:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.4.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f4cb1d9c799 code=0x7ffc0000 [ 266.295017][ T4320] usb 2-1: config 0 descriptor?? [ 267.712115][ C0] icmp: detected local route for 172.20.20.170 during ICMP sending, src 172.20.20.187 [ 267.860506][ T4320] smsc95xx v2.0.0 [ 267.896105][ T4320] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71 [ 267.959600][ T5929] autofs4:pid:5929:autofs_fill_super: called with bogus options [ 268.331116][ T4320] smsc95xx: probe of 2-1:0.67 failed with error -71 [ 268.341550][ T4320] usb 2-1: USB disconnect, device number 2 [ 273.162142][ T5973] device syzkaller0 entered promiscuous mode [ 273.231945][ T5973] netlink: 4 bytes leftover after parsing attributes in process `syz.1.387'. [ 273.342542][ T5981] loop2: detected capacity change from 0 to 64 [ 273.359430][ T5973] device hsr_slave_0 left promiscuous mode [ 273.432780][ T5973] device hsr_slave_1 left promiscuous mode [ 275.763964][ T6004] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 276.532267][ T5993] loop2: detected capacity change from 0 to 32768 [ 276.817334][ T5993] XFS (loop2): Mounting V5 Filesystem [ 277.355919][ T5993] XFS (loop2): Starting recovery (logdev: internal) [ 277.481055][ T5993] XFS (loop2): Ending recovery (logdev: internal) [ 278.235226][ T4269] XFS (loop2): Unmounting Filesystem [ 279.346956][ T6063] loop3: detected capacity change from 0 to 512 [ 279.913755][ T4390] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 280.234272][ T6074] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 284.282921][ T6107] loop1: detected capacity change from 0 to 32768 [ 287.190664][ T4322] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 287.525683][ T4322] usb 3-1: Using ep0 maxpacket: 32 [ 287.644544][ T4322] usb 3-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 287.660559][ T4322] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 287.668705][ T4322] usb 3-1: Product: syz [ 287.675259][ T4322] usb 3-1: Manufacturer: syz [ 287.679920][ T4322] usb 3-1: SerialNumber: syz [ 287.688644][ T4322] usb 3-1: config 0 descriptor?? [ 287.698815][ T4322] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 287.902236][ T6167] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 287.920934][ T6167] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 287.996164][ T6176] loop3: detected capacity change from 0 to 128 [ 288.170668][ T6176] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 288.211775][ T4322] gspca_ov534_9: reg_w failed -110 [ 288.331167][ T6176] ext4 filesystem being mounted at /95/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 288.760113][ T4322] gspca_ov534_9: Unknown sensor 0000 [ 288.761752][ T4322] ov534_9: probe of 3-1:0.0 failed with error -22 [ 289.371836][ T4322] usb 3-1: USB disconnect, device number 3 [ 290.217900][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 291.715610][ T6223] loop4: detected capacity change from 0 to 764 [ 292.634257][ T6234] loop1: detected capacity change from 0 to 128 [ 292.796826][ T6234] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 292.925442][ T6234] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 293.089079][ T6204] loop5: detected capacity change from 0 to 32768 [ 293.440639][ C1] icmp: detected local route for 172.20.20.170 during ICMP sending, src 172.20.20.187 [ 293.745385][ T4271] EXT4-fs (loop1): unmounting filesystem. [ 294.020729][ T4546] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 294.240562][ T4546] usb 3-1: Using ep0 maxpacket: 8 [ 294.250065][ T4546] usb 3-1: New USB device found, idVendor=102c, idProduct=6251, bcdDevice=7e.68 [ 294.300228][ T4546] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 294.331784][ T4546] usb 3-1: Product: syz [ 294.475209][ T4546] usb 3-1: Manufacturer: syz [ 294.479910][ T4546] usb 3-1: SerialNumber: syz [ 294.497429][ T4546] usb 3-1: config 0 descriptor?? [ 294.506754][ T4546] gspca_main: etoms-2.14.0 probing 102c:6251 [ 294.665161][ T6266] loop4: detected capacity change from 0 to 128 [ 294.717120][ T6266] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 294.764712][ T6266] ext4 filesystem being mounted at /92/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 295.006982][ T4546] usb 3-1: USB disconnect, device number 4 [ 296.025587][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 296.533867][ T6291] loop2: detected capacity change from 0 to 128 [ 296.713494][ T6291] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 296.786718][ T6291] ext4 filesystem being mounted at /94/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 298.003641][ T6308] loop5: detected capacity change from 0 to 32768 [ 298.048516][ T6308] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop5 scanned by syz.5.468 (6308) [ 298.076417][ T6308] BTRFS info (device loop5): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 298.087125][ T6308] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 298.095979][ T6308] BTRFS info (device loop5): enabling disk space caching [ 298.103518][ T6308] BTRFS info (device loop5): force clearing of disk cache [ 298.111166][ T6308] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 298.121081][ T6308] BTRFS info (device loop5): use zstd compression, level 3 [ 298.128309][ T6308] BTRFS info (device loop5): disk space caching is enabled [ 298.583334][ T6310] loop4: detected capacity change from 0 to 4096 [ 298.939104][ T6308] BTRFS info (device loop5): enabling ssd optimizations [ 298.964014][ T6308] BTRFS info (device loop5): rebuilding