last executing test programs:

9m43.67912384s ago: executing program 32 (id=934):
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2fffffffd}, 0xc)
close(r0)

8m57.769076795s ago: executing program 3 (id=1250):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})

8m56.557736018s ago: executing program 3 (id=1258):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

8m55.986684338s ago: executing program 3 (id=1261):
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder-control\x00', 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0x541b, 0x0)

8m55.487964402s ago: executing program 3 (id=1265):
syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000180)='./file2\x00', 0x4040, &(0x7f0000000000)=ANY=[], 0x1, 0x214, &(0x7f0000000480)="$eJzs201PE0Ecx/Hf9omKRnyID/FkYmK82CqQkJ6UF+DFo4kHUgtpLGrEC4REeRPevXryJZDo+/ANwMGbJ8bM7tSydO3u1F020O8nofuHzm9nFpih0xYBmFlPw9tAgZphZYz5eFfSi2eSaiUPDkChjDseGQCzpzr11H85XEMAnEmHq1VJTe0H0s9fu90D99HM+PjhcLUSFYF0cCx/IWt+LwiPd2rx/Lyki2Otxzck5kuUv69h3o58t3vJs/95xfvXlaz56Pof3FNdx/KXJS1I4WmuSrom6bo0Z9vekFSJ9d9wn43yt6Mv7GW8DAAAAAAAJrK7z9Z/paVW6gmqclvfMXYfvN4f9B75dTzcPqvu8o/98n81XH5xUiOTnl9KHN1JwaisR4c5l2913w5eeYwbyEPFb/6PPS1of6P3U07wz+ngVob4/K9nH417RnC9/9krAyCytb3zem0w6L3Ps3gyqY3ke0K7IuQ8wuTiqy30O3plpOC+pinsYjttfPiCTN4D+6T0NiZDm/NU1PL9Pn9XcHKe1mKT6Jv72Xqc+XnSXQ3F5mlM9ZQXJgCFa3/YfNfe2t552N9c2+ht9N4sr3Q6K8tLi512+LDc3pqFskcJoAijv/4Jd2Z9Ew8AAAAAAAAAAAAAACjVTUm3wurHkUeMdwYAAAAAZ9Bp/FNU2dcIAAAAAAAAAAAAAMB59ycAAP//QsA2Lg==")
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x10000, &(0x7f0000000280)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@xino_auto}]})

8m54.416090064s ago: executing program 3 (id=1274):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2800491, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x4, 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000001080), &(0x7f00000010c0)='./file0\x00', 0x60, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}}, 0x0, 0x0, 0x0)

8m53.253175864s ago: executing program 3 (id=1285):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0200}]})
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

8m52.643169958s ago: executing program 33 (id=1285):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0200}]})
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

7m8.316035562s ago: executing program 5 (id=2166):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0xffff, 0xb, 0x1, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000200), 0x2, r0}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=""/40, &(0x7f00000001c0), &(0x7f0000000200), 0x1, r0}, 0x38)

7m7.511695399s ago: executing program 5 (id=2170):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x8}, 0x9)
write(r0, &(0x7f00000000c0)="1b0000001e005f0214f6fffffffffff80700"/27, 0x1b)

7m7.020137233s ago: executing program 5 (id=2172):
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

7m6.650185567s ago: executing program 5 (id=2177):
syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x200000, &(0x7f00000000c0)=ANY=[], 0xbe, 0x1c0, &(0x7f0000000500)="$eJzs28uO0lAcx/FfKQXE+23jysSFbgRFN+7kAXwBdwQqIRY14gZiYnwU34Q38QUg0d2sppOWQlqmwBkYKJfvJ5mZfzj8zjlteqaniwrAyboX/rZkyQkr3/d/PZX08YOkfMaTA7BVvs59AKfK/pf1DABkY1y3w33A0JL+/v/ZHEU/juH+YVzPTYqSpFi+YJr/bYV/n+SlUSxfjLpcuX/5M8k/VzJ/44rjl+fy5RU5a5afHP+LZ8n8TUm3JN2WdEfSXUnBmb4v6UHK+K258R8bzh/YRHD1VTbNb9BBsHo+dTz3VVqjvTrvRPnX6c2xfyHD1C8UonzNcL6L8m/WzBejfKX51WultOfW7Bcwkct4/dvSmT+//t+b5/PL1z+AJXr9weeG57nfe8HNNixmnywqnLAoRj0s+3Jwd4x9IuMhKDItSilNTuJq2XZR2M2RBrevfTjhhsV01e5yLADHqvqj+63a6w9edrqNttt2v9Tevps+dofP5dWFT+cADlxycw4AAAAAAAAAAAAAAA7RQ0mP1gmavuAHAAAAYG9c7ztDjqTLTVkfIwAAAAAAAAAAAAAAAAAAAHAsLgIAAP//eUA+uA==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})

7m5.962290086s ago: executing program 5 (id=2180):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f00000000c0)=0x94a, 0x4)
syz_emit_ethernet(0x76, &(0x7f0000000100)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x1, 0x6, '\x00\'$', 0x40, 0x3a, 0xff, @private2, @mcast2, {[], @dest_unreach={0x1, 0x4, 0x0, 0x0, '\x00', {0xd, 0x6, "2318d3", 0x0, 0x0, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, [@fragment={0x3a, 0x0, 0xc, 0x0, 0x0, 0x1, 0x65}], "d2588e45cd1357bc"}}}}}}}, 0x0)

7m5.036762429s ago: executing program 5 (id=2187):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6)
ioctl$PPPIOCGIDLE(r0, 0x8010743f, &(0x7f00000000c0))

7m4.342306189s ago: executing program 34 (id=2187):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6)
ioctl$PPPIOCGIDLE(r0, 0x8010743f, &(0x7f00000000c0))

4m22.830573411s ago: executing program 6 (id=3457):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2c, r1, 0x301, 0x70bd29, 0x25dfdbfc, {0x24}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}]}, 0x2c}}, 0x0)

4m22.491531701s ago: executing program 6 (id=3461):
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002cbd70000400000004f80000080009"], 0x3c}}, 0x0)

4m22.049042439s ago: executing program 6 (id=3468):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes192\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x6, 0x0, 0x0)

4m21.717620139s ago: executing program 6 (id=3472):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)=0x7)

4m21.346059618s ago: executing program 6 (id=3477):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
link(&(0x7f0000000080)='.\x00', &(0x7f00000000c0)='./file0\x00')

4m20.961001505s ago: executing program 6 (id=3482):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x806c0, 0x0)

4m5.730704072s ago: executing program 35 (id=3482):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x806c0, 0x0)

2m2.769555334s ago: executing program 8 (id=4517):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r0, 0x0, 0x12, 0x0, &(0x7f0000000000)={{0x6, @rose}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)

2m1.848215628s ago: executing program 8 (id=4522):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0x80087601, 0x1000000000000)

2m1.13154912s ago: executing program 8 (id=4529):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x6, 0x5004, 0x7, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000d00008500000001000000850000002a00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

2m0.680196324s ago: executing program 8 (id=4534):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000022c0)={[{@errors_remount}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x439, &(0x7f0000002380)="$eJzs3MtvG0UYAPBv105LXyRU5dEHECiIikfSpKX0wAUEEgeQkOBQjiFJq1K3QU2QaFVBQKgcUSXuiCMSfwEnuCDghMQV7qhShXJp4WS09m5iO3aauE5c8O8nrTuzO9bM592xZ3a6CWBgjWYvScTuiPg9Iobr2eYCo/V/bi1dmf576cp0EtXqW38ltXI3l65MF0WL9+0qMuWI9LMkDrapd/7S5XNTlcrsxTw/vnD+/fH5S5efO3t+6szsmdkLkydPHj828cKJyed7EmcW180DH80d2v/aO9femD517d2fv02K+Fvi6JHRtQ4+Wa32uLr+2tOQTsp9bAgbUqp30xiq9f/hKMXKyRuOVz/ta+OATVWtVqsPdD68WAX+x5LodwuA/ih+6LP5b7Ft0dDjrnDjpfoEKIv7Vr7Vj5QjzcsMtcxve2k0Ik4t/vNVtsXm3IcAAGjyfTb+ebbd+C+NxvtC9+ZrKCMRcV9E7I2IExGxLyLuj6iVfTAiHtpg/a2LJKvHP+n1rgJbp2z892K+ttU8/itGfzFSynN7avEPJafPVmaP5p/JkRjanuUn1qjjh1d++6LTscbxX7Zl9Rdjwbwd18vbm98zM7UwdScxN7rxScSBcrv4k+WVgCQi9kfEgS7rOPv0N4c6Hbt9/GvowTpT9euIp+rnfzFa4i8ka69Pjt8Tldmj48VVsdovv159s1P9dxR/D2Tnf2fb6385/pGkcb12fuN1XP3j845zmm6v/23J2037PpxaWLg4EbEteb3e6JX9pYuTLeUmV8pn8R853L7/742VT+JgRGQX8cMR8UhEPJq3/bGIeDwiDq8R/08vP/Fe9/Fvriz+mQ2d/5XEtmjd0z5ROvfjd02Vjmwk/uz8H6+ljuR71vP9t552dXc1AwAAwH9PGhG7I0nHltNpOjZW/z/8+2JnWpmbX3jm9NwHF2bqzwiMxFBa3OkabrgfOpFP64v8ZEv+WH7f+MvSjlp+bHquMtPv4GHA7erQ/zN/lvrdOmDTdbeOlva8HcDW87wmDC79HwaX/g+Dq03/39GPdgBbr93v/8d9aAew9coNr/nfBAMGhPk/DC79HwaX/g8DaX5H3P4heQmJVYlI74pmSGxSot/fTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL3xbwAAAP//1Xjmag==")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2081413, 0x0, 0x1, 0x0, &(0x7f0000000080))
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c})

2m0.224210745s ago: executing program 8 (id=4538):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1}, 0x50)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000000c0)={@fallback=r0, 0xffffffffffffffff, 0x2c, 0x2c}, 0x20)

1m59.311627447s ago: executing program 8 (id=4545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000d5ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c00)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@call]}, &(0x7f0000000a00)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, 0x1c, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x13b02, r1, 0x0, 0x0, 0x0, 0x10, 0xd}, 0x94)

1m58.444570554s ago: executing program 36 (id=4545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000d5ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000c00)=@bpf_tracing={0x1a, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@call]}, &(0x7f0000000a00)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, 0x1c, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x13b02, r1, 0x0, 0x0, 0x0, 0x10, 0xd}, 0x94)

1m16.803426329s ago: executing program 1 (id=4728):
r0 = socket$kcm(0x1e, 0x1, 0x0)
sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0xfdef}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000580)=""/262, 0x106}], 0x1, &(0x7f0000000480)=""/9, 0x9}, 0x0)

1m16.020427339s ago: executing program 1 (id=4731):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x28, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)

1m5.802864608s ago: executing program 2 (id=4767):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000700)=0x8, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)

1m5.004981575s ago: executing program 0 (id=4771):
r0 = syz_io_uring_setup(0x3b, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x40, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x92, 0x0, 0x0, 0x0, 0x0)

1m4.243452271s ago: executing program 2 (id=4774):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000180)={0x1, 0x1, [@local]})

1m4.073133561s ago: executing program 0 (id=4775):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x2480, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)=0x7ffd)
ioctl$PPPIOCSDEBUG(r0, 0x40047440, &(0x7f00000006c0)=0x5)

