last executing test programs:

1m21.42187055s ago: executing program 3 (id=260):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000180), 0x60042, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="fd454c460e02fab7ff7f00000000000002000300fffeffffdf020000000000004000000000000000030300ef000000000000000008003800010004000400"], 0x78)

1m19.091352692s ago: executing program 3 (id=263):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x28, 0x0, &(0x7f0000000c40)="b9ff03076003008cb89e08f086ddc9315d28fed1b41a748a1278bb53a9ea63201e88f1e71168a249", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r4, &(0x7f0000000040)="e2", 0x12d8)

1m18.777214186s ago: executing program 3 (id=264):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x6, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="180200000400048000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xfec7, 0xfffffffffffffe5d, &(0x7f00000000c0)="5fd63edbfd8a4a6077fd87686f9a", 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r2, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000280)={'veth1_to_bridge\x00', 0x400})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000001040), 0x2000, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r7, 0x89eb, &(0x7f0000001080)={0x200, 0x2, 0x9, 0x6, 0xf1, 0x22, 0x13, "2ad58d3213cc4c30aa9fc96cf41bb1f03142cd98", "90322a5221407b7262486eb120aeb9ff924ef781"})
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000080)={0x7}, 0x8)
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000000e40)=ANY=[@ANYBLOB='iocharset=iso8859-1,nostrict,uid=forget,anchor=0000000000000145,gid=', @ANYRESDEC=0x0, @ANYBLOB=',dmode=000000000002004,undelete,partition=00000000000000000001,unhide,\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1, 0xc43, &(0x7f00000001c0)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file5\x00', 0x61c0, 0x700)
renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8}]}, 0x24}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@FRA_GENERIC_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e20, 0x4e22}}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002211c0000001f000000060001000000000008000500", @ANYRES32=r9, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x4000000)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

1m7.967292469s ago: executing program 3 (id=279):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x1dc)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
set_mempolicy(0x3, &(0x7f0000000040)=0x5, 0x8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={<r0=>0x0}, &(0x7f0000000280)=0xc)
prlimit64(r0, 0x1, 0x0, &(0x7f00000002c0))
modify_ldt$write2(0x11, &(0x7f0000002040)={0x0, 0xffffffffffffffff, 0x1000, 0x1, 0x3, 0x0, 0x0, 0x1}, 0x10)
r1 = getpid()
pipe(&(0x7f0000000380))
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f00000002c0)={[{@debug}, {@resuid}, {@delalloc}, {@data_err_ignore}, {@errors_continue}, {@test_dummy_encryption}, {@noblock_validity}, {@barrier}, {@jqfmt_vfsold}]}, 0x1, 0xbc8, &(0x7f0000002380)="$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")
chdir(&(0x7f00000001c0)='./file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x82400, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r2, 0x40806685, &(0x7f0000000a80)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, 0x0, 0x4040090)
ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f0000000d00)={0x2, 0x6, 0x0, 0x0})
r3 = syz_pidfd_open(r1, 0x0)
setns(r3, 0x24020000)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_open_procfs(r1, &(0x7f00000001c0)='net/bnep\x00')
chdir(&(0x7f0000000140)='./bus\x00')
creat(&(0x7f0000000000)='./bus\x00', 0x0)
socket$igmp(0x2, 0x3, 0x2)

1m6.289739802s ago: executing program 3 (id=285):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x402c542b, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0100000002000000a003000005"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000640)={r5, &(0x7f0000000080), 0x0, 0x2000000}, 0x20)

1m4.328235608s ago: executing program 3 (id=290):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}, 0x1c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xea)

1m3.928072455s ago: executing program 32 (id=290):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}, 0x1c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xea)