free space tree [ 299.054999][ T6308] BTRFS info (device loop5): disabling free space tree [ 299.062204][ T6308] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 299.072344][ T6308] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 299.572242][ T6294] loop1: detected capacity change from 0 to 32768 [ 299.684433][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 299.915776][ T6347] loop2: detected capacity change from 0 to 256 [ 300.291175][ T5064] BTRFS info (device loop5): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 300.340505][ T6347] FAT-fs (loop2): Directory bread(block 64) failed [ 300.347621][ T6347] FAT-fs (loop2): Directory bread(block 65) failed [ 300.355807][ T6350] loop4: detected capacity change from 0 to 32768 [ 300.507316][ T6350] XFS (loop4): Mounting V5 Filesystem [ 300.537230][ T6347] FAT-fs (loop2): Directory bread(block 66) failed [ 300.563676][ T6347] FAT-fs (loop2): Directory bread(block 67) failed [ 300.625006][ T6347] FAT-fs (loop2): Directory bread(block 68) failed [ 300.660574][ T6347] FAT-fs (loop2): Directory bread(block 69) failed [ 300.671609][ T6347] FAT-fs (loop2): Directory bread(block 70) failed [ 301.052414][ T6347] FAT-fs (loop2): Directory bread(block 71) failed [ 301.190646][ T6347] FAT-fs (loop2): Directory bread(block 72) failed [ 301.197268][ T6347] FAT-fs (loop2): Directory bread(block 73) failed [ 301.387928][ T6364] overlayfs: failed to clone upperpath [ 301.625245][ T6350] XFS (loop4): Ending clean mount [ 301.660967][ T6350] XFS (loop4): Quotacheck needed: Please wait. [ 303.396587][ T6350] XFS (loop4): Quotacheck: Done. [ 303.528222][ T4268] XFS (loop4): Unmounting Filesystem [ 303.964270][ T6395] loop2: detected capacity change from 0 to 128 [ 304.122896][ T6395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 304.191687][ T6395] ext4 filesystem being mounted at /97/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 304.624798][ T6401] loop3: detected capacity change from 0 to 4096 [ 305.132935][ T4289] Bluetooth: hci4: command 0x0406 tx timeout [ 305.186584][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 305.341427][ T6412] loop2: detected capacity change from 0 to 128 [ 305.436780][ T6412] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 305.634207][ T6412] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 306.487388][ T6427] loop1: detected capacity change from 0 to 512 [ 306.517131][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 306.725529][ T6431] binder: BINDER_SET_CONTEXT_MGR already set [ 306.775607][ T6431] binder: 6430:6431 ioctl 4018620d 200000004a80 returned -16 [ 309.710700][ T6373] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 309.820683][ T6375] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 309.900651][ T6373] usb 5-1: Using ep0 maxpacket: 32 [ 309.922994][ T6373] usb 5-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 309.950286][ T6373] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 310.330469][ T6373] usb 5-1: Product: syz [ 310.334720][ T6373] usb 5-1: Manufacturer: syz [ 310.339367][ T6373] usb 5-1: SerialNumber: syz [ 310.349136][ T6373] usb 5-1: config 0 descriptor?? [ 310.354430][ T6375] usb 6-1: Using ep0 maxpacket: 16 [ 310.365084][ T6375] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.378078][ T6373] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 310.390689][ T6375] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 96 [ 310.441660][ T6375] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8 [ 310.481876][ T6375] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18 [ 310.554953][ T6375] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 310.566391][ T6452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 310.580926][ T6452] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 310.620576][ T6375] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 310.628687][ T6375] usb 6-1: SerialNumber: syz [ 310.932656][ T6373] gspca_ov534_9: reg_w failed -110 [ 310.948492][ T6457] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 310.956834][ T6457] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 310.965303][ T6375] hub 6-1:1.0: bad descriptor, ignoring hub [ 310.972145][ T6375] hub: probe of 6-1:1.0 failed with error -5 [ 311.089635][ T6473] tipc: Enabled bearer , priority 0 [ 311.129039][ T6472] tipc: Disabling bearer [ 311.141238][ T6476] loop2: detected capacity change from 0 to 128 [ 311.184498][ T6457] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 311.232654][ T6457] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 311.244894][ T6476] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 311.304530][ T6476] ext4 filesystem being mounted at /103/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 311.440528][ T6373] gspca_ov534_9: Unknown sensor 0000 [ 311.440601][ T6373] ov534_9: probe of 5-1:0.0 failed with error -22 [ 311.621214][ T6373] usb 5-1: USB disconnect, device number 3 [ 312.155083][ T6482] binder: BINDER_SET_CONTEXT_MGR already set [ 312.178294][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 312.200524][ T6482] binder: 6480:6482 ioctl 4018620d 200000004a80 returned -16 [ 312.250504][ T6375] cdc_ether 6-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.5-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 312.386950][ T6488] loop4: detected capacity change from 0 to 128 [ 312.470060][ T6488] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 312.544014][ T6488] ext4 filesystem being mounted at /101/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 