1m3.718457862s ago: executing program 4 (id=4777):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000002c80)={{0x12, 0x1, 0x0, 0x41, 0x7, 0xf5, 0x40, 0xcf3, 0x9375, 0x1a9e, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xbe, 0xe4, 0xf9}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000700)={0x44, &(0x7f0000000080)={0x0, 0x0, 0x8, "fa0fffffffffffff"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m3.462579931s ago: executing program 1 (id=4778):
syz_mount_image$xfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x4004000, &(0x7f0000000140)={[{@qnoenforce}, {@nodiscard}, {@nouuid}, {@usrquota}, {@inode32}, {@pquota}, {@lazytime}, {@usrquota}, {@gquota}, {}]}, 0x1, 0x975c, &(0x7f000001c600)="$eJzs/QWcbXWhuP/PgUM3giBSUmKSEqJIhyJKihKCtKSACCgdSqigCCjd3d2d0t3d3R3/14EDKj5wvd/f/V+8Ps/zYmbPjlnz2Z/3Wou9Z83Ze6n5FptrYGDMgfd6//RvXbTbvcstPtpC6528y+Bb9t5x4SeGXjz8eydjzTH0dM6hp3MNDAwMGrqcQe9dNnj2k04eZmDwwJD//taoI408zKgDAyMPPTt0OQMzv3cyyiHv3+6dD8UDnXTIj9vhvY93G23IQoZ8sczyb609MDAw4t99/5BxTftPd1TaUnPOP9/frD5wG2bo1YP+dt27p4Pf+xjlgIGBUfYb+Oj1Y8hth/u77/3fbMjPHHPygSXu/QR+9v+5lppz/gU/5D9kWxx26GUzD9nGP7wNGvvwer7jYms8NnQKBw2duMF/t718Euv9/1NLzTnfQgMfvR0PLDzvpo++8+5+c/A8AwOD5x0YGDzfwMDg+T9pj/qf6RNd+aqqquoTac65ZhjynH2YDz0eGPH9x7X0uPCyN6d7cGBg8MLvPU8cvPz7zwWrqqqqqqqq6t+zOeeaYW54/j/mxz3/n/TMbcbq+X9VVVVVVVXV/50WnHOuGYY81//Q8//xP+75/7OPH33we3/7P8fM733X25/snaiqqqqqqqqqj22+BfH5/6Qf9/z/ipMmvbrn/1VVVVVVVVX/d1r0nXfe2fzvXmdv6MVTv389Pf8/+5G7l/3EBlxVVVVVVVVV/+3efuqMc/72mu8TD3zo9d7fbejvBQYdd961135iA/33aNA//z5ki096TP9fG+I84hGTDgysvcQnPZT6BPo/81r19f+X8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/cR9x/P+D1/8/+4QV338v+M9POcOtZ/ztO9997//BCy/41Jaf0NA/if5Tj/8PrD5oYGCo75irDwwMLDznootPPTAwcMatM0w5xcAH180y5LrZxh723TeIf/+ficw7Fi94i8neOx2yogyM88Eyjnt3+Qu+s/+wgz40iL9rrFMOPni1pV6Z8cOnU330/Rjmg69GO/nx9/8tyzAfutGIH/HN7y///fvyYeehY596yNin2WCtdadZf+NNvrL6WiusuvKqK6896/QzTTfjrLPONNM0q6y+5srTvvf5o+Zs0nc/z/2vzNmoH56zp+b8+zn78H37qDmb9OPn7N0l7nr5iN96f84G/zfnbO6Pn7NJVx/6g8aaY7iB5d+dm0EDA2PNM9zARkPOTDfCwMBY8w697fhDbvuNsYcZGNj5b3d0yFcjfLAODtpiyG2Wmm+xud7bTQ0M/O30b33E+9kPP3Tkcww9nXPo6Vzv/ZgxB/62Kg6e/aSThxkyF/8wHaOONPIwow4MjDz07NDlDMz63snIZ75/u494n/UPDfTdl1nZ4b2PdxttYGBglCFfTLzC2dsOmfr/hfdp/3/6//8/ec0y6IP1cdDQj6G3ec9rzvkX/NvPencahszdsEMvm3mIyf/wW9v/Q/803klHHJj0Y8b7Ma+L8260fq15xrhb/U+9Lg6Nd/yPGe/HvI7vR453yQf3eOy9Rf2PjfdD+7qF3v08x7+yrxv4+H3dsLSAla+a6MP7uu989BD/YXf5/hyN8KEbfdS+bvy9JtliyPLn+Ph93UJDxj7cP+zrhhkYGGvu9/d1Q3Z88w03sPOQM9MPOTP/cAOHDTkzw7tnRho4b8iZr664zporDblggX9eD6Ye9A9/oAnb2Xwf2s4G/d19H/Shv+8c/N7pKAe8/x5OH7HfHDT0bv2X+wpab8f8mPF+zPtP4TwPuWyl40cc93/q/adovCN+/Hg/6v2yP3K8O7189r3/w+P9YDsb7u+ma4F/ZTub9B+3syF3cdi/2zL+1cdhK8Ht3/t6/A+WtuFmj3/wmGK4Dy33v3pMscDHb2djrv6h79t+v4FBHzc38/8rczPhP+2Dtvz7uflXH29NPfl71w/7MXMzwqzLTfX+3Az/35yb+f+7czPHwLD/ODeDB+YdGBiYYuj+Yb5/ZW7G//i5+VfXm5Hh9u99vfIHF82z4xGXvD83H56L/2pu5vvvzs2kH6w3U7x73WTDDAw//MBGK2ywwXrTvff5/bPTv/f547fBef6VuRzzf2YuJxj8UXP5t1V11AevPuC/2Ab/aZ/+/vLn+e/O5cAHczmw+oc3lvp3rd//ucvfXf7u8neXv7v83eUv7iOO/3/w+v+7jznbLkN/uTHc1ZOMt90nPd5PuP/o4/9Dff/h+P92401y9TADH1z3scdn37vNv+Xx2ZnfOxnlkPdv9+HjgzzQjz4+u9+sM2/zv3R89v+p97fVf+H3cO3/3eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/uI+4vj/tO//HcAj0y3y/NADocM9sfXSi3zS4/2E+48+/j/U9x+O/y+y9NZPDDPwwXUfe/z/vds4jv/f/8Z8O/07H/9/f1vt+H/9F+XvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/uI+4vj/HO//HcDRR++xyft/D3DjWDuc8UmP9xPuP/X4f+//7639v7v83eXvLn93+bvL313+7vJ3l7+7/N3l7y5/d/m7y1/c0OP/Ax96e8vvt15gcPz//3Yf4b9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8l8wfs/j/IH/M4r9U/pjF/4f5Yxb/H+WPWfyXzh+z+C+TP2bxXzZ/zOK/XP6Yxf/H+WMW/+Xzxyz+K+SPWfx/kj9m8V8xf8ziv1L+mMV/5fwxi/8q+WMW/1Xzxyz+q+WPWfxXzx+z+P80f8ziv0b+mMV/zfwxi/9a+WMW/7Xzxyz+6+SPWfzXzR+z+P8sf8ziv17+mMV//fwxi/8G+WMW/5/nj1n8N8wfs/j/In/M4r9R/pjFf+P8MYv/JvljFv9f5o9Z/H+VP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP5b5Y9Z/LfOH7P4b5M/ZvHfNn/M4r9d/pjF/9f5Yxb/3+SPWfy3zx+z+O+QP2bx3zF/zOK/U/6Yxf+3+WMW/9/lj1n8f58/ZvHfOX/M4r9L/pjF/w/5Yxb/P+aPWfx3zR+z+P8pf8ziv1v+mMV/9/wxi/8e+WMW/z/nj1n8/5I/ZvHfM3/M4r9X/pjFf+/8MYv/PvljFv9988cs/vvlj1n8988fs/gfkD9m8T8wf8zif1D+mMX/4Pwxi/8h+WMW/0Pzxyz+h+WPWfwPzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/+T8MYv/KfljFv9T88cs/qflj1n8T88fs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/85+WMW/3Pzxyz+5+WPWfzPzx+z+F+QP2bxvzB/zOJ/Uf6Yxf/i/DGL/yX5Yxb/S/PHLP6X5Y9Z/C/PH7P4X5E/ZvH/a/6Yxf/K/DGL/1X5Yxb/q/PHLP7X5I9Z/K/NH7P4X5c/ZvG/Pn/M4n9D/pjF/8b8MYv/TfljFv+b88cs/rfkj1n8b80fs/jflj9m8b89f8zif0f+mMX/zvwxi/9d+WMW/7vzxyz+9+SPWfzvzR+z+N+XP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHLP7v5I9J/AcN5I9Z/Aflj1n8h8kfs/gPmz9m8R+cP2bxHy5/zOI/fP6YxX+E/DGL/4j5Yxb/kfLHLP4j549Z/EfJH7P4j5o/ZvEfLX/M4j96/pjFf4z8MYv/mPljFv+x8scs/mPnj1n8P5U/ZvEfJ3/M4j9u/pjF/9P5Yxb/8fLHLP7j549Z/D+TP2bxnyB/zOL/2fwxi/+E+WMW/4nyxyz+E+ePWfwnyR+z+E+aP2bx/1z+mMV/svf9R/yExvVvmsV/8rZ/zOI/Rf6YxX/K/DGL/1T5Yxb/z+ePWfynzh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/NPljFv9p88cs/tPlj1n8p88fs/jPkD9m8Z8xf8zi/7X8MYv/TPljFv+Z88cs/rPkj1n8Z80fs/h/PX/M4j9b/pjF/xv5Yxb/b+aPWfxnzx+z+H8rf8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+M+XP2bxnz9/zOK/QP6YxX/B/DGL/7fzxyz+38kfs/gvlD9m8f9u/pjFf+H8MYv/9/LHLP7fzx+z+C+SP2bxXzR/zOK/WP6YxX/x/DGL/xL5Yxb/JfPHLP4/yB+z+C+VP2bx/2H+mMX/R/ljFv+l88cs/svkj1n8l80fs/gvlz9m8f9x/pjFf/n8MYv/CvljFv+f5I9Z/FfMH7P4r5Q/ZvFfOX/M4r9K/pjFf9X8MYv/avljFv/V88cs/j/NH7P4r5E/ZvFfM3/M4r9W/pjFf+38MYv/OvljFv9188cs/j/LH7P4r5c/ZvFfP3/M4r9B/pjF/+f5Yxb/DfPHLP6/yB+z+G+UP2bx3zh/zOK/Sf6Yxf+X+WMW/1/lj1n8N80fs/hvlj9m8d88f8ziv0X+mMV/y/wxi/9W+WMW/63zxyz+2+SPWfy3zR+z+G+XP2bx/3X+mMX/N/ljFv/t88cs/jvkj1n8d8wfs/jvlD9m8f9t/pjF/3f5Yxb/3+ePWfx3zh+z+O+SP2bx/0P+mMX/j/ljFv9d88cs/n/KH7P475Y/ZvHfPX/M4r9H/pjF/8/5Yxb/v+SPWfz3zB+z+O+VP2bx3zt/zOK/T/6YxX/f/DGL/375Yxb//fPHLP4H5I9Z/A/MH7P4H5Q/ZvE/OH/M4n9I/pjF/9B/9H/4f31c/6ZZ/A9r+8cs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+T+L9b/v+cxH/QlfljFv+r8scs/lfnj1n8r8kfs/hfmz9m8b8uf8zif33+mMX/hvwxi/+N+WMW/5vyxyz+N+ePWfxvyR+z+N+aP2bxvy1/zOJ/e/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/O/JH7P435s/ZvG/L3/M4n9//pjF/4H8MYv/g/ljFv+H8scs/g/nj1n8H8kfs/g/mj9m8X8sf8zi/3j+mMX/ifwxi/+T+WMW/6fyxyz+T+ePWfyfyR+z+D+bP2bxfy5/zOL/fP6Yxf+F/DGL/4v5Yxb/l/LHLP4v549Z/F/JH7P4v5o/ZvF/Lf/h6UKL/+v5Yxb/N/LHLP5v5o9Z/N/KH7P4v50/ZvF/J39M4v/ul/n/cxb/QfljFv9h8scs/sPmj1n8B+ePWfyHyx+z+A+fP2bxHyF/zOI/Yv6YxX+k/DGL/8j5Yxb/UfLHLP6j5o9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9P5Y9Z/MfJH7P4j5s/ZvH/dP6YxX+8/DGL//j5Yxb/z+SPWfwnyB+z+H82f8ziP2H+mMV/ovwxi//E+WMW/0nyxyz+k+aPWfw/lz9m8Z8sf8ziP3n+mMV/ivwxi/+U+WMW/6nyxyz+n88fs/hPnT9m8f9C/pjF/4v5Yxb/L+WPWfy/nD9m8f9K/pjF/6v5Yxb/afLHLP7T5o8Numi34QYGBv7j/afLH7Ns/9Pnj1n8Z8gfs/jPmD9m8f9a/pjFf6b8MYv/zPljFv9Z8scs/rPmj1n8v54/ZvGfLX/M4v+N/DGL/zfzxyz+s+ePWfy/lT9m8Z8jf8ziP2f+mMV/rvwxi//c+WMW/3nyxyz+8+aPWfznyx+z+M+fP2bxXyB/zOK/YP6Yxf/b+WMW/+/kj1n8F8ofs/h/N3/M4r9w/pjF/3v5Yxb/7+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL/5L5Yxb/H+SPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8l8sfs/j/OH/M4r98/pjFf4X8MYv/T/LHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/6vljFv+f5o9Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv+f5Y9Z/NfLH7P4r58/ZvHfIH/M4v/z/DGL/4b5Yxb/X+SPWfw3yh+z+G+cP2bx3yR/zOL/y/wxi/+v8scs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMV/q/wxi//W+WMW/23yxyz+2+aPWfy3yx+z+P86f8zi/5v8MYv/9vljFv8d8scs/jvmj1n8d8ofs/j/Nn/M4v+7/DGL/+/zxyz+O+ePWfx3yR+z+P8hf8zi/8f8MYv/rvljFv8/5Y9Z/HfLH7P4754/ZvHfI3/M4v/n/DGL/1/yxyz+e+aPWfz3yh+z+O+dP2bx3yd/zOK/b/6YxX+//DGL//75Yxb/A/LHLP4H5o9Z/A/KH7P4H5w/ZvE/JH/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+f80fs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMX/nfwxif+wA/ljFv9B+WMW/2Hyxyz+w+aPWfwH549Z/IfLH7P4D58/ZvEfIX/M4j9i/pjFf6T8MYv/yPljFv9R8scs/qPmj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/0/lj1n8x8kfs/iPmz9m8f90/pjFf7z8MYv/+PljFv/P5I9Z/CfIH7P4fzZ/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP6T5o9Z/D+XP2bxnyx/zOI/ef6YxX+K/DGL/5T5Yxb/qfLHLP6fzx+z+E+dP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8ziP2P+mMX/a/ljFv+Z8scs/jPnj1n8Z8kfs/jPmj9m8f96/pjFf7b8MYv/N/LHLP7fzB+z+M+eP2bx/1b+mMV/jvwxi/+c+WMW/7nyxyz+c+ePWfznyR+z+M+bP2bxny9/zOI/f/6YxX+B/DGL/4L5Yxb/b+ePWfy/kz9m8V8of8zi/938MYv/wvljFv/v5Y9Z/L+fP2bxXyR/zOK/aP6YxX+x/DGL/+L5Yxb/JfLHLP5L5o9Z/H+QP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8V8uf8zi/+P8MYv/8vljFv8V8scs/j/JH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/qvnj1n8f5o/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n8f5Y/ZvFfL3/M4r9+/pjFf4P8MYv/z/PHLP4b5o9Z/H+RP2bx3yh/zOK/cf6YxX+T/DGL/y/zxyz+v8ofs/hvmj9m8d8sf8ziv3n+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfy3yR+z+G+bP2bx3y5/zOL/6/wxi/9v8scs/tvnj1n8d8gfs/jvmD9m8d8pf8zi/9v8MYv/7/LHLP6/zx+z+O+cP2bx3yV/zOL/h/wxi/8f88cs/rvmj1n8/5Q/ZvHfLX/M4r97/pjFf4/8MYv/n/PHLP5/yR+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+P81f8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMW/3fyxyT+gwfyxyz+g/LHLP7D5I9Z/IfNH7P4D84fs/gPlz9m8R8+f8ziP0L+mMV/xPwxi/9I+WMW/5Hzxyz+o+SPWfxHzR+z+I+WP2bxHz1/zOI/Rv6YxX/M/DGL/1j5Yxb/sfPHLP6fyh+z+I+TP2bxHzd/zOL/6fwxi/94+WMW//Hzxyz+n8kfs/hPkD9m8f9s/pjFf8L8MYv/RPljFv+J88cs/pPkj1n8J80fs/h/Ln/M4j9Z/pjFf/L8MYv/FPljFv8p88cs/lPlj1n8P58/ZvGfOn/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+0+SPWfynzR+z+E+XP2bxnz5/zOI/Q/6YxX/G/DGL/9fyxyz+M+WPWfxnzh+z+M+SP2bxnzV/zOL/9fwxi/9s+WMW/2/kj1n8v5k/ZvGfPX/M4v+t/DGL/xz5Yxb/OfPHLP5z5Y9Z/OfOH7P4z5M/ZvGfN3/M4j9f/pjFf/78MYv/AvljFv8F88cs/t/OH7P4fyd/zOK/UP6Yxf+7+WMW/4Xzxyz+38sfs/h/P3/M4r9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8l8wfs/j/IH/M4r9U/pjF/4f5Yxb/H+WPWfyXzh+z+C+TP2bxXzZ/zOK/XP6Yxf/H+WMW/+Xzxyz+K+SPWfx/kj9m8V8xf8ziv1L+mMV/5fwxi/8q+WMW/1Xzxyz+q+WPWfxXzx+z+P80f8ziv0b+mMV/zfwxi/9a+WMW/7Xzxyz+6+SPWfzXzR+z+P8sf8ziv17+mMV//fwxi/8G+WMW/5/nj1n8N8wfs/j/In/M4r9R/pjFf+P8MYv/JvljFv9f5o9Z/H+VP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP5b5Y9Z/LfOH7P4b5M/ZvHfNn/M4r9d/pjF/9f5Yxb/3+SPWfy3zx+z+O+QP2bx3zF/zOK/U/6Yxf+3+WMW/9/lj1n8f58/ZvHfOX/M4r9L/pjF/w/5Yxb/P+aPWfx3zR+z+P8pf8ziv1v+mMV/9/wxi/8e+WMW/z/nj1n8/5I/ZvHfM3/M4r9X/pjFf+/8MYv/PvljFv9988cs/vvlj1n8988fs/gfkD9m8T8wf8zif1D+mMX/4Pwxi/8h+WMW/0Pzxyz+h+WPWfwPzx+z+B+RP2bxPzJ/zOJ/VP6Yxf/o/DGL/zH5Yxb/Y/PHLP7H5Y9Z/I/PH7P4n5A/ZvE/MX/M4n9S/pjF/+T8MYv/KfljFv9T88cs/qflj1n8T88fs/ifkT9m8T8zf8zif1b+mMX/7Pwxi/85+WMW/3Pzxyz+5+WPWfzPzx+z+F+QP2bxvzB/zOJ/Uf6Yxf/i/DGL/yX5Yxb/S/PHLP6X5Y9Z/C/PH7P4X5E/ZvH/a/6Yxf/K/DGL/1X5Yxb/q/PHLP7X5I9Z/K/NH7P4X5c/ZvG/Pn/M4n9D/pjF/8b8MYv/TfljFv+b88cs/rfkj1n8b80fs/jflj9m8b89f8zif0f+mMX/zvwxi/9d+WMW/7vzxyz+9+SPWfzvzR+z+N+XP2bxvz9/zOL/QP6Yxf/B/DGL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHLP7v5I9J/IcbyB+z+A/KH7P4D5M/ZvEfNn/M4j84f8ziP1z+mMV/+Pwxi/8I+WMW/xHzxyz+I+WPWfxHzh+z+I+SP2bxHzV/zOI/Wv6YxX/0/DGL/xj5Yxb/MfPHLP5j5Y9Z/MfOH7P4fyp/zOI/Tv6YxX/c/DGL/6fzxyz+4+WPWfzHzx+z+H8mf8ziP0H+mMX/s/ljFv8J88cs/hPlj1n8J84fs/hPkj9m8Z80f8zi/7n8MYv/ZPljFv/J88cs/lPkj1n8p8wfs/hPlT9m8f98/pjFf+r8MYv/F/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/GfPHLP5fyx+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/9fzxyz+s+WPWfy/kT9m8f9m/pjFf/b8MYv/t/LHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/fPljFv/588cs/gvkj1n8F8wfs/h/O3/M4v+d/DGL/0L5Yxb/7+aPWfwXzh+z+H8vf8zi//38MYv/IvljFv9F88cs/ovlj1n8F88fs/gvkT9m8V8yf8zi/4P8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/H+ePWfyXzx+z+K+QP2bx/0n+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf9v8MYv/dvljFv9f549Z/H+TP2bx3z5/zOK/Q/6YxX/H/DGL/075Yxb/3+aPWfx/lz9m8f99/pjFf+f8MYv/LvljFv8/5I9Z/P+YP2bx3zV/zOL/p/wxi/9u+WMW/93zxyz+e+SPWfz/nD9m8f9L/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/6/5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzxyz+L+WPWfxfzh+z+L+SP2bxfzV/zOL/Wv6Yxf/1/DGL/xv5Yxb/N/PHLP5v5Y9Z/N/OH7P4v5M/JvEffiB/zOI/KH/M4j9M/pjFf9j8MYv/4Pwxi/9w+WMW/+Hzxyz+I+SPWfxHzB+z+I+UP2bxHzl/zOI/Sv6YxX/U/DGL/2j5Yxb/0fPHLP5j5I9Z/MfMH7P4j5U/ZvEfO3/M4v+p/DGL/zj5Yxb/cfPHLP6fzh+z+I+XP2bxHz9/zOL/mfwxi/8E+WMW/8/mj1n8J8wfs/hPlD9m8Z84f8ziP0n+mMV/0vwxi//n8scs/pPlj1n8J88fs/hPkT9m8Z8yf8ziP1X+mMX/8/ljFv+p88cs/l/IH7P4fzF/zOL/pfwxi/+X88cs/l/JH7P4fzV/zOI/Tf6YxX/a/DGL/3T5Yxb/6fPHLP4z5I9Z/GfMH7P4fy1/zOI/U/6YxX/m/DGL/yz5Yxb/WfPHLP5fzx+z+M+WP2bx/0b+mMX/m/ljFv/Z88cs/t/KH7P4z5E/ZvGfM3/M4j9X/pjFf+78MYv/PPljFv9588cs/vPlj1n8588fs/gvkD9m8V8wf8zi/+38MYv/d/LHLP4L5Y9Z/L+bP2bxXzh/zOL/vfwxi//388cs/ovkj1n8F80fs/gvlj9m8V88f8ziv0T+mMV/yfwxi/8P8scs/kvlj1n8f5g/ZvH/Uf6YxX/p/LH/UP9BH7Iefpn8sf9Q/3f7++1/2fwxi/9y+WMW/x/nj1n8l88fs/ivkD9m8f9J/pjFf8X8sUEXDRo6M//Z/ivlj1m2/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf9v8MYv/dvljFv9f549Z/H+TP2bx3z5/zOK/Q/6YxX/H/DGL/075Yxb/3+aPWfx/lz9m8f99/pjFf+f8MYv/LvljFv8/5I9Z/P+YP2bx3zV/zOL/p/wxi/9u+WMW/93zxyz+e+SPWfz/nD9m8f9L/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/6/5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzHxgJLrP4v5Q/ZvF/OX/M4v9K/pjF/9X8MYv/a/ljFv/X88cs/m/kj1n838wfs/i/lT9m8X87f8zi/07+mMR/hIH8MYv/oPwxi/8w+WMW/2Hzxyz+g/PHLP7D5Y9Z/IfPH7P4j5A/ZvEfMX/M4j9S/pjFf+T8MYv/KPljFv9R88cs/qPlj1n8R88fs/iPkT9m8R8zf8ziP1b+QxvxH85Z/MfOH7P4fyp/zOI/Tv6YxX/c/DGL/6fzxyz+4+WPWfzHzx+z+H8mf8ziP0H+mMX/s/ljFv8J88cs/hPlj1n8J84fs/hPkj9m8Z80f8zi/7n8MYv/ZPljFv/J88cs/lPkj1n8p8wfs/hPlT9m8f98/pjFf+r8MYv/F/LHLP5fzB+z+H8pf8zi/+X8MYv/V/LHLP5fzR+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/GfPHLP5fyx+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/9fzxyz+s+WPWfy/kT9m8f9m/pjFf/b8MYv/t/LHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/fPljFv/588cs/gvkj1n8F8wfs/h/O3/M4v+d/DGL/0L5Yxb/7+aPWfwXzh+z+H8vf8zi//38MYv/IvljFv9F88cs/ovlj1n8F88fs/gvkT9m8V8yf8zi/4P8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/3L5Yxb/H+ePWfyXzx+z+K+QP2bx/0n+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bxXz1/zOL/0/wxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/s/wxi/96+WMW//Xzxyz+G+SPWfx/nj9m8d8wf8zi/4v8MYv/RvljFv+N88cs/pvkj1n8f5k/ZvH/Vf6YxX/T/DGL/2b5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvHfOn/M4r9N/pjFf1v0b42w+G+XNmbx/3X+mMX/N/ljFv/t88cs/jvkj1n8d3zP/613Pqlx/Ztm8d+p7R+z+P82f8zi/7v8MYv/7/PHLP47549Z/HfJH7P4/yF/zOL/x/wxi/+u+WMW/z/lj1n8d8sfs/jvnj9m8d8jf8zi/+f8MYv/X/LHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjFf7/8MYv//vljFv8D8scs/gfmj1n8D8ofs/gfnD9m8T8kf8zif2j+mMX/sPwxi//h+WMW/yPyxyz+R+aPWfyPyh+z+B+dP2bxPyZ/zOJ/bP6Yxf+4/DGL//H5Yxb/E/LHLP4n5o9Z/E/KH7P4n5w/ZvE/JX/M4n9q/pjF/7T8MYv/6fljFv8z8scs/mfmj1n8z8ofs/ifnT9m8T8nf8zif27+mMX/vPwxi//5+WMW/wvyxyz+F+aPWfwvyh+z+F+cP2bxvyR/zOJ/af6Yxf+y/DGL/+X5Yxb/K/LHLP5/zR+z+F+ZP2bxvyp/zOJ/df6Yxf+a/DGL/7X5Yxb/6/LHLP7X549Z/G/IH7P435g/ZvG/KX/M4n9z/pjF/5b8MYv/rfljFv/b8scs/rfnj1n878gfs/jfmT9m8b8rf8zif3f+mMX/nvwxi/+9+WMW//vyxyz+9+ePWfwfyB+z+D+YP2bxfyh/zOL/cP6Yxf+R/DGL/6P5Yxb/x/LHLP6P549Z/J/IH7P4P5k/ZvF/Kn/M4v90/pjF/5n8MYv/s/ljFv/n8scs/s/nj1n8X8gfs/i/mD9m8X8pf8zi/3L+mMX/lfwxi/+r+WMW/9fyxyz+r+ePWfzfyB+z+L+ZP2bxfyt/zOL/dv6Yxf+d/DGJ/4gD+WMW/0H5Yxb/YfLHLP7D5o9Z/Afnj1n8h8sfs/gPnz9m8R8hf8ziP2L+mMV/pPwxi//I+WMW/1Hyxyz+o+aPWfxHyx+z+I+eP2bxHyN/zOI/Zv6YxX+s/DGL/9j5Yxb/T+WPWfzHyR+z+I+bP2bx/3T+mMV/vPwxi//4+WMW/8/kj1n8J8gfs/h/Nn/M4j9h/pjFf6L8MYv/xPljFv9J8scs/pPmj1n8P5c/ZvGfLH/M4j95/pjFf4r8MYv/lPljFv+p8scs/p/PH7P4T50/ZvH/Qv6Yxf+L+WMW/y/lj1n8v5w/ZvH/Sv6Yxf+r+WMW/2nyxyz+0+aPWfynyx+z+E+fP2bxnyF/zOI/Y/6Yxf9r+WMW/5nyxyz+M+ePWfxnyR+z+M+aP2bx/3r+mMV/tvwxi/838scs/t/MH7P4z54/ZvH/Vv6YxX+O/DGL/5z5Yxb/ufLHLP5z549Z/OfJH7P4z5s/ZvGfL3/M4j9//pjFf4H8MYv/gvljFv9v549Z/L+TP2bxXyh/zOL/3fwxi//C+WMW/+/lj1n8v58/ZvFfJH/M4r9o/pjFf7H8MYv/4vljFv8l8scs/kvmj1n8f5A/ZvFfKn/M4v/D/DGL/4/yxyz+S+ePWfyXyR+z+C+bP2bxXy5/zOL/4/wxi//y+WMW/xXyxyz+P8kfs/ivmD9m8V8pf8ziv3L+mMV/lfwxi/+q+WMW/9Xyxyz+q+ePWfx/mj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfx/lj9m8V8vf8ziv37+mMV/g/wxi//P88cs/hvmj1n8f5E/ZvHfKH/M4r9x/pjFf5P8MYv/L/PHLP6/yh+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/rfLHLP5b549Z/LfJH7P4b5s/ZvHfLn/M4v/r/DGL/2/yxyz+2+ePWfx3yB+z+O+YP2bx3yl/zOL/2/wxi//v8scs/r/PH7P475w/ZvHfJX/M4v+H/DGL/x/zxyz+u+aPWfz/lD9m8d8tf8ziv3v+mMV/j/wxi/+f88cs/n/JH7P475k/ZvHfK3/M4r93/pjFf5/8MYv/vvljFv/98scs/vvnj1n8D8gfs/gfmD9m8T8of8zif3D+mMX/kPwxi/+h+WMW/8Pyxyz+h+ePWfyPyB+z+B+ZP2bxPyp/zOJ/dP6Yxf+Y/DGL/7H5Yxb/4/LHLP7H549Z/E/IH7P4n5g/ZvE/KX/M4n9y/pjF/5T8MYv/qfljFv/T8scs/qfnj1n8z8gfs/ifmT9m8T8rf8zif3b+mMX/nPwxi/+5+WMW//Pyxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf+S/DGL/6X5Yxb/y/LHLP6X549Z/K/IH7P4/zV/zOJ/Zf6Yxf+q/DGL/9X5Yxb/a/LHLP7X5o9Z/K/LH7P4X58/ZvG/IX/M4n9j/pjF/6b8MYv/zfljFv9b8scs/rfmj1n8b8sfs/jfnj9m8b8jf8zif2f+mMX/rvwxi//d+WMW/3vyxyz+9+aPWfzvyx+z+N+fP2bxfyB/zOL/YP6Yxf+h/DGL/8P5Yxb/R/LHLP6P5o9Z/B/LH7P4P54/ZvF/In/M4v9k/pjF/6n8MYP/oMEDIz6dP2bwH7L9P5M/ZvF/Nn/M4v9c/pjF//n8MYv/C/ljFv8X88cs/i/lj1n8X84fs/i/kj9m8X81f8zi/1r+mMX/9fwxi/8b+WMW/zfzxyz+b+WPWfzfzh+z+L+TPybxH2kgf8ziPyh/zOI/TP6YxX/Y/DGL/+D8MYv/cPljFv/h88cs/iPkj1n8R8wfs/iPlD9m8R85f8ziP0r+mMV/1Pwxi/9o+WMW/9Hzxyz+Y+SPWfzHzB+z+I+VP2bxHzt/zOL/qfwxi/84+WMW/3Hzxyz+n84fs/iPlz9m8R8/f8zi/5n8MYv/BPljFv/P5o9Z/CfMH7P4T5Q/ZvGfOH/M4j9J/pjFf9L8MYv/5/LHLP6T5Y9Z/CfPH7P4T5E/ZvGfMn/M4j9V/pjF//P5Yxb/qfPHLP5fyB+z+H8xf8zi/6X8MYv/l/PHLP5fyR+z+H81f8ziP03+mMV/2oGBzT+pIf07Z/Gfru0fs/hPnz9m8Z8hf8ziP2P+mMX/a/ljFv+Z8scs/jPnj1n8Z8kfs/jPmj9m8f96/pjFf7b8MYv/N/LHLP7fzB+z+M+eP2bx/1b+mMV/jvwxi/+c+WMW/7nyxyz+c+ePWfznyR+z+M+bP2bxny9/zOI/f/6YxX+B/DGL/4L5Yxb/b+ePWfy/kz9m8V8of8zi/938MYv/wvljFv/v5Y9Z/L+fP2bxXyR/zOK/aP6YxX+x/DGL/+L5Yxb/JfLHLP5L5o9Z/H+QP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8V8uf8zi/+P8MYv/8vljFv8V8scs/j/JH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/qvnj1n8f5o/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n8f5Y/ZvFfL3/M4r9+/pjFf4P8MYv/z/PHLP4b5o9Z/H+RP2bx3yh/zOK/cf6YxX+T/DGL/y/zxyz+v8ofs/hvmj9m8d8sf8ziv3n+mMV/i/wxi/+W+WMW/63yxyz+W+ePWfy3yR+z+G+bP2bx3y5/zOL/6/wxi/9v8scs/tvnj1n8d8gfs/jvmD9m8d8pf8zi/9v8MYv/7/LHLP6/zx+z+O+cP2bx3yV/zOL/h/wxi/8f88cs/rvmj1n8/5Q/ZvHfLX/M4r97/pjFf4/8MYv/n/PHLP5/yR+z+O+ZP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+P81f8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMW/3fyxyT+Iw/kj1n8B+WPWfyHyR+z+A+bP2bxH5w/ZvEfLn/M4j98/pjFf4T8MYv/iPljFv+R8scs/iPnj1n8R8kfs/iPmj9m8R8tf8ziP3r+mMV/jPwxi/+Y+WMW/7Hyxyz+Y+ePWfw/lT9m8R8nf8ziP27+mMX/0/ljFv/x8scs/uPnj1n8P5M/ZvGfIH/M4v/Z/DGL/4T5Yxb/ifLHLP4T549Z/CfJH7P4T5o/ZvH/XP6YxX+y/DGL/+T5Yxb/KfLHLP5T5o9Z/KfKH7P4fz5/zOI/df6Yxf8L+WMW/y/mj1n8v5Q/ZvH/cv6Yxf8r+WMW/6/mj1n8p8kfs/hPmz9m8Z8uf8ziP33+mMV/hvwxi/+M+WMW/6/lj1n8Z8ofs/jPnD9m8Z8lf8ziP2v+mMX/6/ljFv/Z8scs/t/IH7P4fzN/zOI/e/6Yxf9b+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6YxX++/DGL//z5Yxb/BfLHLP4L5o9Z/L+dP2bx/07+mMV/ofwxi/9388cs/gvnj1n8v5c/ZvH/fv6YxX+R/DGL/6L5Yxb/xfLHLP6L549Z/JfIH7P4L5k/ZvH/Qf6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMV/ufwxi/+P88cs/svnj1n8V8gfs/j/JH/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/ivnj9m8f9p/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8f9Z/pjFf738MYv/+vljFv8N8scs/j/PH7P4b5g/ZvH/Rf6YxX+j/DGL/8b5Yxb/TfLHLP6/zB+z+P8qf8ziv2n+mMV/s/wxi//m+WMW/y3yxyz+W+aPWfy3yh+z+G+dP2bx3yZ/zOK/bf6YxX+7/DGL/6/zxyz+v8kfs/hvnz9m8d8hf8ziv2P+mMV/p/wxi/9v88cs/r/LH7P4/z5/zOK/c/6YxX+X/DGL/x/yxyz+f8wfs/jvmj9m8f9T/pjFf7f8MYv/7vljFv898scs/n/OH7P4/yV/zOK/Z/6YxX+v/DGL/975Yxb/ffLHLP775o9Z/PfLH7P4758/ZvE/IH/M4n9g/pjF/6D8MYv/wfljFv9D8scs/ofmj1n8D8sfs/gfnj9m8T8if8zif2T+mMX/qPwxi//R+WMW/2Pyxyz+x+aPWfyPyx+z+B+fP2bxPyF/zOJ/Yv6Yxf+k/DGL/8n5Yxb/U/LHLP6n5o9Z/E/LH7P4n54/ZvE/I3/M4n9m/pjF/6z8MYv/2fljFv9z8scs/ufmj1n8z8sfs/ifnz9m8b8gf8zif2H+mMX/ovwxi//F+WMW/0vyxyz+l+aPWfwvyx+z+F+eP2bxvyJ/zOL/1/wxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePWfzfyR+T+I8ykD9m8R+UP2bxHyZ/zOI/bP6YxX9w/pjFf7j8MYv/8PljFv8R8scs/iPmj1n8R8ofs/iPnD9m8R8lf8ziP2r+mMV/tPwxi//o+WMW/zHyxyz+Y+aPWfzHyh+z+I+dP2bx/1T+mMV/nPwxi/+4+WMW/0/nj1n8x8sfs/iPnz9m8f9M/pjFf4L8MYv/Z/PHLP4T5o9Z/CfKH7P4T5w/ZvGfJH/M4j9p/pjF/3P5Yxb/yfLHLP6T549Z/KfIH7P4T5k/ZvGfKn/M4v/5/DGL/9T5Yxb/L+SPWfy/mD9m8f9S/pjF/8v5Yxb/r+SPWfy/mj9m8Z8mf8ziP23+mMV/uvwxi//0+WMW/xnyxyz+M+aPWfy/lj9m8Z8pf8ziP3P+mMV/lvwxi/+s+WMW/6/nj1n8Z8sfs/h/I3/M4v/N/DGL/+z5Yxb/b+WPWfznyB+z+M+ZP2bxnyt/zOI/d/6YxX+e/DGL/7z5Yxb/+fLHLP7z549Z/BfIH7P4L5g/ZvH/dv6Yxf87+WMW/4Xyxyz+380fs/gvnD9m8f9e/pjF//v5Yxb/RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4r9k/pjF/wf5Yxb/pfLHLP4/zB+z+P8of8ziv3T+mMV/mfwxi/+y+WMW/+Xyxyz+P84fs/gvnz9m8V8hf8zi/5P8MYv/ivljFv+V8scs/ivnj1n8V8kfs/ivmj9m8V8tf8ziv3r+mMX/p/ljFv818scs/mvmj1n818ofs/ivnT9m8V8nf8ziv27+mMX/Z/ljFv/18scs/uvnj1n8N8gfs/j/PH/M4r9h/pjF/xf5Yxb/jfLHLP4b549Z/DfJH7P4/zJ/zOL/q/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx3yp/zOK/df6YxX+b/DGL/7b5Yxb/7fLHLP6/zh+z+P8mf8ziv33+mMV/h/wxi/+O+WMW/53yxyz+v80fs/j/Ln/M4v/7/DGL/875Yxb/XfLHLP5/yB+z+P8xf8ziv2v+mMX/T/ljFv/d8scs/rvnj1n898gfs/j/OX/M4v+X/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mflj7/sPjDgw8J/sf1b+mGX7Pzt/zOJ/Tv6Yxf/c/DGL/3n5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4n9J/pjF/9L8MYv/ZfljFv/L88cs/lfkj1n8/5o/ZvG/Mn/M4n9V/pjF/+r8MYv/NfljFv9r88cs/tflj1n8r88fs/jfkD9m8b8xf8zif1P+mMX/5vwxi/8t+WMW/1vzxyz+t+WPWfxvzx+z+N+RP2bxvzN/zOJ/V/6Yxf/u/DGL/z35Yxb/e/PHLP735Y9Z/O/PH7P4P5A/ZvF/MH/M4v9Q/pjF/+H8MYv/I/ljFv9H88cs/o/ljzn8k/+oHP4DozzRWoBZ/J/MH7P4P5U/ZvF/On/M4v9M/pjF/9n8MYv/c/ljFv/n88cs/i/kj1n8X8wfs/i/lD9m8X85f8zi/0r+mMX/1fwxi/9r+WMW/9fzxyz+b+SPWfzfzB+z+L+VP2bxfzt/zOL/Tv6YxH/Ugfwxi/+g/DGL/zD5Yxb/YfPHLP6D88cs/sPlj1n8h88fs/iPkD9m8R8xf8ziP1L+mMV/5Pwxi/8o+WMW/1Hzxyz+o+WPWfxHzx+z+I+RP2bxHzN/zOI/Vv6YxX/s/DGL/6fyxyz+4+SPWfzHzR+z+H86f8ziP17+mMV//Pwxi/9n8scs/hPkj1n8P5s/ZvGfMH/M4j9R/pjFf+L8MYv/JPljFv9J88cs/p/LH7P4T5Y/ZvGfPH/M4j9F/pjFf8r8MYv/VPljFv/P549Z/KfOH7P4fyF/zOL/xfwxi/+X8scs/l/OH7P4fyV/zOL/1fwxi/80+WMW/2nzxyz+0+WPWfynzx+z+M+QP2bxnzF/zOL/tfwxi/9M+WMW/5nzxyz+s+SPWfxnzR+z+H89f8ziP1v+mMX/G/ljFv9v5o9Z/GfPH7P4fyt/zOI/R/6YxX/O/DGL/1z5Yxb/ufPHLP7z5I9Z/OfNH7P4z5c/ZvGfP3/M4r9A/pjFf8H8MYv/t/PHLP7fyR+z+C+UP2bx/27+mMV/4fwxi//38scs/t/PH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv8l88cs/j/IH7P4L5U/ZvH/Yf6Yxf9H+WMW/6Xzxyz+y+SPWfyXzR+z+C+XP2bx/3H+mMV/+fwxi/8K+WMW/5/kj1n8V8wfs/ivZPT/F+6wxX9lo/+/kMV/lfwxi/+q+WMW/9Xyxyz+q+ePWfx/mj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfx/lj9m8V8vf8ziv37+mMV/g/wxi//P88cs/hvmj1n8f5E/ZvHfKH/M4r9x/pjFf5P8MYv/L/PHLP6/yh+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/rfLHLP5b549Z/LfJH7P4b5s/ZvHfLn/M4v/r/DGL/2/yxyz+2+ePWfx3yB+z+O+YP2bx3yl/zOL/2/wxi//v8scs/r/PH7P475w/ZvHfJX/M4v+H/DGL/x/zxyz+u+aPWfz/lD9m8d8tf8ziv3v+mMV/j/wxi/+f88cs/n/JH7P475k/ZvHfK3/M4r93/pjFf5/8MYv/vvljFv/98scs/vvnj1n8D8gfs/gfmD9m8T8of8zif3D+mMX/kPwxi/+h+WMW/8Pyxyz+h+ePWfyPyB+z+B+ZP2bxPyp/zOJ/dP6Yxf+Y/DGL/7H5Yxb/4/LHLP7H549Z/E/IH7P4n5g/ZvE/KX/M4n9y/pjF/5T8MYv/qfljFv/T8scs/qfnj1n8z8gfs/ifmT9m8T8rf8zif3b+mMX/nPwxi/+5+WMW//Pyxyz+5+ePWfwvyB+z+F+YP2bxvyh/zOJ/cf6Yxf+S/DGL/6X5Yxb/y/LHLP6X549Z/K/IH7P4/zV/zOJ/Zf6Yxf+q/DGL/9X5Yxb/a/LHLP7X5o9Z/K/LH7P4X58/ZvG/IX/M4n9j/pjF/6b8MYv/zfljFv9b8scs/rfmj1n8b8sfs/jfnj9m8b8jf8zif2f+mMX/rvwxi//d+WMW/3vyxyz+9+aPWfzvyx+z+N+fP2bxfyB/zOL/YP6Yxf+h/DGL/8P5Yxb/R/LHLP6P5o9Z/B/LH7P4P54/ZvF/In/M4v9k/pjF/6n8MYv/0/ljFv9n8scs/s/mj1n8n8sfs/g/nz9m8X8hf8zi/2L+mMX/pfwxi//L+WMW/1fyxyz+r+aPWfxfyx+z+L+eP2bxfyN/zOL/Zv6Yxf+t/DGL/9v5Yxb/d/LHJP6jDeSPWfwH5Y9Z/IfJH7P4D5s/ZvEfnD9m8R8uf8ziP3z+mMV/hPwxi/+I+WMW/5Hyxyz+I+ePWfxHyR+z+I+aP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/D+VP2bxHyd/zOI/bv6Yxf/T+WMW//Hyxyz+4+ePWfw/kz9m8Z8gf8zi/9n8MYv/hPljFv+J8scs/hPnj1n8J8kfs/hPmj9m8f9c/pjFf7L8MYv/5PljFv8p8scs/lPmj1n8p8ofs/h/Pn/M4j91/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfynyR+z+E+bP2bxny5/zOI/ff6YxX+G/DGL/4z5Yxb/r+WPWfxnyh+z+M+cP2bxnyV/7B/8h1425ic8pv9PfYT/rPljlu3/6/ljFv/Z8scs/t/IH7P4fzN/zOI/e/6Yxf9b+WMW/znyxyz+c+aPWfznyh+z+M+dP2bxnyd/zOI/b/6YxX++/DGL//z5Yxb/BfLHLP4L5o9Z/L+dP2bx/07+mMV/ofwxi/9388cs/gvnj1n8v5c/ZvH/fv6YxX+R/DGL/6L5Yxb/xfLHLP6L549Z/JfIH7P4L5k/ZvH/Qf6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMV/ufwxi/+P88cs/svnj1n8V8gfs/j/JH/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/ivnj9m8f9p/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8f9Z/pjFf738MYv/+vljFv8N8scs/j/PH7P4b5g/ZvH/Rf6YxX+j/DGL/8b5Yxb/TfLHLP6/zB+z+P8qf8ziv2n+mMV/s/wxi//m+WMW/y3yxyz+W+aPWfy3yh+z+G+dP2bx3yZ/zOK/bf6YxX+7/DGL/6/zxyz+v8kfs/hvnz9m8d8hf8ziv2P+mMV/p/wxi/9v88cs/r/LH7P4/z5/zOK/c/6YxX+X/LH/VP8RP+T/h/yx/1T/gQ/5/zF/zOK/a/6Yxf9P+WMW/93yxyz+u+ePWfz3yB+z+P85f8zi/5f8MYv/nvljFv+98scs/nvnj1n898kfs/jvmz9m8d8vf8ziv3/+mMX/gPwxi/+B+WMW/4Pyxyz+B+ePWfwPyR+z+B+aP2bxPyx/zOJ/eP6Yxf+I/DGL/5H5Yxb/o/LHLP5H549Z/I/JH7P4H5s/ZvE/Ln/M4n98/pjF/4T8MYv/ifljFv+T8scs/ifnj1n8T8kfs/ifmj9m8T8tf8zif3r+mMX/jPwxi/+Z+WMW/7Pyxyz+Z+ePWfzPyR+z+J+bP2bxPy9/zOJ/fv6Yxf+C/DGL/4X5Yxb/i/LHLP4X549Z/C/JH7P4X5o/ZvG/LH/M4n95/pjF/4r8MYv/X/PHLP5X5o9Z/K/KH7P4X50/ZvG/Jn/M4n9t/pjF/7r8MYv/9fljFv8b8scs/jfmj1n8b8ofs/jfnD9m8b8lf8zif2v+mMX/tvwxi//t+WMW/zvyxyz+d+aPWfzvyh+z+N+dP2bxvyd/zOJ/b/6Yxf++/DGL//35Yxb/B/LHLP4P5o9Z/B/KH7P4P5w/ZvF/5MP+W/wvj+vfNIv/o23/mMX/sfwxi//j+WMW/yfyxyz+T+aPWfyfyh+z+D+dP2bxfyZ/zOL/bP6Yxf+5/DGL//P5Yxb/F/LHLP4v5o9Z/F/KH7P4v5w/ZvF/JX/M4v9q/pjF/7X8MYv/6/ljFv838scs/m/mj1n838ofs/i/nT9m8X8nf0ziP/pA/pjFf1D+mMV/mPwxi/+w+WMW/8H5Yxb/4fLHLP7D549Z/EfIH7P4j5g/ZvEfKX/M4j9y/pjFf5T8MYv/qPljFv/R8scs/qPnj1n8x8gfs/iPmT9m8R8rf8ziP3b+mMX/U/ljFv9x8scs/uPmj1n8P50/ZvEfL3/M4j9+/pjF/zP5Yxb/CfLHLP6fzR+z+E+YP2bxnyh/zOI/cf6YxX+S/DGL/6T5Yxb/z+WPWfwnyx+z+E+eP2bxnyJ/zOI/Zf6YxX+q/DGL/+fzxyz+U+ePWfy/kD9m8f9i/pjF/0v5Yxb/L+ePWfy/kj9m8f9q/pjFf5r8MYv/tPljFv/p8scs/tPnj1n8Z8gfs/jPmD9m8f9a/pjFf6b8MYv/zPljFv9Z8scs/rPmj1n8v54/ZvGfLX/M4v+N/DGL/zfzxyz+s+ePWfy/lT9m8Z8jf8ziP2f+mMV/rvwxi//c+WMW/3nyxyz+8+aPWfznyx+z+M+fP2bxXyB/zOK/YP6Yxf/b+WMW/+/kj1n8F8ofs/h/N3/M4r9w/pjF/3v5Yxb/7+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL/5L5Yxb/H+SPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8l8sfs/j/OH/M4r98/pjFf4X8MYv/T/LHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/6vljFv+f5o9Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv+f5Y9Z/NfLH7P4r58/ZvHfIH/M4v/z/DGL/4b5Yxb/X+SPWfw3yh+z+G+cP2bx3yR/zOL/y/wxi/+v8scs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMV/q/wxi//W+WMW/23yxyz+2+aPWfy3yx+z+P86f8zi/5v8MYv/9vljFv8d8scs/jvmj1n8d8ofs/j/Nn/M4v+7/DGL/+/zxyz+O+ePWfx3yR+z+P8hf8zi/8f8MYv/rvljFv8/5Y9Z/HfLH7P4754/ZvHfI3/M4v/n/DGL/1/yxyz+e+aPWfz3yh+z+O+dP2bx3yd/zOK/b/6YxX+//DGL//75Yxb/A/LHLP4H5o9Z/A/KH7P4H5w/ZvE/JH/M4n9o/pjF/7D8MYv/4fljFv8j8scs/kfmj1n8j8ofs/gfnT9m8T8mf8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+f80fs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMX/nfwxif8YA/ljFv9B+WMW/2Hyxyz+w+aPWfwH549Z/IfLH7P4D58/ZvEfIX/M4j9i/pjFf6T8MYv/yPljFv9R8scs/qPmj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/0/lj1n8x8kfs/iPmz9m8f90/pjFf7z8MYv/+PljFv/P5I9Z/CfIH7P4fzZ/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP6T5o9Z/D+X//+PnbsP97qu7zj+454sZ592Xeo122UXGnNtRiKjUQtRUTzenDLRzHuEw01yIzcSYApstFLHpkvdLNjEwjFnq5Y43Fx3KxqWNVsjtlY5xbUwxhwsMmfsOnAOwdnbc+182ffr8v14/ME5v9/x/Ut5Xi9/Py+uq1CW/sP0D2Xpf5z+oSz9j9c/lKX/a/UPZek/XP9Qlv6/oH8oS/8T9A9l6f+L+oey9H+d/qEs/X9J/1CW/r+sfyhL/xP1D2Xp/3r9Q1n6j9A/lKX/G/QPZel/kv6hLP1H6h/K0v9k/UNZ+o/SP5Sl/6/oH8rSf7T+oSz936h/KEv/X9U/lKX/GP1DWfq/Sf9Qlv5v1j+Upf+v6R/K0v8t+oey9B+rfyhL/1P0D2XpP07/UJb+p+ofytL/NP1DWfqfrn8oS//x+oey9D9D/1CW/mfqH8rSf4L+oSz9z9I/lKV/m/6hLP3P1j+Upf85+oey9D9X/1CW/ufpH8rSv13/UJb+b9U/lKX/2/QPZel/vv6hLP3frn8oS/8L9A9l6T9R/1CW/hfqH8rS/yL9Q1n6v0P/UJb+F+sfytL/nfqHsvS/RP9Qlv6X6h/K0v8y/UNZ+l+ufyhL/yv0D2Xpf6X+oSz9r9I/lKX/JP1DWfpfrX8oS//J+oey9J+ifyhL/w79Q1n6T9U/lKX/NP1DWfpP1z+Upf8M/UNZ+r9L/1CW/tfoH8rSf6b+oSz9Z+kfytJ/tv6hLP3n6B/K0v9a/UNZ+s/VP5Sl/zz9Q1n6z9c/lKX/Av1DWfpfp38oS/+F+oey9H+3/qEs/RfpH8rSf7H+oSz9l+gfytL/ev1DWfq/R/9Qlv436B/K0v9G/UNZ+i/VP5Sl/zL9Q1n6L9c/lKX/r+sfytL/N/QPZem/Qv9Qlv7v1T+Upf9v6h/K0v99+oey9H+//qEs/W/SP5Sl/836h7L0v0X/UJb+v6V/KEv/lfqHsvT/bf1DWfr/jv6hLP1v1T+Upf9t+oey9P9d/UNZ+n9A/1CW/rfrH8rS/w79Q1n636l/KEv/39M/lKX/7+sfytL/Lv1DWfp/UP9Qlv4f0j+Upf8q/UNZ+q/WP5Sl/x/oH8rS/w/1D2Xpf7f+oSz91+gfytL/Hv1DWfp/WP9Qlv4f0T+Upf9a/UNZ+t+rfyhL/z/SP5Sl/zr9Q1n6/7H+oSz979M/lKX/n+gfytL/fv1DWfp/VP9Qlv5/qn8oS/+P6R/K0v/j+oey9P+E/qEs/f9M/1CW/p/UP5Sl/wP6h7L0X69/KEv/B/UPZen/5/qHsvTfoH8oS/+H9A9l6f8X+oey9P9L/UNZ+j+sfyhL/7/SP5Sl/6f0D2Xp/2n9Q1n6f0b/UJb+n9U/lKX/5/QPZen/1/qHsvT/vP6hLP2/oH8oS/+N+oey9P+i/qEs/f9G/1CW/pv0D2Xp/4j+oSz9v6R/KEv/L+sfytL/Uf1DWfp/Rf9Qlv5f1T+Upf/f6h/K0v8x/UNZ+n9N/1CW/n+nfyhL/6/rH8rS/+/1D2Xpv1n/UJb+39A/lKX/Fv1DWfr/g/6hLP3/Uf9Qlv7f1D+Upf8/6R/K0v9b+oey9P+2/qEs/b+jfyhL/8f1D2Xp/8/6h7L0f0L/UJb+T+ofytJ/q/6hLP2f0j+Upf+/6B/K0v+7+oey9P9X/UNZ+n9P/1CW/tv0D2Xp/7T+oSz9v69/KEv/7fqHsvT/N/1DWfrv0D+Upf+/6x/K0v8Z/UNZ+v+H/qEs/XfqH8rSf5f+oSz9/1P/UJb+P9A/lKX/bv1DWfr/UP9Qlv7P6h/K0v9H+oey9H9O/1CW/v+lfyhL/+f1D2Xp/2P9Q1n679E/lKT/K1v6h7L076d/KEv//vqHsvQfoH8oS/+B+oey9B+kfyhL/8H6h7L0H6J/KEv/ofqHsvR/mf6hLP0P0z+Upf/L9Q9l6f8K/UNZ+h+ufyhL/5/RP5Sl/xH6h15y/QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP6/mb94yTWTZs7smOcb3/jGN/u/ebH/zQQAAPxf+8mH/hf77wQAAAAAAAAAAAAAAAAAAADyauL/TuzF/mcEAAAAAAAAAAAAAICfdm3tp24f0O+gpwYc+ODnH+3Y+3XU7ounr137YOn+2vXjc4KX7H/ggz179uxZ/czY8V0Ph7Rarc7/tVd2PR7a87jz9Zcdu+rofY/KuM/f+fgVEw8/d9762wZ+Y/Ut7U8P2vvsoNZVU2fM7HhD/1arnD6otajzwUn9Wq1y5qDWrZ0PRnY+mDCota7zwcl7H7ys9ZnOB6+fPGfmlM4nzqr8ewYvFW3ty1oDDlps66B/Gxy4/2XHPjG9+2svL9n9agNbXfsftv5LR/X4WbcX2H/365dTe+6/z/+AwAvq2/6f3dL9tZeX/B/v/x/etHtJ9LMX3n/365fT7B/qE3z+P2ijPT/39/j8/5rgJfffnzJ00+2d+2+78L5Xdz018H/z+f8nr19O77n//gd9/u/8HD+++/P/kFarnHGIvx2QSlv78u29vf/3vv+BP9fjpt+B+7/nK1tf0bn/e59rreh6alAf9z++t/f/m3r8vQJ909a+Zk+P9/8+7L81PHjJ/fvftv7wvZ//t94/+cgDftaX/Z/Rc/8jFsy6dsT8xUtOnDFr0rSOaR2zx4wcfdKoMWNGjx6x9xPBvl8P8TcFkji09//WYT1u+rVaHfvvN953y/jO/e94aMVHup4a2sf9n9nr+/9rvP9DaFj/1uDBrUWTFiyYd9K+X7sfjtz3676/LNh/H/77/7gTuv6y7j8z7NdqHb3/fvgVY4Z07v/6uWVD11OD+7j/Cb3uf9zBf1YJ9M0hvv9P6XFz0P5P2Xbjws79H/+DV23teqqv//1/Vq/7v9v7PxyKtvZWrW+infs/ecjys6tdlzZ//gf1aWL/x+68dVe163K2/UN9mtj/xJVvvrradTnH/qE+Tez/wVlXrqx2Xc61f6hPE/t//md3HVPtupxn/1CfJvb/2HefWlvturTbP9Snif1/8K72k6tdl7faP9Snif2feN0Px1a7Lm+zf6hPE/uf+vIL1lW7LufbP9Snif2fvee0I6tdl7fbP9Snif33W/69ZdWuywX2D/VpYv9PTlo5p9p1mWj/UJ8m9r/u2OHPVrsuF9o/1KeJ/a94+o0Tql2Xi+wf6tPE/r96x6rHql2Xd9g/1KeJ/X/isletqnZdLrZ/qE8T+//RsIcOq3Zd3mn/UJ8m9r9587oHql2XS+wf6tPE/levGzCs2nW51P6hPk3sf+lZ0x6tdl0us3+oTxP7HzX6y5dWuy6X2z/Up4n9H/25bz1V7bpcYf9Qnyb2f8HDC+dXuy5X2j/Up4n9Lzzm4z+udl2usn+oTxP7f0vHMdOrXZdJ9g/1aWL/5bbDNle7LlfbP9Snif1fsmPNuGrXZbL9Q32a2P+GI77wsWrXZYr9Q32a2P/OubPHVLsuHfYP9Wli/99579L3VbsuU+0f6tPE/m9/7uul2nWZZv9Qnyb2v23kJZdVuy7T7R/q08T+15z7zCPVrssM+4f6NLH/lRseX1DturzL/qE+Tex/48Zznqh2Xa6xf6hPE/s/fviIw6tdl5n2D/VpYv9zLl7xoWrXZZb9Q32a2P/p99/x2mrXZbb9Q32a2P/Qr439ZLXrMsf+oT5N7P/TY9//qWrX5Vr7h/o0sf9d4447odp1mWv/UJ8m9r/lgZF3Vrsu8+wf6tPE/j/wyF0Vr8t8+4f6NLH/ua97fke167LA/qE+Tez/TRMvWlztulxn/1CfJvZ/5N0Tvljtuiy0f6hPE/u//NvfP7/adXm3/UN9mtj/cUdd/epq12WR/UN9mtj/9Bmbbq52XRbbP9Snif2PX71lVLXrssT+oT5N7P+IJ+ffU+26XG//UJ8m9r99wFHnVbsu77F/qE8T+7/3hoe/We263GD/UJ8m9n/zTR/tqHZdbrR/qE8T+//s7sE7q12XpfYPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/zQ4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAPHAgAAAADC/K2D6N0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICjAAAA//8mu+jL")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
statx(r0, &(0x7f00000000c0)='./file1\x00', 0x0, 0x800, &(0x7f0000000280))