23.355888649s ago: executing program 4 (id=369):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f00000000c0), 0x1, 0x5599, &(0x7f0000005680)="$eJzs3X1oVecdB/BzTaKhFpPV1alY6RSqdGVTW5DNUeNLZjvfkhq0NTXGaWudrViZW9qJCwliOi2NSh2jrjhkRVtWApO+iFPXoUM2psikszLnim44ahZ1gh2Tjdx7n+u955rk1nVNXz6fknvuc3/nec5zD+eP+731OTcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAKIoSm289OevImvqxM8fNeeA/j7y669ljk5aNPnL25/N3TCuqWv1U3fSGlrq5UzqaKxfPP3p1/aEoSqT6pfsvnHzfA4/OWTizNAxYX53alpd3ecjk4+lUo2/Oi539cv8WRVFUEhugKL2tLMpqJ+IHiFblD9it6k1X3lxWM/XtxssXJg6vHbU3/63TqbS3J9Bb0tfVmWvXUkXysU9sj0w769JL5Fyiqf7xC+4jeRMAwAcypiq5yXwcTX/EzbQb4/VYuyLWbo21wyeE1uzGjUiN27ered4er/fSPCtSUaFfl/OM1dPnP9OuivePtWNR4wPMM3fXdKQp7WqeK2P13ponAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMfJu5PmXZgy/cXLfSfV7hiy4a+z+mxcv+9UbfVLd+2sPrHujf61ddMbWurmTulorlw8/+jV9YeiqDzZL5Hqnnhj08Kn+tbNfHDzQ2srZ0w49FpRetywLc7aOfpjePLVsij6VlblTBj23IAoqsotJJvRj/MLy5JP7g8FAAAAPk2GJB/7ZNqpOFiS004k02Qi+V+QCovVm668uaxm6tuNly9MHF47au+Nj1fVxXgV1x0v0y6/9pfICsYh/sbHu1YPu67KG6d78RHjef7YtHdmnBlRf27rlfNNTWsv7h534K73tkw93/zNd/av6Hf/cyPy8n959/k/nDn5HwAAgP+F/B8fp3s95f+3ZlfOaPvDvT/6/biv/31o9cZ3m/YmVg09vmLkd+ZNPPXa869fzcv/t+ccMi//hxmH/N8nurH8DwAAAB9n/+/8X5E3Tvd6yv/PHDwxdM+ogzWN0furyv6VOLhk36nnvtZ8ec29216oPDvrsf55+X9MYfm/OHva4cXfhQkvL4uiMYWfVAAAACBH+P/u175aCHk99c1BPK+/PP7FnRdLZxYvKf7yrl3bnl5TevcdA5fWLn5l9EtDnjg8/9nVefm/orD8X/LRvF0AAACgAIs23L100D/mjd+2pH32rVePVg66Z/vRO25un7G6Zv2kFbec/kpe/q8qLP/36523AwAAAFzHsfmPLFrxt9071v16xOQxpe9PGTn7e3WX9hwe++9RNR0vjP/GW3n5v76w/H9Tepte+ZDqdCj8K4QtZVFU2vlkZarwm6h1YqYAAAAAfEhCTm/44eylDZuf2fbPizV3vtJ8y8utf374C+V3bpz2s+9vOT63adO+vPy/svv7/4c7HYT1/zn3/8tb/59VSN31b4IbAwAAAPBZlL+eP9weP/XLBV39/n6h6/8fe3r4o1u/+5Olv7itfHfitpNPfumJ5ocrfzpwYHvL6JHNRYNL8vJ/Y2H5vyh7+2H+/h8AAADcgE/a7/89lDdO93q6//+0BesOL2gf+/kDLe3Pjxn02znFDy7Y+af2m/c/Oax9/7nzLcPy8n9rYfk/bPtnv70D4fw0l0XR4M4n6bsJ7grTXR4rtJVkFVInPtZjTuiRLrT1yyokrYz1GFcWRV/sfNIYK3wuFFpjhY4B6cL2WOFIKKSvh0zh1VjhQLjStg5ITzdeeD0U0gss2sIKiv6ZJRGxHpe66tFZuG6Pk5mDAwAAfKaE8JzOsiW5zSgeZdsSPe1wU0879Olph6KediiO7RDfsavXo/rcQnj9L6dXv/f48l/WTmi4Z+7kPcOOP37f2bE/+PbaX83uv6XxxKUpTXn5f3th+T+cir6pTVfr/6Ow/j/9u4aZ9f/1oVAeK7SFQlX8jgFV4RipsLshHKO8Kt2jY3CmAAAAAJ9q4XuBol6eBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBf9u49Sq6qThTw7nd30uk0OI6AykSdJEZMdydBlICLPERUjHQYZFTGPEg65NEkIQ8kwYWBsBwUdQLBxDvDXQS4WYCixDgEERgSlcC9RHnNMAzyFLiBUSFc3nCZ3NV9aleqzulKV0wa0tzv+6NrV/3289Sja59zah8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPj/w+BDv7LgilOeuWnkC3936imNC59+bsxlB3/kiPqb5h48/PUtd8+6fcrxZ10w5eSJO1YeO+Mrd7/591tDaO8uV5EUr/j5RVOX1U6Z9KWLv3zOsZ8/auum2ly9uXgY2PWnMnfn/Njqk4NCuKEihOp0YGRjEqjJ3W+M9b2vMYQDwq5AvkTHgKREuuFwW0MI68KuQL6qGxtCaCwInHTvL2/9blfikoYQhoYQ6tJtPFyXtNGQDgyrTQID0oEF1UnglZ2JfODnlUkA9lp8M+Rf9BvaizM091yuxOuvZp917O2VHl5VTDSXzven8X3cqQK16Qfa9+ppy1RHn8i8PTZ7t/WDd1tmO6/ytBV+kcp9Q9m5K1QXKmd2zJq+tHNJfKQytLRUlaqpj57nh5//+ow9Sfeb12HsQPM+eR1W7dh+59mNn7pu9aD1r64ce+WWve3mQwWbtDDd1+pC7jXXb57HaJzPk37w9st8SxriS1cI4V9vqNv26hcuf/nTa7ZcPem8v13zzIjTW9veuO+F6yctWLXg+v/+i8z8v3n38//4co63lUW5Y6tvNCVz8/hIY0w815TMzQEAAKDf6A97Tac+NOvF4b/5xD9PvvHR7YOO/5tFqw/+de2Wdz34VOX4Z285ecT81zLz/yHlHf+Ph/wbC0e7OYRx3YmVg0M4qPvxJHBN7M6pg0P4QHeqvTgwPhXYHMLB3YkR+apSJepjiSGpwPamXGBcKrA1BtpTgfUxsCoVOD8GNqQCM2JgcyowIQbCnOJxfKQpN46yAw0xMC3ZiBviWQgvNMXWUtvqd/mqAAAA9pHc7LCm+G7BuQ57myFOLzc09JYhnoFdMkNdqob0DDY/rSpZQ3VvNVT2VkN+3Ct2P/xMzRW91Zw5DaOiOMPSb/7h/rFfXDW3euj22sNemnfczN8d8/41O1s++uPanT8cd9fahsz8v2338/+6HjpSkTn+H8Lk7r8xd2Uu0pmPT2svygAAAADshdETP/ZPl733l9fdcuLnfzv4jiOv2PjDqbVjv/XK0nt+uGLCudt+dEFm/j+uvPP/4z6RqoLMYVvcDTFvcAhtxYGk2qOygeSo98BcAAAAAPqD/PH4/LHwObnb5BTt9Hw6m799D/PHA//jesw//pC/fmzDf8z99k8nTjli7TmPzd9+1+EfrWn7m+cf/tIF86Z947JvZub/7eWd/z+g+DbpxNbYi9WDQ6gvCNwee9kV6DYkBh47pjiQG//WuAEujFXlTkzIV3VhLDEtBtpSgXWlStydL3FQcSD3ZOUbX5kfx5xciYIAAAAAvOXi7oB4XD6e/3/fgg/PPmpb3aG3rKr46V/uuKZz4vVtNc+M/VXT61/4whNff63xzMz8f9qenf/fPQ/OnN7fOTCE1uoQqtI/DNg2IFkYMAYaK3KJWwYkdVWlqzp3QAhHdw0sXdXjufX/q9NrDN7bkFQVAwd98Ornh3UlrmwIobUwcP8pl3+sK7EkFcg3/sWGEP6qa7Tpxq+vTxqvSTe+tj6EQwsC+apOrQ+hq7HadFW/rMtdxyBd1XV1IbyrIJCv6oi6EJYFAPqp+K90ZuGDi5ctnze9s7NjUR8m4j78hjBrTmdHy4wFnTPrSvRpZqrPRcsYnZsdU8nlkFLiEkWr7lk7tJx0/neCbYV9ye3Hz5w4mLsfvwvVdI9zdE3R3THpIX/4Q9kmQsE3qbdryAMKK9n1JGbqj/lrw8BQv3Rxx6KWs6YvWbJoVPK33Oyjk79xUMm2GpXeVgN66tt+8PIYXlhJ65LTF7YuXrZ85JzTp5/WcVrH/NFtYw5vO3LMqCM+3to1qrbkby9DHd5T1amh7rz8rR/qIdUFlbwVnxoSEhL9LfE/zjj95DuOnPOpE+5d+oGj1oybcPaNh89qXXPb9ZPWT3ts8I9GXZKZ/y/c/fw/furET/7c+gyljv83x8P8yeO7DvNPi4F15R7/by51ND9/YsCQVGBFDKxwmB8AAIB3hrg7Mu52jHutH6q74qrDL3329C2jJn7tzOaRv57wwXEHfvqML99x3H/+3/d/7xN//N+Z+f+K8n7/v4/W/88vXf+5Usv8j4gl2kqt/59e5j+//v+KUuv/p5f5z6//v+5tWP9/aT6Q2iQvWP8fAAB4J3jr1v/vdXn/9AUCMhl6Xd4/fYGATIZel/Ev9wIBe7z+/5PHXPv0B97/TPvPrr/j8ekXn3HOx9fUD9uxrL7l9m//+y9u/MqpgzLz/1Xlzf8t3A8AAAD7j2uPffLfjr3q+7ec3Pjsj2sWzT7/5vNuahz2WsWsjfMnDJh8zez/ysz/15U3/3/r1/8Lpc7/H1Iq0F5qYUDr/wEAANBPlVr/b/tP6i+9sHHHuk0bXv/ske9+/Tt3fOdrry34wQ8+89H3zV48adyEmzPz/w3lzf/jaReVRbljb95oSta0C+k17Z5ryv9kAAAAAPqHytDSUlNm3qKVUcf/+W3GpUB3ly504nE//WT70HffPufaKa3/cN99Ha2H3NnUsH7+zi+d8PTyp05YeWVm/r+5vPl/0e8yqnZsv/Psxk9d98bqQetfXTn2yi27jv8DAAAAfafc/RIAAAAAAAAAAAAAAMDb770Lxoy/t+Xxd1+0evn5zdddcfmbm1q3fPUfL6na/uHZf7hg7uiGzO//w+TucqV+/x+v+xd/X/AXRbljq72v/5e7f9LxP1nWvWThtqYQPlQYmHfevANC7tr8wwsDt351xHu6EuelS9z8yISnuhJT04HPjDzw5a7E0anAtLhI4sHpQLyq4suDUoG4vOJ96UDcHhvSgdpc4FuDknFUpLfVM43JtqpIb6sHG0MYXBDIb6sbGpM2KtIDvCQVyA/wjHQgDvALuUBlulc/GZj0KgYaY9HLBia9AgBgvxW/BdaEWXM6O9riV/h4e0h18W1UtGTZudlqq8psPi5NtuqetUPLSVelv4vuutZ4TajrGsKozNfVwiwV3aPcN7X0sun+osSQe1vtra82XW3pETUkI2qZsaBzZk2vAx/Te5bR1b1mGZWZ7BRmqezepGXUUkZfyhhRmdumjC7H+5WhpaUqlWtsDDaHIr29Isr9vX5Pa/6VekV0+cSXb/rD41ubPn3Ye9pPO/+eyvff+6sDr3jxQ688dN1hm/7bR9b++urM/L+5vPl/XeG4Xs5dDGBFvLLeUYNDmFbmiAAAAOCdb/b8Ry6+4FcXbX+sfdhTC1ovuvWBZT9YXt10zfnHPnjzmS+d8r2pexu/9skTfvvAb3+0cdj4WxaOGfDEWVdedtw9d92xetvxb95w2P8ZOePRzPx/SHnz/7hjLHcoONnbsTle/3/l4BC6L63fnASuicM9dXAIH+hOtccSyQX1PxdLtCWBa+IOkxGxxLT24qrqY2BDKrC9KRfYnApsjYHcXoqrQ25XzkVNIXysOzW5uMTCWKI5FTghBoakAi0x0JYKDIqBcanAHwflAu2pwJ0xEOYUb6ufDcptKwAAgD2Rm2fVFN8N6XnehureMlT0lmFAbxkqe8tQ11uGUqOI9zfGDDWFx+NzGeJDNelaG1K1ZDLEi+Hvcb8yGcLdxTnTBTNN588kaS7OGTN8+x8f/OT0lx6+YemP3hh+4rmf/PH3tm16be4Tp40cPO3VsfNGfPuPmfl/W3nz/wHFt0nrW+P8f9f1/5LA7bF7q+Op40Ni4LFjigO5HQNb42T3wnxV7bkSuUn7hbHEuBgYkgosjIFxqcC0ybnAuvcUB3Iz7XzjK/ONz8mVKAgAAADAWy7uIIi7aeL8/9K/mz353O+0dqyc9dWnps0Y+ukDL33fpcfcNOk3c9cedOCpd14zLzP/H1fe/D+2N7CwsfNjb54cFMINFbt6kw+MbEwCcT9GY/x5/PsaQzigYAdHvkTHgKREbarhcFtD8gv12nRVNzYkawzE+yfd+8tbv9uVuKQhhKEFe1/ybTxcl7TRkA4Mq00CA9KBBdVJIO75yQd+XpkEYK/l9wrGF1TuVJe85p7LlXj9vVOuCZoeXmYfaA/5evrNVV+pSz+Q26eat2dPW6Y6+kTm7bHZu60/vtuavdsKv0jlvqHs3BWqC5UzO2ZNX9q5JD5S+EvWjD56nnv6Jevu0vvgdbjiz+9t7+rSHWhLfXy09Vyu59dhRayuasf2O89u/NR1qwetf3Xl2Cu3lN2NEuIm/cuvjR/2UMHm7Wt1Ifea63efJ+0+T/rjv4EhnrYQwqbnvlF/5okn/tsB/7Rw0/cf/a/mV7/1zTs2blzW1HJz1ZpJF3722sz8v728+X916rbba3FjLh4cwocLNu62uPknDk4+BwsCyafku7KB5JD7E00lPzkBAABgX8vv7sjvL5iTu01OCE/Pk7P52/cwf9xfMa7H/OX2+4TP3/0vf7vid6u/uGX9AxW/+f3GK04YM3XhYwvvu3jiP/+v31/16I2Z+f+03c//61PddPzf8X/6iOP/Pdrfd0XXpx9YsVe7ojPV0Scc/+/R/v5uc/y/R47/O/7fE8f/e+H4f4/296ct8y1poS9dIYSnn/2XC//hgmUnPfTqu4+4+IE/PTjx7IobOv9j+kPPdLzx0Vdm3XpoZv6/sLz5v/X/el60L7/+37RS6/8tLLX+3wrr/wEAAH2qxEJz6XleZvW+TIb06n2ZDL0uENjrEoPW/9vj9f82nFz9+1/P/ffvf+6+pw+vnHr/f46eP++m4UcdM+KqNU+t+NcX2lsy8/8V5c3/48thYGHr/WX9vyGTS1S1KgYWWhgQAACA/VGpHQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC8vcaceedL33lh+2G3Lrlt5cnj/3r1qV//7NEH/+zKnZ/YHL7x4vKX7ply/FkXTDl54o6Vx874yt1v/v3WEOZ0l6tIilf8/KKpy2qnTPrSxV8+59jPH7V1U12u3prc7XuLcsdW32gKYV3BI40x8VxT151dgZOO/8my6q7EtqYQPlQYmHfevAO6EuubQhheGLj1qyPe05U4L13i5kcmPNWVmJoOfGbkgS93JY7OBSrS3b10UNLdinR3vzsohMEFgXx35w4qrirfxnG5QGW6jasakzZioDEW/UFj0kYMdMYSc+pDaK0OoSpd1f+sS6qqSlf1i7qkqqp0VefUhXB0CKE6XdUjtUlV1emR31WbVBUDB33w6ueHdSXW1YbQWhi4/5TLP9aVOCMVyDd+Ym0If9X1kkk3vrEmabwm3fglNSEcGkKoTZd4sTopUZsu8Xh1CO8qCOQbn10dwrLAO0L88JlZ+ODiZcvnTe/s7FjUh4naXFsNYdaczo6WGQs6Z9al+lRKRUF657nZeGWZY3/4+a/P6Lpddc/aoeWkq3Plarq7PLqm6O6YfdX7ij7qfezXgMJKdj0fmfpj/towMNQvXdyxqOWs6UuWLBqV/C03++jkb1UummyrUftqW5Xrz91WwwsraV1y+sLWxcuWj5xz+vTTOk7rmD+6bczhbUeOGXXEx1u7RtWW/N0XQ708G6/q46EeUl1QyVvxASAhIdHfEpVFn25t+/u/7MwX/V0drQl13R/QmWlFYZaK7lHui0GP3318Xw46MyXJjGhUZuKQyTK69yxjMpOJXVkakizd3+syk8PCmiq7N2m8XxlaWkr+p2suvlu4+f7Uw+YtV9x05aYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+H/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuBQAAP//CAsM0g==")
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r1, 0x0, 0x0, 0x8ffff)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0xeafb)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r3, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, 0x1409, 0x104, 0x70bd25, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x8802}, 0x4000801)
write$char_usb(r2, &(0x7f0000000240)="cc39d2e1", 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
syz_mount_image$xfs(&(0x7f0000009740), &(0x7f0000009780)='./file1\x00', 0x0, &(0x7f00000006c0)={[{@gquota}, {@nolargeio}, {@uqnoenforce}]}, 0x1, 0x9793, &(0x7f0000012f40)="$eJzs3QeYJHWhcP1Z2CVnUBFFUVExEiWIKEFAJEhUUECQLDkoQUkiEhQFAUVAcs4555xzzjnnnPmeZXeVux7Q+373ffF6znme3Zmurq6p/v+6qmamerqXnGexOQcGxhgY1hQDI3fzHXMutPGOc16+9057njzFWBNMPnzy8BtMOvzipIOGfxxlYGBglOHLGT5t7EdOOHGUgcHvTP97Y4851qBxBwamG35x9uEfZxr2YeJHR8z39kiNvKKD/nZx0PbD/r3T+EO/xNBPlr7pgrMHBgYmeNfth95kmn+4o9KWnGPeef5u9Te3oVZDhn/+7n+jDfs38f0DAxPfM8CPj3fPO+gDuEtDv+YEOz4wxrofwNf+X9eSc8w730j+Q7fFUYdPm2noNj7yNmhs5Mf5TavMuvvwIXzn8TYwMHQX91+2lf8VLTnHPAsMvPd+fuChscY7/e139ptjPzMwMPazAwNjPzcwMPbzAwNjvzAwMPaLH7RL/f9rjjmnn3Po9j7i8nD2EY/lCehxsffqL+w1MDAw+rB5xn5r2PFinClGHBOqqqrq37s55px+Ljj+j/F+x/+ttp7jlo7/VVVV/3ubb445px96HB/p+D/O+x3/v3vDDWsM+93/7DMNu9VbH+ydqKqqqv9W88yHx/8J3u/4P/4O1+3X8b+qqup/b4su+M7xf5yRjv+TvN/xf43577h0+Hwjvm94812LfOf5Y8Onv/6u6aO+a/pr75o+5F3Leff8o71r+ivvmj7GwMDYjwyf/sbfJ4/9zNDb/ONyxn7p78/HmXTwu6a//K7po71r+ivD12no9NHfNf3Nd80/xt+njzP0vymGf91X32eoq6qq/m1adPp55hp41/Psh08e8cR+fF7o0UdvfecHtb5VVVVVVVVV9d/vrSdPO+vvf/P9iYF3/e3q3/6GdfjvBQYdc84113xgK/rv0aB//H3IFh/0Ov3/bajzGIdNMTCw1hIf9KrUB9D/mr9Vr/8r5e8uf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+4t7j/P/f/v5/4J4v7jB81lkmu+Pexf5+y0kHVhv+2c13zLnQah/Aun8A/aee/x9YbdDAwHDfCYZaLjTHootPNTAwsNi9d0w248Dfrpt56HWzTjTqO3/MOTAw1Tv/D5n0PZY8/F0W3nlzh0n+toxj3ln+fG/vO+qgkVbiXc129n0HrrrkyzOM/PHz730//vb+Eku9tO+UI/6WZZSRZhrjPW48Yvkj7svIzsPXfaqh6z71BmuuM/X6G2/yldXWXH6VlVZZaa3pppt2hulnnGG6r80y9cqrrbHSNMP+f48xG/bWFaP+K2M2zshj9uQc7x6zke/bhCcdiGP2j+/q8V8W8c4Sz53toctGjNngf3HMRny9Ud9/zKZYbfgXmnRgyMBy7wzNoIGBSQcPGdho6IVpRx8YmHTI8HknHTrvNyYaZWBgx7/f0UHDX2x02DyDthg6z7/Z+5bMMnxENh0x38ivsz7yiv6z9y05fpxd7hjpfUv+b/V/dPz/B6+ZB/1toEa8AcLweYZ5fcDvM/EP6zvF4HcOcu+1vu/zujjvRI+vNVd9dIn/qdfFofUd533W931ex+8913eqaZ/eY9ii/sfWd6R93QLDrvxX9nUD77+vG5Vuv9KVk4+8r5v/vVfxv2zHI8Zo9JFmeq993Y7zn7v50OUPvP++boHVhr94wN/3daMMDEw66oh93dAd32hDBnYcemG6oRdGHzJwyNAL079zYcyBc4Ze+OoKa6+x4qB3XmZg+HKnGbrc2ScaNGwDuvHAVUff5e23Bw9fl5fG/q/rOvzxMcW7j+dzTDR8MIffdsRyh846YrmvbDPsutGGL/fl/8ZyR9yW1nfSM4ddN/rw5b4y0nKHvM9yR9z2H7aHqQb9lyeqwv7mA31fI9p+x3if9X2f1+HGx9s77lMu+9D/wOtwD3qv9R38/uv7Xu8b8p7r+9hlj+/zP/W64fQ4u2fvYY+VMYY/zt78bzx+R9x25P3YsBcCGbbbH+Nf2Y9N8Q/7sS1HHWWkwX5X7/V97oow//At4m9LW/GAl1cbMfZDRlruP/s+9133ZRDsxyYY6ee5QZvvMzCIxvyRNZ7f8K2d33/Mhwz8158tRoz5iNu+35iP/q+M+cfff8xH/j75vcZ8qs8Mu37ISOv/7jFfZLfZbxwx5qONtNx/Nuajv/+x4x/HfGBgCI35jpMNG7f325++15iPuO2IMR/6dWadaPDA3AMDA1MOH/PR/pUxn/R/5nE+Fsw/7POV/jbpmRkX/vKIMR95jP/ZmI/23xzzze752+N8yneu+/QoA6ONNrDR8htssN60w/4fcXG6Yf/zvuiZFYeN8/sdS9/LaMRt32+7GPyvGE3wLxkN+mdGkw1+L6O/b1qjHrjos/+n+6LB/12jc3hfdMq8w8bt/b4veq8xH3FbOg5O8q7bj/xz6Pu8fhbep3fGZ/5tR/y89+/w+lkjft79X/n6WSN+J7nayDv5+lfr9//u8neXv7v83eUv7j3O/08x4vz/2+Ps/+HhP3QOuXLmW2b/oNf3A+4/+vz/cN//cv5/9ltmvnLoj1bDr3vf87PD5vm3PD8707APEz86Yr6Rzw+OvKL/7Pzs3rtucOX/o/Oz/0eN2Fb/hZ+L2/+7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v8xb3H+f9pRjwP4MHFF/re8BOhQzad9shNP+j1/YD7jz7/P9z3v5z/3/TIaTcdZeBv173v+f9h8zjO/9+34ObL/Duf/x+xrXb+v/5J+bvL313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/uPc4/z/7iOcBHD7b3J8d8XyA67fbd48Pen0/4P5Tz//3/v/e2v+7y99d/u7yd5e/u/zd5e8uf3f5u8vfXf7u8neXv7v8xQ0//z8w0tskLtzjAoPz//+7ew//RfLHLP6L5o9Z/BfLH7P4L54/ZvFfIn/M4v/9/DGL/w/yxyz+S+aPWfyXyh+z+P8wf8zi/6P8MYv/0vljFv9l8scs/svmj1n8f5w/ZvFfLn/M4r98/pjF/yf5Yxb/FfLHLP4r5o9Z/FfKH7P4r5w/ZvFfJX/M4r9q/pjFf7X8MYv/T/PHLP6r549Z/NfIH7P4r5k/ZvFfK3/M4r92/pjFf538MYv/uvljFv/18scs/uvnj1n8N8gfs/j/LH/M4v/z/DGL/4b5Yxb/jfLHLP4b549Z/DfJH7P4/yJ/zOL/y/wxi/+m+WMW/83yxyz+m+ePWfy3yB+z+G+ZP2bx/1X+mMV/q/wxi/+v88cs/lvnj1n8f5M/ZvHfJn/M4r9t/pjFf7v8MYv/9vljFv/f5o9Z/H+XP2bx3yF/zOL/+/wxi/8f8scs/jvmj1n8d8ofs/j/MX/M4r9z/pjFf5f8MYv/rvljFv8/5Y9Z/P+cP2bx3y1/zOL/l/wxi//u+WMW/z3yxyz+e+aPWfz/mj9m8d8rf8ziv3f+mMV/n/wxi/+++WMW//3yxyz+++ePWfwPyB+z+B+YP2bxPyh/zOJ/cP6Yxf+Q/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMR/0ED+mMV/UP6YxX+U/DGL/6j5Yxb/wfljFv8h+WMW/9Hyxyz+o+ePWfzHyB+z+I+ZP2bxHyt/zOI/dv6YxX+c/DGL/7j5Yxb/8fLHLP7j549Z/CfIH7P4T5g/ZvGfKH/