312.690758][ T26] audit: type=1326 audit(1774495998.327:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6459 comm="syz.3.495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 312.731108][ T6373] usb 6-1: USB disconnect, device number 2 [ 312.738297][ T6373] cdc_ether 6-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.5-1, CDC Ethernet Device [ 312.856688][ T26] audit: type=1326 audit(1774495998.327:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6459 comm="syz.3.495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 312.930042][ T26] audit: type=1326 audit(1774495998.327:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6459 comm="syz.3.495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 313.206613][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 314.560854][ T6535] binder: BINDER_SET_CONTEXT_MGR already set [ 314.567029][ T6535] binder: 6534:6535 ioctl 4018620d 200000004a80 returned -16 [ 314.790631][ T6377] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 315.268373][ T6542] loop5: detected capacity change from 0 to 32768 [ 315.630919][ T6377] usb 2-1: Using ep0 maxpacket: 32 [ 315.665560][ T6542] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 315.674551][ T6542] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 315.694466][ T6377] usb 2-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 315.704149][ T6377] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.730498][ T6377] usb 2-1: Product: syz [ 315.754329][ T6542] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms [ 315.771806][ T6377] usb 2-1: Manufacturer: syz [ 315.780687][ T6377] usb 2-1: SerialNumber: syz [ 315.791528][ T6377] usb 2-1: config 0 descriptor?? [ 315.797695][ T6375] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 315.810444][ T6375] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 315.822765][ T6377] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 316.002052][ T26] audit: type=1326 audit(1774496001.717:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 316.015923][ T6533] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 316.060919][ T6533] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 316.161988][ T6377] gspca_ov534_9: reg_w failed -71 [ 316.325700][ T6375] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 515ms [ 316.338616][ T6375] gfs2: fsid=syz:syz.0: jid=0: Done [ 316.354674][ T26] audit: type=1326 audit(1774496001.717:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 316.366232][ T6542] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 316.982260][ T6542] gfs2: fsid=syz:syz.0: found 1 quota changes [ 317.000631][ T26] audit: type=1326 audit(1774496001.737:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff38c99c799 code=0x7ffc0000 [ 317.046697][ T26] audit: type=1326 audit(1774496001.737:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 317.069432][ T26] audit: type=1326 audit(1774496001.787:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 317.139784][ T6565] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 317.139784][ T6565] inode = 11 2339 [ 317.139784][ T6565] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464 [ 317.153038][ T26] audit: type=1326 audit(1774496001.787:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 317.196840][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.203244][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.220609][ T6377] gspca_ov534_9: Unknown sensor 0000 [ 317.220680][ T6377] ov534_9: probe of 2-1:0.0 failed with error -22 [ 317.236418][ T6565] gfs2: fsid=syz:syz.0: G: s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 317.284839][ T6377] usb 2-1: USB disconnect, device number 3 [ 317.295660][ T6565] gfs2: fsid=syz:syz.0: H: s:EX f:H e:0 p:6565 [gfs2_quotad] gfs2_quota_sync+0x32c/0x700 [ 317.374004][ T26] audit: type=1326 audit(1774496001.787:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6550 comm="syz.2.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff38c95cfce code=0x7ffc0000 [ 317.387285][ T6565] gfs2: fsid=syz:syz.0: I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0 [ 317.506532][ T6565] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 317.573547][ T6565] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 317.598933][ T6565] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 317.652657][ T6565] gfs2: fsid=syz:syz.0: File system withdrawn [ 317.702626][ T6565] CPU: 0 PID: 6565 Comm: gfs2_quotad Not tainted syzkaller #0 [ 317.710171][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 317.720288][ T6565] Call Trace: [ 317.723619][ T6565] [ 317.726589][ T6565] dump_stack_lvl+0x188/0x24e [ 317.731332][ T6565] ? kobject_uevent_env+0x35f/0x8a0 [ 317.736592][ T6565] ? show_regs_print_info+0x12/0x12 [ 317.741847][ T6565] ? load_image+0x400/0x400 [ 317.746495][ T6565] ? kobject_uevent_env+0x35f/0x8a0 [ 317.751752][ T6565] gfs2_withdraw+0xde6/0x15d0 [ 317.756497][ T6565] ? gfs2_lm+0x240/0x240 [ 317.760797][ T6565] ? gfs2_consist_inode_i+0xf1/0x110 [ 317.766217][ T6565] gfs2_inode_refresh+0xb64/0xfd0 [ 317.771305][ T6565] ? gfs2_inode_metasync+0xf0/0xf0 [ 317.776472][ T6565] ? gfs2_glock_nq+0xcf0/0x14e0 [ 317.781348][ T6565] gfs2_instantiate+0x15e/0x210 [ 317.786210][ T6565] gfs2_glock_wait+0x1d0/0x2a0 [ 317.790984][ T6565] do_sync+0x4bf/0xc40 [ 317.795076][ T6565] ? gfs2_quota_sync+0x32c/0x700 [ 317.800029][ T6565] ? slot_put+0x1e0/0x1e0 [ 317.804383][ T6565] ? __lock_acquire+0x7d10/0x7d10 [ 317.809477][ T6565] ? do_raw_spin_lock+0x128/0x2f0 [ 317.814525][ T6565] ? gfs2_quota_sync+0x32c/0x700 [ 317.819548][ T6565] ? do_raw_spin_unlock+0x11d/0x230 [ 317.824782][ T6565] gfs2_quota_sync+0x32c/0x700 [ 317.829624][ T6565] gfs2_quotad+0x420/0x680 [ 317.834083][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 317.839235][ T6565] ? _raw_spin_unlock_irqrestore+0x82/0x120 [ 317.845159][ T6565] ? wake_bit_function+0x200/0x200 [ 317.850307][ T6565] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 317.856234][ T6565] ? __kthread_parkme+0x162/0x1c0 [ 317.861396][ T6565] kthread+0x29d/0x330 [ 317.865512][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 317.870669][ T6565] ? kthread_blkcg+0xd0/0xd0 [ 317.875291][ T6565] ret_from_fork+0x1f/0x30 [ 317.879751][ T6565] [ 318.086275][ T5064] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485 [ 318.119224][ T6575] loop2: detected capacity change from 0 to 64 [ 318.282298][ T5064] CPU: 1 PID: 5064 Comm: syz-executor Not tainted syzkaller #0 [ 318.289943][ T5064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 318.300036][ T5064] Call Trace: [ 318.303361][ T5064] [ 318.306439][ T5064] dump_stack_lvl+0x188/0x24e [ 318.311163][ T5064] ? gfs2_assert_warn_i+0xc3/0x2c0 [ 318.316288][ T5064] ? show_regs_print_info+0x12/0x12 [ 318.321506][ T5064] ? load_image+0x400/0x400 [ 318.326028][ T5064] ? do_raw_spin_unlock+0x11d/0x230 [ 318.331236][ T5064] gfs2_assert_warn_i+0x18f/0x2c0 [ 318.336278][ T5064] gfs2_quota_cleanup+0x4b4/0x6a0 [ 318.341417][ T5064] gfs2_put_super+0x22f/0x8c0 [ 318.346115][ T5064] ? gfs2_evict_inode+0x11d0/0x11d0 [ 318.351328][ T5064] generic_shutdown_super+0x130/0x340 [ 318.356733][ T5064] kill_block_super+0x7c/0xe0 [ 318.361450][ T5064] deactivate_locked_super+0x93/0xf0 [ 318.366858][ T5064] cleanup_mnt+0x42c/0x4b0 [ 318.371304][ T5064] ? lockdep_hardirqs_on+0x94/0x140 [ 318.376544][ T5064] task_work_run+0x1d0/0x260 [ 318.381182][ T5064] ? task_work_cancel+0x220/0x220 [ 318.386230][ T5064] ? exit_to_user_mode_loop+0x3b/0x110 [ 318.391739][ T5064] exit_to_user_mode_loop+0xe6/0x110 [ 318.397045][ T5064] exit_to_user_mode_prepare+0xee/0x180 [ 318.402607][ T5064] syscall_exit_to_user_mode+0x16/0x40 [ 318.408076][ T5064] do_syscall_64+0x58/0xa0 [ 318.412510][ T5064] ? clear_bhb_loop+0x60/0xb0 [ 318.417201][ T5064] ? clear_bhb_loop+0x60/0xb0 [ 318.421911][ T5064] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 318.427866][ T5064] RIP: 0033:0x7f288899d9d7 [ 318.432339][ T5064] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 318.452060][ T5064] RSP: 002b:00007ffc04393c88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 318.460527][ T5064] RAX: 0000000000000000 RBX: 00007f2888a32050 RCX: 00007f288899d9d7 [ 318.468518][ T5064] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc04393d40 [ 318.476496][ T5064] RBP: 00007ffc04393d40 R08: 00007ffc04394d40 R09: 00000000ffffffff [ 318.484483][ T5064] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc04394dd0 [ 318.492468][ T5064] R13: 00007f2888a32050 R14: 000000000004d61b R15: 00007ffc04394e10 [ 318.500475][ T5064] [ 319.209924][ T6584] netlink: 'syz.1.523': attribute type 4 has an invalid length. [ 319.851401][ T6587] netlink: 'syz.1.523': attribute type 4 has an invalid length. [ 320.384934][ T6606] loop5: detected capacity change from 0 to 256 [ 321.386973][ T6606] FAT-fs (loop5): Directory bread(block 64) failed [ 321.420705][ T6606] FAT-fs (loop5): Directory bread(block 65) failed [ 321.427409][ T6606] FAT-fs (loop5): Directory bread(block 66) failed [ 321.480571][ T6606] FAT-fs (loop5): Directory bread(block 67) failed [ 321.488330][ T6606] FAT-fs (loop5): Directory bread(block 68) failed [ 321.518347][ T6606] FAT-fs (loop5): Directory bread(block 69) failed [ 321.737536][ T6606] FAT-fs (loop5): Directory bread(block 70) failed [ 321.745514][ T26] kauditd_printk_skb: 16 callbacks suppressed [ 321.745530][ T26] audit: type=1326 audit(1774496007.457:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.1.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 321.785325][ T6606] FAT-fs (loop5): Directory bread(block 71) failed [ 321.793356][ T6606] FAT-fs (loop5): Directory bread(block 72) failed [ 321.799955][ T6606] FAT-fs (loop5): Directory bread(block 73) failed [ 321.817508][ T26] audit: type=1326 audit(1774496007.457:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.1.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 321.840655][ T26] audit: type=1326 audit(1774496007.507:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.1.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 322.090715][ T4319] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 322.340821][ T4319] usb 3-1: Using ep0 maxpacket: 32 [ 322.372601][ T4319] usb 3-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 322.450679][ T4319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 322.493779][ T4319] usb 3-1: Product: syz [ 322.498017][ T4319] usb 3-1: Manufacturer: syz [ 322.549162][ T4319] usb 3-1: SerialNumber: syz [ 322.587094][ T26] audit: type=1326 audit(1774496007.507:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.1.