1m3.188391433s ago: executing program 9 (id=4779):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r0, 0x540b, 0x0)

1m2.79782527s ago: executing program 9 (id=4780):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', 0x2, &(0x7f0000000040)={[{@noquota}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@errors_continue}, {@errors_continue}, {}, {@uid}, {@quota}, {@uid}, {@usrquota}]}, 0x1, 0x614f, &(0x7f000000ccc0)="$eJzs3c1vHGcdB/Df7JtfSlOrh6pECLlteCmleS0hUKDpAQ5cOKBcUSLXrSJSQElAaRURV75w4I8AIXFEiCMn/oAeuHLjDyBSAgL11EFjP48znq69dt3dWXs+H8mZ+e0z430m35198czsEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/PAHP75QRMT1X6UbViI+F/2IXsRSVa9GxNLqSl5+EBHPx1ZzPBcRw4WIav2tf56JeC0iPjwV8ejx/bXq5osH7Mf3//yPP/zkqR/9/U/Dc//7y93+63std+/eb//71wdH22YAAADomrIsyyJ9zD+dPt/32u4UADAT+fW/TPLt6rmrN+asP2q1Wq0+hnVdOd6DehERG/V1qvcMDscDwDGzER+13QVaJP9OG0TEU213AphrRdsdYCoePb6/VqR8i/rrwep2ez4XZFf+G8XO9R17TSdpnmMyq8fXZvTj2T36szSjPsyTnH+vmf/17fZRWm7a+c/KXvmPti996pycf7+Zf8PJyb83Nv+uyvkPDpV/X/4AAAAAADDH8t//V1o+/rtw9E05kP2O/67OqA8AAAAAAAAA8Fk76vh/O4z/BwAAAHOr+qxe+d2pJ7ft9V1s1e3XioinG8sDHZMullluux8AAAAAAAAAAAAA0CWD7XN4rxURw4h4enm5LMvqp65ZH9ZR1z/uur790GVtP8kDAMC2D081ruUvIhYj4lr6rr/h8vJyWS4uLZfL5dJCfj87Wlgsl2qfa/O0um1hdIA3xINRWf2yxdp6dZM+L09qb/6+6r5GZf8AHZuNFgMHgIjYfjV65BXphCnLZ6LtdzkcD/b/k8f+z0G0/TgFAAAApq8sy7JIX+d9Oh3z77XdKQBgJvLrf/O4gFqtVqvV6pNX15XjPagXEbFRX6d6z2A4fgA4Zjbio7a7QIvk32mDiHi+7U4Ac61ouwNMxaPH99eKlG9Rfz1I47vnc0F25b9RbK2X1x83naR5jsmsHl+b0Y9n9+jPczPqwzzJ+fea+V/fbh+l5aad/6zslX+1nSst9KdtOf9+M/+Gk5N/b2z+XZXzHxwq/778AQAAAABgjuW//6/M1fHf0afdnIn2O/67OrV7BQAAAAAAAIDpevT4/lq+7jUf///CmOVc/3ky5fwL+XdSzr/XyP+rjeX6tfmHbz7J/9+P76/98e6/Pp+nB81/Ic8U6ZFVpEdEke6pGKTpUbbukzaH/VF1T8Oi1x+kc37K4dtxM27FepzftWwv/X88ab+wq73q6XCrvexvt1/c1T7Yac/rX9rVPkxnOpVLuf1srMXP41a8tdVetS1M2P7FCe3lhPacfz/+s9Nn+3935PwHtZ8q/+XUXjSmlYcf9D6x39en4+7n6s0v/ub89Ddnos3o72xbXbV9L7bQn63/k6dG8cs767fP3rtx9+7tC5Emu269GGnyGcv5D9PPzvP/S9vt+Xm/vr8+/GB06PznxWYM9sz/pdp8tb0vz7hvbcj5j9JPzv+t1D5+/z+W+VcP7333/1dm3ycAAAAAAAAAAAAAAADYV1mWW5eIXo2Iy+n6n7auzQQAZutq+sqNMsm3z6ruz/j+1OpjXhdz1p+Z1h+X89Uftfo41nXleG/Ui4j4W32dyxHx63G/DACYZx9HxD/b7gStkX+H5e/7q6Zn2u4MMFN33nv/pzdu3Vq/faftngAAAAAAAAAAn1Ye/3O1Nv73mbIsHzSW2zX+65uxetTxPwd5ZmeA0T0Gqu4ffpv2s9kb9Xu14cZfiL3G/x7uzO03/vdgwv0NJ7SPJrQvTGhfnNA+9kKPmpz/C7Xxzs9ExOnG8OsnYPzXLfuN/9oc874Lcv4v1h7PVf5faSxXz7/8/XHOv7cr/3N33/3FuTvvvf/qzXdvvLP+zvrPLl24cP7S5ctXrlw59/bNW+vnt/9tscfTlfPPY187D7Rbcv45c/l3S87/S6mWf7fk/L+cavl3S84/v9+Tf7fk/PNnH/l3S87/5VTLv1ty/l9Ltfy7Jef/Sqrl3y05/6+nWv7dkvN/NdXy75ac/9lUy79bcv7nUn3A/Jem3S9mI+efj3DZ/7sl55/PbJB/t+T8L6Za/t2S87+Uavl3S87/tVTLv1ty/t9Itfy7Jed/OdXy75ac/zdTLf9uyflfSbX8uyXn/61Uy79bcv7fTvWh8l+ZXr+YjZz/66m2/3dLzv87qZZ/t+T8v5tq+XdLzv97qZZ/t+T830i1/Lvlyff/mzFjxkyeafuZCQAAAAAAAAAAAABomsXpxG1vIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPB/duBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrADBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFvXuLkeuu7wB+9uq1czMQUic1sHaMMc4mu77EF1oXE64NtxIIhZZiu961WfANr11CGsmOAiUSRo0q2oaHtoCiNi8VVpUHWgWUB9SqUiXSPtAXRIXKQ1QFFJAqtVXIVnPm///vzOzZmV3v2J455/OR4p935sycM2fOnN3vOt8ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAabXr7zJcGsiyr/Zf/sT7Lbqz9fe34+vyyt1zvLQQAAABW65f5ny/dki44uIwbNSzzT6///jPz8/Pz2ceG/nTkq/Pz6YrxLBtZk2X5ddHlH398oHGZ4LFsbGCw4evBDqsf6nD9cIfrRzpcP9rh+jUdrh/rcP2iHbDI2vrvY/I725L/dX19l2a3ZiP5dVsKbvXYwJrBwfi7nNxAfpv5kWPZbHYim8mmmpavLzuQL//sptq63pPFdQ02rGtj7Qj5+SNH4zYMhH28pWldC/cZ/fRt2fgvfv7I0b8+9+LtRbPjbmi6v/p2bttc284vhEvq2zqQrUn7JG7nYMN2bix4ToaatnMgv13t763b+dIyt3NoYTOvqdbnfCwbzP/+fL6fhht/rZf208Zw2f/cmWXZxYXNbl1m0bqywWxd0yWDC8/PWP2IrN1H7VB6dTa8ouN00zKO09qc3tJ8nLa+JuLzvyncbniJbWh8mn766GjD8/7y/JUcp1HtUS/1Wmk9Brv9WumVYzAeF8/nD/rxwmNwS3j8j2xd+hgsPHYKjsH0uBuOwc2djsHB0aF8m9OTMJDfZuEY3NG0/FC+poF8vrC1/TE4ee7kmcm5zz989+zJI8dnjs+c2rVjx9SuPXv27ds3eWz2xMxU/c8r3Nu9b102mF4Dm8O+i6+BN7Us23iozn9jdNH590pfh2NtXofrW5bt9utwuPXBDVybF+TiY7r+2vhIbaePXRrMlniN5c/P9tW/DtPjbngdDje8Dgu/pxS8DoeX8TqsLXNm+/J+Zhlu+K9oG5b+XrC6Y3B9wzHY+vNI6zHY7Z9HeuUYHAvHxQ+3L/29YGPY3scnVvrzyNCiYzA93HDuqV2Sft4f25ePouPyjtoVN4xm5+dmzt7z0JFz587uyMK4Jl7TcKy0Hq/rGh5Ttuh4HVzx8Xpw9vWP31Fw+fqwr8burv0xtuRzVVtm9z3tn6v8u1vx/my6dGcWRpdd6/1Z9N28tj9Hs+xr33v0ge888rW3L7k/a3nzC5Or/1k85dKG8+/IEuffmPtfqa8v3dVjQyPD9dfvUNo7I03n4+anajg/dw3k635pcnnn45Hw37U+H9/a5ny8oWXZbp+PR1ofXDwfD3T6bcfqtD6fY+E4OTHV/nxcW2bDzpUek8Ntz8d3hjkQ9v+bQ1JIuajh2FnquE3rGh4eCY9rOK6h+Tjd1bT8SMhmtXU9vfPKjtNtd9bvayg9ugXX6jgdb1m228dp+t3XUsfpQKffvl2Z1udzLBwXt+5qf5zWlnlu9+rPnWvjXxvOnaOdjsGRodHaNo+kgzA/32fza+MxeE92NDudncim82tH8+NpIF/XxL3LOwZHw3/X+ly5oc0xuK1l2W4fg+n72FLH3sDw4gffBa3P51g4Lp68t/0xWFvmHXu7+7PrtnBJWqbhZ9fW368t9TuvO1p209U6VobDdn5vb/vfzdaWObFvpTmz/X66K1xyQ8F+an39LvWams6uzX7aELbzxX1L76fa9tSW+er+ZR5PB7Msu/DZ+/Lf94Z/X/m78z94punfXYr+TefCZ+/72U3H/nEl2w9A/3ulPtbVv9c1/MvUcv79HwAAAOgLMfcPhpnI/wAAAFAaMffH/ys8kf8BAACgNGLuHw4zqUj+3/COF2dfuZClZv58EK9Pu+H++nKx4zoVvh6fX1C7/L6nZv77Hy4sb92DWZa9fP8fFi6/4f64XXXjYTsvv7P58kWeuXtZ6z784IW03sb++tfD/cfHs9zDoKiCO5Vl2bO3fCVfz/jHL+XzufsP5/OBi48/Vlvmpf31r+PtX3hNffm/COXfg8eONN3+hbAffhLm1HuL90e83bcuvXnj3o8urC/ebmDzzfnDfvKT9fuN75PzxGP15eN+Xmr7v/Plp79VW/6hNxZv/4XB4u1/OtzvU2H+7+vqyzc+B7Wv4+2+GLY/ri/e7p5vfrdw+y9/qb78mXfVlzscZlz/tvD1lne9ONu4vx4aONL0uLJ315eL65/6wR/n18f7i/ffuv1jhy417Y/W4+O5f6vfz2TL8vHyuJ7o71vWX7ufxuMzrv/pPzrctJ87rf/yAy+8rna/reu/q2W5M5/dnq9/4f6a37HpL7/4lcL1xe05+Ldnmh7PwQ+F13FY/5OfDMdjuP7/Ltfvr/XdFQ5/qPn8E5f/+voLTY8nes8v6uu//Nbj+VwztnbdDTfedPPFN9T2XZY9v6Z+f53Wf/yvTjdt/zduq++PeH3s6Leufylx/Wc/N3Hq9Nz52em0Vx+5JX/vnPfVtydu7y3h3Nr69aHT5z41c3Z8anwqy8bL+xZ6V+ybYf6sPi62X3p+0Rl0+4Ph+bzjz59dt/Vfvxwv//eP1C+/9N769603heWeCJevD8/fyta/2JObbstf3wPPhS2cX/x+wauxcct/7VvWguHxt/5cEI/3M6/9VL4fatfl3zfi63qV2/+j6fr9fDvs1/nwzsybb1tYX+Py8b0RLn24/npf9f4Lp7n4vP5NeL7f/5P6/cftio/3R+HnmO9uaD7fxePj2xcGW+8/fxePi+F8kl2sXx+Xivv70ku3FW5efB+S7OLt+dd/ku7n9hU9zKXMfX5u8sTsqfMPTZ6bmTs3Off5hw+dPH3+1LlD+Xt5Hvp0p9svnJ/W5een6Zk9u7P8bHW6Pq6y6739Zx48Or13auv0zLEj54+de/DMzNnjR+fmjs5Mz209cuzYzOc63X52+sCOnft37d05cXx2+sC+/ft37Z+YPXW6thn1jepgz9RnJk6dPZTfZO7A7v077r1399TEydPTMwf2Tk1NnO90+/x700Tt1n8wcXbmxJFzsydnJuZmH545sGP/nj07O74b4Mkzx+bGJ8+ePzV5fm7m7GT9sYyfyy+ufe/rdHvKae4/6j/PthqovxFf9sG79qT3Z6156tEl76q+SMsbiL4Y3ovmn191Zt9yvo65fyTMpCL5HwAAAKog5v7RMBP5HwAAAEoj5v41YSbyPwAAAJRGzP1jYSYVyf+l6/9vuLCs9ev/6/837i/9/4r1/z/ca/3/+vlC/787Vtu/1/8P9P/1//X/9f/1/+mCXuv/x9y/Nssqmf8BAACgCmLuXxdmIv8DAABAacTcf0OYifwPAAAApRFz/41hJhXJ//r/+v/6//r/+v/F69f/70/6/+3p/3eg/z+ZVav/f7Gb26//r//PYr3W/4+5/6Ywk4rkfwAAAKiCmPtvDjOR/wEAAKA0Yu6/JcxE/gcAAID+tHbxRTH3rw8zqUj+1//X/9f/1//X/y9ev/5/f9L/b0//vwP9f5//r/+v/09X9Vr/P+b+V4WZVCT/AwAAQBXE3P/qMBP5HwAAAHrP8JXdLOb+14SZLMr/V7gCAAAA4LqLuf/WrKUIXpF//9f/1//X/9f/1/8vXv/y+/9Dmf5/79D/b0//vwP9f/1//X/9f7qq1/r/ee7PxrLXhplUJP8DAABAFcTcf1uYifwPAAAAvW1s+YvG3P8rrTeU/wEAAKA0Yu7fEGZSkfyv/6//r/+v/6//X7x+n//fn/T/29P/76DX+v8tR5D+f29vv/6//j+L9Vr/P+b+28NMKpL/AQAAoApi7r8jzET+BwAAgNKIuf9Xw0zkfwAAACiNmPs3hplUJP/r//d4/z/2/vT/9f/1//X/9f+XRf+/Pf3/Dnqt/99C/7+3t1//X/+fxXqt/x9z/+vCTCqS/wEAAKAKYu5/fZiJ/A8AAAClEXP/G8JM5H8AAAAojZj7x8NMKpL/9f97vP/v8//1//X/9f/1/1dE/789/f8O9P/1//X/9f/pql7r/8fcvynMpCL5HwAAAKog5v7NYSbyPwAAAJRGzP13hpnI/wAAAFAaMfdvCTOpSP7X/9f/1//X/9f/L16//n9/0v9vbzn9//ycpv+v/6//r/+v/08X9Fr/P+b+N4aZVCT/AwAAQBXE3L81zET+BwAAgNKIuf9NYSbyPwAAAJRGzP3bwkwqkv/1//X/9f/1//X/i9ev/9+f9P/b8/n/Hej/6//r/+v/01W91v+Puf/NYSYVyf8AAABQBTH3bw8zkf8BAACgNGLuvyvMRP4HAACA0oi5fyLMpCL5X/9f/1//X/9f/794/fr//akK/f9PrPROG+j/d6D/r/+v/6//T1f1Wv8/5v67w0wqkv8BAACgCmLuvyfMRP4HAACA0oi5fzLMRP4HAACA0oi5fyrMpCL5X/9f/1//X/9/Rf3/Nyzcr/5/nf5/b6lC/3819P870P/X/7/u/f8R/X9Kpdf6/zH37wgzqUj+BwAAgCqIuX9nmIn8DwAAAKURc/+uMBP5HwAAAEoj5v7dYSYVyf/6//r/+v/6/z7/v3j9+v/9Sf+/ve73/+ND1P/X/9f/9/n/+v8s1mv9/5j77w0zqUj+BwAAgCqIuX9PmIn8DwAAAKURc//eMBP5HwAAAEoj5v59YSYVyf/6//r/+v/6//r/xevX/+9P+v/t+fz/DvT/9f/1//X/6ape6//H3L8/zKQi+R8AAACqIOb+t4SZyP8AAABQGjH3/1qYifwPAAAApRFz/6+HmVQk/+v/6//r/+v/6/8Xr1//vz/p/7en/9+B/r/+v/6//j9d1Wv9/5j7D4SZVCT/AwAAQBXE3P8bYSbyPwAAAJRGzP1vDTOR/wEAAKA0Yu4/GGZSkfyv/6//r/+v/6//X7x+/f/+pP/fnv5/B/r/+v/6//r/dFWv9f9j7n9bmElF8j8AAABUQcz994WZyP8AAABQGjH3vz3MRP4HAACA0oi5/x1hJhXJ//r/+v/6//r/+v/F69f/70/6/+3p/3eg/6//r/+v/09X9Vr/P+b+d4aZVCT/AwAAQBXE3P+uMBP5HwAAAEoj5v53h5nI/wAAAFAaMfe/J8ykIvlf/1//X/9f/1//v3j9+v/9Sf+/Pf3/DvT/S9b/H79J/1//n6ulKAEtdmX9/xtfXnKFq+z/x9z/m2EmFcn/AAAAUAUx998fZiL/AwAAQGnE3P/eMBP5HwAAAEoj5v73hZlUJP/r/+v/6//r/+v/F69f/78/6f+312f9/1/eHC7X/6/T/+/t7e/J/v+Pl+r/z69pvb3+P1fDlfX/C3Wl/x9z//vDTCqS/wEAAKAKYu7/QJiJ/A8AAAClEXP/B8NM5H8AAAAojZj7fyvMpCL5X/+/th0L7WX9f/3//AL9f/1//f++pf/fXp/1/33+fwv9/97e/p7s//v8f66zXuv/x9z/oTCTiuR/AAAAqIKY+x8IM5H/AQAAoDRi7v9wmIn8DwAAAKURc/9Hwkwqkv/1/33+v/6//r/+f/H69f/7k/5/e/r/Hej/6//3Wv//P/X/6W+91v+Puf/BMJOK5H8AAACogpj7PxpmIv8DAABAacTc/9thJvI/AAAAlEbM/R8LM6lI/tf/75f+/7j+v/6//n/L49H/1/8vov/fnv5/B/r/+v+91v/3+f/0uV7r/8fc//Ewk+Xn/7FlLwkAAABcFzH3/06YSUX+/R8AAACqIOb+3w0zkf8BAACgNGLu/0SYSUXyv/5/v/T/ff5/pv+v/9/yePT/9f+LXLv+fzzz6P/r/+v/R/r/+v/6/7Tqtf5/zP2/F2ZSkfwPAAAAVRBz/yfDTOR/AAAA6AtF/092q5j7D4WZyP8AAABQGjH3Hw4zqUj+1//X/9f/79H+/59t/pcffv8Dh3fo/+v/6/+vyFXt/8eTTfz8/9qL3+f/6//r/yf6//r/+v+06rX+f8z9R8JMKpL/AQAAoApi7v/9MBP5HwAAAEoj5v6jYSbyPwAAAJRGzP3TYSYVyf/6//r/+v892v/v48//j/tD/79Z1/r/8aSr/1/o2n3+f/3rJ/T/r7D/P1p4qf6//n8/b7/+v/4/i12V/v/8mnThSvv/MffPhJlUJP8DAABAFYTcP3isPheukP8BAACgNGLuPx5mIv8DAABAacTc/6kwk4rkf/1//X/9f/1/n/9fvP6e7f/7/P+29P/b653+fzH9f/3/ft5+/X/9fxbrtc//j7l/NsykIvkfAAAAqiDm/k+Hmcj/AAAAUBox938mzET+BwAAgNKIuf9EmElF8r/+v/6//r/+v/5/8fr1//uT/n97+v8d6P/r/+v/6//TVb3W/4+5/2SYSUXyPwAAAFRBzP2nwkzkfwAAAPh/9u6j2dK62uP4bmzK7uIFOHBClUNfAgMd6wtw4MSBVlkORMWcaMwRcw6YMwZQxISKYgATilnMWTFgRq22tNdafU6ffZ59ut3nnGf/1+czWfe2t937KgX86P7Wfxi5+y+OW+x/AAAAGEbu/ofELU32v/5f/z9s/38P/f9un6//1/+PTP8/7XD7/92jzqT/1/9v8vfX/+v/2Wlu/X/u/ofGLU32PwAAAHSQu/9hcYv9DwAAAMPI3X9J3GL/AwAAwDBy9z88bmmy/8/o/48sevb/mfHq//ez/z/P+//6f/2//n//HWz/f9l//8yn//f+v/4/6P/1//p/zjS3/j93/yPilib7HwAAADrI3f/IuMX+BwAAgGHk7n9U3GL/AwAAwDBy9z86bmmy/73/7/3/Yd//1//v+vn6f/3/yLz/P61T/3/JLRc8+PZr7nrt2Xy+/r9D/3/Dvn1//b/+n53m1v/n7n9M3NJk/wMAAEAHufsfG7fY/wAAADCM3P2Pi1vsfwAAABhG7v7Hxy1N9r/+X/+v/9f/6/+Xf77+fzPp/6d16v/P5fP1/x36//37/vp//T87za3/z93/hLilyf4HAACADnL3PzFusf8BAABgGLn7L41b7H8AAAAYRu7+E3FLk/2v/9///v/f+n/9f1z9v/5f/7//9P/T9P8r6P/1//p//T9rNbf+P3f/ZXFLk/0PAAAAHeTuf1LcYv8DAADAMHL3Pzlusf8BAABgGLn7nxK3NNn/+n/v/+v/9f/6/+Wfr//fTPr/aQff/y/7K+Tu9P8b3/+fr//X/+v/2eos+/87Jv60vZb+P3f/U+OWJvsfAAAAOsjd/7S4xf4HAACAYeTuf3rcYv8DAADAMHL3PyNuabL/9f/6/z31//Hf8aX6f/3/Fvr/U/T/86L/nzab9/+PHF36w/r/je//vf+v/9f/s83c3v/P3f/MuKXJ/gcAAIAOcvc/K26x/wEAAGAYufufHbfY/wAAADCM3P3PiVua7H/9v/7f+//6f/3/8s+f6v+v3fL99P/zov+fNpv+fxf6f/3/Jn9//b/+n53m1v/n7n9u3NJk/wMAAEAHufsvj1vsfwAAABhG7v7nxS32PwAAAAwjd//z45Ym+395/3/6X9f/743+f/v31/8v/+NjXf1//jvq/yf7/3t6/78n/f80/f8K+n/9v/5/t/7/+Kqfr/9nmbn1/7n7XxC3NNn/AAAA0EHu/hfGLfY/AAAADCN3/4viFvsfAAAAhpG7/8VxS5P97/1//b/+f/P6f+//n3KY7/8vDrz/P6r/3yP9/zT9/wr6f/2//t/7/6zV3Pr/3P0viVua7H8AAADoIHf/S+MW+x8AAAA2w9bfO3DmbygNuftfFrfY/wAAADCM3P0vj1ua7H/9v/5f/6//793/H9uQ/t/7/3ul/5+m/1/hcPv/I4P2/0cH6/+v2O3nz6H/v1T/z8xs6/+vO/3jh9X/5+5/RdzSZP8DAABAB7n7Xxm32P8AAAAwjNz9r4pb7H8AAAAYRu7+V8ctTfb/vvf/x3f/bP2//l//r/8//P5/U97/1//vlf5/mv5/Be//e//f+//6f9ZqW/+/xWH1/7n7XxO3/hFAk/0PAAAAHeTuf23cYv8DAADAMHL3XxG32P8AAAAwjNz9r4tbmux/7//r//X/+n/9//LP1/9vJv3/NP3/Cvp//b/+X//PWs2t/8/d//q4pcn+BwAAgA5y978hbrH/AQAAYBi5+98Yt9j/AAAAMIzc/W+KW5rsf/3//vb/+eP6f/3/Qv+v/9f/H4i2/f+RZX8l2mmX/v+mB5649/Yf0f/r//X/+n/9P2swi/7/5Om/u8zd/+a4pcn+BwAAgA5y978lbrH/AQAAYBi5+98at9j/AAAAMIzc/W+LW/63/8+sUDfPsRX/uv7f+//6f/2//n/55+v/N1Pb/n+PvP+/gv5f/6//1/+zVrPo/7f877n73x63+PV/AAAAGEbu/nfELfY/AAAADCN3/zvjFvsfAAAAhpG7/11xS5P9r//X/+v/9f/6/+Wfr//fTPr/afr/FfT/+n/9v/6ftZpb/5+7/8q4pcn+BwAAgA5y9787brH/AQAAYBi5+98Tt9j/AAAAMIzc/e+NW5rsf/2//l//r//X/y//fP3/ZtL/T9P/LxaLqya+wLL+/+Sd9f/6f/2//p9zNLf+P3f/++KWJvsfAAAAOsjdf1XcYv8DAADAMHL3Xx232P8AAAAwjNz9749bmux//b/+X/+v/2/U/x/R/49P/z9N/7+C9//1//p//T9rNbf+P3f/B+KWJvsfAAAAOsjdf03cYv8DAADAMHL3fzBusf8BAABgGLn7r41bdt3/5x3Atzo4+n/9v/5f/9+o/x/w/f9jqz+4mf3r/xf6f/2//n8F/b/+X//PmebW/+fu/1Dc4tf/AQAAYBi5+z8ct9j/AAAAMIzc/R+JW+x/AAAAGEbu/o/GLU32v/5f/6//1//r/5d//mb0/6s/txvv/0/T/6+g/9f/6//1/6zV3Pr/3P0fi1ua7H8AAADoIHf/dXGL/Q8AAADDyN3/8bjF/gcAAIBh5O7/RNzSZP/r//X/2/v/xUL/r//X/59yAP3/sYX+f+30/9P0/yvo/8fs/89bDNT/H9/15+v/maO59f+5+z8ZtzTZ/wAAANBB7v7r4xb7HwAAAIaRu/9TcYv9DwAAAMPI3f/puKXJ/tf/6/839v3/8+Mn6P/1/5vb/9d/qvr/9dH/T9P/r6D/H7P/9/6//p9DM7f+P3f/DXFLk/0PAAAAHeTu/0zcYv8DAADAMHL3fzZusf8BAABgGLn7Pxe3NNn/+n/9/8b2/97/1//r//X/S+j/p+n/V9D/6//1//p/1mpu/X/u/s/HLU32PwAAAHSQu//GuMX+BwAAgGHk7r8pbrH/AQAAYBi5+78QtzTZ//p//b/+fzP7/2P6f/2//n+pufT/F110r5v1//p//b/+X/+v/+9ubv1/7v4vxi1N9j8AAAB0kLv/S3GL/Q8AAADDyN3/5bjF/gcAAIBh5O7/StzSZP/v7P/PX5wqVE9Z1v9Ho6b/30L/v/376/+X//Hh/X/9v/5//82l//f+/7l9f/2//n+Tv/9Z9f8X7vz5+n9GNLf+P3f/zXFLk/0PAAAAHeTu/2rcYv8DAADAMHL3fy1usf8BAABgGLn7b4lbmux/7//r//X/+n/9//LP1/9vJv3/NP3/Cvp//b/3/y++/530/6zP3Pr/3P1fj1ua7H8AAADoIHf/N+IW+x8AAACGkbv/m3GL/Q8AAADDyN3/rbilyf7X/+v/9f/6f/3/8s/X/28m/f80/f8KM+3/8+9Q9f/z/v7D9P/e/2eN5tb/5+7/dtzSZP8DAABAB7n7vxO32P8AAAAwjNz9341b7H8AAAAYRu7+78UtTfb/+vv/C/X/Qf8/l/7/fvr/Mz5f/6//H5n+P/+Kvpz+f4WZ9v9J/z/v76//1/+z09z6/9z9t8YtTfY/AAAAdJC7//txi/0PAAAAw8jd/4O4xf4HAACAYeTu/2Hc0mT/e/+/V/9/ZNGx//f+v/5f/9+J/n+a/n8F/b/+X/+v/2et5tb/5+7/UdzSZP8DAADAprrP3R90617/b3P3/zhusf8BAABgGLn7fxK32P8AAAAwjNz9P41bmux//X+v/r/n+//6f/2//r8T/f80/f8K+n/9v/5f/89aza3/z93/s7hly/A7etb/XwIAAABzkrv/53FLk1//BwAAgA5y9/8ibtmx/0/u8Xe1AwAAAHOTu/+Xccsefv3/bvv2rQ6O/n/m/f9i/P7/toX+X/9/iv5f/78O+v9p/2f/f/KI/l//P0H/r//X/3OmufX/uft/Fbf4/f8AAACwybb9E4Xc/b+OW+x/AAAAGEbu/t/ELfY/AAAADCN3/2/jlib7X/8/8/7/nN7/P17/0yb0/97/38f+//JjSz9f/6//H5n+f5r3/1fQ/+v/9f/6f9Zqbv1/7v7b4pYm+x8AAAA6yN3/u7jF/gcAAIBh5O7/fdxi/wMAAMAwcvf/IW5psv/1/yP2/5v1/r/+3/v/597/3+WCEzfe9wFXX6n/57SD7P/zjwX9/4H0/9cv+/fT/+v/5/T99f/6f3aaW/+fu/+PcUuT/Q8AAAAd5O6/PW6x/wEAAGAYufv/FLfY/wAAADCM3P1/jlua7H/9v/5/Lv1//md9CP3/ic3r/7Mp7t7/e/9f/7+T9/+nbXD/7/1//f/sv7/+X//PTnPr/3P3/yVuabL/AQAAoIPc/X+NW+x/AAAAGEbu/r/FLfY/AAAADCN3/9/jlib7X/+v/59L/5+8/3/653n//xT9v/7/bOj/p+n/V9D/6//1//p/1mpu/X/u/n/ELU32PwAAAHSQu/+OuMX+BwAAgGHk7v9n3GL/AwAAwDBy9/8rbmmy//X/+n/9v/5f/7/88/X/m0n/P03/v4L+X/+v/9f/s1Zz6/9z9/8nAAD//1XOc+E=")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x80)
getdents64(r0, &(0x7f0000000f80)=""/4086, 0xff6)