M4j9x/pjFf5L8MYv/h/LHLP4fzh+z+H8kf8ziP2n+mMX/o/ljFv/J8scs/h/LH7P4fzx/zOI/ef6Yxf8T+WMW/0/mj1n8p8gfs/h/Kn/M4v/p/DGL/2fyxyz+U+aPWfw/mz9m8f9c/pjF//P5Yxb/qfLHLP5fyB+z+H8xf8zi/6X8MYv/l/PHLP5fyR+z+H81f8ziP3X+mMV/mvwxi/+0+WMW/+nyxyz+0+ePWfxnyB+z+H8tf8ziP2P+mMV/pvwxi//M+WMW/1nyxyz+X88fs/jPmj9m8f9G/pjFf7b8MYv/N/PHLP7fyh+z+M+eP2bxnyN/zOI/Z/6YxX+u/DGL/7fzxyz+c+ePWfznyR+z+M+bP2bx/07+mMV/vvwxi/9388cs/vPnj1n8F8gfs/gvmD9m8V8of8zi/738MYv/wvljFv9F8scs/ovmj1n8F8sfs/gvnj9m8V8if8zi//38MYv/D/LHLP5L5o9Z/JfKH7P4/zB/zOL/o/wxi//S+WMW/2Xyxyz+y+aPWfx/nD9m8V8uf8ziv3z+mMX/J/ljFv8V8scs/ivmj1n8V8ofs/ivnD9m8V8lf8ziv2r+mMV/tfwxi/9P88cs/qvnj1n818gfs/ivmT9m8V8rf8ziv3b+mMV/nfwxi/+6+WMW//Xyxyz+6+ePWfw3yB+z+P8sf8zi//P8MYv/hvljFv+N8scs/hvnj1n8N8kfs/j/In/M4v/L/DGL/6b5Yxb/zfLHLP6b549Z/LfIH7P4b5k/ZvH/Vf6YxX+r/DGL/6/zxyz+W+ePWfx/kz9m8d8mf8ziv23+mMV/u/wxi//2+WMW/9/mj1n8f5c/ZvHfIX/M4v/7/DGL/x/yxyz+O+aPWfx3yh+z+P8xf8ziv3P+mMV/l/wxi/+u+WMW/z/lj1n8/5w/ZvHfLX/M4v+X/DGL/+75Yxb/PfLHLP575o9Z/P+aP2bx3yt/zOK/d/6YxX+f/DGL/775Yxb//fLHLP77549Z/A/IH7P4H5g/ZvE/KH/M4n9w/pjF/5D8MYv/ofljFv/D8scs/ofnj1n8j8gfs/gfmT9m8T8qf8zif3T+mMX/mPwxi/+x+WMW/+Pyxyz+x+ePWfxPyB+z+J+YP2bxPyl/zOJ/cv6Yxf+U/DGL/6n5Yxb/0/LHLP6n549Z/M/IH7P4n5k/ZvE/K3/M4n92/pjF/5z8MYv/ufljFv/z8scs/ufnj1n8L8gfs/hfmD9m8b8of8zif3H+mMX/kvwxi/+l+WMW/8vyxyz+l+ePWfyvyB+z+F+ZP2bxvyr/d7fliE8s/lfnj1n8r8kfs/hfmz9m8b8uf8zif33+mMX/hvwxi/+N+WMW/5vyxyz+N+ePWfxvyR+z+N+aP2bxvy1/zOJ/e/6Yxf+O/DGL/535Yxb/u/LHLP53549Z/O/JH7P435s/ZvG/L3/M4n9//pjF/4H8MYv/g/ljFv+H8scs/g/nj1n8H8kfs/g/mj9m8X8sf8zi/3j+mMX/ifwxi/+T+WMW/6fyxyz+T+ePWfyfyR+z+D+bP2bxfy5/zOL/fP6Yxf+F/DGL/4v5Yxb/l/LHLP4v549Z/F/JH7P4v5o/ZvF/LX/M4v96/pjF/438MYv/m/ljFv+38scs/m/nj0n83/k0/3/M4j8of8ziP0r+mMV/1Pwxi//g/DGL/5D8MYv/aPljFv/R88cs/mPkj1n8x8wfs/iPlT9m8R87f8ziP07+mMV/3Pwxi/94+WMW//Hzxyz+E+SPWfwnzB+z+E+UP2bxnzh/zOI/Sf6Yxf9D+WMW/w/nj1n8P5I/ZvGfNH/M4v/R/DGL/2T5Yxb/j+WPWfw/nj9m8Z88f8zi/4n8MYv/J/PHLP5T5I9Z/D+VP2bx/3T+mMX/M/ljFv8p88cs/p/NH7P4fy5/zOL/+fwxi/9U+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvGfOn/M4j9N/pjFf9r8MYv/dPljFv/p88cs/jPkj1n8v5Y/ZvGfMX/M4j9T/pjFf+b8MYv/LPljFv+v549Z/GfNH7P4fyN/zOI/W/6Yxf+b+WMW/2/lj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMX/2/ljFv+588cs/vPkj1n8580fs/h/J3/M4j9f/pjF/7v5Yxb/+fPHLP4L5I9Z/BfMH7P4L5Q/ZvH/Xv6YxX/h/DGL/yL5YxL/eo8k/qMs1vaPWfwXzx+z+C+RP2bx/37+mMX/B/ljFv8l88cs/kvlj1n8f5g/ZvH/Uf6YxX/p/DGL/zL5Yxb/ZfPHLP4/zh+z+C+XP2bxXz5/zOL/k/wxi/8K+WMW/xXzxyz+K+WPWfxXzh+z+K+SP2bxXzV/zOK/Wv6Yxf+n+WMW/9Xzxyz+a+SPWfzXzB+z+K+VP2bxXzt/zOK/Tv6YxX/d/DGL/3r5Yxb/9fPHLP4b5I9Z/H+WP2bx/3n+mMV/w/wxi/9G+WMW/43zxyz+m+SPWfx/kT9m8f9l/pjFf9P8MYv/ZvljFv/N88cs/lvkj1n8t8wfs/j/Kn/M4r9V/pjF/9f5Yxb/rfPHLP6/yR+z+G+TP2bx3zZ/zOK/Xf6YxX/7/DGL/2/zxyz+v8sfs/jvkD9m8f99/pjF/w/5Yxb/HfPHLP475Y9Z/P+YP2bx3zl/zOK/S/6YxX/X/DGL/5/yxyz+f84fs/jvlj9m8f9L/pjFf/f8MYv/HvljFv8988cs/n/NH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/fvljFv/988cs/gfkj1n8D8wfs/gflD9m8T84f8zif0j+mMX/0Pwxi/9h+WMW/8Pzxyz+R+SPWfyPzB+z+B+VP2bxPzp/zOJ/TP6Yxf/Y/DGL/3H5Yxb/4/PHLP4n5I9Z/E/MH7P4n5Q/ZvE/OX/M4n9K/pjF/9T8MYv/afljFv/T88cs/mfkj1n8z8wfs/iflT9m8T87f8zif07+mMX/3Pwxi/95+WMW//Pzxyz+F+SPWfwvzB+z+F+UP2bxvzh/zOJ/Sf6Yxf/S/DGL/2X5Yxb/y/PHLP5X5I9Z/K/MH7P4X5U/ZvG/On/M4n9N/pjF/9r8MYv/dfljFv/r88cs/jfkj1n8b8wfs/jflD9m8b85f8zif0v+mMX/1vwxi/9t+WMW/9vzxyz+d+SPWfzvzB+z+N+VP2bxvzt/zOJ/T/6Yxf/e/DGL/335Yxb/+/PHLP4P5I9Z/B/MH7P4P5Q/ZvF/OH/M4v9I/pjF/9H8MYv/Y/ljFv/H88cs/k/kj1n8n8wfs/g/lT9m8X86f8zi/0z+mMX/2fwxi/9z+WMW/+fzxyz+L+SPWfxfzB+z+L+UP2bxfzl/zOL/Sv6Yxf/V/DGL/2v5Yxb/1/PHLP5v5I9Z/N/MH3vHf9DAf7z/W/ljlu3/7fwxif+oA/ljFv9B+WMW/1Hyxyz+o+aPWfwH549Z/Ifkj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/3Hyxyz+4+aPWfzHyx+z+I+fP2bxnyB/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A9T+b89/r86p8X/cJX/v57F/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+J+ePWfxPyR+z+J+aP2bxPy1/zOJ/ev6Yxf+M/DGL/5n5Yxb/s/LHLP5n549Z/M/JH7P4n5s/ZvE/L3/M4n9+/pjF/4L8MYv/hfljFv+L8scs/hfnj1n8L8kfs/hfmj9m8b8sf8zif3n+mMX/ivwxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePSfwHD+SPWfwH5Y9Z/EfJH7P4j5o/ZvEfnD9m8R+SP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/MfJH7P4j5s/ZvEfL3/M4j9+/pjFf4L8MYv/hPljFv+J8scs/hPnj1n8J8kfs/h/KH/M4v/h/DGL/0fyxyz+k+aPWfw/mj9m8Z8sf8zi/7H8MYv/x/PHLP6T549Z/D+RP2bx/2T+mMV/ivwxi/+n8scs/p/OH7P4fyZ/zOI/Zf6Yxf+z+WMW/8/lj1n8P58/ZvGfKn/M4v+F/DGL/xfzxyz+X8of+8/2H2vE1MFfzh/7z/b/W4O/kj9m8f9q/pjFf+r8MYv/NPlj/8n+Q/4+dfC0+WP/yf7v3v6nyx+z+E+fP2bxnyF/zOL/tfwxi/+M+WMW/5nyxyz+M+ePWfxnyR+z+H89f8ziP2v+mMX/G/ljFv/Z8scs/t/MH7P4fyt/zOI/e/6YxX+O/DGL/5z5Yxb/ufLHLP7fzh+z+M+dP2bxnyd/zOI/b/6Yxf87+WMW//nyxyz+380fs/jPnz9m8V8gf8ziv2D+mMV/ofwxi//38scs/gvnj1n8F8kfs/gvmj9m8V8sf8ziv3j+mMV/ifwxi//388cs/j/IH7P4L5k/ZvFfKn/M4v/D/DGL/4/yxyz+S+ePWfyXyR+z+C+bP2bx/3H+mMV/ufwxi//y+WMW/5/kj1n8V8gfs/ivmD9m8V8pf8ziv3L+mMV/lfwxi/+q+WMW/9Xyxyz+P80fs/ivnj9m8V8jf8ziv2b+mMV/rfwxi//a+WMW/3Xyxyz+6+aPWfzXyx+z+K+fP2bx3yB/zOL/s/wxi//P88cs/hvmj1n8N8ofs/hvnD9m8d8kf8zi/4v8MYv/L/PHLP6b5o9Z/DfLH7P4b54/ZvHfIn/M4r9l/pjF/1f5Yxb/rfLHLP6/zh+z+G+dP2bx/03+mMV/m/wxi/+2+WMW/+3yxyz+2+ePWfx/mz9m8f9d/pjFf4f8MYv/7/PHLP5/yB+z+O+YP2bx3yl/zOL/x/wxi//O+WMW/13yxyz+u+aPWfz/lD9m8f9z/pjFf7f8MYv/X/LHLP67549Z/PfIH7P475k/ZvH/a/6YxX+v/DGL/975Yxb/ffLHLP77Sv1H/yfXW/z3k/r/syz+++ePWfwPyB+z+B+YP2bxPyh/zOJ/cP6Yxf+Q/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvE/Kn/M4n90/pjF/5j8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1Q+/rth/USv37ZvG/ru0fs/hfnz9m8b8hf8zif2P+mMX/pvwxi//N+WMW/1vyxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOJ/Z/6Yxf+u/DGL/935Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv9H8scs/o/mj1n8H8sfs/g/nj9m8X8if8zi/2T+mMX/qfwxi//T+WMW/2fyxyz+z+aPWfyfyx+z+D+fP2bxfyF/zOL/Yv6Yxf+l/DGL/8v5Yxb/V/LHLP6v5o9Z/F/LH7P4v54/ZvF/I3/M4v9m/pjF/638MYv/2/ljEv8hA/ljFv9B+WMW/1Hyxyz+o+aPWfwH549Z/Ifkj1n8R8sfs/iPnj9m8R8jf8ziP2b+mMV/rPwxi//Y+WMW/3Hyxyz+4+aPWfzHyx+z+I+fP2bxnyB/zOI/Yf6YxX+i/DGL/8T5Yxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8T8hf8zif2L+mMX/pPwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bxPyN/zOJ/Zv6Yxf+s/DGL/9n5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D8+0AOAsvg/ET9m8X8yf8zi/1T+mMX/6fwxi/8z+WMW/2fzxyz+z+WPWfyfzx+z+L+QP2bxfzF/zOL/Uv6Yxf/l/DGL/yv5Yxb/V/PHLP6v5Y9Z/F/PH7P4v5E/ZvF/M3/M4v9W/pjF/+38MYn/aAP5Yxb/QfljFv9R8scs/qPmj1n8B+ePWfyH5I9Z/EfLH7P4j54/ZvEfI3/M4j9m/pjFf6z8MYv/2PljFv9x8scs/uPmj1n8x8sfs/iPnz9m8Z8gf8ziP2H+mMV/ovwxi//E+WMW/0nyxyz+H8ofs/h/OH/M4v+R/DGL/6T5Yxb/j+aPWfwnyx+z+H8sf8zi//H8MYv/5PljFv9P5I9Z/D+ZP2bxnyJ/zOL/qfwxi/+n88cs/p/JH7P4T5k/ZvH/bP6Yxf9z+WMW/8/nj1n8p8ofs/h/IX/M4v/F/DGL/5fyxyz+X84fs/h/JX/M4v/V/DGL/9T5Yxb/afLHLP7T5o9Z/KfLH7P4T58/ZvGfIX/M4v+1/DGL/4z5Yxb/mfLHLP4z549Z/GfJH7P4fz1/zOI/a/6Yxf8b+WMW/9nyxyz+38wfs/h/K3/M4j97/pjFf478MYv/nPljFv+58scs/t/OH7P4z50/ZvGfJ3/M4j9v/pjF/zv5Yxb/+fLHLP7fzR+z+M+fP2bxXyB/zOK/YP6YxX+h/DGL//fyxyz+C+ePWfwXyR+z+C+aP2bxXyx/zOK/eP6YxX+J/DGL//fzxyz+P8gfs/gvmT9m8V8qf8zi/8P8MYv/j/LHLP5L549Z/JfJH7P4L5s/ZvH/cf6YxX+5/DGL//L5Yxb/n+SPWfxXyB+z+K+YP2bxXyl/zOK/cv6YxX+V/DGL/6r5Yxb/1fLHLP4/zR+z+K+eP2bxXyN/zOK/Zv6YxX+t/DGL/9r5Yxb/dfLHLP7r5o9Z/NfLH7P4r58/ZvHfIH/M4v+z/DGL/8/zxyz+G+aPWfw3yh+z+G+cP2bx3yR/zOL/i/wxi/8v88cs/pvmj1n8N8sfs/hvnj9m8d8if8ziv2X+mMX/V/ljFv+t8scs/r/OH7P4b50/ZvH/Tf6YxX+b/DGL/7b5Yxb/7fLHLP7b549Z/H+bP2bx/13+mMV/h/wxi//v88cs/n/IH7P475g/ZvHfKX/M4v/H/DGL/875Yxb/XfLHLP675o9Z/P+UP2bx/3P+mMV/t/wxi/9f8scs/rvnj1n898gfs/jvmT9m8f9r/pjFf6/8MYv/3vljFv998scs/vvmj1n898sfs/jvnz9m8T8gf8zif2D+mMX/oPwxi//B+WMW/0Pyxyz+h+aPWfwPyx+z+B+eP2bxPyJ/zOJ/ZP6Yxf+o/DGL/9H5Yxb/Y/LHLP7H5o9Z/I/LH7P4H58/ZvE/IX/M4n9i/pjF/6T8MYv/yfljFv9T8scs/qfmj1n8T8sfs/ifnj9m8T8jf8zif2b+mMX/rPwxi//Z+WMW/3Pyxyz+5+aPWfzPyx+z+J+fP2bxvyB/zOJ/Yf6Yxf+i/DGL/8X5Yxb/S/LHLP6X5o9Z/C/LH7P4X54/ZvG/In/M4n9l/pjF/6r8MYv/1fljFv9r8scs/tfmj1n8r8sfs/hfnz9m8b8hf8zif2P+mMX/pvwxi//N+WMW/1vyxyz+t+aPWfxvyx+z+N+eP2bxvyN/zOJ/Z/6Yxf+u/DGL/935Yxb/e/LHLP735o9Z/O/LH7P4358/ZvF/IH/M4v9g/pjF/6H8MYv/w/ljFv9H8scs/o/mj1n8H8sfs/g/nj9m8X8if8zi/2T+mMX/qfwxi//T+WMW/2fyxyz+z+aPWfyfyx+z+D+fP2bxfyF/zOL/Yv6Yxf+l/DGL/8v5Yxb/V/LHLP6v5o9Z/F/LH7P4v54/ZvF/I3/M4v9m/pjF/638MYv/2/ljEv/RB/LHLP6D8scs/qPkj1n8R80fs/gPzh+z+A/JH7P4j5Y/ZvEfPX/M4j9G/pjFf8z8MYv/WPljFv+x88cs/uPkj1n8x80fs/iPlz9m8R8/f8ziP0H+mMV/wvwxi/9E+WMW/4nzxyz+k+SPWfw/lD9m8f9w/pjF/yP5Yxb/SfPHLP4fzR+z+E+WP2bx/1j+mMX/4/ljFv/J88cs/p/IH7P4fzJ/zOI/Rf6Yxf9T+WMW/0/nj1n8P5M/ZvGfMn/M4v/Z/DGL/+fyxyz+n88fs/hPlT9m8f9C/pjF/4v5Yxb/L+WPWfy/nD9m8f9K/pjF/6v5Yxb/qfPHLP7T5I9Z/KfNH7P4T5c/ZvGfPn/M4j9D/pjF/2v5Yxb/GfPHLP4z5Y9Z/GfOH7P4z5I/ZvH/ev6YxX/W/DGL/zfyxyz+s+WPWfy/mT9m8f9W/pjFf/b8MYv/HPljFv8588cs/nPlj1n8v50/ZvGfO3/M4j9P/pjFf978MYv/d/LHLP7z5Y9Z/L+bP2bxnz9/zOK/QP6YxX/B/DGL/0L5Yxb/7+WPWfwXzh+z+C+SP2bxXzR/zOK/WP6YxX/x/DGL/xL5Yxb/7+ePWfx/kD9m8V8yf8ziv1T+mMX/h/ljFv8f5Y9Z/JfOH7P4L5M/ZvFfNn/M4v/j/DGL/3L5Yxb/5fPHLP4/yR+z+K+QP2bxXzF/zOK/Uv6YxX/l/DGL/yr5Yxb/VfPHLP6r5Y9Z/H+aP2bxXz1/zOK/Rv6YxX/N/DGL/1r5Yxb/tfPHLP7r5I9Z/NfNH7P4r5c/ZvFfP3/M4r9B/pjF/2f5Yxb/n+ePWfw3zB+z+G+UP2bx3zh/zOK/Sf6Yxf8X+WMW/1/mj1n8N80fs/hvlj9m8d88f8ziv0X+mMV/y/wxi/+v8scs/lvlj1n8f50/ZvHfOn/M4v+b/DGL/zb5Yxb/bfPHLP7b5Y9Z/LfPH7P4/zZ/zOL/u/wxi/8O+WMW/9/nj1n8/5A/ZvHfMX/M4r9T/pjF/4/5Yxb/nfPHLP675I9Z/HfNH7P4/yl/zOL/5/wxi/9u+WMW/7/kj1n8d88fs/jvkT9m8d8zf8zi/9f8MYv/XvljFv+988cs/vvkj1n8980fs/jvlz9m8d8/f8zif0D+mMX/wPwxi/9B+WMW/4Pzxyz+h+SPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/1H5Yxb/o/PHLP7H5I9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/hflz9m8b8+f8zif0P+mMX/xvwxi/9N+WMW/5vzxyz+t+SPWfxvzR+z+N+WP2bxvz1/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP735I9Z/O/NH7P435c/ZvG/P3/M4v9A/pjF/8H8MYv/Q/ljFv+H88cs/o/kj1n8H80fs/g/lj9m8X88f8zi/0T+mMX/yfwxi/9T+WMW/6fzxyz+z+SPWfyfzR+z+D+XP2bxfz5/zOL/Qv6Yxf/F/DGL/0v5Yxb/l/PHLP6v5I9Z/F/NH7P4v5Y/ZvF/PX/M4v9G/pjF/838MYv/W/ljFv+388ck/mMM5I9Z/Aflj1n8R8kfs/iPmj9m8R+cP2bxH5I/ZvEfLX/M4j96/pjFf4z8MYv/mPljFv+x8scs/mPnj1n8x8kfs/iPmz9m8R8vf8ziP37+mMV/gvwxi/+E+WMW/4nE/m9v/t7XWfwnFvu/Xxb/SfLHLP4fyh+z+H84f8zi/5H8MYv/pPljFv+P5o9Z/CfLH7P4fyx/zOL/8fwxi//k+WMW/0/kj1n8P5k/ZvGfIn/M4v+p/DGL/6fzxyz+n8kfs/hPmT9m8f9s/pjF/3P5Yxb/z+ePWfynyh+z+H8hf8zi/8X8MYv/l/LHLP5fzh+z+H8lf8zi/9X8MYv/1PljFv9p8scs/tPmj1n8p8sfs/hPnz9m8Z8hf8zi/7X8MYv/jPljFv+Z8scs/jPnj1n8Z8kfs/h/PX/M4j9r/pjF/xv5Yxb/2fLHLP7fzB+z+H8rf8ziP3v+mMV/jvwxi/+c+WMW/7nyxyz+384fs/jPnT9m8Z8nf8ziP2/+mMX/O/ljFv/58scs/t/NH7P4z58/ZvFfIH/M4r9g/pjFf6H8MYv/9/LHLP4L549Z/BfJH7P4L5o/ZvFfLH/M4r94/pjFf4n8MYv/9/PHLP4/yB+z+C+ZP2bxXyp/zOL/w/wxi/+P8scs/kvnj1n8l8kfs/gvmz9m8f9x/pjFf7n8MYv/8vljFv+f5I9Z/FfIH7P4r5g/ZvFfKX/M4r9y/pjFf5X8MYv/qvljFv/V8scs/j/NH7P4r54/ZvFfI3/M4r9m/pjFf638MYv/2vljFv918scs/uvmj1n818sfs/ivnz9m8d8gf8zi/7P8MYv/z/PHLP4b5o9Z/DfKH7P4b5w/ZvHfJH/M4v+L/DGL/y/zxyz+m+aPWfw3yx+z+G+eP2bx3yJ/zOK/Zf6Yxf9X+WMW/63yxyz+v84fs/hvnT9m8f9N/pjFf5v8MYv/tvljFv/t8scs/tvnj1n8f5s/ZvH/Xf6YxX+H/DGL/+/zxyz+f8gfs/jvmD9m8d8pf8zi/8f8MYv/zvljFv9d8scs/rvmj1n8/5Q/ZvH/c/6YxX+3/DGL/1/yxyz+u+ePWfz3yB+z+O+ZP2bx/2v+mMV/r/wxi//e+WMW/33yxyz+++aPWfz3yx+z+O+fP2bxPyB/zOJ/YP6Yxf+g/DGL/8H5Yxb/Q/LHLP6H5o9Z/A/LH7P4H54/ZvE/In/M4n9k/pjF/6j8MYv/0fljFv9j8scs/sfmj1n8j8sfs/gfnz9m8T8hf8zif2L+mMX/pPwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bxPyN/zOJ/Zv6Yxf+s/DGL/9n5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxi//b+WMS/zEH8scs/oPyxyz+o+SPWfxHzR+z+A/OH7P4D8kfs/iPlj9m8R89f8ziP0b+mMV/zPwxi/9Y+WMW/7Hzxyz+4+SPWfzHzR+z+I+XP2bxHz9/zOI/Qf6YxX/C/DGL/0T5Yxb/ifPHLP6T5I9Z/D+UP2bx/3D+mMX/I/ljFv9J88cs/h/NH7P4T5Y/ZvH/WP6Yxf/j+WMW/8nzxyz+n8gfs/h/Mn/M4j9F/pjF/1P5Yxb/T+ePWfw/kz9m8Z8yf8zi/9n8MYv/5/LHLP6fzx+z+E+VP2bx/0L+mMX/i/ljFv8v5Y9Z/L+cP2bx/0r+mMX/q/ljFv+p88cs/tPkj1n8p80fs/hPlz9m8Z8+f8ziP0P+mMX/a/ljFv8Z88cs/jPlj1n8Z84fs/jPkj9m8f96/pjFf9b8MYv/N/LHLP6z5Y9Z/L+ZP2bx/1b+mMV/9vwxi/8c+WMW/znzxyz+c+WPWfy/nT9m8Z87f8ziP0/+mMV/3vwxi/938scs/vPlj1n8v5s/ZvGfP3/M4r9A/pjFf8H8MYv/QvljFv/v5Y9Z/BfOH7P4L5I/ZvFfNH/M4r9Y/pjFf/H8MYv/EvljFv/v549Z/H+QP2bxXzJ/zOK/VP6Yxf+H+WMW/x/lj1n8l84fs/gvkz9m8V82f8zi/+P8MYv/cvljFv/l88cs/j/JH7P4r5A/ZvFfMX/M4r9S/pjFf+X8MYv/KvljFv9V88cs/qvlj1n8f5o/ZvFfPX/M4r9G/pjFf838MYv/WvljFv+188cs/uvkj1n8180fs/ivlz9m8V8/f8ziv0H+mMX/Z/ljFv+f549Z/DfMH7P4b5Q/ZvHfOH/M4r9J/pjF/xf5Yxb/X+aPWfw3zR+z+G+WP2bx3zx/zOK/Rf6YxX/L/DGL/6/yxyz+W+WPWfx/nT9m8d86f8zi/5v8MYv/NvljFv9t88cs/tvlj1n8t88fs/j/Nn/M4v+7/DGL/w75Yxb/3+ePWfz/kD9m8d8xf8ziv1P+mMX/j/ljFv+d88cs/rvkj1n8d80fs/j/KX/M4v/n/DGL/275Yxb/v+SPWfx3zx+z+O+RP2bx3zN/zOL/1/wxi/9e+WMW/73zxyz+++SPWfz3zR+z+O+XP2bx3z9/zOJ/QP6Yxf/A/DGL/0H5Yxb/g/PHLP6H5I9Z/A/NH7P4H5Y/ZvE/PH/M4n9E/pjF/8j8MYv/UfljFv+j88cs/sfkj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMW/7fzxyT+Yw3kj1n8B+WPWfxHyR+z+I+aP2bxH5w/ZvEfkj9m8R8tf8ziP3r+mMV/jPwxi/+Y+WMW/7Hyxyz+Y+ePWfzHyR+z+I+bP2bxHy9/zOI/fv6YxX+C/DGL/4T5Yxb/ifLHLP4T549Z/CfJH7P4fyh/zOL/4fwxi/9H8scs/pPmj1n8P5o/ZvGfLH/M4v+x/DGL/8fzxyz+k+ePWfw/kT9m8f9k/pjFf4r8MYv/p/LHLP6fzh+z+H8mf8ziP2X+mMX/s/ljFv/P5Y9Z/D+fP2bxnyp/zOL/hfwxi/8X88cs/l/KH7P4fzl/zOL/lfwxi/9X88cs/lPnj1n8p8kfs/hPmz9m8Z8uf8ziP33+mMV/hvwxi//X8scs/jPmj1n8Z8ofs/jPnD9m8Z8lf8zi//X8MYv/rPljFv9v5I9Z/GfLH7P4fzN/zOL/rfwxi//s+WMW/znyxyz+c+aPWfznyh+z