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 322.618337][ T26] audit: type=1326 audit(1774496007.517:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.1.531" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5c2e39c799 code=0x7ffc0000 [ 322.630962][ T4319] usb 3-1: config 0 descriptor?? [ 322.699545][ T4319] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 322.838137][ T6634] loop4: detected capacity change from 0 to 128 [ 322.899120][ T6619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 322.910993][ T6619] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 322.938159][ T6634] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 322.967666][ T6634] ext4 filesystem being mounted at /105/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 323.056570][ T4319] gspca_ov534_9: reg_w failed -71 [ 323.864929][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 323.977161][ T6647] loop1: detected capacity change from 0 to 64 [ 324.180723][ T4319] gspca_ov534_9: Unknown sensor 0000 [ 324.180928][ T4319] ov534_9: probe of 3-1:0.0 failed with error -22 [ 324.275721][ T4319] usb 3-1: USB disconnect, device number 5 [ 327.002863][ T26] audit: type=1326 audit(1774496012.717:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 327.086927][ T26] audit: type=1326 audit(1774496012.717:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 327.384692][ T6679] loop5: detected capacity change from 0 to 512 [ 327.495368][ T26] audit: type=1326 audit(1774496012.737:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 327.601477][ T6679] EXT4-fs (loop5): 1 truncate cleaned up [ 327.607219][ T6679] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 327.788185][ T6687] md: superblock version -2147471259 not known [ 327.794595][ T6687] md: couldn't set array info. -22 [ 327.826952][ T6687] loop2: detected capacity change from 0 to 512 [ 327.836013][ T6687] EXT4-fs: Ignoring removed nomblk_io_submit option [ 329.055407][ T6687] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 329.070137][ T6687] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.549: invalid indirect mapped block 2683928664 (level 1) [ 329.086269][ T6687] EXT4-fs (loop2): Remounting filesystem read-only [ 329.094157][ T6687] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.549: bg 0: block 361: padding at end of block bitmap is not set [ 329.110284][ T6687] EXT4-fs (loop2): Remounting filesystem read-only [ 329.117067][ T6687] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 329.127751][ T6687] EXT4-fs (loop2): Remounting filesystem read-only [ 329.136009][ T6687] EXT4-fs (loop2): 1 truncate cleaned up [ 329.141971][ T6687] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 329.293875][ T6690] loop4: detected capacity change from 0 to 256 [ 329.303745][ T26] audit: type=1326 audit(1774496012.737:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 329.358948][ T26] audit: type=1326 audit(1774496012.737:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9079d9c799 code=0x7ffc0000 [ 329.503772][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 329.588710][ T6690] FAT-fs (loop4): Directory bread(block 64) failed [ 329.661843][ T6690] FAT-fs (loop4): Directory bread(block 65) failed [ 329.719984][ T6690] FAT-fs (loop4): Directory bread(block 66) failed [ 329.769758][ T5064] EXT4-fs (loop5): unmounting filesystem. [ 329.771617][ T6690] FAT-fs (loop4): Directory bread(block 67) failed [ 329.879702][ T6690] FAT-fs (loop4): Directory bread(block 68) failed [ 329.922345][ T6690] FAT-fs (loop4): Directory bread(block 69) failed [ 329.936488][ T6690] FAT-fs (loop4): Directory bread(block 70) failed [ 329.945196][ T6690] FAT-fs (loop4): Directory bread(block 71) failed [ 329.973548][ T6690] FAT-fs (loop4): Directory bread(block 72) failed [ 329.980913][ T6690] FAT-fs (loop4): Directory bread(block 73) failed [ 330.239422][ T4323] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 330.624097][ T4323] usb 4-1: Using ep0 maxpacket: 32 [ 330.637637][ T4323] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 330.658426][ T4323] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.429854][ T4323] usb 4-1: Product: syz [ 331.470348][ T4323] usb 4-1: Manufacturer: syz [ 331.476176][ T4323] usb 4-1: SerialNumber: syz [ 331.567980][ T4323] usb 4-1: config 0 descriptor?? [ 331.596448][ T4323] gspca_main: ov534_9-2.14.0 probing 05a9:1550 [ 331.849077][ T6697] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 332.254391][ T6697] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 332.780723][ T4323] gspca_ov534_9: reg_w failed -110 [ 332.981263][ T6729] vivid-004: disconnect [ 333.140183][ T6728] vivid-004: reconnect [ 333.354430][ T4323] gspca_ov534_9: Unknown sensor 0000 [ 333.354898][ T4323] ov534_9: probe of 4-1:0.0 failed with error -22 [ 333.915724][ T4323] usb 4-1: USB disconnect, device number 2 [ 334.338090][ T6745] loop3: detected capacity change from 0 to 128 [ 334.437253][ T6745] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 334.450975][ T6745] ext4 filesystem being mounted at /118/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 336.156379][ T4278] EXT4-fs (loop3): unmounting filesystem. [ 336.772948][ T6776] loop1: detected capacity change from 0 to 256 [ 336.966839][ T6776] FAT-fs (loop1): Directory bread(block 64) failed [ 337.003594][ T6776] FAT-fs (loop1): Directory bread(block 65) failed [ 337.020736][ T6776] FAT-fs (loop1): Directory bread(block 66) failed [ 337.050566][ T6776] FAT-fs (loop1): Directory bread(block 67) failed [ 337.060845][ T6776] FAT-fs (loop1): Directory bread(block 68) failed [ 337.070692][ T6776] FAT-fs (loop1): Directory bread(block 69) failed [ 337.212392][ T6776] FAT-fs (loop1): Directory bread(block 70) failed [ 337.257929][ T6776] FAT-fs (loop1): Directory bread(block 71) failed [ 337.818203][ T6776] FAT-fs (loop1): Directory bread(block 72) failed [ 337.873315][ T6776] FAT-fs (loop1): Directory bread(block 73) failed [ 340.992900][ T6832] loop5: detected capacity change from 0 to 8 [ 341.233890][ T6832] SQUASHFS error: Failed to read block 0x6fc: -5 [ 341.254070][ T6832] SQUASHFS error: Unable to read metadata cache entry [6fa] [ 341.437433][ T6835] md: superblock version -2147471259 not known [ 341.443817][ T6835] md: couldn't set array info. -22 [ 341.454292][ T6835] loop4: detected capacity change from 0 to 512 [ 341.461644][ T6835] EXT4-fs: Ignoring removed nomblk_io_submit option [ 341.488861][ T6838] loop3: detected capacity change from 0 to 256 [ 341.514948][ T6835] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8817e02c, mo2=0002] [ 341.564925][ T6835] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 33261: comm syz.4.589: invalid block [ 341.579425][ T6835] EXT4-fs (loop4): Remounting filesystem read-only [ 341.586227][ T6835] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.589: invalid indirect mapped block 2683928664 (level 1) [ 341.603185][ T6835] EXT4-fs (loop4): Remounting filesystem read-only [ 341.609857][ T6835] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.589: bg 0: block 361: padding at end of block bitmap is not set [ 341.626773][ T6835] EXT4-fs (loop4): Remounting filesystem read-only [ 341.633361][ T6835] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6180: Corrupt filesystem [ 341.642506][ T6835] EXT4-fs (loop4): Remounting filesystem read-only [ 341.649226][ T6835] EXT4-fs (loop4): 1 truncate cleaned up [ 341.654980][ T6835] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 341.820913][ T6838] FAT-fs (loop3): Directory bread(block 64) failed [ 341.833873][ T4268] EXT4-fs (loop4): unmounting filesystem. [ 341.839837][ T6838] FAT-fs (loop3): Directory bread(block 65) failed [ 341.877865][ T6838] FAT-fs (loop3): Directory bread(block 66) failed [ 341.984667][ T6838] FAT-fs (loop3): Directory bread(block 67) failed [ 342.060863][ T6838] FAT-fs (loop3): Directory bread(block 68) failed [ 342.067431][ T6838] FAT-fs (loop3): Directory bread(block 69) failed [ 342.561256][ T6852] loop5: detected capacity change from 0 to 512 [ 342.830745][ T6838] FAT-fs (loop3): Directory bread(block 70) failed [ 342.837414][ T6838] FAT-fs (loop3): Directory bread(block 71) failed [ 342.874715][ T6838] FAT-fs (loop3): Directory bread(block 72) failed [ 342.899468][ T6838] FAT-fs (loop3): Directory bread(block 73) failed [ 342.922237][ T4359] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 343.167831][ T6855] loop2: detected capacity change from 0 to 512 [ 343.207796][ T6855] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 343.260902][ T6855] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802e028, mo2=0002] [ 343.270013][ T6855] EXT4-fs (loop2): orphan cleanup on readonly fs [ 343.277995][ T6855] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.594: bad orphan inode 267 [ 343.329401][ T6855] EXT4-fs (loop2): Remounting filesystem read-only [ 343.629682][ T6855] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 344.098808][ T6855] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.594: dx entry: limit 0 != root limit 125 [ 344.240662][ T6855] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.594: Corrupt directory, running e2fsck is recommended [ 345.078250][ T4269] EXT4-fs (loop2): unmounting filesystem. [ 346.008672][ T26] audit: type=1326 audit(1774496031.717:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 346.106689][ T26] audit: type=1326 audit(1774496031.717:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 346.334536][ T6896] loop1: detected capacity change from 0 to 32768 [ 346.440043][ T6896] XFS (loop1): Mounting V5 Filesystem [ 346.489026][ T26] audit: type=1326 audit(1774496031.717:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 346.593832][ T6896] XFS (loop1): Ending clean mount [ 346.604024][ T6896] XFS (loop1): Quotacheck needed: Please wait. [ 346.689112][ T6907] loop4: detected capacity change from 0 to 64 [ 346.729148][ T6896] XFS (loop1): Quotacheck: Done. [ 347.338778][ T26] audit: type=1326 audit(1774496031.717:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 347.855886][ T26] audit: type=1326 audit(1774496031.717:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f288895cfce code=0x7ffc0000 [ 347.922798][ T4271] XFS (loop1): Unmounting Filesystem [ 348.128031][ T26] audit: type=1326 audit(1774496031.717:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 348.241554][ T26] audit: type=1326 audit(1774496031.747:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 348.267823][ T26] audit: type=1326 audit(1774496031.747:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 348.370974][ T26] audit: type=1326 audit(1774496031.747:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.5.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288899c799 code=0x7ffc0000 [ 348.560608][ T6565] ================================================================== [ 348.568746][ T6565] BUG: KASAN: use-after-free in __lock_acquire+0x106/0x7d10 [ 348.576086][ T6565] Read of size 8 at addr ffff88807a040bb0 by task gfs2_quotad/6565 [ 348.584018][ T6565] [ 348.586375][ T6565] CPU: 1 PID: 6565 Comm: gfs2_quotad Not tainted syzkaller #0 [ 348.593872][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 348.603958][ T6565] Call Trace: [ 348.607264][ T6565] [ 348.610223][ T6565] dump_stack_lvl+0x188/0x24e [ 348.614950][ T6565] ? __lock_acquire+0x7d10/0x7d10 [ 348.620019][ T6565] ? show_regs_print_info+0x12/0x12 [ 348.625261][ T6565] ? load_image+0x400/0x400 [ 348.629806][ T6565] ? _raw_spin_lock_irqsave+0xbc/0x100 [ 348.635302][ T6565] ? __virt_addr_valid+0x188/0x540 [ 348.640458][ T6565] ? __virt_addr_valid+0x465/0x540 [ 348.645617][ T6565] ? __lock_acquire+0x106/0x7d10 [ 348.650602][ T6565] print_report+0xa8/0x210 [ 348.655068][ T6565] kasan_report+0x10b/0x140 [ 348.660224][ T6565] ? __lock_acquire+0x106/0x7d10 [ 348.665212][ T6565] __lock_acquire+0x106/0x7d10 [ 348.670003][ T6565] ? verify_lock_unused+0x140/0x140 [ 348.675247][ T6565] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 348.681252][ T6565] ? lock_chain_count+0x20/0x20 [ 348.686132][ T6565] ? __free_object+0x218/0xa70 [ 348.690931][ T6565] ? lockdep_hardirqs_on+0x94/0x140 [ 348.696171][ T6565] ? verify_lock_unused+0x140/0x140 [ 348.701408][ T6565] ? alloc_object+0x640/0x640 [ 348.706107][ T6565] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 348.712126][ T6565] ? lock_chain_count+0x20/0x20 [ 348.717014][ T6565] lock_acquire+0x1bb/0x4a0 [ 348.721545][ T6565] ? finish_wait+0xb8/0x1d0 [ 348.726078][ T6565] ? timer_delete_sync+0x20/0x20 [ 348.731039][ T6565] ? __mod_timer+0x91e/0xd00 [ 348.735649][ T6565] ? read_lock_is_recursive+0x10/0x10 [ 348.741060][ T6565] _raw_spin_lock_irqsave+0xb0/0x100 [ 348.746461][ T6565] ? finish_wait+0xb8/0x1d0 [ 348.750996][ T6565] ? _raw_spin_lock+0x40/0x40 [ 348.755702][ T6565] ? update_process_times+0x1b0/0x1b0 [ 348.761100][ T6565] finish_wait+0xb8/0x1d0 [ 348.765464][ T6565] gfs2_quotad+0x4f3/0x680 [ 348.769918][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 348.775068][ T6565] ? _raw_spin_unlock_irqrestore+0x82/0x120 [ 348.780989][ T6565] ? wake_bit_function+0x200/0x200 [ 348.786143][ T6565] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 348.792067][ T6565] ? __kthread_parkme+0x162/0x1c0 [ 348.797142][ T6565] kthread+0x29d/0x330 [ 348.801259][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 348.806400][ T6565] ? kthread_blkcg+0xd0/0xd0 [ 348.811106][ T6565] ret_from_fork+0x1f/0x30 [ 348.815577][ T6565] [ 348.818622][ T6565] [ 348.821068][ T6565] Allocated by task 6776: [ 348.825416][ T6565] kasan_set_track+0x4b/0x70 [ 348.830049][ T6565] __kasan_kmalloc+0x8e/0xa0 [ 348.834696][ T6565] fat_fill_super+0x116/0x5040 [ 348.839484][ T6565] mount_bdev+0x287/0x3c0 [ 348.843867][ T6565] legacy_get_tree+0xe6/0x180 [ 348.848663][ T6565] vfs_get_tree+0x88/0x270 [ 348.853108][ T6565] do_new_mount+0x24a/0xa40 [ 348.857643][ T6565] __se_sys_mount+0x2e3/0x3d0 [ 348.862342][ T6565] do_syscall_64+0x4c/0xa0 [ 348.866795][ T6565] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 348.872724][ T6565] [ 348.875066][ T6565] Freed by task 21: [ 348.878887][ T6565] kasan_set_track+0x4b/0x70 [ 348.883512][ T6565] kasan_save_free_info+0x2d/0x50 [ 348.888557][ T6565] ____kasan_slab_free+0x126/0x1e0 [ 348.893882][ T6565] slab_free_freelist_hook+0x131/0x1a0 [ 348.899363][ T6565] __kmem_cache_free+0xb6/0x1f0 [ 348.904329][ T6565] rcu_core+0xa99/0x1740 [ 348.908592][ T6565] handle_softirqs+0x2a1/0x930 [ 348.913377][ T6565] run_ksoftirqd+0xa4/0x100 [ 348.918008][ T6565] smpboot_thread_fn+0x64a/0xa40 [ 348.923062][ T6565] kthread+0x29d/0x330 [ 348.927245][ T6565] ret_from_fork+0x1f/0x30 [ 348.931688][ T6565] [ 348.934032][ T6565] Last potentially related work creation: [ 348.939760][ T6565] kasan_save_stack+0x3a/0x60 [ 348.944470][ T6565] __kasan_record_aux_stack+0xb2/0xc0 [ 348.949871][ T6565] call_rcu+0x14f/0x990 [ 348.954057][ T6565] generic_shutdown_super+0x130/0x340 [ 348.959451][ T6565] kill_block_super+0x7c/0xe0 [ 348.964158][ T6565] deactivate_locked_super+0x93/0xf0 [ 348.969462][ T6565] cleanup_mnt+0x42c/0x4b0 [ 348.973935][ T6565] task_work_run+0x1d0/0x260 [ 348.978566][ T6565] exit_to_user_mode_loop+0xe6/0x110 [ 348.983878][ T6565] exit_to_user_mode_prepare+0xee/0x180 [ 348.989559][ T6565] syscall_exit_to_user_mode+0x16/0x40 [ 348.995039][ T6565] do_syscall_64+0x58/0xa0 [ 348.999483][ T6565] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 349.005399][ T6565] [ 349.007742][ T6565] Second to last potentially related work creation: [ 349.014342][ T6565] kasan_save_stack+0x3a/0x60 [ 349.019048][ T6565] __kasan_record_aux_stack+0xb2/0xc0 [ 349.024447][ T6565] insert_work+0x54/0x3c0 [ 349.028805][ T6565] __queue_work+0xba3/0xfb0 [ 349.033420][ T6565] queue_delayed_work_on+0x12d/0x1f0 [ 349.038724][ T6565] queue_con_delay+0xbc/0x1a0 [ 349.043460][ T6565] inet_shutdown+0x291/0x370 [ 349.048081][ T6565] ceph_con_close_socket+0x92/0x1c0 [ 349.053839][ T6565] ceph_con_reset_protocol+0x2e/0x2a0 [ 349.059243][ T6565] ceph_con_close+0xac/0x190 [ 349.064036][ T6565] __close_session+0xc5/0x180 [ 349.068743][ T6565] ceph_monc_stop+0x37/0x210 [ 349.073369][ T6565] ceph_destroy_client+0x70/0x110 [ 349.078434][ T6565] destroy_fs_client+0x192/0x200 [ 349.083413][ T6565] deactivate_locked_super+0x93/0xf0 [ 349.088728][ T6565] ceph_get_tree+0x971/0x13f0 [ 349.093429][ T6565] vfs_get_tree+0x88/0x270 [ 349.097872][ T6565] vfs_fsconfig_locked+0x22f/0x3f0 [ 349.103008][ T6565] __se_sys_fsconfig+0x65a/0x790 [ 349.107971][ T6565] do_syscall_64+0x4c/0xa0 [ 349.112421][ T6565] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 349.118351][ T6565] [ 349.120698][ T6565] The buggy address belongs to the object at ffff88807a040000 [ 349.120698][ T6565] which belongs to the cache kmalloc-8k of size 8192 [ 349.134770][ T6565] The buggy address is located 2992 bytes inside of [ 349.134770][ T6565] 8192-byte region [ffff88807a040000, ffff88807a042000) [ 349.148236][ T6565] [ 349.150581][ T6565] The buggy address belongs to the physical page: [ 349.157015][ T6565] page:ffffea0001e81000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7a040 [ 349.167200][ T6565] head:ffffea0001e81000 order:3 compound_mapcount:0 compound_pincount:0 [ 349.175551][ T6565] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 349.183570][ T6565] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888017442280 [ 349.192173][ T6565] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000 [ 349.200772][ T6565] page dumped because: kasan: bad access detected [ 349.207496][ T6565] page_owner tracks the page as allocated [ 349.213229][ T6565] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3940, tgid 3940 (dhcpcd-run-hook), ts 49963534218, free_ts 49962936652 [ 349.234097][ T6565] post_alloc_hook+0x173/0x1a0 [ 349.238914][ T6565] get_page_from_freelist+0x1a1e/0x1ab0 [ 349.244496][ T6565] __alloc_pages+0x1ec/0x4f0 [ 349.249111][ T6565] alloc_slab_page+0x5d/0x160 [ 349.253815][ T6565] new_slab+0x87/0x2c0 [ 349.257907][ T6565] ___slab_alloc+0xbc6/0x1240 [ 349.262603][ T6565] __kmem_cache_alloc_node+0x1a0/0x260 [ 349.268115][ T6565] kmalloc_trace+0x26/0xe0 [ 349.272580][ T6565] tomoyo_init_log+0x1090/0x1f80 [ 349.277551][ T6565] tomoyo_supervisor+0x35f/0x11a0 [ 349.282599][ T6565] tomoyo_env_perm+0x14e/0x1f0 [ 349.287385][ T6565] tomoyo_find_next_domain+0x1578/0x1a50 [ 349.293038][ T6565] tomoyo_bprm_check_security+0x100/0x150 [ 349.298789][ T6565] security_bprm_check+0x5e/0x90 [ 349.303749][ T6565] bprm_execve+0xa50/0x17e0 [ 349.308276][ T6565] do_execveat_common+0x51b/0x6c0 [ 349.313331][ T6565] page last free stack trace: [ 349.318016][ T6565] free_unref_page_prepare+0x8b4/0x9a0 [ 349.323505][ T6565] free_unref_page+0x2e/0x3f0 [ 349.328207][ T6565] __unfreeze_partials+0x1a5/0x200 [ 349.333343][ T6565] put_cpu_partial+0x17c/0x250 [ 349.338128][ T6565] qlist_free_all+0x76/0xe0 [ 349.342653][ T6565] kasan_quarantine_reduce+0x144/0x160 [ 349.348134][ T6565] __kasan_slab_alloc+0x1e/0x80 [ 349.353018][ T6565] slab_post_alloc_hook+0x4b/0x480 [ 349.358156][ T6565] __kmem_cache_alloc_node+0x140/0x260 [ 349.363651][ T6565] kmalloc_trace+0x26/0xe0 [ 349.368099][ T6565] tomoyo_init_log+0x183/0x1f80 [ 349.372976][ T6565] tomoyo_supervisor+0x35f/0x11a0 [ 349.378021][ T6565] tomoyo_env_perm+0x14e/0x1f0 [ 349.382815][ T6565] tomoyo_find_next_domain+0x1578/0x1a50 [ 349.388482][ T6565] tomoyo_bprm_check_security+0x100/0x150 [ 349.394236][ T6565] security_bprm_check+0x5e/0x90 [ 349.399231][ T6565] [ 349.401664][ T6565] Memory state around the buggy address: [ 349.407572][ T6565] ffff88807a040a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 349.415656][ T6565] ffff88807a040b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 349.423736][ T6565] >ffff88807a040b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 349.431811][ T6565] ^ [ 349.437465][ T6565] ffff88807a040c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 349.445546][ T6565] ffff88807a040c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 349.453726][ T6565] ================================================================== [ 349.461831][ T6565] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 349.469088][ T6565] CPU: 1 PID: 6565 Comm: gfs2_quotad Not tainted syzkaller #0 [ 349.476589][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 349.486666][ T6565] Call Trace: [ 349.490055][ T6565] [ 349.493011][ T6565] dump_stack_lvl+0x188/0x24e [ 349.497727][ T6565] ? memcpy+0x3c/0x60 [ 349.501820][ T6565] ? show_regs_print_info+0x12/0x12 [ 349.507056][ T6565] ? load_image+0x400/0x400 [ 349.511590][ T6565] panic+0x2e5/0x730 [ 349.515511][ T6565] ? __lock_acquire+0x7d10/0x7d10 [ 349.520566][ T6565] ? bpf_jit_dump+0xd0/0xd0 [ 349.525100][ T6565] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 349.531023][ T6565] ? _raw_spin_unlock+0x40/0x40 [ 349.535900][ T6565] check_panic_on_warn+0x80/0xa0 [ 349.540869][ T6565] ? __lock_acquire+0x106/0x7d10 [ 349.545868][ T6565] end_report+0x66/0x110 [ 349.550157][ T6565] kasan_report+0x118/0x140 [ 349.554701][ T6565] ? __lock_acquire+0x106/0x7d10 [ 349.559673][ T6565] __lock_acquire+0x106/0x7d10 [ 349.564475][ T6565] ? verify_lock_unused+0x140/0x140 [ 349.569717][ T6565] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 349.575743][ T6565] ? lock_chain_count+0x20/0x20 [ 349.580627][ T6565] ? __free_object+0x218/0xa70 [ 349.585419][ T6565] ? lockdep_hardirqs_on+0x94/0x140 [ 349.590672][ T6565] ? verify_lock_unused+0x140/0x140 [ 349.595911][ T6565] ? alloc_object+0x640/0x640 [ 349.600616][ T6565] ? lockdep_hardirqs_on_prepare+0x409/0x770 [ 349.606631][ T6565] ? lock_chain_count+0x20/0x20 [ 349.611544][ T6565] lock_acquire+0x1bb/0x4a0 [ 349.616079][ T6565] ? finish_wait+0xb8/0x1d0 [ 349.620614][ T6565] ? timer_delete_sync+0x20/0x20 [ 349.625606][ T6565] ? __mod_timer+0x91e/0xd00 [ 349.630222][ T6565] ? read_lock_is_recursive+0x10/0x10 [ 349.635634][ T6565] _raw_spin_lock_irqsave+0xb0/0x100 [ 349.640952][ T6565] ? finish_wait+0xb8/0x1d0 [ 349.645482][ T6565] ? _raw_spin_lock+0x40/0x40 [ 349.650182][ T6565] ? update_process_times+0x1b0/0x1b0 [ 349.655584][ T6565] finish_wait+0xb8/0x1d0 [ 349.659951][ T6565] gfs2_quotad+0x4f3/0x680 [ 349.664400][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 349.669544][ T6565] ? _raw_spin_unlock_irqrestore+0x82/0x120 [ 349.675494][ T6565] ? wake_bit_function+0x200/0x200 [ 349.680654][ T6565] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 349.686582][ T6565] ? __kthread_parkme+0x162/0x1c0 [ 349.691668][ T6565] kthread+0x29d/0x330 [ 349.695791][ T6565] ? gfs2_wake_up_statfs+0xc0/0xc0 [ 349.700936][ T6565] ? kthread_blkcg+0xd0/0xd0 [ 349.705546][ T6565] ret_from_fork+0x1f/0x30 [ 349.709999][ T6565] [ 349.713626][ T6565] Kernel Offset: disabled [ 349.717970][ T6565] Rebooting in 86400 seconds..