1m1.70235093s ago: executing program 7 (id=4781):
writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x2)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec)

1m1.164630774s ago: executing program 7 (id=4782):
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r0, 0x5607, 0x3)

1m0.517782396s ago: executing program 7 (id=4783):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xb, 0x6, 0x5004, 0x7, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xd, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2000000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1m0.059438924s ago: executing program 4 (id=4784):
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x1cb202, 0x0)
r0 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(r0, 0xc0844123, &(0x7f0000000080)={0x0, 0x0})

59.765191098s ago: executing program 1 (id=4785):
syz_mount_image$minix(&(0x7f0000000100), &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1810002, &(0x7f0000005940)=ANY=[@ANYRES64, @ANYBLOB="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", @ANYRES64=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRESHEX, @ANYRES16, @ANYRES16, @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRES32], 0xfe, 0x1d3, &(0x7f00000016c0)="$eJzs291u0mAcx/FfC7TbfH878cjEAz2RKiPRnbkL8AY8W7a6LHZqxBOIiXLifXgZnnkn3gAkegU1LSVQoKW00oJ8P8nW/5701+dZsn/3lIAA7Kyb4XdDhhph5fv+lweSXr+SVE+NWqUsEMDa+Mao6ZNYi4f30lMAtkPt9+JxO7HBf4wLk7sAsM2Gx7VwH/DTkH79+Xw6iL4aGfcPw2NTqkU/TOUtaS9Tvm+Ex/t1aTCVtxW/gPE1Yf/yfZR/pHh+P+v6o/kPZvIHy4LBI1Ogb4aHxw/j+SuSrkq6Jum6pBvRs9YtSbcXzH82M/+9jOsHigj++pqxkUxtG883U06w0/NB97y58NynK8060Yjyz3LmrSjfKpg/zJm3o3zz9L13lnjWy5xXB9KZc/2/mqX9n2jy8mGR/q8X7H9gl3W6vbcnnud+XL0wc6Uo/nGhzVjGfDHeSAYjwW16eepb5Wsur9jfjGUkFxXfmACsnfPp8oPT6faeXFyenLvn7rtW++hF+7DVfn7khPtyp8juHMAmm/zTz3Z++luCAAAAAAAAAAAAAABAFe5Iulv1IgAAAACUooyPE1X9OwIAAAAAAAAAAAAAAAAAAAD/i78BAAD//5JnO5Y=")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000580)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000700)=0x40)

59.682730563s ago: executing program 9 (id=4786):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

59.451785081s ago: executing program 7 (id=4787):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0xb)
ppoll(&(0x7f0000000240)=[{r0, 0x10}], 0x1, &(0x7f00000002c0), 0x0, 0x0)

59.358180087s ago: executing program 2 (id=4788):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x3c, r1, 0x1, 0x70bd2e, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_TX={0x5, 0x18, 0x1}]}, 0x3c}}, 0x0)

59.347333135s ago: executing program 0 (id=4789):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000000500000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x18)
setfsgid(0x0)

58.902918991s ago: executing program 4 (id=4790):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$RTC_ALM_READ(r0, 0x40187013, &(0x7f0000000040))

58.308460695s ago: executing program 7 (id=4791):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='sched\x00')
exit(0x9)
lseek(r0, 0x10001, 0x0)

58.280045961s ago: executing program 9 (id=4792):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000140)={0x1f, 0xf6}, 0x7)

58.250107141s ago: executing program 2 (id=4793):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x200cc84, &(0x7f0000000880)=ANY=[], 0x1, 0x214, &(0x7f0000000640)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
rmdir(&(0x7f0000000040)='./bus\x00')

58.145086369s ago: executing program 0 (id=4794):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc0c4}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0x8}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x24, 0x5, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x18}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb0}}, 0x0)

57.848228488s ago: executing program 4 (id=4795):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000040)=0x80000001, 0x4)
getsockopt$inet6_tcp_buf(r0, 0x6, 0x8, 0x0, &(0x7f0000001040))

57.808893718s ago: executing program 1 (id=4796):
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x80, &(0x7f0000000000)=""/4102, &(0x7f00000010c0)=0x1006)

57.258079601s ago: executing program 9 (id=4797):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/key-users\x00', 0x0, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendfile(r1, r0, &(0x7f0000000000)=0x9, 0x3fffff)

57.016173818s ago: executing program 0 (id=4798):
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000000)='./file2\x00', 0x3000812, &(0x7f0000000880)=ANY=[@ANYBLOB="71756965742c636f6465706167653d63703836302c696f636861727365743d63703836312c00808fead042bd35dc78f7f06333a5e7165b8271e41aee85e59cbb6c2df3d4e5c16b06c73f2e3b348a7fba46e286378a15ee516bac8d4813c9c3d9cee1ddb95d1bbcf504e065b3749a1cbd841e685a558598cf0db10b55885946e678d0a71877037a090000000700848879ef1604cadc1faca3aa22a576750d559c4e124d4cb7293e7393b77286fa8c6dc449eda0a03d342382e84d6d3c29ab95cc923fbe25e134d1c421320a3bffaa17fcd6b5178e322cc47133b3811e3d3bc34998dc7ed029834ad591d9d56c41063d8de2d50a2398e73ff2913a9fe8e954a4e4ca99ceb5737e57193c5f47fd63b16c8b34f256dbac0e5ebd009078df2cb1ca1051ad091adbfee5126d8a59fa5438734bc3e8cc7b7edc10716a0a9b711952cdf96586e06fbace21dc04bdb4a1a2072ce5f72cf0", @ANYRESOCT, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRESOCT, @ANYRESOCT], 0x11, 0x2f9, &(0x7f0000000300)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

56.930201188s ago: executing program 4 (id=4799):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20009001}, 0x4000080)

56.738307951s ago: executing program 1 (id=4800):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
ioctl$TCSETSW2(r0, 0x5425, 0x0)

56.629874141s ago: executing program 2 (id=4801):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000100)={0x209d, 0x3, 0x0, 0x7ffffff9}, 0x10)
write(r0, &(0x7f00000000c0)="1800000016005f0227fffffffffffff80700000023000000", 0x18)

56.55220273s ago: executing program 7 (id=4802):
r0 = syz_io_uring_setup(0x3488, &(0x7f0000000500)={0x0, 0xd2a7, 0x10100, 0x1, 0x181}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x20, 0x2000, @fd, 0x0, 0x0})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)

56.198864275s ago: executing program 9 (id=4803):
r0 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r0, &(0x7f0000000340)={0x2, 0xfffb, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x22, &(0x7f00000000c0)=0x100000001, 0x4)

55.908053549s ago: executing program 4 (id=4804):
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000140)="5c000000130025cc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc008002c0007000200060019c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x1000000)

55.847963127s ago: executing program 0 (id=4805):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0xc0c0}, 0x4044890)

41.647431828s ago: executing program 2 (id=4806):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_HASH_SREG={0x8, 0x1, 0x1, 0x0, 0x10}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x20000}, 0x0)

0s ago: executing program 37 (id=4800):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x0)
ioctl$TCSETSW2(r0, 0x5425, 0x0)

kernel console output (not intermixed with test programs):