+H87f8ziP3f+mMV/nvwxi/+8+WMW/+/kj1n858sfs/h/N3/M4j9//pjFf4H8MYv/gvljFv+F8scs/t/LH7P4L5w/ZvFfJH/M4r9o/pjFf7H8MYv/4vljFv8l8scs/t/PH7P4/yB/zOK/ZP6YxX+p/DGL/w/zxyz+P8ofs/gvnT9m8V8mf8ziv2z+mMX/x/ljFv/l8scs/svnj1n8f5I/ZvFfIX/M4r9i/pjFf6X8MYv/yvljFv9V8scs/qvmj1n8V8sfs/j/NH/M4r96/pjFf438MYv/mvljFv+18scs/mvnj1n818kfs/ivmz9m8V8vf8ziv37+mMV/g/wxi//P8scs/j/PH7P4b5g/ZvHfSOY/+r84n8V/Y5n/v5rFf5P8MYv/L/LHLP6/zB+z+G+aP2bx3yx/zOK/ef6YxX+L/DGL/5b5Yxb/X+WPWfy3yh+z+P86f8ziv3X+mMX/N/ljFv9t8scs/tvmj1n8t8sfs/hvnz9m8f9t/pjF/3f5Yxb/HfLHLP6/zx+z+P8hf8ziv2P+mMV/p/wxi/8f88cs/jvnj1n8d8kfs/jvmj9m8f9T/pjF/8/5Yxb/3fLHLP5/yR+z+O+eP2bx3yN/zOK/Z/6Yxf+v+WMW/73yxyz+e+ePWfz3yR+z+O+bP2bx3y9/zOK/f/6Yxf+A/DGL/4H5Yxb/g/LHLP4H549Z/A/JH7P4H5o/ZvE/LH/M4n94/pjF/4j8MYv/kfljFv+j8scs/kfnj1n8j8kfs/gfmz9m8T8uf8zif3z+mMX/hPwxi/+J+WMW/5Pyxyz+J+ePWfxPyR+z+J+aP2bxPy1/zOJ/ev6Yxf+M/DGL/5n5Yxb/s/LHLP5n549Z/M/JH7P4n5s/ZvE/L3/M4n9+/pjF/4L8MYv/hfljFv+L8scs/hfnj1n8L8kfs/hfmj9m8b8sf8zif3n+mMX/ivwxi/+V+WMW/6vyxyz+V+ePWfyvyR+z+F+bP2bxvy5/zOJ/ff6Yxf+G/DGL/435Yxb/m/LHLP43549Z/G/JH7P435o/ZvG/LX/M4n97/pjF/478MYv/nfljFv+78scs/nfnj1n878kfs/jfmz9m8b8vf8zif3/+mMX/gfwxi/+D+WMW/4fyxyz+D+ePWfwfyR+z+D+aP2bxfyx/zOL/eP6Yxf+J/DGL/5P5Yxb/p/LHLP5P549Z/J/JH7P4P5s/ZvF/Ln/M4v98/pjF/4X8MYv/i/ljFv+X8scs/i/nj1n8X8kfs/i/mj9m8X8tf8zi/3r+mMX/jfwxi/+b+WMW/7fyxyz+b+ePSfzHHsgfs/gPyh+z+I+SP2bxHzV/zOI/OH/M4j8kf8ziP1r+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4T5I/ZvH/UP6Yxf/D+WMW/4/kj1n8J80fs/h/NH/M4j9Z/pjF/2P5Yxb/j+ePWfwnzx+z+H8if8zi/8n8MYv/FPljFv9P5Y9Z/D+dP2bx/0z+mMV/yvwxi/9n88cs/p/LH7P4fz5/zOI/Vf6Yxf8L+WMW/y/mj1n8v5Q/ZvH/cv6Yxf8r+WMW/6/mj1n8p84fs/hPkz9m8Z82f8ziP13+mMV/+vwxi/8M+WMW/6/lj1n8Z8wfs/jPlD9m8Z85f8ziP0v+mMX/6/ljFv9Z88cs/t/IH7P4z5Y/ZvH/Zv6Yxf9b+WMW/9nzxyz+c+SPWfznzB+z+M+VP2bx/3b+mMV/7vwxi/88+WMW/3nzxyz+38kfs/jPlz9m8f9u/pjFf/78MYv/AvljFv8F88cs/gvlj1n8v5c/ZvFfOH/M4r9I/pjFf9H8MYv/YvljFv/F88cs/kvkj1n8v58/ZvH/Qf6YxX/J/DGL/1L5Yxb/H+aPWfx/lD9m8V86f8ziv0z+mMV/2fwxi/+P88cs/svlj1n8l88fs/j/JH/M4r9C/pjFf8X8MYv/SvljFv+V88cs/qvkj1n8V80fs/ivlj9m8f9p/pjFf/X8MYv/GvljFv8188cs/mvlj1n8184fs/ivkz9m8V83f8ziv17+mMV//fwxi/8G+WMW/5/lj1n8f54/ZvHfMH/M4r9R/pjFf+P8MYv/JvljFv9f5I9Z/H+ZP2bx3zR/zOK/Wf6YxX/z/DGL/xb5Yxb/LfPHLP6/yh+z+G+VP2bx/3X+mMV/6/wxi/9v8scs/tvkj1n8t80fs/hvlz9m8d8+f8zi/9v8MYv/7/LHLP475I9Z/H+fP2bx/0P+mMV/x/wxi/9O+WMW/z/mj1n8d84fs/jvkj9m8d81f8zi/6f8MYv/n/PHLP675Y9Z/P+SP2bx3z1/zOK/R/6YxX/P/DGL/1/zxyz+e+WPWfz3zh+z+O+TP2bx3zd/zOK/X/6YxX///DGL/wH5Yxb/A/PHLP4H5Y9Z/A/OH7P4H5I/ZvE/NH/M4n9Y/pjF//D8MYv/EfljFv8j88cs/kflj1n8j84fs/gfkz9m8T82f8zif1z+mMX/+Pwxi/8J+WMW/xPzxyz+J+WPWfxPzh+z+J+SP2bxPzV/zOJ/Wv6Yxf/0/DGL/xn5Yxb/M/PHLP5n5Y9Z/M/OH7P4n5M/ZvE/N3/M4n9e/pjF//z8MYv/BfljFv8L88cs/hflj1n8L84fs/hfkj9m8b80f8zif1n+mMX/8vwxi/8V+WMW/yvzxyz+V+WPWfyvzh+z+F+TP2bxvzZ/zOJ/Xf6Yxf/6/DGL/w35Yxb/G/PHLP435Y9Z/G/OH7P435I/ZvG/NX/M4n9b/pjF//b8MYv/HfljFv8788cs/nflj1n8784fs/jfkz9m8b83f8zif1/+mMX//vwxi/8D+WMW/wfzxyz+D+WPWfwfzh+z+D+SP2bxfzR/zOL/WP6Yxf/x/DGL/xP5Yxb/J/PHLP5P5Y9Z/J/OH7P4P5M/ZvF/Nn/M4v9c/pjF//n8MYv/C/ljFv8X88cs/i/lj1n8X84fs/i/kj9m8X81f8zi/1r+mMX/9fwxi/8b+WMW/zfzxyz+b+WPWfzfzh+T+I8zkD9m8R+UP2bxHyV/zOI/av6YxX9w/pjFf0j+mMV/tPwxi//o+WMW/zHyxyz+Y+aPWfzHyh+z+I+dP2bxHyd/zOI/bv6YxX+8/DGL//j5Yxb/CfLHLP4T5o9Z/CfKH7P4T5w/ZvGfJH/M4v+h/DGL/4ff0/+tt99++//Nqv07ZvH/SNs/ZvGfNH/M4v/R/DGL/2T5Yxb/j+WPWfw/nj9m8Z88f8zi/4n8MYv/J/PHLP5T5I9Z/D+VP2bx/3T+mMX/M/ljFv8p88cs/p/NH7P4fy5/zOL/+fwxi/9U+WMW/y/kj1n8v5g/ZvH/Uv6Yxf/L+WMW/6/kj1n8v5o/ZvGfOn/M4j9N/pjFf9r8MYv/dPljFv/p88cs/jPkj1n8v5Y/ZvGfMX/M4j9T/pjFf+b8MYv/LPljFv+v549Z/GfNH7P4fyN/zOI/W/6Yxf+b+WMW/2/lj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMX/2/ljFv+588cs/vPkj1n8580fs/h/J3/M4j9f/pjF/7v5Yxb/+fPHLP4L5I9Z/BfMH7P4L5Q/ZvH/Xv6YxX/h/DGL/yL5Yxb/RfPHLP6L5Y9Z/BfPH7P4L5E/ZvH/fv6Yxf8H+WMW/yXzxyz+S+WPWfx/mD9m8f9R/pjFf+n8MYv/MvljFv9l88cs/j/OH7P4L5c/ZvFfPn/M4v+T/DGL/wr5Yxb/FfPHLP4r5Y9Z/FfOH7P4r5I/ZvFfNX/M4r9a/pjF/6f5Yxb/1fPHLP5r5I9Z/NfMH7P4r5U/ZvFfO3/M4r9O/pjFf938MYv/evljFv/188cs/hvkj1n8f5Y/ZvH/ef6YxX/D/DGL/0b5Yxb/jfPHLP6b5I9Z/H+RP2bx/2X+mMV/0/wxi/9m+WMW/83zxyz+W+SPWfy3zB+z+P8qf8ziv1X+mMX/1/ljFv+t88cs/r/JH7P4b5M/ZvHfNn/M4r9d/pjFf/v8MYv/b/PHLP6/yx+z+O+QP2bx/33+mMX/D/ljFv8d88cs/jvlj1n8/5g/ZvHfOX/M4r9L/pjFf9f8MYv/n/LHLP5/zh+z+O+WP2bx/0v+mMV/9/wxi/8e+WMW/z3zxyz+f80fs/jvlT9m8d87f8ziv0/+mMV/3/wxi/9++WMW//3zxyz+B+SPWfwPzB+z+B+UP2bxPzh/zOJ/SP6Yxf/Q/DGL/2H5Yxb/w/PHLP5H5I9Z/I/MH7P4H5U/ZvE/On/M4n9M/pjF/9j8MYv/cfljFv/j88cs/ifkj1n8T8wfs/iflD9m8T85f8zif0r+mMX/1Pwxi/9p+WMW/9Pzxyz+Z+SPWfzPzB+z+J+VP2bxPzt/zOJ/Tv6Yxf/c/DGL/3n5Yxb/8/PHLP4X5I9Z/C/MH7P4X5Q/ZvG/OH/M4n9J/pjF/9L8MYv/ZfljFv/L88cs/lfkj1n8r8wfs/hflT9m8b86f8zif03+mMX/2vwxi/91+WMW/+vzxyz+N+SPWfxvzB+z+N+UP2bxvzl/zOJ/S/6Yxf/W/DGL/235Yxb/2/PHLP535I9Z/O/MH7P435U/ZvG/O3/M4n9P/pjF/978MYv/ffljFv/788cs/g/kj1n8H8x/aINGHgOL/0P5Yxb/h/PHLP6P5I9Z/B/NH7P4P5Y/ZvF/PH/M4v9E/pjF/8n8MYv/U/ljFv+n88cs/s/kj1n8n80fs/g/lz9m8X8+f8zi/0L+mMX/xfwxi/9L+WMW/5fzxyz+r+SPWfxfzR+z+L+WP2bxfz1/zOL/Rv6Yxf/N/DGL/1v5Yxb/t/PHJP7jDuSPWfwH5Y9Z/EfJH7P4j5o/ZvEfnD9m8R+SP2bxHy1/zOI/ev6YxX+M/DGL/5j5Yxb/sfLHLP5j549Z/MfJH7P4j5s/ZvEfL3/M4j9+/pjFf4L8MYv/hPljFv+J8scs/hPnj1n8J8kfs/h/KH/M4v/h/DGL/0fyxyz+k+aPWfw/mj9m8Z8sf8zi/7H8MYv/x/PHLP6T549Z/D+RP2bx/2T+mMV/ivwxi/+n8scs/p/OH7P4fyZ/zOI/Zf6Yxf+z+WMW/8/lj1n8P58/ZvGfKn/M4v+F/DGL/xfzxyz+X8ofs/h/OX/M4v+V/DGL/1fzxyz+U+ePWfynyR+z+E+bP2bxny5/zOI/ff6YxX+G/DGL/9fyxyz+M+aPWfxnyh+z+M+cP2bxnyV/zOL/9fwxi/+s+WMW/2/kj1n8Z8sfs/h/M3/M4v+t/DGL/+z5Yxb/OfLHLP5z5o9Z/OfKH7P4fzt/zOI/d/6YxX+e/DGL/7z5Yxb/7+SPWfznyx+z+H83f8ziP3/+mMV/gfwxi/+C+WMW/4Xyxyz+38sfs/gvnD9m8V8kf8ziv2j+mMV/sfwxi//i+WMW/yXyxyz+388fs/j/IH/M4r9k/pjFf6n8MYv/D/PHLP4/yh+z+C+dP2bxXyZ/zOK/bP6Yxf/H+WMW/+Xyxyz+y+ePWfx/kj9m8V8hf8ziv2L+mMV/pfwxi//K+WMW/1Xyxyz+q+aPWfxXyx+z+P80f8ziv3r+mMV/jfwxi/+a+WMW/7Xyxyz+a+ePWfzXyR+z+K+bP2bxXy9/zOK/fv6YxX+D/DGL/8/yxyz+P88fs/hvmD9m8d8of8ziv3H+mMV/k/wxi/8v8scs/r/MH7P4b5o/ZvHfLH/M4r95/pjFf4v8MYv/lvljFv9f5Y9Z/LfKH7P4/zp/zOK/df6Yxf83+WMW/23yxyz+2+aPWfy3yx+z+G+fP2bx/23+mMX/d/ljFv8d8scs/r/PH7P4/yF/zOK/Y/6YxX+n/DGL/x/zxyz+O+ePWfx3yR+z+O+aP2bx/1P+mMX/z/ljFv/d8scs/n/JH7P4754/ZvHfI3/M4r9n/pjF/6/5Yxb/vfLHLP57549Z/PfJH7P475s/ZvHfL3/M4r9//pjF/4D8MYv/gfljFv+D8scs/gfnj1n8D8kfs/gfmj9m8T8sf8zif3j+mMX/iPwxi/+R+WMW/6Pyxyz+R+ePWfyPyR+z+B+bP2bxPy5/zOJ/fP6Yxf+E/DGL/4n5Yxb/k/LHLP4n549Z/E/JH7P4n5o/ZvE/LX/M4n96/pjF/4z8MYv/mfljFv+z8scs/mfnj1n8z8kfs/ifmz9m8T8vf8zif37+mMX/gvwxi/+F+WMW/4vyxyz+F+ePWfwvyR+z+F+aP2bxvyx/zOJ/ef6Yxf+K/DGL/5X5Yxb/q/LHLP5X549Z/K/JH7P4X5s/ZvG/Ln/M4n99/pjF/4b8MYv/jfljFv+b8scs/jfnj1n8b8kfs/jfmj9m8b8tf8zif3v+mMX/jvwxi/+d+WMW/7vyxyz+d+ePWfzvyR+z+N+bP2bxvy9/zOJ/f/6Yxf+B/DGL/4P5Yxb/h/LHLP4P549Z/B/JH7P4P5o/ZvF/LH/M4v94/pjF/4n8MYv/k/ljFv+n8scs/k/nj1n8n8kfs/g/mz9m8X8uf8zi/3z+mMX/hfwxi/+L+WMW/5fyxyz+L+ePWfxfyR+z+L+aP2bxfy1/zOL/ev6Yxf+N/DGL/5v5Yxb/t/LHLP5v549J/McbyB+z+A/KH7P4j5I/ZvEfNX/M4j84f8ziPyR/zOI/Wv6YxX/0/DGL/xj5Yxb/MfPHLP5j5Y9Z/MfOH7P4j5M/ZvEfN3/M4j9e/pjFf/z8MYv/BPljFv8J88cs/hPlj1n8J84fs/hPkj9m8f9Q/pjF/8P5Yxb/j+SPWfwnzR+z+H80f8ziP1n+mMX/Y/ljFv+P549Z/CfPH7P4fyJ/zOL/yfwxi/8U+WMW/0/lj1n8P50/ZvH/TP6YxX/K/DGL/2fzxyz+n8sfs/h/Pn/M4j9V/pjF/wv5Yxb/L+aPWfy/lD9m8f9y/pjF/yv5Yxb/r+aPWfynzh+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/wz5Yxb/r+WPWfxnzB+z+M+UP2bxnzl/zOI/S/6Yxf/r+WMW/1nzxyz+38gfs/jPlj9m8f9m/pjF/1v5Yxb/2fPHLP5z5I9Z/OfMH7P4z5U/ZvH/dv6YxX/u/DGL/zz5Yxb/efPHLP7fyR+z+M+XP2bx/27+mMV//vwxi/8C+WMW/wXzxyz+C+WPWfy/lz9m8V84f8ziv0j+mMV/0fwxi/9i+WMW/8Xzxyz+S+SPWfy/nz9m8f9B/pjFf8n8MYv/UvljFv8f5o9Z/H+UP2bxXzp/zOK/TP6YxX/Z/DGL/4/zxyz+y+WPWfyXzx+z+P8kf8ziv0L+mMV/xfwxi/9K+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bx/2n+mMV/9fwxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOK/Xv6YxX/9/DGL/wb5Yxb/n+WPWfx/nj9m8d8wf8ziv1H+mMV/4/wxi/8m+WMW/1/kj1n8f5k/ZvHfNH/M4r9Z/pjFf/P8MYv/FvljFv8t88cs/r/KH7P4b5U/ZvH/df6YxX/r/DGL/2/yxyz+2+SPWfy3zR+z+G+XP2bx3z5/zOL/2/wxi//v8scs/jvkj1n8f58/ZvH/Q/6YxX/H/DGL/075Yxb/P+aPWfx3zh+z+O+SP2bx3zV/zOL/p/wxi/+f88cs/rvlj1n8/5I/ZvHfPX/M4r9H/pjFf8/8MYv/X/PHLP575Y9Z/PfOH7P475M/ZvHfN3/M4r9f/pjFf//8MYv/AfljFv8D88cs/gflj1n8D84fs/gfkj9m8T80f8zif1j+mMX/8Pwxi/8R+WMW/yPzxyz+R+WPWfyPzh+z+B+TP2bxPzZ/zOJ/XP6Yxf/4/DGL/wn5Yxb/E/PHLP4n5Y9Z/E/OH7P4n5I/ZvE/NX/M4n9a/pjF/3Sx/5D3uc7if4bY//2y+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf8zi/3b+mMR//IH8MYv/oPwxi/8o+WMW/1Hzxyz+g/PHLP5D8scs/qPlj1n8R88fs/iPkT9m8R8zf8ziP1b+mMV/7Pwxi/84+WMW/3Hzxyz+4+WPWfzHzx+z+E+QP2bxnzB/zOI/Uf6YxX/i/DGL///HHj1lgWIYUAB8bV9jfcS2bdu2bdu2bdu2bdu2bSf/OXcFuTNbmOH9Ry3/I/iPWv5H9B+1/I/kP2r5H9l/1PI/iv+o5X9U/1HL/2j+o5b/0f1HLf9j+I9a/sf0H7X8j+U/avkf23/U8j+O/6jlf1z/Ucv/eP6jlv/x/Uct/xP4j1r+J/QftfxP5D9q+Z/Yf9TyP4n/qOV/Uv9Ry/9k/qOW/8n9Ry3/U/iPWv6n9B+1/E/lP2r5n9p/1PI/jf+o5X9a/1HL/3T+o5b/6f1HLf8z+I9a/mf0H7X8z+Q/avmf2X/U8j+L/6jlf1b/Ucv/bP6jlv/Z/Uct/3P4j1r+5/QftfzP5T9q+Z/bf9TyP4//qOV/Xv9Ry/98/qOW//n9Ry3/C/iPWv4X9B+1/C/kP2r5X9h/1PK/iP+o5X9R/1HL/2L+o5b/xf1HLf9L+I9a/pf0H7X8L+U/avlf2n/U8r+M/6jlf1n/Ucv/cv6jlv/l/Uct/yv4j1r+V/Qftfyv5D9q+V/Zf9Tyv4r/qOV/Vf9Ry/9q/qOW/9X9Ry3/a/iPWv7X9B+1/K/lP2r5X9t/1PK/jv+o5X9d/1HL/3r+o5b/9f1HLf8b+I9a/jf0H7X8b+Q/avnf2H/U8r+J/6jlf1P/Ucv/Zv6jlv/N/Uct/1v4j1r+t/Qftfxv5T9q+d/af9Tyv43/qOV/W/9Ry/92/qOW/+39Ry3/O/iPWv539B+1/O/kP2r539l/1PK/i/+o5X9X/1HL/27+o5b/3f1HLf97+I9a/vf0H7X87+U/avnf23/U8r+P/6jlf1//Ucv/fv6jlv/9/Uct/wf4j1r+D/Qftfwf5D9q+T/Yf9Tyf4j/qOX/UP9Ry/9h/qOW/8P9Ry3/R/iPWv6P9B+1/B/lP2r5P9p/1PJ/jP+o5f9Y/1HL/3H+o5b/4/1HLf8n+I9a/k/0H7X8n+Q/avk/2X/U8n+K/6jl/1T/Ucv/af6jlv/T/Uct/2f4j1r+z/Qftfyf5T9q+T/bf9Tyf47/qOX/XP9Ry/95/qOW//P9Ry3/F/iPWv4v9B+1/F/kP2r5v9h/1PJ/if+o5f9S/1HL/2X+o5b/y/1HLf9X+I9a/q/0H7X8X+U/avm/2n/U8n+N/6jl/1r/Ucv/df6jlv/r/Uct/zf4j1r+b/Qftfzf5D9q+b/Zf9Tyf4v/qOX/Vv9Ry/9t/qOW/9v9Ry3/d/iPWv7v9B+1/N/lP2r5v9t/1PJ/j/+o5f9e/1HL/33+o5b/+/1HLf8P+I9a/h/0H7X8P+Q/avl/2H/U8v+I/6jl/1H/Ucv/Y/6jlv/H/Uct/0/4j1r+n/Qftfw/5T9q+X/af9Ty/4z/qOX/Wf9Ry/9z/qOW/+f9Ry3/L/iPWv5f9B+1/L/kP2r5f9l/1PL/iv+o5f9V/1HL/2v+o5b/1/1HLf9v+I9a/t/0H7X8v+U/avl/23/U8v+O/6jl/13/Ucv/e/6jlv/3/Uct/x/4j1r+P/Qftfx/5D9q+f/Yf9Ty/4n/qOX/U/9Ry/9n/v9p4ICi/8/9Ry3/X/iPWv6/9B+1/H/lP2r5/9p/1PL/jf+o5f9b/1HL/3f+o5b/7/1HLf8/+I9a/n/0H7X8/+Q/avn/2X/U8v+L/6jl/1f/Ucv/b/6jlv/f/Uct/3/4j1r+//Qftfz/5T8q+R9ugP+o5f8//qOW///6j1r+/+c/avkf6D9q+f+//6jlfxD/Ucv/oP6jlv/B/Ect/4P7j1r+h/AftfwP6T9q+R/Kf9TyP7T/qOV/GP9Ry/+w/qN/3T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/s3e3sXmVhR/HT9d2T3/27+YcXkMGg003cWVrVyaDzYf6WDBVx2LABLKFlVEpzD0EN1CrQYnBGCYjQUTdpm4CiTHjxTABYSVRiVPROBENcQjqIqaGiYxoXGrutndp77XNetXr2ot9Pi/a+5zyO92WfHdO2ZoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQ0uZtt9ywtqOjbZMXXnjhxcCLU/07E5Daa9Gf6h8JAAAAAAAAAAAAAAAwkhzfTnSqf44AAAAAAHC6aWl9V3d11ZBT1YMP5vy8rfd906tXXr/n+cdXlt/3f/jyYS45YfBBT09Pz0vNXTP7DycVRVH6bNP7jydXjkvX7+y6fHvfUSh++2xz67btzQd3fuXrD8+dOn1Obe/Z2mLNde0dbUsmFEWori22lg4aqooiTKwttpcOGksHk2qL+0sHS3sPphQHSgcXXruhY13pxAmfGk47La2fLaqHFFsM+d1gcP+dXZt2ld+Pcsny1WqK/v7rmn+4t+JjZSP0X75+qKrsf8w/QWBEY+v/9oXl96Nc8oT7/6PtdauG+9jI/ZevHyboH9IZ5vl/SKO9z/t79s8Y4fl/7jCXHNj/9C8ru0r93/TLF+r7T9WczPN/6fP1HYXqyv4nDHn+Lz3H15Sf/ycVRagd5y8HnFZaWj/XPdr9v7L7of3XnFWxqRrc/9FVe6pL/R++64H395+qPan+B64faka5/1d95sDQHyswNi2tu3sq7v9j6L9YMMwlB/qfv/vYVaX+z9h5ZN+gj42l/9rK/hdvufETizdvu6W+/ca169vWt93U2NjQtHRZU+NFyxf3PhL0vR3nrwqcHsZ3/y+mVmyqiqJtYL/ow8teKvV/8Nx//K3/1OQx9j9x1Pv/c+7/MKzzJxQTJxZb127Zsqmh7235sLHvbd9/Nkz/J379P2L/88r/H7D8dXfpC/KB/W/e+dWPlPq/d9KqB/pPTRxj/5NG67/ztc8LRBjn/X9dxWZI/+2vfmddqf8/vXL8UP+psX79P3nU/ne5/8N4tLRW/IWf/7FS/6v/dXi4Pyc4CWGKP/+DdHL0v3XaL74Ztw5T9Q/p5Oh/6ea2yL9sG/5P/5BOjv5/taPqSNw6nKF/SCdH/1/rfnBj3DpM0z+kk6P//bMfeSpuHf5f/5BOjv6Pr59+Vdw61Okf0snR/2Vf2rs6bh2m6x/SydF/1SvTnohbhxn6h3Ry9F9fdfan4tbhdfqHdHL0f13nwy/GrcNM/UM6Ofr//M5fR36fTni9/iGdHP0/9cetO+LWYZb+IZ0c/b8wq70+bh3O1D+kk6P/+2944pG4dXiD/iGdHP0//a0PHotbh6B/SCdH/9949siauHWYrX9IJ0f/+xYe+0PcOpylf0gnR////ujVH4hbhzfqH9LJ0X/Yv/y7cetwtv4hnRz9X/HkXQ1x6zBH/5BOjv47V9x2Z9w6nKN/SCdH/03NC2fHrcO5+od0cvQ/489/vztuHebqH9LJ0f/H7ntv5b/7fZLCefqHdHL0f/OG1Y/GrcP5+od0cvS/ckbPBXHrME//kE6O/g8fve9HceswX/+QTo7+775zyRVx6/Am/UM6Ofr/wa3ndcetw5v1D+nk6P/l2jtujVuHBfqHdHL0/+Wf1SyLW4eF+od0cvT/44e+vytuHd6if0gnR/8vvu+xc+LW4QL9Qzo5+t998awvxq3DW/UP6eTo/93PbFwftw6L9A/p5Oh/8t7fH41bh3r9Qzo5+p+/6uCH4tbhQv1DOjn637Boze/i1mGx/iGdHP0/c+DpQ3HrsET/kE6O/nc89unmuHVo0D+kk6P/xy/r+E/cOjTqH9LJ0f8/m37y8bh1WKp/SCdH/2ce+vYX4tahSf+QTo7+r35w8sy4dbhI/5BOjv43XjP7e3HrsEz/kE6O/i+Z+9ClcevwNv1DOjn6f89fV9wctw4X6x/SydF/3T33PBe3Dsv1D+nk6H/etbdfE7cOl+gf0snR//Vz6p+MW4dL9Q/p5Oj/juMtC+LWYYX+IZ0c/Xfd9vy+uHVYqX9IJ0f/3Z98uS5uHd6uf0gnR/97p1x5b9w6vEP/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8lx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirswIEMAAAAgDB/6zzaDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADATwEAAP///rjRtw==")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x6200, 0x0)
sendfile(r7, r8, 0x0, 0x20fffe82)
r9 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r9, r9, 0x0, 0x800000009)
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x38, 0xc, 0xa, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x60}, 0x1, 0x0, 0x0, 0x24000840}, 0x48040)

20.58080191s ago: executing program 0 (id=374):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x3, &(0x7f0000000040)=0xf, 0x3, 0x0)

20.574376481s ago: executing program 2 (id=375):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000002040)='limits\x00')
renameat2(r0, &(0x7f0000000000)='./cgroup\x00', r0, &(0x7f0000000080)='./cgroup\x00', 0x5)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
keyctl$clear(0x3, 0xfffffffffffffffd)
keyctl$set_reqkey_keyring(0xe, 0x4)
r2 = fcntl$getown(r1, 0x9)
timer_create(0x7, &(0x7f0000000040)={0x0, 0x3c, 0x4, @tid=r2}, &(0x7f0000000180))
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=')\x80', 0x0)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x50})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3})
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
ioctl$UFFDIO_COPY(r3, 0xc028aa03, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x11, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x93, 0x0, 0x0, 0x0, 0x41da}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x480}}, [@map_fd={0x18, 0x2, 0x1, 0x0, r1}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0xff1, &(0x7f0000000cc0)=""/4081, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffefffd}, 0x94)

17.459607196s ago: executing program 0 (id=376):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84) (async, rerun: 32)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) (async, rerun: 32)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) (async)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000002"], 0x0) (async)
syz_usb_connect$uac1(0x3, 0xa2, &(0x7f0000000040)=ANY=[@ANYBLOB="12011001000000406b1d01014000010203010902900003010380000904000000010100000a24010f00030201020c2402060602040c0032a304090401000001020000090401010101020000072401200404000c2418010201400f0a3b4725090501090000f7090607250183020c00090402000001030000090402010101020000072401"], 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
close_range(r1, 0xffffffffffffffff, 0x0) (async)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0x4000, 0x1, 0xc1, 0x0, r1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x0, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 32)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50) (rerun: 32)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x4, @loopback, 0x4}, 0x1c, &(0x7f0000000480)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043) (async, rerun: 32)
r3 = socket(0x10, 0x3, 0x0) (rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r3, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}}, 0x4084) (async)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0) (async, rerun: 32)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0) (rerun: 32)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4) (async)
setsockopt$inet6_int(r4, 0x29, 0x31, &(0x7f0000000100)=0x8, 0x4) (async)
sendmmsg$inet6(r4, &(0x7f0000000440)=[{{&(0x7f0000000400)={0xa, 0x4e23, 0x800, @mcast2}, 0x1c, 0x0}}], 0x1, 0x60044004)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000200)={[0x67a, 0x6, 0xf3b8, 0x0, 0x1000, 0x400, 0x4002004c4, 0x1000, 0x0, 0x97, 0x10, 0x0, 0x3, 0x4], 0xeeee8000, 0x400})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0, r4}, 0x68) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) (async)
r5 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xa, 0xa0002f7})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 64)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x24, &(0x7f0000000000)=0xa, 0x4) (async, rerun: 64)
io_uring_enter(r5, 0x2219, 0x7721, 0x16, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000140)={0x80000000})

17.337605272s ago: executing program 2 (id=377):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r2, 0x4b4d, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000010000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x18)

16.45773088s ago: executing program 2 (id=378):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
write(r0, &(0x7f0000000080)="09000300010001", 0x7) (fail_nth: 4)

14.477323387s ago: executing program 2 (id=379):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x11, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x480, 0x93, 0x0, 0x0, 0x0, 0x41da}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x480}}, [@map_fd={0x18, 0x2, 0x1, 0x0, r0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0xff1, &(0x7f0000000cc0)=""/4081, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffefffd}, 0x94)

14.007227478s ago: executing program 4 (id=381):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xd, 0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4008000)
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f0000001140)="bad330fbc9b55400040000ea0756", 0x36, 0x40, &(0x7f00000001c0)={0x11, 0x86dd, r3, 0x1, 0xd8, 0x6, @multicast}, 0x14)

13.26790547s ago: executing program 1 (id=382):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x3b67})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r2, 0x0)
connect$x25(r2, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3, 0x2}}, 0x12)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000000c0)={0x3, 0x5, r1, 0x0, <r3=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000200)={0xc, <r4=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000004c0)={0x48, 0x5, r4, 0x0, 0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x7, r3, 0x0, 0x10001, 0x0, 0x109, 0xd6fe2, 0x3d3b4e})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x3, r1, 0x0, &(0x7f0000a3b000/0x1000)=nil, 0x1000})
ioctl$IOMMU_IOAS_UNMAP$ALL(r0, 0x3b86, &(0x7f0000000080)={0x18, r1})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000003c0)={0xc}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r1, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000, 0x3b67}) (async)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) (async)
syz_init_net_socket$x25(0x9, 0x5, 0x0) (async)
listen(r2, 0x0) (async)
connect$x25(r2, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3, 0x2}}, 0x12) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000000c0)={0x3, 0x5, r1, 0x0, 0xffffffffffffffff, 0x1}) (async)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, &(0x7f0000000200)={0xc}) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000004c0)={0x48, 0x5, r4, 0x0, 0xffffffffffffffff, 0x1}) (async)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x7, r3, 0x0, 0x10001, 0x0, 0x109, 0xd6fe2, 0x3d3b4e}) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x3, r1, 0x0, &(0x7f0000a3b000/0x1000)=nil, 0x1000}) (async)
ioctl$IOMMU_IOAS_UNMAP$ALL(r0, 0x3b86, &(0x7f0000000080)={0x18, r1}) (async)

12.993481261s ago: executing program 0 (id=383):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x52000775)
ioperm(0x0, 0x1, 0x1)
syz_mount_image$exfat(&(0x7f0000000700), &(0x7f0000000080)='./file0\x00', 0x1818000, &(0x7f0000000380)=ANY=[], 0xee, 0x1501, &(0x7f0000000d80)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
futex_waitv(&(0x7f0000001080)=[{0x3, 0x0, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f0000000700), 0x1, 0x55f, &(0x7f0000000c80)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
getsockname$packet(r5, &(0x7f0000000180)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000001c0)=0x14)
statx(r2, &(0x7f00000002c0)='./file1\x00', 0x1000, 0x200, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000840)={{{@in=@broadcast, @in=@private=0xa010100, 0x4e24, 0xc, 0x4e21, 0x6, 0xf, 0x0, 0x20, 0x21, r6, r7}, {0x80000001, 0x837d00000000000, 0x100000000, 0x81, 0xffffffff, 0x4, 0x7f, 0x1a}, {0x0, 0x1ff, 0x7, 0xa0}, 0x8, 0x0, 0x2, 0x1, 0x1, 0x2}, {{@in6=@empty, 0x4d5, 0x32}, 0xa, @in=@dev={0xac, 0x14, 0x14, 0x11}, 0x3505, 0x1, 0x3, 0xc8, 0xfe1, 0x8, 0x101}}, 0xe8)
fadvise64(r5, 0x7f, 0x0, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x17, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x93, 0x0, 0x0, 0x0, 0x41da}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x480}}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0xff1, &(0x7f0000000cc0)=""/4081, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffefffd}, 0x94)

12.990075662s ago: executing program 1 (id=384):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x3, &(0x7f0000000040)=0xf, 0x3, 0x0)

11.188691121s ago: executing program 1 (id=385):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0) (async)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000040)=@dstopts={0x87}, 0x8)
sendto$inet6(r0, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x2, @dev={0xfe, 0x80, '\x00', 0x36}, 0x9}, 0x1c) (async, rerun: 32)
r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) (rerun: 32)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) (async, rerun: 64)
r2 = fsmount(r1, 0x0, 0x1) (rerun: 64)
fchdir(r2) (async)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
getdents64(r3, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001c00), 0x2c80, 0x0)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xad) (async)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000001640), 0x81800, 0x0)
ioctl$SIOCGSKNS(r5, 0x894c, 0x0) (async)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000300)={0x5, 0x0, 0xfffffffd, 0x1000000e, 0x1bf, 0x0})

10.950809091s ago: executing program 4 (id=386):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x3, &(0x7f0000000040)=0xf, 0x3, 0x0)

9.086929033s ago: executing program 4 (id=387):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0xb1, 0x9, 0x0, 0x7ffff020}, {0x6, 0x0, 0x0, 0x4}]}, 0x10) (async)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0xb1, 0x9, 0x0, 0x7ffff020}, {0x6, 0x0, 0x0, 0x4}]}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e2a, 0xffffffff, @mcast2, 0x9}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00) (async)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), r2)

8.902105851s ago: executing program 0 (id=388):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f00000000c0)=[{0x1bf9, 0x7f, 0x1, 0xfffffffd}, {0x5, 0x8, 0x81, 0xd7}]}, 0x10)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000004e00)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000cc0)="0dda2dfa", 0x4}], 0x1, &(0x7f00000000c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x4}], 0x30}], 0x1, 0x0)
recvmsg$can_j1939(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000002c0)=""/47, 0x2f}], 0x1}, 0x2140)
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$keyring(&(0x7f0000000200), 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000012c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f00000006c0)={[{@stripe={'stripe', 0x3d, 0x3}}, {@abort}, {@resuid}, {@oldalloc}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0x1, 0x56b, &(0x7f0000001b40)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = openat$tun(0xffffffffffffff9c, 0x0, 0x900, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb010018000000001a5e9d6200"/29], 0x0, 0x1d, 0x0, 0x1, 0x43}, 0x28)
ioctl$TUNGETFILTER(r7, 0x801054db, &(0x7f0000000140)=""/115)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1004410, &(0x7f0000000400), 0x84, 0x46e, &(0x7f0000000900)="$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")
socket$inet6(0xa, 0x2, 0x0)

7.053425812s ago: executing program 0 (id=389):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r2, 0x4b4d, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r6 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000200), 0x220400, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r6, 0x4068aea3, &(0x7f00000003c0)={0x74, 0x0, 0x76})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000010000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x18)
write(r5, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)
socket(0x10, 0x3, 0x0)
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f00000000c0)={[{@uid}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@gid}, {@uid}, {@codepage={'codepage', 0x3d, 'cp950'}}, {}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@dir_umask={'dir_umask', 0x3d, 0x7}}]}, 0x4, 0x33f, &(0x7f0000000880)="$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")
sched_setparam(r1, &(0x7f0000000180)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, r1, &(0x7f0000000140), 0x4001)
fchdir(0xffffffffffffffff)
sendmmsg$unix(r8, &(0x7f0000000c40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x0)

6.740054255s ago: executing program 2 (id=390):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETKEYCODE(r2, 0x4b4d, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = socket(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r6 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000200), 0x220400, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(r6, 0x4068aea3, &(0x7f00000003c0)={0x74, 0x0, 0x76})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000010000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r7}, 0x18)
write(r5, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)
socket(0x10, 0x3, 0x0)
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f00000000c0)={[{@uid}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@gid}, {@uid}, {@codepage={'codepage', 0x3d, 'cp950'}}, {}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@dir_umask={'dir_umask', 0x3d, 0x7}}]}, 0x4, 0x33f, &(0x7f0000000880)="$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")
sched_setparam(r1, &(0x7f0000000180)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, r1, &(0x7f0000000140), 0x4001)
fchdir(0xffffffffffffffff)
sendmmsg$unix(r8, &(0x7f0000000c40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x0)

4.814051989s ago: executing program 2 (id=391):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
eventfd2(0x0, 0x0)
r4 = creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180200000000000000000000000000008500000061000000850000007d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0x12, 0x0, &(0x7f0000000680)="e02742e80f1c335a9782762f88a881d817ff", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = fanotify_init(0xf00, 0x0)
fanotify_mark(r6, 0x541, 0x40001019, r4, 0x0)
fanotify_mark(r6, 0x105, 0x9975, r4, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, 0x0, 0x0)
r8 = accept4(r7, 0x0, 0x0, 0x800)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_GET(r8, 0x0, 0x4008000)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r6, r4, 0x0)
time(0xfffffffffffffffc)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r9, &(0x7f0000000340)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x1c)
sendto$inet6(r9, &(0x7f00000001c0), 0x0, 0x840, 0x0, 0x0)

4.273608333s ago: executing program 1 (id=392):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002080)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_BMAP(r2, &(0x7f0000000280)={0x18, 0x0, r3, {0xfffffffffffffffb}}, 0x18)
r4 = dup(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0f000000040000000800000001"], 0x50)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r6 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x800, 0x1, 0x40000333}, &(0x7f00000006c0)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r6, 0x847ba, 0x0, 0xe, 0x0, 0x0)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000000)=ANY=[@ANYRES16=r5], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f3d7fc73e7802747f70d911adb27b64c32819eaffbedee439c5f6ede0c30d3e382142875d0cd54ff451cecc324cce2e7fb141b21d4361fdbe1872d3cc52b02a1392e39474f9feea715dedcf7769d2381edae813a810b73c50381c8d1ae21c1a7b961f06139b568c0a2ae03df736d371a0555d7acecf9aad2cbe", @ANYRESHEX=r4, @ANYBLOB=',\x00'])

3.774356705s ago: executing program 1 (id=393):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
eventfd2(0x0, 0x0)
r4 = creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r5 = fanotify_init(0xf00, 0x0)
fanotify_mark(r5, 0x541, 0x40001019, r4, 0x0)
fanotify_mark(r5, 0x105, 0x9975, r4, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, 0x0, 0x0)
r7 = accept4(r6, 0x0, 0x0, 0x800)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_GET(r7, 0x0, 0x4008000)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r8, &(0x7f0000000340)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x1c) (fail_nth: 4)
sendto$inet6(r8, &(0x7f00000001c0), 0x0, 0x840, 0x0, 0x0)