system
[  648.057214][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1329.tmp-b7:9' failed: Read-only file system
[  648.169175][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1334.tmp-b7:8' failed: Read-only file system
[  648.222046][T17169] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4140'.
[  648.323910][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1320.tmp-b7:7' failed: Read-only file system
[  648.530063][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1329.tmp-b7:9' failed: Read-only file system
[  648.565166][T17135] loop1: detected capacity change from 0 to 32768
[  648.613696][T17135] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4129 (17135)
[  648.650293][T17180] loop2: detected capacity change from 0 to 1024
[  648.694186][T17135] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  648.731416][ T6019] udevd[6019]: symlink '../../loop7' '/dev/disk/by-diskseq/1320.tmp-b7:7' failed: Read-only file system
[  648.742829][T17135] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  648.805257][T17135] BTRFS info (device loop1): using free-space-tree
[  649.031640][ T6121] udevd[6121]: symlink '../../loop8' '/dev/disk/by-diskseq/1334.tmp-b7:8' failed: Read-only file system
[  649.086412][ T1094] hfsplus: b-tree write err: -5, ino 4
[  649.462401][T17212] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4151'.
[  649.496777][T17212] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4151'.
[  649.724797][ T5851] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  650.026222][T16185] IPVS: starting estimator thread 0...
[  650.106726][T17233] loop2: detected capacity change from 0 to 64
[  650.123012][T17230] IPVS: using max 21 ests per chain, 50400 per kthread
[  650.249886][T17233] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  650.774823][T17242] loop7: detected capacity change from 0 to 1024
[  650.887284][T17244] loop9: detected capacity change from 0 to 1024
[  650.961899][   T30] audit: type=1800 audit(1753206155.972:175): pid=17246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4162" name="file1" dev="loop7" ino=20 res=0 errno=0
[  651.128942][T17249] loop1: detected capacity change from 0 to 64
[  651.225116][   T60] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  651.295777][   T12] hfsplus: b-tree write err: -5, ino 4
[  651.362420][ T1107] hfsplus: b-tree write err: -5, ino 4
[  651.577884][T17251] loop2: detected capacity change from 0 to 128
[  651.669894][T17221] loop8: detected capacity change from 0 to 32768
[  651.723709][T17251] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  651.805241][T17221] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  651.884955][T17251] ext4 filesystem being mounted at /704/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  652.170855][T11934] (syz-executor,11934,1):ocfs2_inode_is_valid_to_delete:885 ERROR: Skipping delete of system file 72
[  652.316639][T11934] ocfs2: Unmounting device (7,8) on (node local)
[  652.321534][ T5850] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  652.680519][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1347.tmp-b7:2' failed: Read-only file system
[  652.699717][ T9122] udevd[9122]: symlink '../../loop7' '/dev/disk/by-diskseq/1346.tmp-b7:7' failed: Read-only file system
[  652.836320][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1347.tmp-b7:2' failed: Read-only file system
[  653.043834][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1346.tmp-b7:7' failed: Read-only file system
[  653.397068][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1350.tmp-b7:8' failed: Read-only file system
[  653.529853][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-diskseq/1346.tmp-b7:7' failed: Read-only file system
[  653.551657][T17281] IPVS: Error joining to the multicast group
[  653.657407][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1350.tmp-b7:8' failed: Read-only file system
[  653.732259][T17272] loop9: detected capacity change from 0 to 131072
[  653.768201][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1350.tmp-b7:8' failed: Read-only file system
[  653.800346][T17272] F2FS-fs (loop9): QUOTA feature is enabled, so ignore qf_name
[  653.828869][T17272] F2FS-fs (loop9): invalid crc value
[  653.852067][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1349.tmp-b7:1' failed: Read-only file system
[  653.864536][T17272] F2FS-fs (loop9): Wrong journal entry on segno 1541
[  653.917299][T17272] F2FS-fs (loop9): Failed to initialize F2FS segment manager (-117)
[  653.970259][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1351.tmp-b7:2' failed: Read-only file system
[  654.314432][ T5859] usb 1-1: new full-speed USB device number 35 using dummy_hcd
[  654.545370][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  654.569691][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  654.624352][ T5859] usb 1-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  654.633500][ T5859] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.700193][ T5859] usb 1-1: config 0 descriptor??
[  655.021710][T17314] loop7: detected capacity change from 0 to 64
[  655.058691][T17314] hfs: unable to locate alternate MDB
[  655.094401][T17314] hfs: continuing without an alternate MDB
[  655.123705][T17314] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended.  mounting read-only.
[  655.166985][ T5859] isku 0003:1E7D:319C.0063: unknown main item tag 0x0
[  655.197707][ T5859] isku 0003:1E7D:319C.0063: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.0-1/input0
[  655.420322][  T972] usb 1-1: USB disconnect, device number 35
[  655.557229][T17318] fido_id[17318]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  655.916609][T17302] loop2: detected capacity change from 0 to 32768
[  655.964552][T17323] loop1: detected capacity change from 0 to 4096
[  655.995113][T17323] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  656.201024][T17323] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  656.324068][T17323] netlink: 'syz.1.4197': attribute type 8 has an invalid length.
[  656.929049][T17319] loop8: detected capacity change from 0 to 32768
[  656.991119][T17319] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.4195 (17319)
[  656.995278][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  657.148738][T17319] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  657.199777][T17319] BTRFS info (device loop8): using sha256 (sha256-x86_64) checksum algorithm
[  657.250253][T17319] BTRFS info (device loop8): using free-space-tree
[  657.366654][T17342] loop2: detected capacity change from 0 to 2048
[  657.516831][T17342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  657.581157][T17319] BTRFS info (device loop8): rebuilding free space tree
[  657.628321][T17342] ext4 filesystem being mounted at /709/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  657.667704][T17322] loop7: detected capacity change from 0 to 32768
[  657.739983][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-diskseq/1357.tmp-b7:2' failed: Read-only file system
[  657.751905][T17322] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.4196 (17322)
[  657.783704][ T9122] udevd[9122]: symlink '../../loop1' '/dev/disk/by-diskseq/1361.tmp-b7:1' failed: Read-only file system
[  657.827503][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  657.888838][ T8291] udevd[8291]: symlink '../../loop9' '/dev/disk/by-diskseq/1354.tmp-b7:9' failed: Read-only file system
[  657.902432][T17322] BTRFS info (device loop7): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  657.959420][T17322] BTRFS info (device loop7): using xxhash64 (xxhash64-generic) checksum algorithm
[  658.007705][ T5850] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.008514][T17322] BTRFS info (device loop7): using free-space-tree
[  658.153429][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-diskseq/1357.tmp-b7:2' failed: Read-only file system
[  658.179330][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1363.tmp-b7:7' failed: Read-only file system
[  658.192867][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  658.207392][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-uuid/e417788f-7a09-42b2-9266-8ddc5d5d35d2.tmp-b7:7' failed: Read-only file system
[  658.301463][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-diskseq/1359.tmp-b7:2' failed: Read-only file system
[  658.495871][ T9122] udevd[9122]: symlink '../../loop9' '/dev/disk/by-diskseq/1354.tmp-b7:9' failed: Read-only file system
[  658.580317][T11934] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  658.855926][ T9462] BTRFS info (device loop7): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  659.700085][T17407] loop9: detected capacity change from 0 to 4096
[  659.754256][T17407] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512).
[  660.473825][T17425] loop1: detected capacity change from 0 to 512
[  660.495617][T17425] EXT4-fs (loop1): Test dummy encryption mode enabled
[  660.555103][T17425] EXT4-fs error (device loop1): __ext4_iget:5379: inode #11: block 1: comm syz.1.4229: invalid block
[  660.555445][T17425] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4229: couldn't read orphan inode 11 (err -117)
[  660.558393][T17425] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  660.574243][T17425] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  660.719940][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.546048][T17449] loop1: detected capacity change from 0 to 512
[  661.553468][T17449] EXT4-fs: inline encryption not supported
[  661.648803][T17449] EXT4-fs: Ignoring removed mblk_io_submit option
[  661.757070][T17449] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[  661.820316][T17449] EXT4-fs error (device loop1): ext4_clear_blocks:874: inode #13: comm syz.1.4236: attempt to clear invalid blocks 2 len 1
[  661.981988][T17449] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  662.144800][T17449] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #13: comm syz.1.4236: invalid indirect mapped block 1819239214 (level 0)
[  662.248515][T17461] loop8: detected capacity change from 0 to 32768
[  662.264527][T17449] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #13: comm syz.1.4236: invalid indirect mapped block 1819239214 (level 1)
[  662.293380][T17449] EXT4-fs (loop1): 1 truncate cleaned up
[  662.301617][T17461] gfs2: fsid=\]+_.)!]^\: Trying to join cluster "lock_nolock", "\]+_.)!]^\"
[  662.311204][T17461] gfs2: fsid=\]+_.)!]^\: Now mounting FS (format 0)...
[  662.337140][T17461] gfs2: not a GFS2 filesystem
[  662.341858][T17461] gfs2: fsid=\]+_.)!]^\: can't read superblock
[  662.348096][T17461] gfs2: fsid=\]+_.)!]^\: can't read superblock: -22
[  662.398806][T17470] sp0: Synchronizing with TNC
[  662.416398][T17469] [U] è
[  662.443345][T17449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.644462][  T972] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  662.695589][T17449] EXT4-fs (loop1): Quota file not on filesystem root. Journaled quota will not work
[  662.756395][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  662.775209][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1373.tmp-b7:8' failed: Read-only file system
[  662.829225][  T972] usb 10-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55
[  662.860508][  T972] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  662.890677][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1373.tmp-b7:8' failed: Read-only file system
[  662.922253][  T972] usb 10-1: Product: syz
[  662.932376][  T972] usb 10-1: Manufacturer: syz
[  662.944454][  T972] usb 10-1: SerialNumber: syz
[  662.961823][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-diskseq/1364.tmp-b7:2' failed: Read-only file system
[  662.991120][  T972] usb 10-1: config 0 descriptor??
[  662.997617][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  663.025817][  T972] gspca_main: sonixb-2.14.0 probing 0c45:608f
[  663.120696][T17455] loop7: detected capacity change from 0 to 32768
[  663.184452][T17479] libceph: resolve '4..' (ret=-3): failed
[  663.206187][ T6121] udevd[6121]: symlink '../../loop1' '/dev/disk/by-diskseq/1371.tmp-b7:1' failed: Read-only file system
[  663.246522][ T6121] udevd[6121]: symlink '../../loop1' '/dev/disk/by-diskseq/1371.tmp-b7:1' failed: Read-only file system
[  663.285736][T17455] JBD2: Ignoring recovery information on journal
[  663.327574][ T6121] udevd[6121]: symlink '../../loop1' '/dev/disk/by-diskseq/1374.tmp-b7:1' failed: Read-only file system
[  663.342971][T17455] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  663.469656][T17455] OCFS2: ERROR (device loop7): ocfs2_validate_gd_parent: Group descriptor #17056 has bad parent pointer (8, expected 74)
[  663.479968][ T9122] udevd[9122]: symlink '../../loop7' '/dev/disk/by-diskseq/1375.tmp-b7:7' failed: Read-only file system
[  663.496708][ T9122] udevd[9122]: symlink '../../loop7' '/dev/disk/by-uuid/b1de653c-5ffc-4d88-b33b-244aab9eb3e9.tmp-b7:7' failed: Read-only file system
[  663.512873][  T972] sonixb 10-1:0.0: Error writing register 01: -71
[  663.521495][T17455] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  663.534651][  T972] sonixb 10-1:0.0: probe with driver sonixb failed with error -71
[  663.566268][T17455] OCFS2: File system is now read-only.
[  663.576477][T17455] (syz.7.4238,17455,0):ocfs2_search_one_group:1738 ERROR: status = -30
[  663.585028][  T972] usb 10-1: USB disconnect, device number 5
[  663.612490][ T6121] udevd[6121]: symlink '../../loop2' '/dev/disk/by-diskseq/1364.tmp-b7:2' failed: Read-only file system
[  663.613405][T17455] (syz.7.4238,17455,0):ocfs2_claim_suballoc_bits:1989 ERROR: status = -30
[  663.613615][T17455] (syz.7.4238,17455,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  663.613659][T17455] (syz.7.4238,17455,0):ocfs2_claim_new_inode:2298 ERROR: status = -30
[  663.613700][T17455] (syz.7.4238,17455,0):ocfs2_claim_new_inode:2313 ERROR: status = -30
[  663.613741][T17455] (syz.7.4238,17455,0):ocfs2_mknod_locked:638 ERROR: status = -30
[  663.613783][T17455] (syz.7.4238,17455,0):ocfs2_symlink:1953 ERROR: status = -30
[  663.614108][T17455] (syz.7.4238,17455,0):ocfs2_symlink:2077 ERROR: status = -30
[  663.751664][ T9462] ocfs2: Unmounting device (7,7) on (node local)
[  663.835632][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1375.tmp-b7:7' failed: Read-only file system
[  664.471054][T17497] loop9: detected capacity change from 0 to 1024
[  664.617479][T17497] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.669773][T17497] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  664.764578][  T972] usb 9-1: new full-speed USB device number 16 using dummy_hcd
[  664.768079][T17497] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  664.792567][T17501] loop1: detected capacity change from 0 to 4096
[  664.847102][T17497] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 65 with error 28
[  664.902086][T17497] EXT4-fs (loop9): This should not happen!! Data will be lost
[  664.902086][T17497] 
[  664.916790][  T972] usb 9-1: config 4 has an invalid interface number: 231 but max is 0
[  664.934636][T17497] EXT4-fs (loop9): Total free blocks count 0
[  664.943706][  T972] usb 9-1: config 4 has no interface number 0
[  664.969235][  T972] usb 9-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  664.974226][T17497] EXT4-fs (loop9): Free/Dirty block details
[  665.002095][  T972] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  665.028569][T17497] EXT4-fs (loop9): free_blocks=4293918720
[  665.046213][  T972] usb 9-1: Product: syz
[  665.051246][T17501] ntfs3(loop1): failed to convert "0080" to macinuit
[  665.054377][T17497] EXT4-fs (loop9): dirty_blocks=80
[  665.081320][  T972] usb 9-1: Manufacturer: syz
[  665.084433][T17497] EXT4-fs (loop9): Block reservation details
[  665.098454][  T972] usb 9-1: SerialNumber: syz
[  665.106756][T17497] EXT4-fs (loop9): i_reserved_data_blocks=5
[  665.135769][T17501] ntfs3(loop1): failed to convert name for inode 1e.
[  665.181995][  T972] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  665.185690][T17501] ntfs3(loop1): ino=1f, mi_enum_attr
[  665.225735][T17501] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  665.375746][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.396030][  T972] vp7045: USB control message 'out' went wrong.
[  665.447196][  T972] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  665.492865][  T972] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  665.546982][  T972] usb 9-1: USB disconnect, device number 16
[  665.718139][T17515] loop9: detected capacity change from 0 to 64
[  665.781214][T17493] loop2: detected capacity change from 0 to 32768
[  665.791628][T17515] hfs: unable to locate alternate MDB
[  665.800332][T17515] hfs: continuing without an alternate MDB
[  666.219412][    T9] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  666.390623][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 128, changing to 11
[  666.460376][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  666.482242][    T9] usb 8-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  666.547282][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.575727][    T9] usb 8-1: config 0 descriptor??
[  666.747582][T17533] loop1: detected capacity change from 0 to 2048
[  666.825365][T17533] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  666.886833][T17535] loop2: detected capacity change from 0 to 2048
[  666.951700][T17533] UDF-fs: error (device loop1): udf_rename: failed to find renamed entry again in directory (ino 1408)
[  667.028420][   T30] audit: type=1800 audit(1753206172.042:176): pid=17535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4273" name="file2" dev="loop2" ino=1347 res=0 errno=0
[  667.052149][    T9] elo 0003:04E7:0030.0064: unknown main item tag 0x3
[  667.110708][    T9] elo 0003:04E7:0030.0064: hidraw0: USB HID v0.00 Device [HID 04e7:0030] on usb-dummy_hcd.7-1/input0
[  667.302651][  T972] usb 8-1: USB disconnect, device number 24
[  667.561624][T17540] fido_id[17540]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  667.865899][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  667.890509][ T6121] udevd[6121]: symlink '../../loop8' '/dev/disk/by-diskseq/1373.tmp-b7:8' failed: Read-only file system
[  667.957776][T17553] usb usb8: usbfs: process 17553 (syz.1.4279) did not claim interface 0 before use
[  668.000348][T17528] loop9: detected capacity change from 0 to 32768
[  668.089416][T17528] XFS (loop9): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  668.168121][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-diskseq/1376.tmp-b7:7' failed: Read-only file system
[  668.208990][T17566] loop7: detected capacity change from 0 to 64
[  668.255845][T17562] rtc_cmos 00:00: Alarms can be up to one day in the future
[  668.265197][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1389.tmp-b7:9' failed: Read-only file system
[  668.278450][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-uuid/986211a9-7d00-4ebf-a576-e3de63fa2cbd.tmp-b7:9' failed: Read-only file system
[  668.291468][ T6121] udevd[6121]: symlink '../../loop8' '/dev/disk/by-diskseq/1373.tmp-b7:8' failed: Read-only file system
[  668.306709][T17566] hfs: unable to locate alternate MDB
[  668.311832][T17528] XFS (loop9): Ending clean mount
[  668.313315][T17566] hfs: continuing without an alternate MDB
[  668.408106][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-diskseq/1390.tmp-b7:7' failed: Read-only file system
[  668.476804][ T9122] udevd[9122]: symlink '../../loop1' '/dev/disk/by-diskseq/1388.tmp-b7:1' failed: Read-only file system
[  668.489627][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-label/untitled.tmp-b7:7' failed: Read-only file system
[  668.541767][T15689] XFS (loop9): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  668.654035][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-diskseq/1390.tmp-b7:7' failed: Read-only file system
[  668.732686][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-label/untitled.tmp-b7:7' failed: Read-only file system
[  668.890082][T17575] net_ratelimit: 44 callbacks suppressed
[  668.890114][T17575] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  668.937093][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  668.968207][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  669.018554][T17577] loop1: detected capacity change from 0 to 1024
[  669.027157][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  669.070664][T17579] loop9: detected capacity change from 0 to 256
[  669.077238][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  669.103407][    T9] rtc rtc0: __rtc_set_alarm: err=-22
[  669.140205][T17579] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  669.182174][T17579] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[  669.257540][T17579] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x4d3005c0, utbl_chksum : 0xe619d30d)
[  669.276643][T17588] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  669.312927][T17577] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  669.571598][T17577] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.4289: Abort forced by user
[  669.587092][T17577] EXT4-fs (loop1): Remounting filesystem read-only
[  669.631667][T17577] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  669.684258][T17597] loop7: detected capacity change from 0 to 256
[  669.705685][T17598] loop8: detected capacity change from 0 to 512
[  669.722732][T17577] overlay: filesystem on ./file1 is read-only
[  669.736007][T17598] EXT4-fs: inline encryption not supported
[  669.761837][T17598] EXT4-fs: Ignoring removed mblk_io_submit option
[  669.827142][T17597] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7b943f, utbl_chksum : 0xe619d30d)
[  669.923863][T17598] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -13
[  669.944717][T17602] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4297'.
[  670.007013][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.024873][T17598] EXT4-fs error (device loop8): ext4_clear_blocks:874: inode #13: comm syz.8.4296: attempt to clear invalid blocks 2 len 1
[  670.102812][T17598] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  670.141710][T17598] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #13: comm syz.8.4296: invalid indirect mapped block 1819239214 (level 0)
[  670.163439][T17598] EXT4-fs error (device loop8): ext4_free_branches:1020: inode #13: comm syz.8.4296: invalid indirect mapped block 1819239214 (level 1)
[  670.183588][T17598] EXT4-fs (loop8): 1 truncate cleaned up
[  670.230841][T17598] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  670.398027][T17598] EXT4-fs (loop8): Quota file not on filesystem root. Journaled quota will not work
[  670.459614][T17614] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  670.641429][T11934] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.915254][T17629] netlink: 136 bytes leftover after parsing attributes in process `syz.8.4304'.
[  671.229798][T17638] netlink: 424 bytes leftover after parsing attributes in process `syz.2.4310'.
[  671.269502][T17638] netlink: 424 bytes leftover after parsing attributes in process `syz.2.4310'.
[  671.280655][  T972] hid-generic 0000:0000:0000.0065: item fetching failed at offset 0/1
[  671.325227][  T972] hid-generic 0000:0000:0000.0065: probe with driver hid-generic failed with error -22
[  671.873467][ T5872] Bluetooth: hci5: command 0x0406 tx timeout
[  672.398745][T17664] IPVS: sync thread started: state = MASTER, mcast_ifn = macvlan0, syncid = 0, id = 0
[  672.401735][T17639] loop8: detected capacity change from 0 to 32768
[  672.431109][T17630] loop1: detected capacity change from 0 to 32768
[  672.495575][T17630] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4306 (17630)
[  672.656993][T17639] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.4312 (17639)
[  672.666690][T17630] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  672.735287][T17630] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  672.787824][T17639] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  672.794388][T17630] BTRFS info (device loop1): disk space caching is enabled
[  672.848671][T17630] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  672.868618][T17639] BTRFS info (device loop8): using sha256 (sha256-x86_64) checksum algorithm
[  672.918896][T17639] BTRFS info (device loop8): using free-space-tree
[  672.942252][ T9122] udevd[9122]: symlink '../../loop9' '/dev/disk/by-diskseq/1397.tmp-b7:9' failed: Read-only file system
[  672.966659][ T6121] udevd[6121]: symlink '../../loop8' '/dev/disk/by-diskseq/1401.tmp-b7:8' failed: Read-only file system
[  673.048913][ T9122] udevd[9122]: symlink '../../loop7' '/dev/disk/by-diskseq/1399.tmp-b7:7' failed: Read-only file system
[  673.066632][ T6121] udevd[6121]: symlink '../../loop8' '/dev/disk/by-uuid/ed167579-eb65-4e76-9a50-61ac97e9b59d.tmp-b7:8' failed: Read-only file system
[  673.130432][ T9122] udevd[9122]: symlink '../../loop2' '/dev/disk/by-diskseq/1387.tmp-b7:2' failed: Read-only file system
[  673.199553][ T9122] udevd[9122]: symlink '../../loop9' '/dev/disk/by-diskseq/1397.tmp-b7:9' failed: Read-only file system
[  673.401666][T17630] BTRFS info (device loop1): rebuilding free space tree
[  673.480302][ T9122] udevd[9122]: symlink '../../loop2' '/dev/disk/by-diskseq/1387.tmp-b7:2' failed: Read-only file system
[  673.520769][T17630] BTRFS info (device loop1): disabling free space tree
[  673.537980][   T30] audit: type=1800 audit(1753206178.542:177): pid=17639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4312" name="file1" dev="loop8" ino=260 res=0 errno=0
[  673.575063][T17630] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  673.629446][ T9506] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  673.644354][T17630] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  673.751918][T11934] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  674.040663][ T9122] udevd[9122]: symlink '../../loop2' '/dev/disk/by-diskseq/1387.tmp-b7:2' failed: Read-only file system
[  674.081625][ T5851] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  674.527057][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1402.tmp-b7:1' failed: Read-only file system
[  674.596388][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-uuid/c9fe44da-de57-406a-8241-57ec7d4412cf.tmp-b7:1' failed: Read-only file system
[  675.010664][T17710] loop9: detected capacity change from 0 to 32768
[  675.092686][T17710] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.4332 (17710)
[  675.190378][T17710] BTRFS info (device loop9): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  675.226799][T17710] BTRFS info (device loop9): using sha256 (sha256-x86_64) checksum algorithm
[  675.267949][T17710] BTRFS info (device loop9): using free-space-tree
[  675.294552][T16185] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  675.426609][T17687] loop7: detected capacity change from 0 to 32768
[  675.466655][T16185] usb 2-1: Using ep0 maxpacket: 16
[  675.486279][T16185] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  675.504413][T16185] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  675.533820][T16185] usb 2-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00
[  675.543555][T17747] netlink: 'syz.2.4341': attribute type 11 has an invalid length.
[  675.553374][T16185] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  675.603609][T16185] usb 2-1: config 0 descriptor??
[  675.629856][T17687] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  675.952924][T17687] XFS (loop7): Ending clean mount
[  676.024787][T15689] BTRFS info (device loop9): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.087196][T16185] gt683r_led 0003:1770:FF00.0066: hidraw0: USB HID v0.00 Device [HID 1770:ff00] on usb-dummy_hcd.1-1/input0
[  676.290984][ T9462] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  676.364038][T16185] usb 2-1: USB disconnect, device number 37
[  676.457627][ T5990] gt683r_led 0003:1770:FF00.0066: failed to send set report request: -19
[  676.488708][T15308] Bluetooth: hci2: Malformed HCI Event
[  676.502940][ T5990] gt683r_led 0003:1770:FF00.0066: failed to send set report request: -19
[  676.738813][T17761] fido_id[17761]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  676.765308][T17728] loop8: detected capacity change from 0 to 32768
[  676.884861][T17728] 
[  676.884861][T17728]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  676.884861][T17728] 
[  676.997064][T17773] new mount options do not match the existing superblock, will be ignored
[  677.016658][T17728] ERROR: (device loop8): diWrite: ixpxd invalid
[  677.016658][T17728] 
[  677.104372][T17728] ERROR: (device loop8): txAbort: 
[  677.104372][T17728] 
[  677.119656][T17773] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 ""
[  677.186977][T17771] loop9: detected capacity change from 0 to 4096
[  677.282666][T17776] loop1: detected capacity change from 0 to 128
[  677.355920][T17776] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  677.401079][T11934] 
[  677.401079][T11934]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  677.401079][T11934] 
[  677.442931][T17776] System zones: 1-3, 19-19, 35-36
[  677.501942][T17776] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  677.528173][T11934] 
[  677.528173][T11934]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  677.528173][T11934] 
[  677.583631][T17771] ntfs3(loop9): failed to convert "0080" to macinuit
[  677.600357][T17776] ext4 filesystem being mounted at /707/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  677.623938][T17783] loop2: detected capacity change from 0 to 512
[  677.637521][T17771] ntfs3(loop9): failed to convert name for inode 1e.
[  677.677450][T17771] ntfs3(loop9): ino=1f, mi_enum_attr
[  677.693620][T17783] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  677.747990][T17771] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  677.794605][T17783] EXT4-fs (loop2): 1 truncate cleaned up
[  677.898556][T17783] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  677.950725][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1408.tmp-b7:7' failed: Read-only file system
[  677.989098][ T6121] udevd[6121]: symlink '../../loop9' '/dev/disk/by-diskseq/1404.tmp-b7:9' failed: Read-only file system
[  678.030707][ T6121] udevd[6121]: symlink '../../loop9' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[  678.066766][ T5851] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  678.082319][ T6121] udevd[6121]: symlink '../../loop9' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:9' failed: Read-only file system
[  678.168679][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1411.tmp-b7:1' failed: Read-only file system
[  678.242824][ T5850] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.310615][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1411.tmp-b7:1' failed: Read-only file system
[  678.417551][ T6019] udevd[6019]: symlink '../../loop2' '/dev/disk/by-diskseq/1412.tmp-b7:2' failed: Read-only file system
[  678.446527][ T6121] udevd[6121]: symlink '../../loop9' '/dev/disk/by-diskseq/1404.tmp-b7:9' failed: Read-only file system
[  678.460250][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1411.tmp-b7:1' failed: Read-only file system
[  678.519438][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1408.tmp-b7:7' failed: Read-only file system
[  679.346708][T17815] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4366'.
[  679.386480][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  679.492978][T17820] loop9: detected capacity change from 0 to 512
[  679.565509][T17820] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  679.592378][T17819] bridge0: port 1(bridge_slave_0) entered disabled state
[  679.606942][T17820] EXT4-fs (loop9): orphan cleanup on readonly fs
[  679.622909][T17820] EXT4-fs warning (device loop9): ext4_enable_quotas:7164: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  679.647102][T17819] bridge0: port 2(bridge_slave_1) entered disabled state
[  679.665338][T17820] EXT4-fs (loop9): Cannot turn on quotas: error -22
[  679.673000][T17820] EXT4-fs error (device loop9): ext4_orphan_get:1393: inode #16: comm syz.9.4367: invalid fast symlink length 9000
[  679.704814][T17820] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.4367: couldn't read orphan inode 16 (err -117)
[  679.727974][T17820] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  679.997312][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.143590][    T9] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  680.230533][T17833] loop9: detected capacity change from 0 to 1024
[  680.265799][T17833] hfsplus: bad catalog entry type
[  680.304903][    T9] usb 8-1: Using ep0 maxpacket: 16
[  680.321188][    T9] usb 8-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  680.363411][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  680.416549][    T9] usb 8-1: Product: syz
[  680.420759][    T9] usb 8-1: Manufacturer: syz
[  680.446545][ T1107] hfsplus: b-tree write err: -5, ino 4
[  680.457538][    T9] usb 8-1: SerialNumber: syz
[  680.482826][    T9] usb 8-1: config 0 descriptor??
[  680.503526][    T9] visor 8-1:0.0: Sony Clie 3.5 converter detected
[  680.906547][T17844] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4380'.
[  680.927962][T17847] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4379'.
[  680.934788][T17844] openvswitch: netlink: nsh attr 0 has unexpected len 7 expected 0
[  680.969332][    T9] usb 8-1: Sony Clie 3.5 converter now attached to ttyUSB0
[  680.985993][T17844] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  681.175141][T16185] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  681.223713][    T9] usb 8-1: USB disconnect, device number 25
[  681.255030][    T9] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[  681.282550][    T9] visor 8-1:0.0: device disconnected
[  681.349664][T16185] usb 3-1: too many configurations: 151, using maximum allowed: 8
[  681.423950][T16185] usb 3-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7
[  681.464806][T16185] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130
[  681.490306][T16185] usb 3-1: Product: syz
[  681.512532][T16185] usb 3-1: Manufacturer: syz
[  681.531557][T16185] usb 3-1: SerialNumber: syz