1.760041113s ago: executing program 1 (id=394):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xd, 0xb}}}, 0x24}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4008000)
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f0000001140)="bad330fbc9b55400040000ea0756", 0x36, 0x40, &(0x7f00000001c0)={0x11, 0x86dd, r3, 0x1, 0xd8, 0x6, @multicast}, 0x14)

1.713757935s ago: executing program 4 (id=395):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1818000075266f83000000000000000004000000ffffffffc3000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x1b, &(0x7f0000000100)=""/147, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x17, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x22)

141.743984ms ago: executing program 4 (id=396):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@norecovery}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sync()
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x504, &(0x7f0000000ac0)="$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")
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce82201000905815f"], 0x0)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xc, 0x110, 0xffffffffffffffff, 0x8000000)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1f2bde3c72d6fae5, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x9, 0x0, 0x0, 0x0, {0x130}, 0x1})
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x14, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00')

0s ago: executing program 0 (id=397):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000002a80)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001ac0)=ANY=[@ANYBLOB="dc070000130001002bbd7000fbdbdf2508005400", @ANYRES32=0x0, @ANYBLOB="04007180bd07bc80080013803a48ad0408001c"], 0x7dc}], 0x1, 0x0, 0x0, 0x8000}, 0x8880) (fail_nth: 4)

kernel console output (not intermixed with test programs):