[  681.553345][T17857] loop9: detected capacity change from 0 to 64
[  681.561130][T16185] usb 3-1: config 0 descriptor??
[  681.572147][T16185] ims_pcu 3-1:0.0: Zero length descriptor
[  681.581941][T16185] ims_pcu 3-1:0.0: probe with driver ims_pcu failed with error -22
[  681.652434][T17834] loop8: detected capacity change from 0 to 32768
[  681.757536][T17834] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  681.868485][T16185] usb 3-1: USB disconnect, device number 41
[  681.958278][T17834] XFS (loop8): Ending clean mount
[  682.026958][T17834] XFS (loop8): Quotacheck needed: Please wait.
[  682.200607][T17834] XFS (loop8): Quotacheck: Done.
[  682.539939][T11934] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  683.056905][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1414.tmp-b7:1' failed: Read-only file system
[  683.177939][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1423.tmp-b7:9' failed: Read-only file system
[  683.394866][ T5951] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  683.428673][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1423.tmp-b7:9' failed: Read-only file system
[  683.566703][ T5951] usb 2-1: Using ep0 maxpacket: 16
[  683.587609][ T5951] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.626229][T17904] loop9: detected capacity change from 0 to 4096
[  683.632976][ T5951] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  683.688154][ T5951] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  683.754387][ T5951] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  683.795280][   T30] audit: type=1800 audit(1753206188.812:178): pid=17904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.4404" name="file2" dev="loop9" ino=16 res=0 errno=0
[  683.822623][ T5951] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.867865][ T5951] usb 2-1: config 0 descriptor??
[  683.883667][T17874] loop7: detected capacity change from 0 to 32768
[  684.007337][T17874] XFS (loop7): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  684.099268][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1425.tmp-b7:9' failed: Read-only file system
[  684.113137][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-uuid/ab2f6cf2-a99d-4328-b186-08168e7a6b7e.tmp-b7:9' failed: Read-only file system
[  684.143784][T17916] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4406'.
[  684.165387][T17874] XFS (loop7): Ending clean mount
[  684.228946][T17918] CIFS: Unable to determine destination address
[  684.257147][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1425.tmp-b7:9' failed: Read-only file system
[  684.312810][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-diskseq/1426.tmp-b7:7' failed: Read-only file system
[  684.332309][T17888] loop2: detected capacity change from 0 to 32768
[  684.357575][ T5951] microsoft 0003:045E:07DA.0067: unknown main item tag 0x7
[  684.383181][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1425.tmp-b7:9' failed: Read-only file system
[  684.401298][ T6121] udevd[6121]: symlink '../../loop7' '/dev/disk/by-uuid/d7dc424e-7990-42cb-9f91-9cb7200a101d.tmp-b7:7' failed: Read-only file system
[  684.423119][ T5951] microsoft 0003:045E:07DA.0067: unknown main item tag 0x2
[  684.478661][ T5951] microsoft 0003:045E:07DA.0067: reserved main item tag 0xe
[  684.488483][T17888] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  684.500943][ T5951] microsoft 0003:045E:07DA.0067: item 0 2 0 9 parsing failed
[  684.511158][ T5951] microsoft 0003:045E:07DA.0067: parse failed
[  684.580101][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1425.tmp-b7:9' failed: Read-only file system
[  684.625318][ T5951] microsoft 0003:045E:07DA.0067: probe with driver microsoft failed with error -22
[  684.686947][T17888] XFS (loop2): Ending clean mount
[  684.707938][ T5951] usb 2-1: USB disconnect, device number 38
[  684.750112][ T9462] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  684.761689][T17888] XFS (loop2): Quotacheck needed: Please wait.
[  684.854665][T17934] loop9: detected capacity change from 0 to 64
[  684.915593][T17888] XFS (loop2): Quotacheck: Done.
[  685.148503][ T1094] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  685.246901][T15689] hfs: node 4:3 still has 1 user(s)!
[  685.344440][T17937] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4413'.
[  685.370239][ T5850] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  685.889556][T17949] loop7: detected capacity change from 0 to 256
[  685.934944][T17949] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  685.989255][T17945] loop8: detected capacity change from 0 to 4096
[  686.033555][T17949] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  686.077455][T17950] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  686.155702][T17949] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  686.701601][T17955] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  686.752457][T17941] loop9: detected capacity change from 0 to 32768
[  686.878453][T17941] JBD2: Ignoring recovery information on journal
[  687.028523][T17941] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  687.356873][T15689] ocfs2: Unmounting device (7,9) on (node local)
[  687.571995][T17979] loop9: detected capacity change from 0 to 128
[  687.617012][T17979] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  687.666177][T17979] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  687.760223][T17981] loop8: detected capacity change from 0 to 256
[  687.796443][T17981] exfat: Deprecated parameter 'utf8'
[  687.821973][T17981] exfat: Deprecated parameter 'namecase'
[  687.855664][T17981] exfat: Deprecated parameter 'namecase'
[  687.881816][T17981] exfat: Deprecated parameter 'utf8'
[  687.976700][T17981] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[  688.019627][   T30] audit: type=1326 audit(1753206193.022:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.077502][ T6019] udevd[6019]: symlink '../../loop8' '/dev/disk/by-uuid/1234-1234.tmp-b7:8' failed: Read-only file system
[  688.143423][   T30] audit: type=1326 audit(1753206193.022:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.165850][    C1] vkms_vblank_simulate: vblank timer overrun
[  688.210276][ T5938] udevd[5938]: symlink '../../loop7' '/dev/disk/by-diskseq/1435.tmp-b7:7' failed: Read-only file system
[  688.220209][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-diskseq/1414.tmp-b7:1' failed: Read-only file system
[  688.314126][ T6019] udevd[6019]: symlink '../../loop8' '/dev/disk/by-diskseq/1440.tmp-b7:8' failed: Read-only file system
[  688.335145][T17994] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  688.349267][ T5938] udevd[5938]: symlink '../../loop2' '/dev/disk/by-diskseq/1432.tmp-b7:2' failed: Read-only file system
[  688.361684][   T30] audit: type=1326 audit(1753206193.062:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.384030][    C1] vkms_vblank_simulate: vblank timer overrun
[  688.417638][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1436.tmp-b7:9' failed: Read-only file system
[  688.430531][ T6019] udevd[6019]: symlink '../../loop8' '/dev/disk/by-uuid/1234-1234.tmp-b7:8' failed: Read-only file system
[  688.479719][   T30] audit: type=1326 audit(1753206193.062:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.499708][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1436.tmp-b7:9' failed: Read-only file system
[  688.502085][    C1] vkms_vblank_simulate: vblank timer overrun
[  688.518527][ T6019] udevd[6019]: symlink '../../loop8' '/dev/disk/by-diskseq/1440.tmp-b7:8' failed: Read-only file system
[  688.540907][   T30] audit: type=1326 audit(1753206193.062:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.563326][    C1] vkms_vblank_simulate: vblank timer overrun
[  688.590458][ T6019] udevd[6019]: symlink '../../loop8' '/dev/disk/by-diskseq/1440.tmp-b7:8' failed: Read-only file system
[  688.639477][T17999] loop2: detected capacity change from 0 to 512
[  688.682342][   T30] audit: type=1326 audit(1753206193.072:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.748060][T17999] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  688.801487][   T30] audit: type=1326 audit(1753206193.072:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.848025][   T30] audit: type=1326 audit(1753206193.072:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17985 comm="syz.1.4434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff27878e9a9 code=0x7ffc0000
[  688.894497][ T5951] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  688.932649][   T30] audit: type=1800 audit(1753206193.932:187): pid=17999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4438" name="bus" dev="loop2" ino=18 res=0 errno=0
[  689.054464][ T5951] usb 2-1: Using ep0 maxpacket: 8
[  689.073694][ T5850] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.099259][ T5951] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  689.141457][ T5951] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  689.195288][ T5951] usb 2-1: config 0 has no interface number 0
[  689.201474][ T5951] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  689.274231][ T5951] usb 2-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  689.297485][T18014] loop9: detected capacity change from 0 to 64
[  689.324103][ T5951] usb 2-1: config 0 interface 52 has no altsetting 0
[  689.370415][ T5951] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  689.387046][T18014] hfs: hfs: Invalid key length: 94
[  689.400185][ T5951] usb 2-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[  689.429718][ T5951] usb 2-1: Manufacturer: syz
[  689.456139][ T5951] usb 2-1: config 0 descriptor??
[  689.596433][T15689] hfs: node 4:3 still has 1 user(s)!
[  689.653248][T18020] loop7: detected capacity change from 0 to 256
[  689.796849][ T5951] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.52/input/input33
[  689.854799][T15308] Bluetooth: hci3: Malformed Event: 0x02
[  689.877342][T18020] FAT-fs (loop7): Directory bread(block 64) failed
[  689.948617][T18020] FAT-fs (loop7): Directory bread(block 65) failed
[  689.977372][T15308] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  689.989546][T16185] usb 2-1: USB disconnect, device number 39
[  689.989706][    C0] synaptics_usb 2-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  690.024424][T18020] FAT-fs (loop7): Directory bread(block 66) failed
[  690.034229][T18020] FAT-fs (loop7): Directory bread(block 67) failed
[  690.115232][T18020] FAT-fs (loop7): Directory bread(block 68) failed
[  690.121839][T18020] FAT-fs (loop7): Directory bread(block 69) failed
[  690.173661][T18020] FAT-fs (loop7): Directory bread(block 70) failed
[  690.221193][T18020] FAT-fs (loop7): Directory bread(block 71) failed
[  690.248626][T18020] FAT-fs (loop7): Directory bread(block 72) failed
[  690.265548][ T1094] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  690.284420][T18020] FAT-fs (loop7): Directory bread(block 73) failed
[  690.911027][T18010] loop8: detected capacity change from 0 to 40427
[  691.005326][T18010] F2FS-fs (loop8): invalid crc value
[  691.505978][T18010] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  691.561904][T18058] loop9: detected capacity change from 0 to 2048
[  691.735313][T18058] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  691.771635][T18010] bio_check_eod: 4 callbacks suppressed
[  691.771659][T18010] syz.8.4443: attempt to access beyond end of device
[  691.771659][T18010] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  691.816714][T18058] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  691.844492][T18010] syz.8.4443: attempt to access beyond end of device
[  691.844492][T18010] loop8: rw=2049, sector=45128, nr_sectors = 32 limit=40427
[  691.897534][T18058] EXT4-fs (loop9): Online resizing not supported with bigalloc
[  691.931583][T18010] syz.8.4443: attempt to access beyond end of device
[  691.931583][T18010] loop8: rw=2049, sector=45168, nr_sectors = 8 limit=40427
[  691.975441][T18061] loop1: detected capacity change from 0 to 8192
[  692.002409][T18010] syz.8.4443: attempt to access beyond end of device
[  692.002409][T18010] loop8: rw=2049, sector=45208, nr_sectors = 32 limit=40427
[  692.095141][T18010] syz.8.4443: attempt to access beyond end of device
[  692.095141][T18010] loop8: rw=2049, sector=45256, nr_sectors = 16 limit=40427
[  692.116771][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  692.321892][T11934] syz-executor: attempt to access beyond end of device
[  692.321892][T11934] loop8: rw=2049, sector=45272, nr_sectors = 8 limit=40427
[  692.385357][T11934] CPU: 1 UID: 0 PID: 11934 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  692.385406][T11934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  692.385430][T11934] Call Trace:
[  692.385442][T11934]  <TASK>
[  692.385456][T11934]  dump_stack_lvl+0x16c/0x1f0
[  692.385500][T11934]  f2fs_handle_critical_error+0x621/0x9f0
[  692.385561][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.385607][T11934]  ? f2fs_build_fault_attr+0x53/0x1f0
[  692.385667][T11934]  f2fs_write_end_io+0x785/0xc20
[  692.385731][T11934]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  692.385796][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.385858][T11934]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  692.385917][T11934]  bio_endio+0x70d/0x850
[  692.385967][T11934]  submit_bio_noacct+0x56d/0x1eb0
[  692.386036][T11934]  __submit_merged_bio+0x33c/0x770
[  692.386103][T11934]  __submit_merged_write_cond+0x319/0x3f0
[  692.386175][T11934]  f2fs_write_cache_pages+0x2067/0x2570
[  692.386245][T11934]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  692.386287][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386335][T11934]  ? exit_to_user_mode_loop+0xeb/0x110
[  692.386387][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386432][T11934]  ? __lock_acquire+0xb8a/0x1c90
[  692.386517][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386625][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386670][T11934]  ? _raw_spin_unlock+0x28/0x50
[  692.386727][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386772][T11934]  ? free_unref_folios+0x1195/0x1800
[  692.386826][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.386885][T11934]  f2fs_write_data_pages+0x4ad/0xd90
[  692.386935][T11934]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  692.386990][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.387037][T11934]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  692.387081][T11934]  do_writepages+0x27a/0x600
[  692.387130][T11934]  ? __pfx_do_writepages+0x10/0x10
[  692.387170][T11934]  ? do_raw_spin_unlock+0x172/0x230
[  692.387216][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.387261][T11934]  ? _raw_spin_unlock+0x28/0x50
[  692.387326][T11934]  filemap_fdatawrite_wbc+0x104/0x160
[  692.387375][T11934]  __filemap_fdatawrite_range+0xb2/0xf0
[  692.387432][T11934]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  692.387545][T11934]  ? find_held_lock+0x2b/0x80
[  692.387594][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.387641][T11934]  ? do_raw_spin_unlock+0x172/0x230
[  692.387685][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.387738][T11934]  f2fs_sync_dirty_inodes+0x2a9/0x990
[  692.387805][T11934]  block_operations+0x2a3/0xfd0
[  692.387855][T11934]  ? __pfx_stack_trace_save+0x10/0x10
[  692.387914][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.387967][T11934]  ? __pfx_block_operations+0x10/0x10
[  692.388065][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.388110][T11934]  ? down_write+0x14d/0x200
[  692.388154][T11934]  ? __pfx_down_write+0x10/0x10
[  692.388202][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.388249][T11934]  ? rcu_is_watching+0x12/0xc0
[  692.388306][T11934]  f2fs_write_checkpoint+0x2b8/0x4c60
[  692.388358][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.388405][T11934]  ? kfree+0x2b4/0x4d0
[  692.388444][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.388488][T11934]  ? lockdep_hardirqs_on+0x7c/0x110
[  692.388523][T11934]  ? f2fs_stop_gc_thread+0x79/0xd0
[  692.388574][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.388631][T11934]  kill_f2fs_super+0x3c2/0x470
[  692.388678][T11934]  ? __pfx_kill_f2fs_super+0x10/0x10
[  692.388723][T11934]  ? lockdep_hardirqs_on+0x7c/0x110
[  692.388780][T11934]  deactivate_locked_super+0xc1/0x1a0
[  692.388830][T11934]  deactivate_super+0xde/0x100
[  692.388889][T11934]  cleanup_mnt+0x225/0x450
[  692.388944][T11934]  task_work_run+0x150/0x240
[  692.388988][T11934]  ? __pfx_task_work_run+0x10/0x10
[  692.389026][T11934]  ? srso_alias_return_thunk+0x5/0xfbef5
[  692.389074][T11934]  ? __pfx___x64_sys_umount+0x10/0x10
[  692.389141][T11934]  exit_to_user_mode_loop+0xeb/0x110
[  692.389188][T11934]  do_syscall_64+0x3f6/0x4c0
[  692.389235][T11934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  692.389272][T11934] RIP: 0033:0x7f346438fcd7
[  692.389301][T11934] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  692.389339][T11934] RSP: 002b:00007ffed120fd88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  692.389374][T11934] RAX: 0000000000000000 RBX: 00007f3464410b55 RCX: 00007f346438fcd7
[  692.389407][T11934] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffed120fe40
[  692.389431][T11934] RBP: 00007ffed120fe40 R08: 0000000000000000 R09: 0000000000000000
[  692.389455][T11934] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffed1210ed0
[  692.389479][T11934] R13: 00007f3464410b55 R14: 00000000000a8ea5 R15: 00007ffed1210f10
[  692.389529][T11934]  </TASK>
[  692.389544][T11934] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  692.779260][T18079] sp0: Synchronizing with TNC
[  693.077593][T18078] [U] è`
[  693.161154][T18085] loop2: detected capacity change from 0 to 22
[  693.225639][T18085] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  693.250460][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1448.tmp-b7:7' failed: Read-only file system
[  693.271789][T18085] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  693.392252][ T6019] udevd[6019]: symlink '../../loop9' '/dev/disk/by-diskseq/1452.tmp-b7:9' failed: Read-only file system
[  693.455318][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1454.tmp-b7:2' failed: Read-only file system
[  693.459622][ T8291] udevd[8291]: symlink '../../loop8' '/dev/disk/by-diskseq/1449.tmp-b7:8' failed: Read-only file system
[  693.491271][ T6019] udevd[6019]: symlink '../../loop1' '/dev/disk/by-diskseq/1453.tmp-b7:1' failed: Read-only file system
[  693.518829][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-label/rom\x20637cf1fa.tmp-b7:2' failed: Read-only file system
[  693.554252][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1449.tmp-b7:8' failed: Read-only file system
[  693.568322][ T8291] udevd[8291]: symlink '../../loop2' '/dev/disk/by-diskseq/1454.tmp-b7:2' failed: Read-only file system
[  693.623444][ T8291] udevd[8291]: symlink '../../loop2' '/dev/disk/by-label/rom\x20637cf1fa.tmp-b7:2' failed: Read-only file system
[  693.688124][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1455.tmp-b7:8' failed: Read-only file system
[  694.838897][T18122] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4493'.
[  694.877980][T18123] loop8: detected capacity change from 0 to 1024
[  694.935302][T18123] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  694.970700][T18123] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  695.029960][T18096] loop9: detected capacity change from 0 to 32768
[  695.057980][T18123] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  695.073729][T18096] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.4481 (18096)
[  695.103241][T18096] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  695.134494][T18096] BTRFS info (device loop9): using crc32c (crc32c-x86_64) checksum algorithm
[  695.143335][T18096] BTRFS info (device loop9): disk space caching is enabled
[  695.150915][T18096] BTRFS warning (device loop9): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  695.251633][T11934] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  695.393599][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  695.432323][T18096] BTRFS info (device loop9): rebuilding free space tree
[  695.507544][T18096] BTRFS info (device loop9): disabling free space tree
[  695.555801][T18096] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  695.605139][T18096] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  695.908552][T18116] loop7: detected capacity change from 0 to 32768
[  696.005451][T18116] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.4491 (18116)
[  696.027959][   T60] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  696.070353][T18107] loop2: detected capacity change from 0 to 40427
[  696.141645][T18116] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  696.152295][T18107] F2FS-fs (loop2): invalid crc value
[  696.213625][T18116] BTRFS info (device loop7): using sha256 (sha256-x86_64) checksum algorithm
[  696.263458][T18157] netlink: 192 bytes leftover after parsing attributes in process `syz.1.4502'.
[  696.274438][T18116] BTRFS info (device loop7): using free-space-tree
[  696.313561][T18157] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4502'.
[  696.314249][T15689] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  696.901192][T18107] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  697.130415][T18107] syz.2.4486: attempt to access beyond end of device
[  697.130415][T18107] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  697.155261][ T9462] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  697.263563][T18107] syz.2.4486: attempt to access beyond end of device
[  697.263563][T18107] loop2: rw=2049, sector=45120, nr_sectors = 24 limit=40427
[  697.263886][T18107] syz.2.4486: attempt to access beyond end of device
[  697.263886][T18107] loop2: rw=2049, sector=45168, nr_sectors = 8 limit=40427
[  697.290224][T18107] syz.2.4486: attempt to access beyond end of device
[  697.290224][T18107] loop2: rw=2049, sector=45184, nr_sectors = 24 limit=40427
[  697.290568][T18107] syz.2.4486: attempt to access beyond end of device
[  697.290568][T18107] loop2: rw=2049, sector=45216, nr_sectors = 8 limit=40427
[  697.290921][T18107] syz.2.4486: attempt to access beyond end of device
[  697.290921][T18107] loop2: rw=2049, sector=45240, nr_sectors = 16 limit=40427
[  697.291178][T18107] syz.2.4486: attempt to access beyond end of device
[  697.291178][T18107] loop2: rw=2049, sector=45280, nr_sectors = 8 limit=40427
[  697.335433][T18192] loop8: detected capacity change from 0 to 1024
[  697.431043][    T9] usb 1-1: new full-speed USB device number 36 using dummy_hcd
[  697.479317][ T5850] syz-executor: attempt to access beyond end of device
[  697.479317][ T5850] loop2: rw=2049, sector=45288, nr_sectors = 8 limit=40427
[  697.481380][ T5850] CPU: 1 UID: 0 PID: 5850 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  697.481429][ T5850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  697.481453][ T5850] Call Trace:
[  697.481465][ T5850]  <TASK>
[  697.481479][ T5850]  dump_stack_lvl+0x16c/0x1f0
[  697.481524][ T5850]  f2fs_handle_critical_error+0x621/0x9f0
[  697.481585][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.481633][ T5850]  ? f2fs_build_fault_attr+0x53/0x1f0
[  697.481693][ T5850]  f2fs_write_end_io+0x785/0xc20
[  697.481759][ T5850]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  697.481826][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.481883][ T5850]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  697.481943][ T5850]  bio_endio+0x70d/0x850
[  697.481994][ T5850]  submit_bio_noacct+0x56d/0x1eb0
[  697.482064][ T5850]  __submit_merged_bio+0x33c/0x770
[  697.482136][ T5850]  __submit_merged_write_cond+0x319/0x3f0
[  697.482210][ T5850]  f2fs_write_cache_pages+0x2067/0x2570
[  697.482281][ T5850]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  697.482334][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.482380][ T5850]  ? __lock_acquire+0x622/0x1c90
[  697.482454][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.482585][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.482633][ T5850]  ? bpf_ksym_find+0x124/0x1c0
[  697.482688][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.482742][ T5850]  f2fs_write_data_pages+0x4ad/0xd90
[  697.482796][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  697.482853][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.482901][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  697.482945][ T5850]  do_writepages+0x27a/0x600
[  697.482993][ T5850]  ? __pfx_do_writepages+0x10/0x10
[  697.483033][ T5850]  ? do_raw_spin_unlock+0x172/0x230
[  697.483079][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.483130][ T5850]  ? _raw_spin_unlock+0x28/0x50
[  697.483195][ T5850]  filemap_fdatawrite_wbc+0x104/0x160
[  697.483244][ T5850]  __filemap_fdatawrite_range+0xb2/0xf0
[  697.483299][ T5850]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  697.483408][ T5850]  ? find_held_lock+0x2b/0x80
[  697.483459][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.483507][ T5850]  ? do_raw_spin_unlock+0x172/0x230
[  697.483551][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.483604][ T5850]  f2fs_sync_dirty_inodes+0x2a9/0x990
[  697.483669][ T5850]  block_operations+0x2a3/0xfd0
[  697.483712][ T5850]  ? __pfx_stack_trace_save+0x10/0x10
[  697.483772][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.483823][ T5850]  ? __pfx_block_operations+0x10/0x10
[  697.483922][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.483968][ T5850]  ? down_write+0x14d/0x200
[  697.484014][ T5850]  ? __pfx_down_write+0x10/0x10
[  697.484062][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.484113][ T5850]  ? rcu_is_watching+0x12/0xc0
[  697.484170][ T5850]  f2fs_write_checkpoint+0x2b8/0x4c60
[  697.484225][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.484271][ T5850]  ? kfree+0x2b4/0x4d0
[  697.484311][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.484358][ T5850]  ? lockdep_hardirqs_on+0x7c/0x110
[  697.484394][ T5850]  ? f2fs_stop_gc_thread+0x79/0xd0
[  697.484444][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.484502][ T5850]  kill_f2fs_super+0x3c2/0x470
[  697.484548][ T5850]  ? __pfx_kill_f2fs_super+0x10/0x10
[  697.484592][ T5850]  ? lockdep_hardirqs_on+0x7c/0x110
[  697.484649][ T5850]  deactivate_locked_super+0xc1/0x1a0
[  697.484701][ T5850]  deactivate_super+0xde/0x100
[  697.484751][ T5850]  cleanup_mnt+0x225/0x450
[  697.484806][ T5850]  task_work_run+0x150/0x240
[  697.484851][ T5850]  ? __pfx_task_work_run+0x10/0x10
[  697.484890][ T5850]  ? srso_alias_return_thunk+0x5/0xfbef5
[  697.484941][ T5850]  ? __pfx___x64_sys_umount+0x10/0x10
[  697.485008][ T5850]  exit_to_user_mode_loop+0xeb/0x110
[  697.485056][ T5850]  do_syscall_64+0x3f6/0x4c0
[  697.485107][ T5850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.485145][ T5850] RIP: 0033:0x7f35a258fcd7
[  697.485175][ T5850] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  697.485212][ T5850] RSP: 002b:00007ffc747f8098 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  697.485248][ T5850] RAX: 0000000000000000 RBX: 00007f35a2610b55 RCX: 00007f35a258fcd7
[  697.485274][ T5850] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc747f8150
[  697.485299][ T5850] RBP: 00007ffc747f8150 R08: 0000000000000000 R09: 0000000000000000
[  697.485324][ T5850] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc747f91e0
[  697.485348][ T5850] R13: 00007f35a2610b55 R14: 00000000000aa3ad R15: 00007ffc747f9220
[  697.485399][ T5850]  </TASK>
[  697.542387][ T5850] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  697.648193][    T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  697.652910][    T9] usb 1-1: New USB device found, idVendor=1822, idProduct=3202, bcdDevice=13.4a
[  697.652957][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  697.652995][    T9] usb 1-1: Product: syz
[  697.653023][    T9] usb 1-1: Manufacturer: syz
[  697.653053][    T9] usb 1-1: SerialNumber: syz
[  697.656836][    T9] usb 1-1: config 0 descriptor??
[  697.669622][    T9] dvb-usb: found a 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device' in warm state.
[  697.669682][    T9] dvb-usb: bulk message failed: -22 (3/0)
[  697.730057][    T9] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  697.730995][    T9] dvbdev: DVB: registering new adapter (TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device)
[  697.731064][    T9] usb 1-1: media controller created
[  697.733714][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  697.769443][    T9] dvb-usb: bulk message failed: -22 (6/0)
[  697.769540][    T9] dvb-usb: no frontend was attached by 'TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device'
[  697.782003][    T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input34
[  697.794717][    T9] dvb-usb: schedule remote query interval to 150 msecs.
[  697.794774][    T9] dvb-usb: bulk message failed: -22 (3/0)
[  697.825038][    T9] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I / HAMA USB1.1 DVB-T device successfully initialized and connected.
[  697.920110][T18196] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  697.973874][    T9] dvb-usb: bulk message failed: -22 (1/0)
[  697.973917][    T9] dvb-usb: error while querying for an remote control event.
[  697.980588][ T5859] usb 1-1: USB disconnect, device number 36
[  698.184179][ T5859] dvb-usb: TwinhanDTV USB-Ter USB1.1 / Magic Box I successfully deinitialized and disconnected.
[  698.269901][ T5938] udevd[5938]: symlink '../../loop8' '/dev/disk/by-diskseq/1462.tmp-b7:8' failed: Read-only file system
[  698.373570][ T5938] udevd[5938]: symlink '../../loop8' '/dev/disk/by-diskseq/1464.tmp-b7:8' failed: Read-only file system
[  698.382421][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1458.tmp-b7:9' failed: Read-only file system
[  698.429704][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1458.tmp-b7:9' failed: Read-only file system
[  698.500574][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1461.tmp-b7:2' failed: Read-only file system
[  698.564252][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1463.tmp-b7:9' failed: Read-only file system
[  698.620497][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1461.tmp-b7:2' failed: Read-only file system
[  698.680982][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1465.tmp-b7:2' failed: Read-only file system
[  698.704634][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-diskseq/1464.tmp-b7:8' failed: Read-only file system
[  698.775638][T18198] udevd[18198]: symlink '../../loop9' '/dev/disk/by-diskseq/1463.tmp-b7:9' failed: Read-only file system
[  699.551205][T18218] loop8: detected capacity change from 0 to 512
[  699.604636][T18218] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  699.696012][T18218] EXT4-fs (loop8): 1 truncate cleaned up
[  699.769974][T18218] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  699.972593][T18228] loop9: detected capacity change from 0 to 256
[  700.081894][T18228] exFAT-fs (loop9): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x0c922d38, utbl_chksum : 0x7319d30d)
[  700.097424][T11934] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  700.129421][T18232] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4526'.
[  700.748864][T18246] loop8: detected capacity change from 0 to 512
[  700.768171][T18246] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  700.829766][T18246] EXT4-fs (loop8): 1 truncate cleaned up
[  700.850429][T18246] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  700.926334][ T5990] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[  701.045972][T11934] EXT4-fs error (device loop8): ext4_readdir:262: inode #11: block 54: comm syz-executor: path /399/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  701.157141][ T5990] usb 10-1: config 0 has an invalid interface number: 52 but max is 0
[  701.185154][ T5990] usb 10-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  701.196490][T11934] EXT4-fs (loop8): Remounting filesystem read-only
[  701.211142][T18226] loop1: detected capacity change from 0 to 40427
[  701.215014][ T5990] usb 10-1: config 0 has no interface number 0
[  701.253939][ T5990] usb 10-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  701.287525][T18258] netlink: 802 bytes leftover after parsing attributes in process `syz.7.4540'.
[  701.299915][T18226] F2FS-fs (loop1): invalid crc value
[  701.306115][ T5990] usb 10-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  701.381877][ T5990] usb 10-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  701.431224][ T5990] usb 10-1: config 0 interface 52 has no altsetting 0
[  701.490254][ T5990] usb 10-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  701.528115][ T5990] usb 10-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  701.545622][ T5990] usb 10-1: Product: syz
[  701.564369][ T5990] usb 10-1: SerialNumber: syz
[  701.607556][ T5990] usb 10-1: config 0 descriptor??
[  701.698742][T18226] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  701.771802][T11934] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.790395][  T152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  701.839862][ T5990] input: syz (Stick) as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.52/input/input35
[  701.880127][T18226] syz.1.4525: attempt to access beyond end of device
[  701.880127][T18226] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  701.919268][T18226] syz.1.4525: attempt to access beyond end of device
[  701.919268][T18226] loop1: rw=2049, sector=45120, nr_sectors = 32 limit=40427
[  702.177437][ T5990] usb 10-1: USB disconnect, device number 6
[  702.184238][ T5851] bio_check_eod: 4 callbacks suppressed
[  702.218382][ T5851] syz-executor: attempt to access beyond end of device
[  702.218382][ T5851] loop1: rw=2049, sector=45256, nr_sectors = 8 limit=40427
[  702.263642][ T9506] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  702.281406][ T5851] CPU: 1 UID: 0 PID: 5851 Comm: syz-executor Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  702.281454][ T5851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  702.281476][ T5851] Call Trace:
[  702.281489][ T5851]  <TASK>
[  702.281504][ T5851]  dump_stack_lvl+0x16c/0x1f0
[  702.281550][ T5851]  f2fs_handle_critical_error+0x621/0x9f0
[  702.281611][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.281659][ T5851]  ? f2fs_build_fault_attr+0x53/0x1f0
[  702.281721][ T5851]  f2fs_write_end_io+0x785/0xc20
[  702.281788][ T5851]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  702.281857][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.281916][ T5851]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  702.281977][ T5851]  bio_endio+0x70d/0x850
[  702.282032][ T5851]  submit_bio_noacct+0x56d/0x1eb0
[  702.282111][ T5851]  __submit_merged_bio+0x33c/0x770
[  702.282181][ T5851]  __submit_merged_write_cond+0x319/0x3f0
[  702.282259][ T5851]  f2fs_write_cache_pages+0x2067/0x2570
[  702.282337][ T5851]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  702.282380][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.282430][ T5851]  ? exit_to_user_mode_loop+0xeb/0x110
[  702.282484][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.282531][ T5851]  ? __lock_acquire+0xb8a/0x1c90
[  702.282625][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.282751][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.282797][ T5851]  ? _raw_spin_unlock+0x28/0x50
[  702.282854][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.282900][ T5851]  ? free_unref_folios+0x1195/0x1800
[  702.282957][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.283014][ T5851]  f2fs_write_data_pages+0x4ad/0xd90
[  702.283067][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  702.283131][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.283178][ T5851]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  702.283225][ T5851]  do_writepages+0x27a/0x600
[  702.283276][ T5851]  ? __pfx_do_writepages+0x10/0x10
[  702.283321][ T5851]  ? do_raw_spin_unlock+0x172/0x230
[  702.283366][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.283412][ T5851]  ? _raw_spin_unlock+0x28/0x50
[  702.283478][ T5851]  filemap_fdatawrite_wbc+0x104/0x160
[  702.283527][ T5851]  __filemap_fdatawrite_range+0xb2/0xf0
[  702.283585][ T5851]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  702.283713][ T5851]  ? find_held_lock+0x2b/0x80
[  702.283764][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.283811][ T5851]  ? do_raw_spin_unlock+0x172/0x230
[  702.283855][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.283909][ T5851]  f2fs_sync_dirty_inodes+0x2a9/0x990
[  702.283981][ T5851]  block_operations+0x2a3/0xfd0
[  702.284023][ T5851]  ? __pfx_stack_trace_save+0x10/0x10
[  702.284084][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284142][ T5851]  ? __pfx_block_operations+0x10/0x10
[  702.284252][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284297][ T5851]  ? down_write+0x14d/0x200
[  702.284344][ T5851]  ? __pfx_down_write+0x10/0x10
[  702.284393][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284440][ T5851]  ? rcu_is_watching+0x12/0xc0
[  702.284498][ T5851]  f2fs_write_checkpoint+0x2b8/0x4c60
[  702.284554][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284599][ T5851]  ? kfree+0x2b4/0x4d0
[  702.284637][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284683][ T5851]  ? lockdep_hardirqs_on+0x7c/0x110
[  702.284719][ T5851]  ? f2fs_stop_gc_thread+0x79/0xd0
[  702.284771][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.284832][ T5851]  kill_f2fs_super+0x3c2/0x470
[  702.284880][ T5851]  ? __pfx_kill_f2fs_super+0x10/0x10
[  702.284925][ T5851]  ? lockdep_hardirqs_on+0x7c/0x110
[  702.284986][ T5851]  deactivate_locked_super+0xc1/0x1a0
[  702.285038][ T5851]  deactivate_super+0xde/0x100
[  702.285091][ T5851]  cleanup_mnt+0x225/0x450
[  702.285155][ T5851]  task_work_run+0x150/0x240
[  702.285201][ T5851]  ? __pfx_task_work_run+0x10/0x10
[  702.285239][ T5851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  702.285290][ T5851]  ? __pfx___x64_sys_umount+0x10/0x10
[  702.285360][ T5851]  exit_to_user_mode_loop+0xeb/0x110
[  702.285408][ T5851]  do_syscall_64+0x3f6/0x4c0
[  702.285456][ T5851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  702.285496][ T5851] RIP: 0033:0x7ff27878fcd7
[  702.285526][ T5851] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  702.285565][ T5851] RSP: 002b:00007ffd2d4bed48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  702.285602][ T5851] RAX: 0000000000000000 RBX: 00007ff278810b55 RCX: 00007ff27878fcd7
[  702.285628][ T5851] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd2d4bee00
[  702.285653][ T5851] RBP: 00007ffd2d4bee00 R08: 0000000000000000 R09: 0000000000000000
[  702.285678][ T5851] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd2d4bfe90
[  702.285703][ T5851] R13: 00007ff278810b55 R14: 00000000000ab616 R15: 00007ffd2d4bfed0
[  702.285758][ T5851]  </TASK>
[  702.756397][    C1] vkms_vblank_simulate: vblank timer overrun
[  702.820970][ T5851] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  703.190472][ T9506] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.194438][ T5872] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  703.210904][ T5872] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  703.219740][ T5872] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  703.228209][ T5872] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  703.238072][ T5872] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  703.390502][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1466.tmp-b7:7' failed: Read-only file system
[  703.510226][ T8291] udevd[8291]: symlink '../../loop9' '/dev/disk/by-diskseq/1470.tmp-b7:9' failed: Read-only file system
[  703.516497][ T9506] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.631891][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1472.tmp-b7:1' failed: Read-only file system
[  703.723356][T18198] udevd[18198]: symlink '../../loop9' '/dev/disk/by-diskseq/1470.tmp-b7:9' failed: Read-only file system
[  703.750243][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1472.tmp-b7:1' failed: Read-only file system
[  703.812192][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1466.tmp-b7:7' failed: Read-only file system
[  703.849458][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1473.tmp-b7:1' failed: Read-only file system
[  703.873596][ T9506] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.059588][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1466.tmp-b7:7' failed: Read-only file system
[  704.480384][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1465.tmp-b7:2' failed: Read-only file system
[  704.810792][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-diskseq/1473.tmp-b7:1' failed: Read-only file system
[  704.885403][ T9506] bridge_slave_1: left allmulticast mode
[  704.901312][ T9506] bridge_slave_1: left promiscuous mode
[  704.901893][T18308] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4559'.
[  704.933292][ T9506] bridge0: port 2(bridge_slave_1) entered disabled state
[  704.960231][T18308] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4559'.
[  705.010467][T18289] loop9: detected capacity change from 0 to 32768
[  705.049565][ T9506] bridge_slave_0: left allmulticast mode
[  705.084385][ T9506] bridge_slave_0: left promiscuous mode
[  705.125120][ T9506] bridge0: port 1(bridge_slave_0) entered disabled state
[  705.305570][ T5872] Bluetooth: hci5: command tx timeout
[  705.558275][T18289] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  705.558328][T18289]   allowing incompatible features above 0.0: (unknown version)
[  705.558351][T18289]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  705.618651][T18295] loop7: detected capacity change from 0 to 32768
[  705.627937][ T5990] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  705.659715][T18295] XFS: ikeep mount option is deprecated.
[  705.677608][T18289] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  705.777785][T18289] bcachefs (loop9): initializing new filesystem
[  705.788279][ T5990] usb 2-1: Using ep0 maxpacket: 16
[  705.811877][ T5990] usb 2-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  705.859365][T18295] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  705.873448][T18289] bcachefs (loop9): going read-write
[  705.898263][ T5990] usb 2-1: config 0 interface 0 has no altsetting 0
[  705.944077][ T5990] usb 2-1: New USB device found, idVendor=1532, idProduct=011b, bcdDevice= 0.00
[  705.974977][T18289] bcachefs (loop9): marking superblocks
[  706.004592][ T5990] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.022727][T18289] bcachefs (loop9): initializing freespace
[  706.067381][ T5990] usb 2-1: config 0 descriptor??
[  706.123959][T18289] bcachefs (loop9): done initializing freespace
[  706.201232][T18289] bcachefs (loop9): reading snapshots table
[  706.222053][T18289] bcachefs (loop9): reading snapshots done
[  706.331719][T18295] XFS (loop7): Ending clean mount
[  706.337195][T18289] bcachefs (loop9): done starting filesystem
[  706.409444][T18295] XFS (loop7): Quotacheck needed: Please wait.
[  706.533338][ T5990] razer 0003:1532:011B.0068: unknown main item tag 0x0
[  706.566794][T18295] XFS (loop7): Quotacheck: Done.
[  706.573807][ T5990] razer 0003:1532:011B.0068: unknown main item tag 0x0
[  706.649655][ T5990] razer 0003:1532:011B.0068: unknown main item tag 0x0
[  706.665620][T15689] bcachefs (loop9): shutting down
[  706.670685][T15689] bcachefs (loop9): going read-only
[  706.681188][ T5990] razer 0003:1532:011B.0068: unknown main item tag 0x0
[  706.688198][T15689] bcachefs (loop9): finished waiting for writes to stop
[  706.712602][ T5990] razer 0003:1532:011B.0068: hidraw0: USB HID v0.00 Device [HID 1532:011b] on usb-dummy_hcd.1-1/input0
[  706.744338][T15689] bcachefs (loop9): flushing journal and stopping allocators, journal seq 3
[  706.759226][ T5990] usb 2-1: USB disconnect, device number 40
[  706.880648][T15689] bcachefs (loop9): flushing journal and stopping allocators complete, journal seq 3
[  706.945680][T15689] bcachefs (loop9): clean shutdown complete, journal seq 4
[  706.953882][T15689] bcachefs (loop9): marking filesystem clean
[  706.965751][ T9462] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  707.048339][T18348] fido_id[18348]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  707.117504][T15689] bcachefs (loop9): shutdown complete
[  707.385177][T15308] Bluetooth: hci5: command tx timeout
[  707.545099][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  707.811687][T18359] loop7: detected capacity change from 0 to 512
[  707.867584][T18359] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  707.952782][T18359] EXT4-fs (loop7): 1 truncate cleaned up
[  708.080591][T18359] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  708.379607][ T9462] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.479802][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  708.540374][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1473.tmp-b7:1' failed: Read-only file system
[  708.552911][ T9506] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  708.566623][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1477.tmp-b7:7' failed: Read-only file system
[  708.610980][ T9506] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  708.632450][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1477.tmp-b7:7' failed: Read-only file system
[  708.660556][ T9506] bond0 (unregistering): Released all slaves
[  708.690680][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1465.tmp-b7:2' failed: Read-only file system
[  708.730258][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1478.tmp-b7:7' failed: Read-only file system
[  708.806371][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1473.tmp-b7:1' failed: Read-only file system
[  708.831986][T18375] loop2: detected capacity change from 0 to 512
[  708.846343][ T5951] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  708.876558][T18375] EXT4-fs: Ignoring removed oldalloc option
[  708.885298][T18375] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  708.939904][T18279] chnl_net:caif_netlink_parms(): no params data found
[  708.952065][T18375] EXT4-fs (loop2): 1 truncate cleaned up
[  708.961067][ T9506] tipc: Disabling bearer <udp:syz0>
[  708.982761][T18375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  709.004689][ T9506] tipc: Left network mode
[  709.013369][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1479.tmp-b7:2' failed: Read-only file system
[  709.035266][ T5951] usb 8-1: Using ep0 maxpacket: 16
[  709.038158][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  709.064242][ T5951] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  709.064471][ T5951] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  709.064515][ T5951] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  709.064583][ T5951] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  709.064625][ T5951] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  709.067887][ T5951] usb 8-1: config 0 descriptor??
[  709.116913][T18375] EXT4-fs error (device loop2): mb_free_blocks:1945: group 0, 
[  709.186589][T18379] EXT4-fs error (device loop2): ext4_get_verity_descriptor_location:298: inode #15: comm syz.2.4575: verity file has no extents
[  709.188438][T18379] EXT4-fs (loop2): Remounting filesystem read-only
[  709.192178][T18375] inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  709.259214][T18379] fs-verity (loop2, inode 15): Error -117 getting verity descriptor size
[  709.317502][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1473.tmp-b7:1' failed: Read-only file system
[  709.464641][T15308] Bluetooth: hci5: command tx timeout
[  709.540449][ T5951] microsoft 0003:045E:07DA.0069: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.7-1/input0
[  709.575012][ T5951] microsoft 0003:045E:07DA.0069: no inputs found
[  709.579451][T18383] loop1: detected capacity change from 0 to 2048
[  709.604330][ T5951] microsoft 0003:045E:07DA.0069: could not initialize ff, continuing anyway
[  709.641709][T18383] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  709.738655][ T5850] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.753161][ T5951] usb 8-1: USB disconnect, device number 26
[  709.764335][T18386] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  709.893283][T18383] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 8796093022222
[  709.908654][T18385] fido_id[18385]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  709.951248][T18383] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=16)
[  710.013306][T18383] Remounting filesystem read-only
[  710.069736][T18383] NILFS (loop1): error -5 truncating bmap (ino=16)
[  710.300344][T18279] bridge0: port 1(bridge_slave_0) entered blocking state
[  710.302631][ T5851] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  710.324870][ T5951] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  710.326711][T18279] bridge0: port 1(bridge_slave_0) entered disabled state
[  710.360382][T18279] bridge_slave_0: entered allmulticast mode
[  710.414483][T18279] bridge_slave_0: entered promiscuous mode
[  710.431585][T18279] bridge0: port 2(bridge_slave_1) entered blocking state
[  710.464483][T18279] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.512307][T18279] bridge_slave_1: entered allmulticast mode
[  710.518390][ T5951] usb 3-1: Using ep0 maxpacket: 32
[  710.565088][ T5951] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  710.573122][ T5951] usb 3-1: config 0 has no interface number 0
[  710.590201][T18279] bridge_slave_1: entered promiscuous mode
[  710.628306][ T5951] usb 3-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  710.662381][ T5951] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  710.682745][ T5951] usb 3-1: Product: syz
[  710.703092][ T5951] usb 3-1: Manufacturer: syz
[  710.723322][ T5951] usb 3-1: SerialNumber: syz
[  710.744245][ T5951] usb 3-1: config 0 descriptor??
[  710.772546][T18392] loop1: detected capacity change from 0 to 2048
[  710.817206][ T5951] usb 3-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  710.847499][ T5951] usb 3-1: selecting invalid altsetting 1
[  710.873113][ T5951] usb 3-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  710.897167][T18392] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  710.900445][ T5951] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  710.944708][ T5951] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  710.964810][ T5951] usb 3-1: media controller created
[  711.032974][   T30] audit: type=1800 audit(2000000007.479:188): pid=18392 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4579" name="file1" dev="loop1" ino=15 res=0 errno=0
[  711.072383][ T5951] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  711.235064][ T5951] usb 3-1: dvb_usb_ce6230: usb_control_msg() failed=-32
[  711.242537][ T5951] zl10353_read_register: readreg error (reg=127, ret==-32)
[  711.309578][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  711.326031][T18404] loop9: detected capacity change from 0 to 1024
[  711.332597][ T9506] hsr_slave_0: left promiscuous mode
[  711.364768][ T9506] hsr_slave_1: left promiscuous mode
[  711.402153][ T9506] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  711.418344][ T9506] batman_adv: batadv0: Removing interface: batadv_slave_0
[  711.433246][ T9506] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  711.446895][ T9506] batman_adv: batadv0: Removing interface: batadv_slave_1
[  711.527720][ T9506] veth1_macvtap: left promiscuous mode
[  711.533325][ T9506] veth0_macvtap: left promiscuous mode
[  711.550770][ T5951] usb 3-1: USB disconnect, device number 42
[  711.551096][T15308] Bluetooth: hci5: command tx timeout
[  711.583712][ T9506] veth1_vlan: left promiscuous mode
[  711.604576][ T9506] veth0_vlan: left promiscuous mode
[  712.283886][T18420] loop9: detected capacity change from 0 to 4096
[  712.409828][T18420] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  712.594144][T18420] EXT4-fs (loop9): resizing filesystem from 512 to 0 blocks
[  712.617781][T18420] EXT4-fs warning (device loop9): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  712.817785][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  712.829671][T18432] loop1: detected capacity change from 0 to 256
[  712.849227][T18432] exfat: Deprecated parameter 'namecase'
[  712.925460][T18432] exfat: Deprecated parameter 'utf8'
[  713.057728][T18432] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  713.293397][T18436] loop2: detected capacity change from 0 to 4096
[  713.305409][   T60] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  713.648872][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1491.tmp-b7:2' failed: Read-only file system
[  713.687829][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1490.tmp-b7:9' failed: Read-only file system
[  713.707592][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  713.759317][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-diskseq/1492.tmp-b7:1' failed: Read-only file system
[  713.785522][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:2' failed: Read-only file system
[  713.980837][T18198] udevd[18198]: symlink '../../loop9' '/dev/disk/by-diskseq/1490.tmp-b7:9' failed: Read-only file system
[  714.123037][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1492.tmp-b7:1' failed: Read-only file system
[  714.160606][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1491.tmp-b7:2' failed: Read-only file system
[  714.210403][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system
[  714.249618][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-uuid/0B506D495F2D248F.tmp-b7:2' failed: Read-only file system
[  715.002196][ T9506] team0 (unregistering): Port device team_slave_1 removed
[  715.019731][T18458] loop1: detected capacity change from 0 to 32768
[  715.092389][T18458] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  715.168993][ T9506] team0 (unregistering): Port device team_slave_0 removed
[  715.241017][T18458] (syz.1.4601,18458,0):ocfs2_check_dir_entry:321 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=16, inode=65, rec_len=16, name_len=64
[  715.294052][T18464] loop2: detected capacity change from 0 to 40427
[  715.299795][T18458] (syz.1.4601,18458,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2
[  715.336696][T18458] (syz.1.4601,18458,0):ocfs2_mknod:298 ERROR: status = -2
[  715.353261][T18464] F2FS-fs (loop2): invalid crc value
[  715.362761][T18458] (syz.1.4601,18458,1):ocfs2_mknod:502 ERROR: status = -2
[  715.422707][T18458] (syz.1.4601,18458,1):ocfs2_create:675 ERROR: status = -2
[  715.631617][T18464] F2FS-fs (loop2): Start checkpoint disabled!
[  715.643537][ T5851] ocfs2: Unmounting device (7,1) on (node local)
[  715.687485][T18464] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  716.103810][T18474] loop1: detected capacity change from 0 to 256
[  716.267312][T18474] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x08fbab18, utbl_chksum : 0xe619d30d)
[  716.727243][T18480] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  716.918862][T18484] loop1: detected capacity change from 0 to 1024
[  717.134772][T18279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  717.181152][T18279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  717.633977][T18279] team0: Port device team_slave_0 added
[  717.720013][T18497] loop1: detected capacity change from 0 to 64
[  717.767595][T18279] team0: Port device team_slave_1 added
[  717.958214][T18501] loop7: detected capacity change from 0 to 1024
[  718.009744][T18279] batman_adv: batadv0: Adding interface: batadv_slave_0
[  718.045341][T18279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  718.081489][T18279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  718.102407][T18279] batman_adv: batadv0: Adding interface: batadv_slave_1
[  718.102882][T18501] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  718.111975][T18279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  718.234839][T18501] ext4 filesystem being mounted at /512/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  718.254186][T18279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  718.325585][T18511] loop9: detected capacity change from 0 to 512
[  718.341409][T18510] loop1: detected capacity change from 0 to 1024
[  718.416489][   T30] audit: type=1800 audit(2000000014.859:189): pid=18501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4618" name="file1" dev="loop7" ino=15 res=0 errno=0
[  718.444605][T18482] loop2: detected capacity change from 0 to 32768
[  718.444784][T18511] EXT4-fs error (device loop9): ext4_orphan_get:1419: comm syz.9.4621: bad orphan inode 13
[  718.473965][T18482] XFS: ikeep mount option is deprecated.
[  718.533245][T18511] ext4_test_bit(bit=12, block=4) = 1
[  718.570395][T18511] is_bad_inode(inode)=0
[  718.606072][T18511] NEXT_ORPHAN(inode)=0
[  718.610198][T18511] max_ino=32
[  718.613422][T18511] i_nlink=1
[  718.629738][T18511] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  718.660410][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  718.672104][T18482] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  718.840165][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1506.tmp-b7:1' failed: Read-only file system
[  718.851956][   T30] audit: type=1326 audit(2000000015.289:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18523 comm="syz.0.4622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141fb8e9a9 code=0x7ffc0000
[  718.862877][ T9462] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.908791][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  718.911703][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1505.tmp-b7:9' failed: Read-only file system
[  718.930642][   T30] audit: type=1326 audit(2000000015.289:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18523 comm="syz.0.4622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141fb8e9a9 code=0x7ffc0000
[  718.986341][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:1' failed: Read-only file system
[  718.986541][   T12] hfsplus: b-tree write err: -5, ino 4
[  719.050532][   T30] audit: type=1326 audit(2000000015.339:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18523 comm="syz.0.4622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f141fb8e9a9 code=0x7ffc0000
[  719.073995][ T1094] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  719.101451][T18279] hsr_slave_0: entered promiscuous mode
[  719.129892][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[  719.185870][T18279] hsr_slave_1: entered promiscuous mode
[  719.192330][T18279] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  719.201279][   T30] audit: type=1326 audit(2000000015.339:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18523 comm="syz.0.4622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141fb8e9a9 code=0x7ffc0000
[  719.219893][ T5938] udevd[5938]: symlink '../../loop9' '/dev/disk/by-label/syzkaller.tmp-b7:7' failed: Read-only file system
[  719.238041][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1506.tmp-b7:1' failed: Read-only file system
[  719.286735][ T8291] udevd[8291]: symlink '../../loop2' '/dev/disk/by-diskseq/1507.tmp-b7:2' failed: Read-only file system
[  719.300947][T18279] Cannot create hsr debugfs directory
[  719.307377][T18482] XFS (loop2): Ending clean mount
[  719.309753][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  719.327986][T18482] XFS (loop2): Quotacheck needed: Please wait.
[  719.333209][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  719.354795][   T30] audit: type=1326 audit(2000000015.339:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18523 comm="syz.0.4622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f141fb8e9a9 code=0x7ffc0000
[  719.507427][T18482] XFS (loop2): Quotacheck: Done.
[  719.683788][ T9506] IPVS: stop unused estimator thread 0...
[  719.924970][ T5850] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  721.683977][T18573] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  721.749187][T18572] Bluetooth: MGMT ver 1.23
[  721.937161][T18575] loop1: detected capacity change from 0 to 1024
[  722.217879][   T13] hfsplus: b-tree write err: -5, ino 4
[  722.588202][T18581] loop9: detected capacity change from 0 to 2048
[  722.715106][T18581] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024)
[  722.904054][T18585] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  723.677938][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1513.tmp-b7:9' failed: Read-only file system
[  723.700451][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1514.tmp-b7:1' failed: Read-only file system
[  723.834218][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:9' failed: Read-only file system
[  723.897736][T18598] loop1: detected capacity change from 0 to 64
[  723.916621][ T8291] udevd[8291]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  724.123748][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1515.tmp-b7:1' failed: Read-only file system
[  724.277855][   T37] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  724.290875][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  724.322488][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1513.tmp-b7:9' failed: Read-only file system
[  724.457037][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1508.tmp-b7:7' failed: Read-only file system
[  724.568283][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1513.tmp-b7:9' failed: Read-only file system
[  724.588025][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1515.tmp-b7:1' failed: Read-only file system
[  725.967103][T18625] loop7: detected capacity change from 0 to 128
[  726.404070][T18623] loop1: detected capacity change from 0 to 4096
[  726.501864][T18623] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  727.790950][T18623] ntfs3(loop1): ino=1a, mi_enum_attr
[  727.827442][T18623] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  727.873277][T18623] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  728.584755][   T30] audit: type=1326 audit(2000000025.019:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18643 comm="syz.2.4666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35a258e9a9 code=0x7fc00000
[  728.773554][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  729.038804][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  729.304555][  T972] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  729.324276][    C1] sched: DL replenish lagged too much
[  729.519193][  T972] usb 2-1: Using ep0 maxpacket: 32
[  729.569548][  T972] usb 2-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  729.617475][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  729.662909][  T972] usb 2-1: config 0 interface 0 has no altsetting 0
[  729.713008][  T972] usb 2-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  729.762920][  T972] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  729.845528][  T972] usb 2-1: config 0 descriptor??
[  729.944988][   T37] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  730.323308][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  730.342177][  T972] corsair-cpro 0003:1B1C:0C10.006A: unknown main item tag 0x1
[  730.370037][  T972] corsair-cpro 0003:1B1C:0C10.006A: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.1-1/input0
[  730.485579][  T972] corsair-cpro 0003:1B1C:0C10.006A: probe with driver corsair-cpro failed with error -38
[  730.596358][  T972] usb 2-1: USB disconnect, device number 41
[  730.639447][T18646] loop7: detected capacity change from 0 to 32768
[  730.678992][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1516.tmp-b7:9' failed: Read-only file system
[  731.044102][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  731.061212][T18663] loop9: detected capacity change from 0 to 64
[  731.091921][T18661] fido_id[18661]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  731.336786][ T5938] udevd[5938]: symlink '../../loop9' '/dev/disk/by-diskseq/1523.tmp-b7:9' failed: Read-only file system
[  731.513163][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  731.550328][ T5938] udevd[5938]: symlink '../../loop9' '/dev/disk/by-label/untitled.tmp-b7:9' failed: Read-only file system
[  731.591482][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1522.tmp-b7:7' failed: Read-only file system
[  732.362853][T18679] trusted_key: encrypted_key: key user:syz not found
[  733.854730][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1524.tmp-b7:7' failed: Read-only file system
[  733.967005][T18198] udevd[18198]: symlink '../../loop9' '/dev/disk/by-diskseq/1525.tmp-b7:9' failed: Read-only file system
[  734.179567][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1524.tmp-b7:7' failed: Read-only file system
[  734.427868][ T5938] udevd[5938]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  734.519458][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1524.tmp-b7:7' failed: Read-only file system
[  734.747755][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  734.840641][T18198] udevd[18198]: symlink '../../loop9' '/dev/disk/by-diskseq/1525.tmp-b7:9' failed: Read-only file system
[  734.913831][T18719] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4691'.
[  735.175459][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1524.tmp-b7:7' failed: Read-only file system
[  735.350245][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  735.512386][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1525.tmp-b7:9' failed: Read-only file system
[  735.712776][T18730] loop9: detected capacity change from 0 to 2048
[  735.879704][T18730] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  735.944022][T18737] netlink: 96 bytes leftover after parsing attributes in process `syz.7.4698'.
[  735.997111][T18737] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4698'.
[  736.161776][T18730] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  736.197892][T18737] vlan2: entered allmulticast mode
[  736.235155][T18737] gretap0: entered allmulticast mode
[  736.257860][T18730] EXT4-fs (loop9): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 17 with error 28
[  736.280330][T18730] EXT4-fs (loop9): This should not happen!! Data will be lost
[  736.280330][T18730] 
[  736.308761][T18730] EXT4-fs (loop9): Total free blocks count 0
[  736.349583][T18730] EXT4-fs (loop9): Free/Dirty block details
[  736.394451][T18730] EXT4-fs (loop9): free_blocks=2415919104
[  736.430657][T18730] EXT4-fs (loop9): dirty_blocks=32
[  736.492233][T18730] EXT4-fs (loop9): Block reservation details
[  736.564421][T18730] EXT4-fs (loop9): i_reserved_data_blocks=2
[  737.160829][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  737.317724][T18746] loop7: detected capacity change from 0 to 1024
[  737.641060][T18279] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  738.124344][T18279] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  738.223226][ T1107] hfsplus: b-tree write err: -5, ino 4
[  738.266572][T18279] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  738.349158][T18764] Bluetooth: MGMT ver 1.23
[  738.405172][T18279] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  739.212963][ T6279] udevd[6279]: symlink '../../loop7' '/dev/disk/by-diskseq/1528.tmp-b7:7' failed: Read-only file system
[  739.540423][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1511.tmp-b7:2' failed: Read-only file system
[  739.577106][T18279] 8021q: adding VLAN 0 to HW filter on device bond0
[  739.600596][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  740.040638][T18785] loop2: detected capacity change from 0 to 40427
[  740.093306][T18785] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  740.100395][T18785] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  740.117160][T18785] F2FS-fs (loop2): invalid crc value
[  740.219152][T18785] F2FS-fs (loop2): Current segment's next free block offset is inconsistent with bitmap, logtype:5, segno:2, type:0, next_blkoff:0, blkofs:1
[  740.270752][T18785] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-117)
[  740.310188][T18279] 8021q: adding VLAN 0 to HW filter on device team0