499881][ T6232]  ? __lock_acquire+0x7c80/0x7c80
[  161.504922][ T6232]  ? rcu_is_watching+0x15/0xb0
[  161.509725][ T6232]  ? copyout_mc+0x70/0x70
[  161.514078][ T6232]  ? __virt_addr_valid+0x18c/0x540
[  161.519206][ T6232]  ? __virt_addr_valid+0x18c/0x540
[  161.524343][ T6232]  ? __virt_addr_valid+0x469/0x540
[  161.529495][ T6232]  ? __check_object_size+0x506/0xa30
[  161.534910][ T6232]  netlink_sendmsg+0x75c/0xbe0
[  161.539697][ T6232]  ? netlink_getsockopt+0x580/0x580
[  161.544921][ T6232]  ? aa_sock_msg_perm+0x94/0x150
[  161.549892][ T6232]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  161.555198][ T6232]  ? security_socket_sendmsg+0x80/0xa0
[  161.560671][ T6232]  ? netlink_getsockopt+0x580/0x580
[  161.565968][ T6232]  ____sys_sendmsg+0x5bf/0x950
[  161.570763][ T6232]  ? __asan_memset+0x22/0x40
[  161.575394][ T6232]  ? __sys_sendmsg_sock+0x30/0x30
[  161.580461][ T6232]  ? __import_iovec+0x5f2/0x860
[  161.585446][ T6232]  ? import_iovec+0x73/0xa0
[  161.589984][ T6232]  ___sys_sendmsg+0x220/0x290
[  161.594683][ T6232]  ? __sys_sendmsg+0x270/0x270
[  161.599484][ T6232]  ? __lock_acquire+0x7c80/0x7c80
[  161.604553][ T6232]  __se_sys_sendmsg+0x1a5/0x270
[  161.609420][ T6232]  ? __x64_sys_sendmsg+0x80/0x80
[  161.614380][ T6232]  ? lockdep_hardirqs_on+0x98/0x150
[  161.619603][ T6232]  do_syscall_64+0x55/0xb0
[  161.624029][ T6232]  ? clear_bhb_loop+0x40/0x90
[  161.628807][ T6232]  ? clear_bhb_loop+0x40/0x90
[  161.633512][ T6232]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  161.639433][ T6232] RIP: 0033:0x7f9a6b78f749
[  161.643882][ T6232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.663522][ T6232] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.671954][ T6232] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  161.679944][ T6232] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  161.687929][ T6232] RBP: 00007f9a6c704090 R08: 0000000000000000 R09: 0000000000000000
[  161.695908][ T6232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.703893][ T6232] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  161.711889][ T6232]  </TASK>
[  161.790278][ T5858] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  161.979466][ T5858] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  161.994959][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.021057][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.080117][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.100381][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.126427][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.156773][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.180965][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.205408][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.266743][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.304342][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.318617][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.344628][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.358262][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.376244][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.396430][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.414840][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.424592][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.473802][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.489423][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.500177][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.526401][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.538323][ T5858] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  162.547890][ T5858] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  162.559357][ T5858] usb 4-1: config 0 interface 0 has no altsetting 0
[  162.569440][ T5858] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  162.578988][ T5858] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  162.606085][ T5858] usb 4-1: Product: syz
[  162.630899][ T5858] usb 4-1: Manufacturer: syz
[  162.635593][ T5858] usb 4-1: SerialNumber: syz
[  162.664387][ T5858] usb 4-1: config 0 descriptor??
[  163.369858][ T6255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.107'.
[  164.428754][ T5858] yurex 4-1:0.0: USB YUREX device now attached to Yurex #0
[  164.438120][ T6252] loop2: detected capacity change from 0 to 4096
[  164.471597][ T5858] usb 4-1: USB disconnect, device number 2
[  164.486478][ T6252] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  164.529556][ T5858] yurex 4-1:0.0: USB YUREX #0 now disconnected
[  164.641942][ T6252] ntfs3: loop2: Failed to initialize $Extend/$ObjId.
[  165.116157][ T6266] Invalid ELF header len 1
[  165.705520][ T6279] netlink: 'syz.1.113': attribute type 10 has an invalid length.
[  165.726445][ T6279] netlink: 40 bytes leftover after parsing attributes in process `syz.1.113'.
[  165.745402][ T6279] bridge0: port 3(dummy0) entered blocking state
[  165.752059][ T6279] bridge0: port 3(dummy0) entered disabled state
[  165.759362][ T6279] dummy0: entered allmulticast mode
[  165.766105][ T6279] dummy0: entered promiscuous mode
[  165.787435][ T6279] bridge0: port 3(dummy0) entered blocking state
[  165.794343][ T6279] bridge0: port 3(dummy0) entered forwarding state
[  166.691222][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.117'.
[  168.427203][ T6290] netlink: 4 bytes leftover after parsing attributes in process `syz.1.116'.
[  170.088226][ T6298] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  171.156679][ T6315] veth0_to_hsr: entered promiscuous mode
[  171.827290][ T6308] veth0_to_hsr: left promiscuous mode
[  172.789693][ T6329] netlink: 4 bytes leftover after parsing attributes in process `syz.1.127'.
[  173.787361][ T6328] netlink: 4 bytes leftover after parsing attributes in process `syz.2.128'.
[  174.080202][ T6334] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  174.994287][ T6350] FAULT_INJECTION: forcing a failure.
[  174.994287][ T6350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.008168][ T6350] CPU: 1 PID: 6350 Comm: syz.1.129 Not tainted syzkaller #0
[  175.015525][ T6350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  175.017109][ T5856] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  175.025602][ T6350] Call Trace:
[  175.025616][ T6350]  <TASK>
[  175.025625][ T6350]  dump_stack_lvl+0x16c/0x230
[  175.044071][ T6350]  ? show_regs_print_info+0x20/0x20
[  175.049326][ T6350]  ? load_image+0x3b0/0x3b0
[  175.053878][ T6350]  ? __might_fault+0xaa/0x120
[  175.058595][ T6350]  ? __lock_acquire+0x7c80/0x7c80
[  175.063662][ T6350]  should_fail_ex+0x39d/0x4d0
[  175.068395][ T6350]  _copy_from_iter+0x1d3/0x1290
[  175.073291][ T6350]  ? slab_post_alloc_hook+0x8a/0x4d0
[  175.078624][ T6350]  ? __virt_addr_valid+0x18c/0x540
[  175.083773][ T6350]  ? __lock_acquire+0x7c80/0x7c80
[  175.088827][ T6350]  ? rcu_is_watching+0x15/0xb0
[  175.093615][ T6350]  ? copyout_mc+0x70/0x70
[  175.097980][ T6350]  ? __virt_addr_valid+0x18c/0x540
[  175.103114][ T6350]  ? __virt_addr_valid+0x18c/0x540
[  175.108245][ T6350]  ? __virt_addr_valid+0x469/0x540
[  175.113381][ T6350]  ? __check_object_size+0x506/0xa30
[  175.118698][ T6350]  netlink_sendmsg+0x75c/0xbe0
[  175.123520][ T6350]  ? netlink_getsockopt+0x580/0x580
[  175.128760][ T6350]  ? aa_sock_msg_perm+0x94/0x150
[  175.133717][ T6350]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  175.139020][ T6350]  ? security_socket_sendmsg+0x80/0xa0
[  175.144496][ T6350]  ? netlink_getsockopt+0x580/0x580
[  175.149710][ T6350]  ____sys_sendmsg+0x5bf/0x950
[  175.154496][ T6350]  ? __asan_memset+0x22/0x40
[  175.159108][ T6350]  ? __sys_sendmsg_sock+0x30/0x30
[  175.164165][ T6350]  ? __import_iovec+0x5f2/0x860
[  175.169056][ T6350]  ? import_iovec+0x73/0xa0
[  175.173585][ T6350]  ___sys_sendmsg+0x220/0x290
[  175.178281][ T6350]  ? __sys_sendmsg+0x270/0x270
[  175.183082][ T6350]  ? __lock_acquire+0x7c80/0x7c80
[  175.188140][ T6350]  __se_sys_sendmsg+0x1a5/0x270
[  175.193006][ T6350]  ? __x64_sys_sendmsg+0x80/0x80
[  175.197972][ T6350]  ? lockdep_hardirqs_on+0x98/0x150
[  175.203190][ T6350]  do_syscall_64+0x55/0xb0
[  175.207640][ T6350]  ? clear_bhb_loop+0x40/0x90
[  175.212335][ T6350]  ? clear_bhb_loop+0x40/0x90
[  175.217029][ T6350]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  175.222941][ T6350] RIP: 0033:0x7f8bd638f749
[  175.227368][ T6350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.246990][ T6350] RSP: 002b:00007f8bd720a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  175.255417][ T6350] RAX: ffffffffffffffda RBX: 00007f8bd65e5fa0 RCX: 00007f8bd638f749
[  175.263402][ T6350] RDX: 0000000060000090 RSI: 0000200000000100 RDI: 0000000000000003
[  175.271397][ T6350] RBP: 00007f8bd720a090 R08: 0000000000000000 R09: 0000000000000000
[  175.279380][ T6350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.287364][ T6350] R13: 00007f8bd65e6038 R14: 00007f8bd65e5fa0 R15: 00007ffea6718868
[  175.295389][ T6350]  </TASK>
[  175.509096][ T5856] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  175.520359][ T5856] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  175.533534][ T5856] usb 3-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  175.555104][ T6334] loop3: detected capacity change from 0 to 32768
[  175.555308][ T5856] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.603715][ T6355] netlink: 'syz.1.138': attribute type 4 has an invalid length.
[  175.612555][ T5856] usb 3-1: config 0 descriptor??
[  175.625986][ T6341] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  175.771046][ T6334] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  175.912116][ T6334] XFS (loop3): Ending clean mount
[  176.019501][ T6334] XFS (loop3): Quotacheck needed: Please wait.
[  176.078220][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.282445][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.344319][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.568067][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.622851][   T49] XFS (loop3): Metadata corruption detected at xfs_dinode_verify+0x2b9/0x1140, inode 0x1145 dinode
[  176.667407][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.681214][   T49] XFS (loop3): Unmount and run xfs_repair
[  176.685006][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.697083][ T5856] logitech 0003:046D:CA04.0001: unknown main item tag 0x0
[  176.701086][   T49] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  176.726125][   T49] 00000000: 49 4e a1 ff 03 01 00 00 00 00 00 00 00 00 00 00  IN..............
[  176.882873][ T5856] logitech 0003:046D:CA04.0001: hidraw0: USB HID vff.fa Device [HID 046d:ca04] on usb-dummy_hcd.2-1/input0
[  176.919736][   T49] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  177.518147][ T6372] netlink: 4 bytes leftover after parsing attributes in process `syz.2.140'.
[  177.550845][ T6372] loop2: detected capacity change from 0 to 64
[  177.567642][ T6372] hfs: gid requires an argument
[  177.572651][ T6372] hfs: unable to parse mount options
[  178.463004][ T5856] logitech 0003:046D:CA04.0001: no inputs found
[  178.476517][   T49] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 a5 b6 11  4.Xh....4.Xh....
[  178.512326][   T49] 00000030: 34 f7 58 68 a5 a5 b6 11 00 00 00 00 00 00 00 26  4.Xh...........&
[  178.523253][   T49] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  178.532246][   T49] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ea b5 0d 00  ................
[  178.541884][   T49] 00000060: ff ff ff ff e4 ac 63 16 00 00 00 00 00 00 00 02  ......c.........
[  178.631354][ T6233] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  178.641480][   T49] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08  ................
[  178.724268][ T5856] usb 3-1: USB disconnect, device number 6
[  178.790949][ T6334] XFS (loop3): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  178.874063][ T6374] fido_id[6374]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  179.131385][ T5768] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  179.146716][ T6381] FAULT_INJECTION: forcing a failure.
[  179.146716][ T6381] name failslab, interval 1, probability 0, space 0, times 0
[  179.163581][ T6381] CPU: 1 PID: 6381 Comm: syz.1.144 Not tainted syzkaller #0
[  179.170950][ T6381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  179.181068][ T6381] Call Trace:
[  179.184392][ T6381]  <TASK>
[  179.187360][ T6381]  dump_stack_lvl+0x16c/0x230
[  179.192069][ T6381]  ? show_regs_print_info+0x20/0x20
[  179.197296][ T6381]  ? load_image+0x3b0/0x3b0
[  179.201821][ T6381]  ? __might_sleep+0xe0/0xe0
[  179.206428][ T6381]  ? __lock_acquire+0x7c80/0x7c80
[  179.211488][ T6381]  should_fail_ex+0x39d/0x4d0
[  179.216187][ T6381]  should_failslab+0x9/0x20
[  179.220709][ T6381]  slab_pre_alloc_hook+0x59/0x310
[  179.225759][ T6381]  ? rcu_is_watching+0x15/0xb0
[  179.230547][ T6381]  kmem_cache_alloc+0x5a/0x2e0
[  179.235328][ T6381]  ? __kvm_mmu_topup_memory_cache+0x197/0x4a0
[  179.241425][ T6381]  __kvm_mmu_topup_memory_cache+0x197/0x4a0
[  179.247374][ T6381]  kvm_mmu_load+0xa1/0x21f0
[  179.251910][ T6381]  ? kvm_hv_setup_tsc_page+0x5f0/0xa70
[  179.257402][ T6381]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  179.263411][ T6381]  ? kvm_apic_has_interrupt+0x735/0x740
[  179.268986][ T6381]  vcpu_run+0x4998/0x73b0
[  179.273406][ T6381]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  179.279400][ T6381]  ? signal_pending+0xa0/0xa0
[  179.284090][ T6381]  ? lock_chain_count+0x20/0x20
[  179.288967][ T6381]  ? read_lock_is_recursive+0x20/0x20
[  179.294361][ T6381]  ? rcu_is_watching+0x15/0xb0
[  179.299278][ T6381]  kvm_arch_vcpu_ioctl_run+0xe4b/0x16a0
[  179.304923][ T6381]  ? kvm_arch_vcpu_ioctl_run+0x1b0/0x16a0
[  179.310678][ T6381]  ? kvm_arch_guest_memory_reclaimed+0x20/0x20
[  179.316852][ T6381]  ? __mutex_trylock_common+0x153/0x250
[  179.322427][ T6381]  ? trace_raw_output_contention_end+0xd0/0xd0
[  179.328601][ T6381]  ? tomoyo_path_number_perm+0x1ba/0x590
[  179.334266][ T6381]  ? get_task_pid+0x22/0x300
[  179.338875][ T6381]  ? __lock_acquire+0x7c80/0x7c80
[  179.343914][ T6381]  ? mutex_lock_nested+0x20/0x20
[  179.348865][ T6381]  ? get_task_pid+0x22/0x300
[  179.353488][ T6381]  ? get_task_pid+0x22/0x300
[  179.358099][ T6381]  kvm_vcpu_ioctl+0x88b/0xb80
[  179.362807][ T6381]  ? xa_release+0x50/0x50
[  179.367172][ T6381]  ? __fget_files+0x28/0x4d0
[  179.371806][ T6381]  ? bpf_lsm_file_ioctl+0x9/0x10
[  179.376757][ T6381]  ? security_file_ioctl+0x80/0xa0
[  179.381892][ T6381]  ? xa_release+0x50/0x50
[  179.386235][ T6381]  __se_sys_ioctl+0xfd/0x170
[  179.390864][ T6381]  do_syscall_64+0x55/0xb0
[  179.395311][ T6381]  ? clear_bhb_loop+0x40/0x90
[  179.400039][ T6381]  ? clear_bhb_loop+0x40/0x90
[  179.404748][ T6381]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  179.410668][ T6381] RIP: 0033:0x7f8bd638f749
[  179.415105][ T6381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.434750][ T6381] RSP: 002b:00007f8bd720a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  179.443189][ T6381] RAX: ffffffffffffffda RBX: 00007f8bd65e5fa0 RCX: 00007f8bd638f749
[  179.451176][ T6381] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  179.459185][ T6381] RBP: 00007f8bd720a090 R08: 0000000000000000 R09: 0000000000000000
[  179.467172][ T6381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.475158][ T6381] R13: 00007f8bd65e6038 R14: 00007f8bd65e5fa0 R15: 00007ffea6718868
[  179.483158][ T6381]  </TASK>
[  180.543497][ T6391] loop1: detected capacity change from 0 to 8
[  180.574689][ T6391] SQUASHFS error: zlib decompression failed, data probably corrupt
[  180.597619][ T6391] SQUASHFS error: Failed to read block 0x9b: -5
[  180.624404][ T6391] SQUASHFS error: Unable to read metadata cache entry [99]
[  180.660820][ T6391] SQUASHFS error: Unable to read inode 0x127
[  180.796625][ T6391] loop1: detected capacity change from 0 to 8
[  181.491622][ T6388] loop3: detected capacity change from 0 to 32768
[  181.561693][ T6388] JBD2: Ignoring recovery information on journal
[  182.173818][ T6418] netlink: 4 bytes leftover after parsing attributes in process `syz.0.151'.
[  182.202496][ T6418] loop0: detected capacity change from 0 to 64
[  182.215491][ T6418] hfs: gid requires an argument
[  182.220763][ T6418] hfs: unable to parse mount options
[  183.351277][ T6388] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  183.494473][ T5768] ocfs2: Unmounting device (7,3) on (node local)
[  183.768801][ T6430] loop1: detected capacity change from 0 to 4096
[  183.798782][ T6430] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  183.810730][ T6430] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  183.827759][ T6430] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  183.839834][ T6430] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  183.852951][ T6430] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  183.874144][ T6430] ntfs: volume version 3.1.
[  183.895210][ T6430] ntfs: (device loop1): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  183.907588][ T6430] ntfs: (device loop1): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  183.926090][ T6430] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  183.937275][ T6430] ntfs: (device loop1): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  183.948880][ T6430] ntfs: (device loop1): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  183.979561][ T6429] ptrace attach of "./syz-executor exec"[5767] was attempted by "Þ¤=éJ:Gþõ!EI\x09R˜”&EHQR˜”!¥H\x09R足™BÉÎlþÜÏ�”Õ„pAýÃ\x0dõ7æ®ù6Eþó„�j„)E\x0bwËÿºõrùh“„éŽV\x09ÓÄåi}ý?q½»MÍí¥¾þÿûó?wÒvh\x22“”×ÿ\x09_‰‹î;áÓEβøèzCH{2�\x0c$ý£ýÒ~àÀþER>Ÿ»Ãó‹þöü¢¿w^�²š.¨¸¡þá&Ý!ÿéHþ›)Þÿ�FuB\x229v»»åžö\x09¹|¹OÂtÈà„iâò´æâzw›F_ÞO’:ÿ‹Þa;ì]·“ØïÄiÊíäÎ~·í‹<þ;Ï3jGTNv?Oâ\x5cåÛðmýN˜Ê$+S%ÒÞŸ£”£Âõ7ù_ÿ³„�wxÇènùmdB^V\x1b›|š¸üNùÿÛëå\x0ci–\x22—×»Û´[ŠöÛ—’r¹ éHú’^¤S¤g>Ç%m‡&�R½ð¿›!¿›ëxÿ/ÜPÿpCýÃ\x0dõ\x07                                                                                                                                                                                                                            €Š°q®IHŒ™ðØ%„Є˜bäQ:r‹ÊB(:ò€‹!„ÄÄÏ+é⛩–7áùTÂr;þÅMxîíˈKÞ œ¤ç)IÏ£N&[FÒ‘ÕÄN¶ý¬¿miªå       ð‡Ý~­žüº       þ?ªÓ zËÜDJµ<7!d\x0bOÈY#áq:r”ºÓúlôÿn•šDæ¸èÿqÍ\x0a÷™tó(u·)‰Þo@ä„\x09}(2±¤\x0aH’þ¤ú’ÄMR$á~‘t#iÜN\x0a·o§*iO:‘j¤DD–\x0aѯó¤iô§ö§rŠí‘ít'IoÒžô#Bt;íH½´µm0&yû\x5c¤ý¾¤/Hº“^$á¾\x09åö?ùÇÉLì\x0d2„\x0
[  184.284709][ T6435] capability: warning: `syz.3.154' uses 32-bit capabilities (legacy support in use)
[  184.469077][ T6436] syz.3.154 uses obsolete (PF_INET,SOCK_PACKET)
[  185.265138][ T6442] loop0: detected capacity change from 0 to 512
[  185.273037][ T6442] EXT4-fs: Ignoring removed oldalloc option
[  185.322075][ T6442] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2249: inode #15: comm syz.0.158: corrupted in-inode xattr: e_value size too large
[  185.398497][ T6442] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.158: couldn't read orphan inode 15 (err -117)
[  185.484188][ T6442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.615610][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.592846][ T6454] loop3: detected capacity change from 0 to 40427
[  186.613356][ T6454] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  186.620915][ T6454] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  186.629848][ T6454] F2FS-fs (loop3): Unrecognized mount option "diqcard" or missing value
[  186.782961][ T6459] FAULT_INJECTION: forcing a failure.
[  186.782961][ T6459] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.796231][ T6459] CPU: 0 PID: 6459 Comm: syz.0.162 Not tainted syzkaller #0
[  186.803569][ T6459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  186.813680][ T6459] Call Trace:
[  186.816995][ T6459]  <TASK>
[  186.819965][ T6459]  dump_stack_lvl+0x16c/0x230
[  186.824706][ T6459]  ? show_regs_print_info+0x20/0x20
[  186.829979][ T6459]  ? load_image+0x3b0/0x3b0
[  186.834630][ T6459]  ? __might_fault+0xaa/0x120
[  186.839372][ T6459]  ? __lock_acquire+0x7c80/0x7c80
[  186.844477][ T6459]  should_fail_ex+0x39d/0x4d0
[  186.849230][ T6459]  _copy_from_iter+0x1d3/0x1290
[  186.854121][ T6459]  ? slab_post_alloc_hook+0x8a/0x4d0
[  186.859448][ T6459]  ? __virt_addr_valid+0x18c/0x540
[  186.864605][ T6459]  ? __lock_acquire+0x7c80/0x7c80
[  186.869673][ T6459]  ? rcu_is_watching+0x15/0xb0
[  186.874485][ T6459]  ? copyout_mc+0x70/0x70
[  186.878855][ T6459]  ? __virt_addr_valid+0x18c/0x540
[  186.884007][ T6459]  ? __virt_addr_valid+0x18c/0x540
[  186.889171][ T6459]  ? __virt_addr_valid+0x469/0x540
[  186.894324][ T6459]  ? __check_object_size+0x506/0xa30
[  186.899684][ T6459]  netlink_sendmsg+0x75c/0xbe0
[  186.904495][ T6459]  ? netlink_getsockopt+0x580/0x580
[  186.909783][ T6459]  ? aa_sock_msg_perm+0x94/0x150
[  186.914742][ T6459]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  186.920050][ T6459]  ? security_socket_sendmsg+0x80/0xa0
[  186.925521][ T6459]  ? netlink_getsockopt+0x580/0x580
[  186.930732][ T6459]  ____sys_sendmsg+0x5bf/0x950
[  186.935516][ T6459]  ? __asan_memset+0x22/0x40
[  186.940133][ T6459]  ? __sys_sendmsg_sock+0x30/0x30
[  186.945184][ T6459]  ? __import_iovec+0x5f2/0x860
[  186.950066][ T6459]  ? import_iovec+0x73/0xa0
[  186.954855][ T6459]  ___sys_sendmsg+0x220/0x290
[  186.959554][ T6459]  ? __sys_sendmsg+0x270/0x270
[  186.964354][ T6459]  ? __lock_acquire+0x7c80/0x7c80
[  186.969425][ T6459]  __se_sys_sendmsg+0x1a5/0x270
[  186.974291][ T6459]  ? __x64_sys_sendmsg+0x80/0x80
[  186.979256][ T6459]  ? lockdep_hardirqs_on+0x98/0x150
[  186.984474][ T6459]  do_syscall_64+0x55/0xb0
[  186.988934][ T6459]  ? clear_bhb_loop+0x40/0x90
[  186.993625][ T6459]  ? clear_bhb_loop+0x40/0x90
[  186.998335][ T6459]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  187.004249][ T6459] RIP: 0033:0x7fb7b778f749
[  187.008680][ T6459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.028302][ T6459] RSP: 002b:00007fb7b8604038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.036730][ T6459] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778f749
[  187.044718][ T6459] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  187.052704][ T6459] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  187.060691][ T6459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.068731][ T6459] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  187.076780][ T6459]  </TASK>
[  187.389300][ T6466] loop3: detected capacity change from 0 to 256
[  187.955326][ T6474] FAULT_INJECTION: forcing a failure.
[  187.955326][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  187.968479][ T6474] CPU: 0 PID: 6474 Comm: syz.0.169 Not tainted syzkaller #0
[  187.975819][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  187.985915][ T6474] Call Trace:
[  187.989248][ T6474]  <TASK>
[  187.992218][ T6474]  dump_stack_lvl+0x16c/0x230
[  187.996952][ T6474]  ? show_regs_print_info+0x20/0x20
[  188.002197][ T6474]  ? load_image+0x3b0/0x3b0
[  188.006775][ T6474]  ? nexthop_uses_dev+0x490/0x490
[  188.011846][ T6474]  should_fail_ex+0x39d/0x4d0
[  188.016578][ T6474]  should_failslab+0x9/0x20
[  188.021122][ T6474]  slab_pre_alloc_hook+0x59/0x310
[  188.026184][ T6474]  ? __lock_acquire+0x7c80/0x7c80
[  188.031273][ T6474]  kmem_cache_alloc+0x5a/0x2e0
[  188.036098][ T6474]  ? dst_alloc+0x105/0x170
[  188.040579][ T6474]  dst_alloc+0x105/0x170
[  188.044870][ T6474]  ip_route_input_rcu+0x1f56/0x3010
[  188.050132][ T6474]  ? ip_route_input_noref+0x260/0x260
[  188.055565][ T6474]  ? inet_ehashfn+0x8f/0x1e0
[  188.060216][ T6474]  ? _local_bh_enable+0xa0/0xa0
[  188.065137][ T6474]  ip_route_input_noref+0x16f/0x260
[  188.070392][ T6474]  ? ip_route_input_noref+0x9c/0x260
[  188.075724][ T6474]  ? ip_handle_martian_source+0x3a0/0x3a0
[  188.081500][ T6474]  ? tcp_v4_early_demux+0x615/0x9e0
[  188.086763][ T6474]  ip_rcv_finish_core+0x5a6/0x1bc0
[  188.091937][ T6474]  ip_rcv_finish+0x14e/0x250
[  188.096584][ T6474]  NF_HOOK+0x303/0x390
[  188.100698][ T6474]  ? ip_rcv_core+0xdb0/0xdb0
[  188.105454][ T6474]  ? NF_HOOK+0x9b/0x390
[  188.109692][ T6474]  ? ip_local_deliver+0x1b0/0x1b0
[  188.114770][ T6474]  ? ip_rcv_core+0xdb0/0xdb0
[  188.119409][ T6474]  ? ip_local_deliver_finish+0x510/0x510
[  188.125089][ T6474]  ? ip_local_deliver_finish+0x510/0x510
[  188.130768][ T6474]  __netif_receive_skb+0xcc/0x290
[  188.135933][ T6474]  ? netif_receive_skb+0x106/0x6f0
[  188.141094][ T6474]  netif_receive_skb+0x1bc/0x6f0
[  188.146089][ T6474]  ? enqueue_to_backlog+0xe30/0xe30
[  188.151344][ T6474]  ? tun_rx_batched+0x161/0x730
[  188.156246][ T6474]  tun_rx_batched+0x1ba/0x730
[  188.160997][ T6474]  ? pskb_may_pull+0xf0/0xf0
[  188.165635][ T6474]  ? __local_bh_enable_ip+0x12e/0x1c0
[  188.171052][ T6474]  ? lockdep_hardirqs_on+0x98/0x150
[  188.176302][ T6474]  ? read_lock_is_recursive+0x20/0x20
[  188.181730][ T6474]  ? __local_bh_enable_ip+0x12e/0x1c0
[  188.187165][ T6474]  ? _local_bh_enable+0xa0/0xa0
[  188.192073][ T6474]  tun_get_user+0x283f/0x3bf0
[  188.196826][ T6474]  ? tun_get_user+0x2475/0x3bf0
[  188.201737][ T6474]  ? tun_get_user+0x637/0x3bf0
[  188.206542][ T6474]  ? aa_file_perm+0x3e8/0xec0
[  188.211276][ T6474]  ? rcu_read_unlock+0xa0/0xa0
[  188.216103][ T6474]  ? tun_get+0x1c/0x2e0
[  188.220303][ T6474]  ? __lock_acquire+0x7c80/0x7c80
[  188.225382][ T6474]  ? tun_get+0x1c/0x2e0
[  188.229600][ T6474]  tun_chr_write_iter+0x119/0x200
[  188.234678][ T6474]  vfs_write+0x43b/0x940
[  188.238985][ T6474]  ? file_end_write+0x250/0x250
[  188.243888][ T6474]  ? __fget_files+0x44a/0x4d0
[  188.248617][ T6474]  ? __fdget_pos+0x1d8/0x330
[  188.253250][ T6474]  ? ksys_write+0x75/0x250
[  188.257715][ T6474]  ksys_write+0x147/0x250
[  188.262105][ T6474]  ? __ia32_sys_read+0x90/0x90
[  188.266939][ T6474]  ? lockdep_hardirqs_on+0x98/0x150
[  188.272200][ T6474]  do_syscall_64+0x55/0xb0
[  188.276667][ T6474]  ? clear_bhb_loop+0x40/0x90
[  188.281402][ T6474]  ? clear_bhb_loop+0x40/0x90
[  188.286139][ T6474]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  188.292081][ T6474] RIP: 0033:0x7fb7b778e1ff
[  188.296545][ T6474] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  188.316200][ T6474] RSP: 002b:00007fb7b8604000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  188.324679][ T6474] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778e1ff
[  188.332698][ T6474] RDX: 0000000000000042 RSI: 0000200000000100 RDI: 00000000000000c8
[  188.340721][ T6474] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  188.348734][ T6474] R10: 0000000000000042 R11: 0000000000000293 R12: 0000000000000001
[  188.356747][ T6474] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  188.364784][ T6474]  </TASK>
[  189.066682][ T6477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.170'.
[  189.102382][ T6477] loop1: detected capacity change from 0 to 64