[  740.400763][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  740.408000][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  740.551836][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  740.559075][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  740.886756][T18198] udevd[18198]: symlink '../../loop3' '/dev/disk/by-diskseq/504.tmp-b7:3' failed: Read-only file system
[  740.968008][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-diskseq/1521.tmp-b7:1' failed: Read-only file system
[  741.141706][ T5938] udevd[5938]: symlink '../../loop7' '/dev/disk/by-diskseq/1528.tmp-b7:7' failed: Read-only file system
[  741.175356][T18279] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  741.272547][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-diskseq/1529.tmp-b7:2' failed: Read-only file system
[  741.339671][T18799] loop1: detected capacity change from 0 to 1024
[  741.443035][ T6279] udevd[6279]: symlink '../../loop2' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:2' failed: Read-only file system
[  741.499000][T18799] hfsplus: failed to load root directory
[  741.766866][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-diskseq/1530.tmp-b7:1' failed: Read-only file system
[  741.836503][T18806] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4719'.
[  741.880721][ T8291] udevd[8291]: symlink '../../loop1' '/dev/disk/by-label/untitled.tmp-b7:1' failed: Read-only file system
[  743.415757][T18279] 8021q: adding VLAN 0 to HW filter on device batadv0
[  743.559041][ T5872] Bluetooth: hci3: command 0x0406 tx timeout
[  744.712711][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1531.tmp-b7:1' failed: Read-only file system
[  744.844530][T18198] udevd[18198]: symlink '../../loop7' '/dev/disk/by-diskseq/1528.tmp-b7:7' failed: Read-only file system
[  745.462806][T18845] loop7: detected capacity change from 0 to 4096
[  745.512570][ T6279] udevd[6279]: symlink '../../loop8' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[  745.526508][T18198] udevd[18198]: symlink '../../loop1' '/dev/disk/by-diskseq/1531.tmp-b7:1' failed: Read-only file system
[  745.687661][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1526.tmp-b7:9' failed: Read-only file system
[  745.722242][T18845] NILFS (loop7): invalid segment: Checksum error in segment payload
[  745.809551][T18845] NILFS (loop7): trying rollback from an earlier position
[  745.909508][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1526.tmp-b7:9' failed: Read-only file system
[  746.035092][T18845] NILFS (loop7): recovery complete
[  746.099364][T18858] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  746.216566][T18857] loop9: detected capacity change from 0 to 1024
[  746.356495][T18857] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  746.510229][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1534.tmp-b7:7' failed: Read-only file system
[  746.670201][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1535.tmp-b7:9' failed: Read-only file system
[  746.702764][T18857] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  746.723276][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-uuid/53ef1790-6acb-496c-bd13-8113447d28c8.tmp-b7:7' failed: Read-only file system
[  746.832124][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-label/syzkaller.tmp-b7:9' failed: Read-only file system
[  746.967713][T18279] veth0_vlan: entered promiscuous mode
[  747.183882][T18279] veth1_vlan: entered promiscuous mode
[  747.291651][T15689] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  747.598803][T18279] veth0_macvtap: entered promiscuous mode
[  747.791791][T18279] veth1_macvtap: entered promiscuous mode
[  748.037705][T18279] batman_adv: batadv0: Interface activated: batadv_slave_0
[  748.158954][T18279] batman_adv: batadv0: Interface activated: batadv_slave_1
[  748.278318][T18279] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  748.366891][T18279] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  748.421137][T18279] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  748.493703][T18279] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  748.705889][T18870] loop9: detected capacity change from 0 to 8192
[  748.831383][T18870] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  749.149997][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  749.295795][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  749.329061][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  749.725529][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  749.854402][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  749.951097][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1538.tmp-b7:9' failed: Read-only file system
[  750.036404][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1532.tmp-b7:2' failed: Read-only file system
[  750.106506][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-label/SYZKALLER.tmp-b7:9' failed: Read-only file system
[  750.164015][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  750.343051][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/407.tmp-b7:4' failed: Read-only file system
[  750.430061][T18892] mkiss: ax0: crc mode is auto.
[  750.623237][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/407.tmp-b7:4' failed: Read-only file system
[  750.750212][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1538.tmp-b7:9' failed: Read-only file system
[  750.883754][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  750.932897][ T8291] udevd[8291]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  751.066225][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1538.tmp-b7:9' failed: Read-only file system
[  752.098814][T18913] netlink: 34 bytes leftover after parsing attributes in process `syz.4.4750'.
[  754.574434][  T972] usb 10-1: new full-speed USB device number 7 using dummy_hcd
[  754.787617][  T972] usb 10-1: config index 0 descriptor too short (expected 23569, got 27)
[  754.825850][  T972] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  754.910358][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  754.936814][  T972] usb 10-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  754.990665][  T972] usb 10-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  755.046234][  T972] usb 10-1: Manufacturer: syz
[  755.099810][  T972] usb 10-1: config 0 descriptor??
[  755.376089][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  755.569453][ T8291] udevd[8291]: symlink '../../loop2' '/dev/disk/by-diskseq/1532.tmp-b7:2' failed: Read-only file system
[  755.809845][  T972] rc_core: IR keymap rc-hauppauge not found
[  755.834033][T18198] udevd[18198]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  755.877495][  T972] Registered IR keymap rc-empty
[  755.953346][  T972] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0
[  756.047295][  T972] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0/input37
[  756.137472][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  756.254851][    C0] igorplugusb 10-1:0.0: receive overflow invalid: 80
[  756.604449][    T9] usb 10-1: USB disconnect, device number 7
[  756.654889][T18198] udevd[18198]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  756.845089][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  757.027082][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  757.289619][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1532.tmp-b7:2' failed: Read-only file system
[  757.615436][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1539.tmp-b7:9' failed: Read-only file system
[  757.699226][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  757.952288][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1531.tmp-b7:1' failed: Read-only file system
[  760.062423][T18995] loop1: detected capacity change from 0 to 32768
[  760.193986][T18995] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  760.419712][T18995] XFS (loop1): Ending clean mount
[  760.481896][T18995] XFS (loop1): Quotacheck needed: Please wait.
[  760.673110][   T60] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  760.774132][T18995] XFS (loop1): Quotacheck: Done.
[  760.881570][T19003] loop9: detected capacity change from 0 to 32768
[  760.961158][T18198] udevd[18198]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  761.022729][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1541.tmp-b7:1' failed: Read-only file system
[  761.236239][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-uuid/c496e05e-540d-4c72-b591-04d79d8b4eeb.tmp-b7:1' failed: Read-only file system
[  761.450978][ T5938] udevd[5938]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  761.707354][ T5851] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  761.981148][T18198] udevd[18198]: symlink '../../loop7' '/dev/disk/by-diskseq/1536.tmp-b7:7' failed: Read-only file system
[  762.242253][ T8291] udevd[8291]: symlink '../../loop9' '/dev/disk/by-diskseq/1542.tmp-b7:9' failed: Read-only file system
[  762.282383][ T5938] udevd[5938]: symlink '../../loop2' '/dev/disk/by-diskseq/1532.tmp-b7:2' failed: Read-only file system
[  762.492250][ T8291] udevd[8291]: symlink '../../loop9' '/dev/disk/by-uuid/45b0d9a3-5e0b-4fd0-ae05-2ff6b274033b.tmp-b7:9' failed: Read-only file system
[  762.689497][T18198] udevd[18198]: symlink '../../loop4' '/dev/disk/by-diskseq/1540.tmp-b7:4' failed: Read-only file system
[  762.703864][ T6279] udevd[6279]: symlink '../../loop1' '/dev/disk/by-diskseq/1541.tmp-b7:1' failed: Read-only file system
[  763.550841][T19050] loop2: detected capacity change from 0 to 256
[  766.806868][T18198] udevd[18198]: symlink '../../loop2' '/dev/disk/by-diskseq/1545.tmp-b7:2' failed: Read-only file system
[  770.573587][ T6279] udevd[6279]: symlink '../../loop9' '/dev/disk/by-diskseq/1543.tmp-b7:9' failed: Read-only file system
[  783.660748][   T36] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  818.680106][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  827.128505][ T5872] Bluetooth: hci5: command 0x0406 tx timeout
[  850.975804][   T36] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  882.070662][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  896.849950][T19087] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  941.780439][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  947.405575][T19086] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  974.621005][   T83] ==================================================================
[  974.629155][   T83] BUG: KASAN: slab-use-after-free in folio_evictable+0x7b/0x270
[  974.636826][   T83] Read of size 8 at addr ffff888055db53a0 by task kswapd0/83
[  974.644222][   T83] 
[  974.646575][   T83] CPU: 1 UID: 0 PID: 83 Comm: kswapd0 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  974.646624][   T83] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  974.646648][   T83] Call Trace:
[  974.646662][   T83]  <TASK>
[  974.646677][   T83]  dump_stack_lvl+0x116/0x1f0
[  974.646720][   T83]  print_report+0xcd/0x610
[  974.646776][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.646823][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.646870][   T83]  ? __phys_addr+0xe8/0x180
[  974.646919][   T83]  ? folio_evictable+0x7b/0x270
[  974.646956][   T83]  kasan_report+0xe0/0x110
[  974.647013][   T83]  ? folio_evictable+0x7b/0x270
[  974.647059][   T83]  kasan_check_range+0x100/0x1b0
[  974.647097][   T83]  folio_evictable+0x7b/0x270
[  974.647136][   T83]  isolate_folios+0x6c8/0x2f90
[  974.647180][   T83]  ? __entry_text_end+0x1020b6/0x1020b9
[  974.647246][   T83]  ? __pfx_isolate_folios+0x10/0x10
[  974.647291][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647346][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647394][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647441][   T83]  ? do_raw_spin_lock+0x12c/0x2b0
[  974.647487][   T83]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  974.647539][   T83]  evict_folios+0x188/0x1b60
[  974.647582][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647629][   T83]  ? __lock_acquire+0x622/0x1c90
[  974.647696][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647752][   T83]  ? __lock_acquire+0x622/0x1c90
[  974.647814][   T83]  ? __pfx_evict_folios+0x10/0x10
[  974.647864][   T83]  ? __lock_acquire+0xb8a/0x1c90
[  974.647934][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.647980][   T83]  ? mem_cgroup_get_nr_swap_pages+0x20/0x120
[  974.648020][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648067][   T83]  ? sc_swappiness+0xd4/0x190
[  974.648109][   T83]  try_to_shrink_lruvec+0x5a3/0x990
[  974.648168][   T83]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[  974.648217][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648273][   T83]  shrink_one+0x3e3/0x7a0
[  974.648320][   T83]  ? shrink_node+0x2695/0x3d50
[  974.648368][   T83]  shrink_node+0x26b5/0x3d50
[  974.648415][   T83]  ? __lock_acquire+0x622/0x1c90
[  974.648483][   T83]  ? shrink_node+0x2405/0x3d50
[  974.648536][   T83]  ? __pfx_shrink_node+0x10/0x10
[  974.648584][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648631][   T83]  ? find_held_lock+0x2b/0x80
[  974.648685][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648738][   T83]  ? balance_pgdat+0xbb8/0x1a70
[  974.648785][   T83]  balance_pgdat+0xbb8/0x1a70
[  974.648844][   T83]  ? __pfx_balance_pgdat+0x10/0x10
[  974.648893][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648941][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.648988][   T83]  ? trace_sched_exit_tp+0xde/0x130
[  974.649045][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.649091][   T83]  ? __schedule+0x1181/0x5dd0
[  974.649152][   T83]  ? lockdep_hardirqs_on+0x7c/0x110
[  974.649197][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.649243][   T83]  ? __lock_acquire+0x622/0x1c90
[  974.649323][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.649374][   T83]  ? __pfx___might_resched+0x10/0x10
[  974.649425][   T83]  ? set_pgdat_percpu_threshold+0xd0/0x360
[  974.649480][   T83]  kswapd+0x590/0xb90
[  974.649532][   T83]  ? __pfx_kswapd+0x10/0x10
[  974.649581][   T83]  ? __pfx_autoremove_wake_function+0x10/0x10
[  974.649641][   T83]  ? lockdep_hardirqs_on+0x7c/0x110
[  974.649678][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.649728][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.649775][   T83]  ? __kthread_parkme+0x19e/0x250
[  974.649834][   T83]  ? __pfx_kswapd+0x10/0x10
[  974.649882][   T83]  kthread+0x3c5/0x780
[  974.649919][   T83]  ? __pfx_kthread+0x10/0x10
[  974.649957][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  974.650004][   T83]  ? rcu_is_watching+0x12/0xc0
[  974.650055][   T83]  ? __pfx_kthread+0x10/0x10
[  974.650093][   T83]  ret_from_fork+0x5d7/0x6f0
[  974.650153][   T83]  ? __pfx_kthread+0x10/0x10
[  974.650191][   T83]  ret_from_fork_asm+0x1a/0x30
[  974.650248][   T83]  </TASK>
[  974.650268][   T83] 
[  975.043444][   T83] Allocated by task 6963:
[  975.047788][   T83]  kasan_save_stack+0x33/0x60
[  975.052514][   T83]  kasan_save_track+0x14/0x30
[  975.057241][   T83]  __kasan_slab_alloc+0x89/0x90
[  975.062143][   T83]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  975.067650][   T83]  gfs2_glock_get+0x1e5/0x1230
[  975.072462][   T83]  gfs2_inode_lookup+0x277/0x8a0
[  975.077440][   T83]  gfs2_dir_search+0x22a/0x2e0
[  975.082281][   T83]  gfs2_lookupi+0x4b7/0x6e0
[  975.086824][   T83]  init_inodes+0x869/0x2eb0
[  975.091358][   T83]  gfs2_fill_super+0x1c03/0x2d60
[  975.096333][   T83]  get_tree_bdev_flags+0x38c/0x620
[  975.101488][   T83]  gfs2_get_tree+0x4e/0x280
[  975.106034][   T83]  vfs_get_tree+0x8e/0x340
[  975.110489][   T83]  path_mount+0x1414/0x2020
[  975.115046][   T83]  __x64_sys_mount+0x28d/0x310
[  975.119865][   T83]  do_syscall_64+0xcd/0x4c0
[  975.124404][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  975.130329][   T83] 
[  975.132675][   T83] Freed by task 6019:
[  975.136670][   T83]  kasan_save_stack+0x33/0x60
[  975.141395][   T83]  kasan_save_track+0x14/0x30
[  975.146122][   T83]  kasan_save_free_info+0x3b/0x60
[  975.151179][   T83]  __kasan_slab_free+0x51/0x70
[  975.155990][   T83]  kmem_cache_free+0x2d1/0x4d0
[  975.160805][   T83]  gfs2_glock_dealloc+0xd0/0x150
[  975.165778][   T83]  rcu_core+0x79c/0x14e0
[  975.170087][   T83]  handle_softirqs+0x219/0x8e0
[  975.174890][   T83]  __irq_exit_rcu+0x109/0x170
[  975.179608][   T83]  irq_exit_rcu+0x9/0x30
[  975.183895][   T83]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  975.189585][   T83]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  975.195606][   T83] 
[  975.197944][   T83] Last potentially related work creation:
[  975.203669][   T83]  kasan_save_stack+0x33/0x60
[  975.208419][   T83]  kasan_record_aux_stack+0xa7/0xc0
[  975.213648][   T83]  __call_rcu_common.constprop.0+0xa5/0xa10
[  975.219583][   T83]  gfs2_glock_free+0x35/0x90
[  975.224218][   T83]  glock_work_func+0x396/0x4d0
[  975.229034][   T83]  process_one_work+0x9cf/0x1b70
[  975.234029][   T83]  worker_thread+0x6c8/0xf10
[  975.238654][   T83]  kthread+0x3c5/0x780
[  975.242763][   T83]  ret_from_fork+0x5d7/0x6f0
[  975.247438][   T83]  ret_from_fork_asm+0x1a/0x30
[  975.252264][   T83] 
[  975.254605][   T83] Second to last potentially related work creation:
[  975.261227][   T83]  kasan_save_stack+0x33/0x60
[  975.265972][   T83]  kasan_record_aux_stack+0xa7/0xc0
[  975.271212][   T83]  insert_work+0x36/0x230
[  975.275577][   T83]  __queue_work+0x97e/0x10f0
[  975.280202][   T83]  __queue_delayed_work+0x35b/0x460
[  975.285440][   T83]  queue_delayed_work_on+0x1b5/0x200
[  975.290764][   T83]  gfs2_glock_queue_work+0x75/0x120
[  975.296011][   T83]  gfs2_glock_dq+0x498/0xab0
[  975.300644][   T83]  gfs2_glock_dq_uninit+0x1a/0x100
[  975.305802][   T83]  check_journal_clean+0x174/0x350
[  975.310943][   T83]  init_inodes+0x113b/0x2eb0
[  975.315576][   T83]  gfs2_fill_super+0x1c03/0x2d60
[  975.320554][   T83]  get_tree_bdev_flags+0x38c/0x620
[  975.325707][   T83]  gfs2_get_tree+0x4e/0x280
[  975.330237][   T83]  vfs_get_tree+0x8e/0x340
[  975.334681][   T83]  path_mount+0x1414/0x2020
[  975.339241][   T83]  __x64_sys_mount+0x28d/0x310
[  975.344064][   T83]  do_syscall_64+0xcd/0x4c0
[  975.348598][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  975.354526][   T83] 
[  975.356860][   T83] The buggy address belongs to the object at ffff888055db4fd8
[  975.356860][   T83]  which belongs to the cache gfs2_glock(aspace) of size 1224
[  975.371636][   T83] The buggy address is located 968 bytes inside of
[  975.371636][   T83]  freed 1224-byte region [ffff888055db4fd8, ffff888055db54a0)
[  975.385564][   T83] 
[  975.387934][   T83] The buggy address belongs to the physical page:
[  975.394359][   T83] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888055db5fb0 pfn:0x55db4
[  975.404452][   T83] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  975.412974][   T83] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  975.420989][   T83] page_type: f5(slab)
[  975.425000][   T83] raw: 00fff00000000040 ffff88801f3c9a00 0000000000000000 0000000000000001
[  975.433621][   T83] raw: ffff888055db5fb0 00000000000c0000 00000000f5000000 0000000000000000
[  975.442249][   T83] head: 00fff00000000040 ffff88801f3c9a00 0000000000000000 0000000000000001
[  975.450953][   T83] head: ffff888055db5fb0 00000000000c0000 00000000f5000000 0000000000000000
[  975.459661][   T83] head: 00fff00000000002 ffffea0001576d01 00000000ffffffff 00000000ffffffff
[  975.468369][   T83] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  975.477064][   T83] page dumped because: kasan: bad access detected
[  975.483495][   T83] page_owner tracks the page as allocated
[  975.489223][   T83] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6963, tgid 6962 (syz.2.383), ts 167354843606, free_ts 124698794037
[  975.509781][   T83]  post_alloc_hook+0x1c0/0x230
[  975.514593][   T83]  get_page_from_freelist+0x1321/0x3890
[  975.520185][   T83]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  975.526135][   T83]  alloc_pages_mpol+0x1fb/0x550
[  975.531037][   T83]  new_slab+0x23b/0x330
[  975.535231][   T83]  ___slab_alloc+0xd9c/0x1940
[  975.540012][   T83]  __slab_alloc.constprop.0+0x56/0xb0
[  975.545425][   T83]  kmem_cache_alloc_noprof+0xef/0x3b0
[  975.550843][   T83]  gfs2_glock_get+0x1e5/0x1230
[  975.555654][   T83]  gfs2_inode_lookup+0x277/0x8a0
[  975.560628][   T83]  gfs2_lookup_root+0x57/0x130
[  975.565423][   T83]  init_sb+0xae5/0x10d0
[  975.569606][   T83]  gfs2_fill_super+0x1988/0x2d60
[  975.574578][   T83]  get_tree_bdev_flags+0x38c/0x620
[  975.579734][   T83]  gfs2_get_tree+0x4e/0x280
[  975.584267][   T83]  vfs_get_tree+0x8e/0x340
[  975.588714][   T83] page last free pid 6128 tgid 6128 stack trace:
[  975.595061][   T83]  __free_frozen_pages+0x7fe/0x1180
[  975.600302][   T83]  qlist_free_all+0x4d/0x120
[  975.604933][   T83]  kasan_quarantine_reduce+0x195/0x1e0
[  975.610445][   T83]  __kasan_slab_alloc+0x69/0x90
[  975.615346][   T83]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  975.620849][   T83]  security_inode_alloc+0x3b/0x2b0
[  975.626010][   T83]  inode_init_always_gfp+0xce4/0x1030
[  975.631429][   T83]  alloc_inode+0x86/0x240
[  975.635788][   T83]  new_inode+0x22/0x1c0
[  975.639974][   T83]  shmem_get_inode+0x19a/0xfb0
[  975.644767][   T83]  shmem_symlink+0xf8/0x9f0
[  975.649320][   T83]  vfs_symlink+0x403/0x680
[  975.653772][   T83]  do_symlinkat+0x261/0x310
[  975.658327][   T83]  __x64_sys_symlinkat+0x93/0xc0
[  975.663328][   T83]  do_syscall_64+0xcd/0x4c0
[  975.667867][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  975.673795][   T83] 
[  975.676135][   T83] Memory state around the buggy address:
[  975.681779][   T83]  ffff888055db5280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  975.689868][   T83]  ffff888055db5300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  975.697954][   T83] >ffff888055db5380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  975.706040][   T83]                                ^
[  975.711165][   T83]  ffff888055db5400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  975.719249][   T83]  ffff888055db5480: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[  975.727330][   T83] ==================================================================
[  975.735404][   T83] Disabling lock debugging due to kernel taint
[  975.741565][   T83] ==================================================================
[  975.749639][   T83] BUG: KASAN: slab-use-after-free in folio_evictable+0x24f/0x270
[  975.757398][   T83] Read of size 8 at addr ffff888055db53a0 by task kswapd0/83
[  975.764807][   T83] 
[  975.767150][   T83] CPU: 1 UID: 0 PID: 83 Comm: kswapd0 Tainted: G    B               6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[  975.767208][   T83] Tainted: [B]=BAD_PAGE
[  975.767222][   T83] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  975.767251][   T83] Call Trace:
[  975.767263][   T83]  <TASK>
[  975.767279][   T83]  dump_stack_lvl+0x116/0x1f0
[  975.767323][   T83]  print_report+0xcd/0x610
[  975.767379][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.767427][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.767474][   T83]  ? __phys_addr+0xe8/0x180
[  975.767522][   T83]  ? folio_evictable+0x24f/0x270
[  975.767560][   T83]  kasan_report+0xe0/0x110
[  975.767616][   T83]  ? folio_evictable+0x24f/0x270
[  975.767661][   T83]  folio_evictable+0x24f/0x270
[  975.767699][   T83]  isolate_folios+0x6c8/0x2f90
[  975.767743][   T83]  ? __entry_text_end+0x1020b6/0x1020b9
[  975.767809][   T83]  ? __pfx_isolate_folios+0x10/0x10
[  975.767849][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.767904][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.767953][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.767999][   T83]  ? do_raw_spin_lock+0x12c/0x2b0
[  975.768046][   T83]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  975.768098][   T83]  evict_folios+0x188/0x1b60
[  975.768141][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.768189][   T83]  ? __lock_acquire+0x622/0x1c90
[  975.768264][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.768317][   T83]  ? __lock_acquire+0x622/0x1c90
[  975.768380][   T83]  ? __pfx_evict_folios+0x10/0x10
[  975.768430][   T83]  ? __lock_acquire+0xb8a/0x1c90
[  975.768500][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.768547][   T83]  ? mem_cgroup_get_nr_swap_pages+0x20/0x120
[  975.768588][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.768636][   T83]  ? sc_swappiness+0xd4/0x190
[  975.768679][   T83]  try_to_shrink_lruvec+0x5a3/0x990
[  975.768738][   T83]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[  975.768788][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.768839][   T83]  shrink_one+0x3e3/0x7a0
[  975.768886][   T83]  ? shrink_node+0x2695/0x3d50
[  975.768935][   T83]  shrink_node+0x26b5/0x3d50
[  975.768981][   T83]  ? __lock_acquire+0x622/0x1c90
[  975.769050][   T83]  ? shrink_node+0x2405/0x3d50
[  975.769103][   T83]  ? __pfx_shrink_node+0x10/0x10
[  975.769152][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769199][   T83]  ? find_held_lock+0x2b/0x80
[  975.769261][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769314][   T83]  ? balance_pgdat+0xbb8/0x1a70
[  975.769360][   T83]  balance_pgdat+0xbb8/0x1a70
[  975.769419][   T83]  ? __pfx_balance_pgdat+0x10/0x10
[  975.769468][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769517][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769564][   T83]  ? trace_sched_exit_tp+0xde/0x130
[  975.769622][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769669][   T83]  ? __schedule+0x1181/0x5dd0
[  975.769731][   T83]  ? lockdep_hardirqs_on+0x7c/0x110
[  975.769777][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769825][   T83]  ? __lock_acquire+0x622/0x1c90
[  975.769901][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.769952][   T83]  ? __pfx___might_resched+0x10/0x10
[  975.770003][   T83]  ? set_pgdat_percpu_threshold+0xd0/0x360
[  975.770059][   T83]  kswapd+0x590/0xb90
[  975.770112][   T83]  ? __pfx_kswapd+0x10/0x10
[  975.770162][   T83]  ? __pfx_autoremove_wake_function+0x10/0x10
[  975.770223][   T83]  ? lockdep_hardirqs_on+0x7c/0x110
[  975.770267][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.770316][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.770364][   T83]  ? __kthread_parkme+0x19e/0x250
[  975.770422][   T83]  ? __pfx_kswapd+0x10/0x10
[  975.770470][   T83]  kthread+0x3c5/0x780
[  975.770506][   T83]  ? __pfx_kthread+0x10/0x10
[  975.770544][   T83]  ? srso_alias_return_thunk+0x5/0xfbef5
[  975.770591][   T83]  ? rcu_is_watching+0x12/0xc0
[  975.770643][   T83]  ? __pfx_kthread+0x10/0x10
[  975.770681][   T83]  ret_from_fork+0x5d7/0x6f0
[  975.770741][   T83]  ? __pfx_kthread+0x10/0x10
[  975.770778][   T83]  ret_from_fork_asm+0x1a/0x30
[  975.770834][   T83]  </TASK>
[  975.770848][   T83] 
[  976.164518][   T83] Allocated by task 6963:
[  976.168860][   T83]  kasan_save_stack+0x33/0x60
[  976.173581][   T83]  kasan_save_track+0x14/0x30
[  976.178322][   T83]  __kasan_slab_alloc+0x89/0x90
[  976.183233][   T83]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  976.188750][   T83]  gfs2_glock_get+0x1e5/0x1230
[  976.193563][   T83]  gfs2_inode_lookup+0x277/0x8a0
[  976.198605][   T83]  gfs2_dir_search+0x22a/0x2e0
[  976.203437][   T83]  gfs2_lookupi+0x4b7/0x6e0
[  976.207979][   T83]  init_inodes+0x869/0x2eb0
[  976.212526][   T83]  gfs2_fill_super+0x1c03/0x2d60
[  976.217499][   T83]  get_tree_bdev_flags+0x38c/0x620
[  976.222663][   T83]  gfs2_get_tree+0x4e/0x280
[  976.227223][   T83]  vfs_get_tree+0x8e/0x340
[  976.231678][   T83]  path_mount+0x1414/0x2020
[  976.236234][   T83]  __x64_sys_mount+0x28d/0x310
[  976.241051][   T83]  do_syscall_64+0xcd/0x4c0
[  976.245585][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  976.251509][   T83] 
[  976.253842][   T83] Freed by task 6019:
[  976.257834][   T83]  kasan_save_stack+0x33/0x60
[  976.262549][   T83]  kasan_save_track+0x14/0x30
[  976.267267][   T83]  kasan_save_free_info+0x3b/0x60
[  976.272319][   T83]  __kasan_slab_free+0x51/0x70
[  976.277127][   T83]  kmem_cache_free+0x2d1/0x4d0
[  976.281929][   T83]  gfs2_glock_dealloc+0xd0/0x150
[  976.286899][   T83]  rcu_core+0x79c/0x14e0
[  976.291175][   T83]  handle_softirqs+0x219/0x8e0
[  976.295978][   T83]  __irq_exit_rcu+0x109/0x170
[  976.300702][   T83]  irq_exit_rcu+0x9/0x30
[  976.304993][   T83]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  976.310681][   T83]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  976.316695][   T83] 
[  976.319045][   T83] Last potentially related work creation:
[  976.324803][   T83]  kasan_save_stack+0x33/0x60
[  976.329526][   T83]  kasan_record_aux_stack+0xa7/0xc0
[  976.334758][   T83]  __call_rcu_common.constprop.0+0xa5/0xa10
[  976.340684][   T83]  gfs2_glock_free+0x35/0x90
[  976.345313][   T83]  glock_work_func+0x396/0x4d0
[  976.350161][   T83]  process_one_work+0x9cf/0x1b70
[  976.355134][   T83]  worker_thread+0x6c8/0xf10
[  976.359754][   T83]  kthread+0x3c5/0x780
[  976.363865][   T83]  ret_from_fork+0x5d7/0x6f0
[  976.368503][   T83]  ret_from_fork_asm+0x1a/0x30
[  976.373308][   T83] 
[  976.375644][   T83] Second to last potentially related work creation:
[  976.382238][   T83]  kasan_save_stack+0x33/0x60
[  976.386961][   T83]  kasan_record_aux_stack+0xa7/0xc0
[  976.392193][   T83]  insert_work+0x36/0x230
[  976.396563][   T83]  __queue_work+0x97e/0x10f0
[  976.401187][   T83]  __queue_delayed_work+0x35b/0x460
[  976.406418][   T83]  queue_delayed_work_on+0x1b5/0x200
[  976.411770][   T83]  gfs2_glock_queue_work+0x75/0x120
[  976.417013][   T83]  gfs2_glock_dq+0x498/0xab0
[  976.421652][   T83]  gfs2_glock_dq_uninit+0x1a/0x100
[  976.426808][   T83]  check_journal_clean+0x174/0x350
[  976.431998][   T83]  init_inodes+0x113b/0x2eb0
[  976.436620][   T83]  gfs2_fill_super+0x1c03/0x2d60
[  976.441589][   T83]  get_tree_bdev_flags+0x38c/0x620
[  976.446742][   T83]  gfs2_get_tree+0x4e/0x280
[  976.451270][   T83]  vfs_get_tree+0x8e/0x340
[  976.455716][   T83]  path_mount+0x1414/0x2020
[  976.460273][   T83]  __x64_sys_mount+0x28d/0x310
[  976.465087][   T83]  do_syscall_64+0xcd/0x4c0
[  976.469616][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  976.475537][   T83] 
[  976.477872][   T83] The buggy address belongs to the object at ffff888055db4fd8
[  976.477872][   T83]  which belongs to the cache gfs2_glock(aspace) of size 1224
[  976.492642][   T83] The buggy address is located 968 bytes inside of
[  976.492642][   T83]  freed 1224-byte region [ffff888055db4fd8, ffff888055db54a0)
[  976.506567][   T83] 
[  976.508911][   T83] The buggy address belongs to the physical page:
[  976.515338][   T83] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888055db5fb0 pfn:0x55db4
[  976.525430][   T83] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  976.533956][   T83] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  976.542085][   T83] page_type: f5(slab)
[  976.546090][   T83] raw: 00fff00000000040 ffff88801f3c9a00 0000000000000000 0000000000000001
[  976.554705][   T83] raw: ffff888055db5fb0 00000000000c0000 00000000f5000000 0000000000000000
[  976.563319][   T83] head: 00fff00000000040 ffff88801f3c9a00 0000000000000000 0000000000000001
[  976.572021][   T83] head: ffff888055db5fb0 00000000000c0000 00000000f5000000 0000000000000000
[  976.580722][   T83] head: 00fff00000000002 ffffea0001576d01 00000000ffffffff 00000000ffffffff
[  976.589423][   T83] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  976.598114][   T83] page dumped because: kasan: bad access detected
[  976.604540][   T83] page_owner tracks the page as allocated
[  976.610289][   T83] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6963, tgid 6962 (syz.2.383), ts 167354843606, free_ts 124698794037
[  976.630838][   T83]  post_alloc_hook+0x1c0/0x230
[  976.635641][   T83]  get_page_from_freelist+0x1321/0x3890
[  976.641230][   T83]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  976.647266][   T83]  alloc_pages_mpol+0x1fb/0x550
[  976.652163][   T83]  new_slab+0x23b/0x330
[  976.656351][   T83]  ___slab_alloc+0xd9c/0x1940
[  976.661060][   T83]  __slab_alloc.constprop.0+0x56/0xb0
[  976.666464][   T83]  kmem_cache_alloc_noprof+0xef/0x3b0
[  976.671877][   T83]  gfs2_glock_get+0x1e5/0x1230
[  976.676680][   T83]  gfs2_inode_lookup+0x277/0x8a0
[  976.681742][   T83]  gfs2_lookup_root+0x57/0x130
[  976.686537][   T83]  init_sb+0xae5/0x10d0
[  976.690718][   T83]  gfs2_fill_super+0x1988/0x2d60
[  976.695688][   T83]  get_tree_bdev_flags+0x38c/0x620
[  976.700841][   T83]  gfs2_get_tree+0x4e/0x280
[  976.705368][   T83]  vfs_get_tree+0x8e/0x340
[  976.709815][   T83] page last free pid 6128 tgid 6128 stack trace:
[  976.716159][   T83]  __free_frozen_pages+0x7fe/0x1180
[  976.721394][   T83]  qlist_free_all+0x4d/0x120
[  976.726028][   T83]  kasan_quarantine_reduce+0x195/0x1e0
[  976.731524][   T83]  __kasan_slab_alloc+0x69/0x90
[  976.736420][   T83]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  976.741919][   T83]  security_inode_alloc+0x3b/0x2b0
[  976.747074][   T83]  inode_init_always_gfp+0xce4/0x1030
[  976.752489][   T83]  alloc_inode+0x86/0x240
[  976.756844][   T83]  new_inode+0x22/0x1c0
[  976.761077][   T83]  shmem_get_inode+0x19a/0xfb0
[  976.765871][   T83]  shmem_symlink+0xf8/0x9f0
[  976.770422][   T83]  vfs_symlink+0x403/0x680
[  976.774873][   T83]  do_symlinkat+0x261/0x310
[  976.779422][   T83]  __x64_sys_symlinkat+0x93/0xc0
[  976.784409][   T83]  do_syscall_64+0xcd/0x4c0
[  976.788942][   T83]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  976.794870][   T83] 
[  976.797208][   T83] Memory state around the buggy address:
[  976.802856][   T83]  ffff888055db5280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  976.810937][   T83]  ffff888055db5300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  976.819041][   T83] >ffff888055db5380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  976.827128][   T83]                                ^
[  976.832290][   T83]  ffff888055db5400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  976.840375][   T83]  ffff888055db5480: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[  976.848455][   T83] ==================================================================
[  976.856699][    C1] vkms_vblank_simulate: vblank timer overrun