[  189.120722][ T6477] hfs: gid requires an argument
[  189.125718][ T6477] hfs: unable to parse mount options
[  190.056844][ T6480] FAULT_INJECTION: forcing a failure.
[  190.056844][ T6480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.072596][ T6480] CPU: 1 PID: 6480 Comm: syz.2.171 Not tainted syzkaller #0
[  190.079957][ T6480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  190.090076][ T6480] Call Trace:
[  190.093406][ T6480]  <TASK>
[  190.096381][ T6480]  dump_stack_lvl+0x16c/0x230
[  190.101115][ T6480]  ? show_regs_print_info+0x20/0x20
[  190.106377][ T6480]  ? load_image+0x3b0/0x3b0
[  190.111026][ T6480]  ? __might_fault+0xaa/0x120
[  190.115842][ T6480]  ? __lock_acquire+0x7c80/0x7c80
[  190.120919][ T6480]  should_fail_ex+0x39d/0x4d0
[  190.125621][ T6480]  _copy_from_iter+0x1d3/0x1290
[  190.130486][ T6480]  ? slab_post_alloc_hook+0x8a/0x4d0
[  190.135782][ T6480]  ? __virt_addr_valid+0x18c/0x540
[  190.140906][ T6480]  ? __lock_acquire+0x7c80/0x7c80
[  190.145940][ T6480]  ? rcu_is_watching+0x15/0xb0
[  190.150718][ T6480]  ? copyout_mc+0x70/0x70
[  190.155055][ T6480]  ? __virt_addr_valid+0x18c/0x540
[  190.160175][ T6480]  ? __virt_addr_valid+0x18c/0x540
[  190.165290][ T6480]  ? __virt_addr_valid+0x469/0x540
[  190.170420][ T6480]  ? __check_object_size+0x506/0xa30
[  190.175731][ T6480]  netlink_sendmsg+0x75c/0xbe0
[  190.180524][ T6480]  ? netlink_getsockopt+0x580/0x580
[  190.185742][ T6480]  ? aa_sock_msg_perm+0x94/0x150
[  190.190709][ T6480]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  190.196016][ T6480]  ? security_socket_sendmsg+0x80/0xa0
[  190.201491][ T6480]  ? netlink_getsockopt+0x580/0x580
[  190.206701][ T6480]  ____sys_sendmsg+0x5bf/0x950
[  190.211482][ T6480]  ? __asan_memset+0x22/0x40
[  190.216085][ T6480]  ? __sys_sendmsg_sock+0x30/0x30
[  190.221138][ T6480]  ? __import_iovec+0x5f2/0x860
[  190.226028][ T6480]  ? import_iovec+0x73/0xa0
[  190.230562][ T6480]  ___sys_sendmsg+0x220/0x290
[  190.235252][ T6480]  ? __sys_sendmsg+0x270/0x270
[  190.240043][ T6480]  ? __lock_acquire+0x7c80/0x7c80
[  190.245103][ T6480]  __se_sys_sendmsg+0x1a5/0x270
[  190.249969][ T6480]  ? __x64_sys_sendmsg+0x80/0x80
[  190.254930][ T6480]  ? lockdep_hardirqs_on+0x98/0x150
[  190.260146][ T6480]  do_syscall_64+0x55/0xb0
[  190.264569][ T6480]  ? clear_bhb_loop+0x40/0x90
[  190.269257][ T6480]  ? clear_bhb_loop+0x40/0x90
[  190.273952][ T6480]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  190.279863][ T6480] RIP: 0033:0x7f9a6b78f749
[  190.284289][ T6480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.303915][ T6480] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.312348][ T6480] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  190.320341][ T6480] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  190.328334][ T6480] RBP: 00007f9a6c704090 R08: 0000000000000000 R09: 0000000000000000
[  190.336319][ T6480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.344303][ T6480] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  190.352320][ T6480]  </TASK>
[  190.506346][ T6377] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  190.520367][ T6470] loop3: detected capacity change from 0 to 40427
[  190.540080][    T8] libceph: connect (1)[c::]:6789 error -101
[  190.548662][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  190.602786][    T8] libceph: connect (1)[c::]:6789 error -101
[  190.646479][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  190.910296][    T8] libceph: connect (1)[c::]:6789 error -101
[  190.916557][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  191.196621][ T6491] netlink: 32 bytes leftover after parsing attributes in process `syz.3.176'.
[  191.426781][    T8] libceph: connect (1)[c::]:6789 error -101
[  191.432904][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  191.775305][ T6489] loop0: detected capacity change from 0 to 32768
[  191.830197][ T6489] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  191.835780][ T6485] loop2: detected capacity change from 0 to 40427
[  191.879786][ T6489] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  191.923901][ T6485] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  191.966722][ T6485] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x35f7
[  191.975079][ T6485] F2FS-fs (loop2): Image doesn't support compression
[  192.141136][ T6485] F2FS-fs (loop2): invalid crc value
[  192.219498][ T6485] F2FS-fs (loop2): Found nat_bits in checkpoint
[  192.850231][ T6485] F2FS-fs (loop2): Start checkpoint disabled!
[  192.995782][ T6485] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  193.139430][ T5771] ocfs2: Unmounting device (7,0) on (node local)
[  193.228126][ T6512] loop1: detected capacity change from 0 to 128
[  193.257871][ T5857] libceph: connect (1)[c::]:6789 error -101
[  193.273721][ T5857] libceph: mon0 (1)[c::]:6789 connect error
[  193.289823][ T6482] ceph: No mds server is up or the cluster is laggy
[  193.646409][ T5857] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  193.684707][   T34] kworker/u4:2: attempt to access beyond end of device
[  193.684707][   T34] loop2: rw=1, sector=45096, nr_sectors = 16 limit=40427
[  193.739911][ T2908] kworker/u4:6: attempt to access beyond end of device
[  193.739911][ T2908] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  193.780786][ T2908] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  193.799259][ T2908] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  193.838406][ T5857] usb 2-1: config 0 has no interfaces?
[  193.847956][ T5857] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[  193.857586][ T5857] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.875873][ T5857] usb 2-1: Product: syz
[  193.880658][ T5857] usb 2-1: Manufacturer: syz
[  193.885314][ T5857] usb 2-1: SerialNumber: syz
[  193.904347][ T5857] usb 2-1: config 0 descriptor??
[  194.126765][ T5857] usb 2-1: USB disconnect, device number 2
[  194.624262][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  194.630902][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  194.753542][ T6532] loop2: detected capacity change from 0 to 128
[  194.845130][ T6532] syz.2.182: attempt to access beyond end of device
[  194.845130][ T6532] loop2: rw=0, sector=121, nr_sectors = 920 limit=128
[  194.877290][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  194.877327][   T28] audit: type=1800 audit(1765304408.329:42): pid=6532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.182" name="bus" dev="loop2" ino=1048604 res=0 errno=0
[  196.576285][    C0] sched: RT throttling activated
[  197.904835][ T6545] netlink: 'syz.0.187': attribute type 4 has an invalid length.
[  197.956467][   T23] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  198.209338][   T23] usb 2-1: Using ep0 maxpacket: 8
[  198.224917][   T23] usb 2-1: too many endpoints for config 0 interface 0 altsetting 254: 242, using maximum allowed: 30
[  198.240278][   T23] usb 2-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 254, changing to 11
[  198.251844][   T23] usb 2-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.265509][   T23] usb 2-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 242
[  198.323582][   T23] usb 2-1: config 0 interface 0 has no altsetting 0
[  198.336360][   T23] usb 2-1: New USB device found, idVendor=045e, idProduct=00f9, bcdDevice= 0.00
[  198.499928][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.527736][   T23] usb 2-1: config 0 descriptor??
[  200.721420][   T23] usbhid 2-1:0.0: can't add hid device: -71
[  200.736485][   T23] usbhid: probe of 2-1:0.0 failed with error -71
[  200.753338][   T23] usb 2-1: USB disconnect, device number 3
[  203.542336][ T6586] loop0: detected capacity change from 0 to 128
[  203.610518][ T6586] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  203.675211][ T6586] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  203.993674][ T6590] FAULT_INJECTION: forcing a failure.
[  203.993674][ T6590] name failslab, interval 1, probability 0, space 0, times 0
[  204.027519][ T6590] CPU: 0 PID: 6590 Comm: syz.2.201 Not tainted syzkaller #0
[  204.034967][ T6590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  204.045058][ T6590] Call Trace:
[  204.048372][ T6590]  <TASK>
[  204.051333][ T6590]  dump_stack_lvl+0x16c/0x230
[  204.056064][ T6590]  ? show_regs_print_info+0x20/0x20
[  204.061303][ T6590]  ? load_image+0x3b0/0x3b0
[  204.065911][ T6590]  ? __might_sleep+0xe0/0xe0
[  204.070517][ T6590]  ? __lock_acquire+0x7c80/0x7c80
[  204.075553][ T6590]  should_fail_ex+0x39d/0x4d0
[  204.080337][ T6590]  should_failslab+0x9/0x20
[  204.084858][ T6590]  slab_pre_alloc_hook+0x59/0x310
[  204.089900][ T6590]  ? d_instantiate+0x6f/0x90
[  204.094507][ T6590]  kmem_cache_alloc+0x5a/0x2e0
[  204.099288][ T6590]  ? alloc_empty_file+0x9e/0x1d0
[  204.104251][ T6590]  alloc_empty_file+0x9e/0x1d0
[  204.109063][ T6590]  alloc_file+0x5c/0x600
[  204.113322][ T6590]  alloc_file_pseudo+0x17e/0x200
[  204.118286][ T6590]  ? alloc_empty_backing_file+0xe0/0xe0
[  204.123856][ T6590]  ? __rwlock_init+0x150/0x150
[  204.128633][ T6590]  ? bpf_lsm_inode_alloc_security+0x9/0x10
[  204.134472][ T6590]  ? do_raw_spin_unlock+0x121/0x230
[  204.139684][ T6590]  sock_alloc_file+0xb7/0x280
[  204.144385][ T6590]  do_accept+0x3a0/0x680
[  204.148666][ T6590]  ? __ia32_sys_listen+0x70/0x70
[  204.153626][ T6590]  __sys_accept4+0x9b/0x100
[  204.158146][ T6590]  __x64_sys_accept4+0x9a/0xb0
[  204.162923][ T6590]  do_syscall_64+0x55/0xb0
[  204.167347][ T6590]  ? clear_bhb_loop+0x40/0x90
[  204.172034][ T6590]  ? clear_bhb_loop+0x40/0x90
[  204.176746][ T6590]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  204.182652][ T6590] RIP: 0033:0x7f9a6b78f749
[  204.187077][ T6590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.206692][ T6590] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  204.215113][ T6590] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  204.223097][ T6590] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  204.231077][ T6590] RBP: 00007f9a6c704090 R08: 0000000000000000 R09: 0000000000000000
[  204.239056][ T6590] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  204.247033][ T6590] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  204.255024][ T6590]  </TASK>
[  204.792680][ T6605] loop0: detected capacity change from 0 to 2048
[  204.828580][ T6605] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  204.892224][ T6605] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  204.951506][ T6605] overlayfs: failed to resolve './file1': -2
[  205.973586][ T1202] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  206.679483][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.206'.
[  206.714923][ T6611] loop2: detected capacity change from 0 to 64
[  206.729930][ T6611] hfs: gid requires an argument
[  206.734908][ T6611] hfs: unable to parse mount options
[  207.746540][ T6517] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  207.848468][ T1202] usb 4-1: device not accepting address 3, error -71
[  207.968525][ T6621] FAULT_INJECTION: forcing a failure.
[  207.968525][ T6621] name failslab, interval 1, probability 0, space 0, times 0
[  208.008896][ T6621] CPU: 1 PID: 6621 Comm: syz.0.209 Not tainted syzkaller #0
[  208.016271][ T6621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  208.026388][ T6621] Call Trace:
[  208.029715][ T6621]  <TASK>
[  208.032692][ T6621]  dump_stack_lvl+0x16c/0x230
[  208.037441][ T6621]  ? show_regs_print_info+0x20/0x20
[  208.042716][ T6621]  ? load_image+0x3b0/0x3b0
[  208.047268][ T6621]  ? __might_sleep+0xe0/0xe0
[  208.051904][ T6621]  ? __lock_acquire+0x7c80/0x7c80
[  208.056959][ T6621]  ? trace_contention_end+0x39/0xe0
[  208.062208][ T6621]  should_fail_ex+0x39d/0x4d0
[  208.066933][ T6621]  should_failslab+0x9/0x20
[  208.071479][ T6621]  slab_pre_alloc_hook+0x59/0x310
[  208.076553][ T6621]  ? mutex_unlock+0x10/0x10
[  208.081101][ T6621]  ? __list_lru_init+0xa6/0x5f0
[  208.085989][ T6621]  ? __list_lru_init+0xa6/0x5f0
[  208.090888][ T6621]  __kmem_cache_alloc_node+0x53/0x260
[  208.096326][ T6621]  ? __list_lru_init+0xa6/0x5f0
[  208.101224][ T6621]  __kmalloc+0xa4/0x240
[  208.105442][ T6621]  __list_lru_init+0xa6/0x5f0
[  208.110170][ T6621]  alloc_super+0x779/0x920
[  208.114633][ T6621]  ? do_raw_spin_unlock+0x121/0x230
[  208.119895][ T6621]  sget+0x1ce/0x4d0
[  208.123762][ T6621]  ? free_anon_bdev+0x30/0x30
[  208.128474][ T6621]  ? dlmfs_mount+0x30/0x30
[  208.132919][ T6621]  mount_nodev+0x30/0xf0
[  208.137183][ T6621]  legacy_get_tree+0xea/0x180
[  208.141897][ T6621]  ? param_get_dlmfs_capabilities+0x60/0x60
[  208.147815][ T6621]  vfs_get_tree+0x8c/0x280
[  208.152247][ T6621]  vfs_cmd_create+0xe3/0x230
[  208.156856][ T6621]  __se_sys_fsconfig+0x700/0x850
[  208.161809][ T6621]  ? __x64_sys_fsconfig+0xc0/0xc0
[  208.166853][ T6621]  ? lockdep_hardirqs_on+0x98/0x150
[  208.172066][ T6621]  ? __x64_sys_fsconfig+0x20/0xc0
[  208.177104][ T6621]  do_syscall_64+0x55/0xb0
[  208.181528][ T6621]  ? clear_bhb_loop+0x40/0x90
[  208.186220][ T6621]  ? clear_bhb_loop+0x40/0x90
[  208.190916][ T6621]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.196826][ T6621] RIP: 0033:0x7fb7b778f749
[  208.201275][ T6621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.220904][ T6621] RSP: 002b:00007fb7b8604038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  208.229332][ T6621] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778f749
[  208.237315][ T6621] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[  208.245381][ T6621] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  208.253368][ T6621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.261347][ T6621] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  208.269339][ T6621]  </TASK>
[  210.416422][    T8] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  212.580558][ T5783] Bluetooth: hci1: command 0x0406 tx timeout
[  212.580587][ T5081] Bluetooth: hci2: command 0x0406 tx timeout
[  212.589961][ T5783] Bluetooth: hci0: command 0x0406 tx timeout
[  212.592772][ T5081] Bluetooth: hci3: command 0x0406 tx timeout
[  213.246451][    T8] usb 1-1: device descriptor read/all, error -71
[  214.169640][ T6647] netlink: 4 bytes leftover after parsing attributes in process `syz.0.219'.
[  214.204642][ T6647] loop0: detected capacity change from 0 to 64
[  214.216492][ T6647] hfs: gid requires an argument
[  214.221461][ T6647] hfs: unable to parse mount options
[  215.271385][ T6377] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  215.933730][ T6650] loop2: detected capacity change from 0 to 32768
[  216.076884][ T6650] 
[  216.076884][ T6650]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  216.076884][ T6650] 
[  216.096045][ T6650] ERROR: (device loop2): ea_get: invalid ea.flag
[  216.096045][ T6650] 
[  216.122287][ T6650] ERROR: (device loop2): remounting filesystem as read-only
[  216.171742][ T6654] ERROR: (device loop2): ea_get: invalid ea.flag
[  216.171742][ T6654] 
[  219.528135][ T6667] FAULT_INJECTION: forcing a failure.
[  219.528135][ T6667] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.541503][ T6667] CPU: 0 PID: 6667 Comm: syz.2.223 Not tainted syzkaller #0
[  219.548819][ T6667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  219.559019][ T6667] Call Trace:
[  219.562306][ T6667]  <TASK>
[  219.565246][ T6667]  dump_stack_lvl+0x16c/0x230
[  219.569955][ T6667]  ? show_regs_print_info+0x20/0x20
[  219.575169][ T6667]  ? load_image+0x3b0/0x3b0
[  219.579687][ T6667]  ? __might_fault+0xaa/0x120
[  219.584386][ T6667]  ? __lock_acquire+0x7c80/0x7c80
[  219.589428][ T6667]  should_fail_ex+0x39d/0x4d0
[  219.594127][ T6667]  _copy_from_user+0x2f/0xe0
[  219.598731][ T6667]  strndup_user+0xb7/0x150
[  219.603155][ T6667]  __se_sys_mount+0xe2/0x3c0
[  219.607760][ T6667]  ? __x64_sys_mount+0xc0/0xc0
[  219.612532][ T6667]  ? __x64_sys_mount+0x20/0xc0
[  219.617307][ T6667]  do_syscall_64+0x55/0xb0
[  219.621741][ T6667]  ? clear_bhb_loop+0x40/0x90
[  219.626430][ T6667]  ? clear_bhb_loop+0x40/0x90
[  219.631115][ T6667]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  219.637015][ T6667] RIP: 0033:0x7f9a6b78f749
[  219.641434][ T6667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.661080][ T6667] RSP: 002b:00007f9a6c6e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  219.669503][ T6667] RAX: ffffffffffffffda RBX: 00007f9a6b9e6090 RCX: 00007f9a6b78f749
[  219.677483][ T6667] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 00002000000000c0
[  219.685457][ T6667] RBP: 00007f9a6c6e3090 R08: 0000200000000280 R09: 0000000000000000
[  219.693434][ T6667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.701418][ T6667] R13: 00007f9a6b9e6128 R14: 00007f9a6b9e6090 R15: 00007ffe9e4edb68
[  219.709417][ T6667]  </TASK>
[  221.351655][ T6670] 9pnet_virtio: no channels available for device 127.0.0.1
[  223.140363][ T6676] loop0: detected capacity change from 0 to 2048
[  223.321733][ T6676]  loop0: p3 < > p4 < >
[  223.326448][ T6676] loop0: partition table partially beyond EOD, truncated
[  223.337051][ T6676] loop0: p3 start 4284289 is beyond EOD, truncated
[  224.080417][ T6377] udevd[6377]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  228.795642][ T6699] loop3: detected capacity change from 0 to 512
[  229.021848][ T6377] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  229.119494][   T28] audit: type=1326 audit(1765304442.659:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.210504][   T28] audit: type=1326 audit(1765304442.689:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.286437][   T28] audit: type=1326 audit(1765304442.729:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.352267][   T28] audit: type=1326 audit(1765304442.729:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.416404][   T28] audit: type=1326 audit(1765304442.729:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.496589][   T28] audit: type=1326 audit(1765304442.729:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.546347][   T28] audit: type=1326 audit(1765304442.729:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.586386][   T28] audit: type=1326 audit(1765304442.749:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.640722][   T28] audit: type=1326 audit(1765304442.749:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.686717][   T28] audit: type=1326 audit(1765304442.749:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6703 comm="syz.3.233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f01dc98f749 code=0x7ffc0000
[  229.746697][ T5858] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  231.493355][ T5858] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  231.524287][ T5858] usb 2-1: config 0 interface 0 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  231.554010][ T5858] usb 2-1: config 0 interface 0 has no altsetting 0
[  231.566440][ T5858] usb 2-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  231.596962][ T5858] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.619959][ T5858] usb 2-1: config 0 descriptor??
[  231.631690][ T5858] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  231.774453][ T6715] 9pnet_fd: Insufficient options for proto=fd
[  232.124286][ T6723] kvm: requested 25980 ns i8254 timer period limited to 200000 ns
[  232.342380][ T5858] usb 2-1: USB disconnect, device number 4
[  234.367892][ T6722] loop3: detected capacity change from 0 to 40427
[  234.389518][ T6722] F2FS-fs (loop3): invalid crc value
[  234.410879][ T6722] F2FS-fs (loop3): Found nat_bits in checkpoint
[  234.416924][ T6729] syzkaller0: entered promiscuous mode
[  234.443185][ T6729] syzkaller0: entered allmulticast mode
[  234.584975][ T6722] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  235.166095][ T5768] syz-executor: attempt to access beyond end of device
[  235.166095][ T5768] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  235.222660][ T5768] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  236.355970][ T6755] 9pnet_fd: Insufficient options for proto=fd
[  236.570740][ T6761] FAULT_INJECTION: forcing a failure.
[  236.570740][ T6761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.606158][ T6761] CPU: 0 PID: 6761 Comm: syz.1.246 Not tainted syzkaller #0
[  236.613530][ T6761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  236.623630][ T6761] Call Trace:
[  236.626952][ T6761]  <TASK>
[  236.629924][ T6761]  dump_stack_lvl+0x16c/0x230
[  236.634684][ T6761]  ? show_regs_print_info+0x20/0x20
[  236.639949][ T6761]  ? load_image+0x3b0/0x3b0
[  236.644509][ T6761]  ? __lock_acquire+0x7c80/0x7c80
[  236.649585][ T6761]  ? snprintf+0xdb/0x120
[  236.653926][ T6761]  should_fail_ex+0x39d/0x4d0
[  236.658666][ T6761]  _copy_to_user+0x2f/0xa0
[  236.663133][ T6761]  simple_read_from_buffer+0xe7/0x150
[  236.668573][ T6761]  proc_fail_nth_read+0x1e3/0x250
[  236.673829][ T6761]  ? proc_fault_inject_write+0x340/0x340
[  236.679538][ T6761]  ? fsnotify_perm+0x271/0x5e0
[  236.684350][ T6761]  ? proc_fault_inject_write+0x340/0x340
[  236.690033][ T6761]  vfs_read+0x27e/0x920
[  236.694241][ T6761]  ? kernel_read+0x1e0/0x1e0
[  236.698887][ T6761]  ? __fget_files+0x28/0x4d0
[  236.703532][ T6761]  ? __fget_files+0x44a/0x4d0
[  236.708271][ T6761]  ? __fdget_pos+0x2a3/0x330
[  236.712904][ T6761]  ? ksys_read+0x75/0x250
[  236.717314][ T6761]  ksys_read+0x147/0x250
[  236.721608][ T6761]  ? vfs_write+0x940/0x940
[  236.726076][ T6761]  ? lockdep_hardirqs_on+0x98/0x150
[  236.731327][ T6761]  do_syscall_64+0x55/0xb0
[  236.735778][ T6761]  ? clear_bhb_loop+0x40/0x90
[  236.740497][ T6761]  ? clear_bhb_loop+0x40/0x90
[  236.745215][ T6761]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  236.751150][ T6761] RIP: 0033:0x7f8bd638e15c
[  236.755621][ T6761] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  236.775286][ T6761] RSP: 002b:00007f8bd71e9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  236.783786][ T6761] RAX: ffffffffffffffda RBX: 00007f8bd65e6090 RCX: 00007f8bd638e15c
[  236.791791][ T6761] RDX: 000000000000000f RSI: 00007f8bd71e90a0 RDI: 0000000000000004
[  236.799797][ T6761] RBP: 00007f8bd71e9090 R08: 0000000000000000 R09: 0000000000000000
[  236.807799][ T6761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.815805][ T6761] R13: 00007f8bd65e6128 R14: 00007f8bd65e6090 R15: 00007ffea6718868
[  236.823835][ T6761]  </TASK>
[  239.086649][ T6774] input: syz1 as /devices/virtual/input/input5
[  239.154334][ T6777] syzkaller0: entered promiscuous mode
[  239.160627][ T6777] syzkaller0: entered allmulticast mode
[  239.302627][ T5856] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  239.618644][ T1202] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  239.715391][ T5856] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  239.724892][ T5856] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  239.733073][ T5856] usb 4-1: Product: syz
[  239.737671][ T5856] usb 4-1: Manufacturer: syz
[  239.816488][ T1202] usb 3-1: Using ep0 maxpacket: 32
[  239.868700][ T1202] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.971481][ T1202] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.124421][ T1202] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  240.228846][ T1202] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.368606][ T1202] usb 3-1: config 0 descriptor??
[  240.411062][ T1202] hub 3-1:0.0: USB hub found
[  240.489678][ T5856] usb 4-1: SerialNumber: syz
[  240.533774][ T5856] usb 4-1: can't set config #1, error -71
[  240.567759][ T5856] usb 4-1: USB disconnect, device number 5
[  240.630574][ T6787] 9pnet_fd: Insufficient options for proto=fd
[  240.637250][ T1202] hub 3-1:0.0: 1 port detected
[  241.278552][ T6791] netlink: 4 bytes leftover after parsing attributes in process `syz.1.251'.
[  241.300192][ T6791] loop1: detected capacity change from 0 to 64
[  241.310358][ T6791] hfs: gid requires an argument
[  241.317840][ T6791] hfs: unable to parse mount options
[  242.845427][ T1202] hub 3-1:0.0: hub_hub_status failed (err = -32)
[  242.874234][ T1202] hub 3-1:0.0: config failed, can't get hub status (err -32)
[  242.903762][ T1202] usbhid 3-1:0.0: can't add hid device: -32
[  242.923660][ T1202] usbhid: probe of 3-1:0.0 failed with error -32
[  242.992904][ T1202] usb 3-1: USB disconnect, device number 7
[  243.864876][ T6806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.266'.
[  243.894550][ T6806] loop3: detected capacity change from 0 to 64
[  243.907413][ T6806] hfs: gid requires an argument
[  243.912411][ T6806] hfs: unable to parse mount options
[  244.999466][ T6793] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  245.451410][ T6798] loop0: detected capacity change from 0 to 32768
[  245.543276][ T6798] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  245.936497][ T6798] XFS (loop0): Ending clean mount
[  245.981589][ T6821] loop1: detected capacity change from 0 to 128
[  246.057907][ T5771] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  246.081826][ T6821] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  246.121949][ T6821] ext4 filesystem being mounted at /59/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  246.248166][ T6825] syz.1.257 (pid 6825) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  247.372324][ T6830] 9pnet_virtio: no channels available for device 127.0.0.1
[  249.032626][ T5767] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  249.481793][ T6844] syzkaller0: entered promiscuous mode
[  249.488560][ T6844] syzkaller0: entered allmulticast mode
[  250.297144][ T6850] netlink: 4 bytes leftover after parsing attributes in process `syz.1.265'.
[  250.332569][ T6850] loop1: detected capacity change from 0 to 64
[  250.347437][ T6850] hfs: gid requires an argument
[  250.352424][ T6850] hfs: unable to parse mount options
[  251.326525][ T6793] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  251.364247][ T6844] loop3: detected capacity change from 0 to 2048
[  251.449240][ T6844] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  251.668778][ T6844] bond_slave_0: entered promiscuous mode
[  251.674967][ T6844] bond_slave_1: entered promiscuous mode
[  251.705908][ T6844] vlan2: entered promiscuous mode
[  251.719711][ T6844] bond0: entered promiscuous mode
[  251.913525][ T6859] syzkaller0: entered promiscuous mode
[  251.932510][ T6859] syzkaller0: entered allmulticast mode
[  254.447168][ T6869] 9pnet_virtio: no channels available for device 127.0.0.1
[  256.070962][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  256.077692][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  256.332872][ T6874] FAULT_INJECTION: forcing a failure.
[  256.332872][ T6874] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  256.351391][ T6874] CPU: 0 PID: 6874 Comm: syz.1.273 Not tainted syzkaller #0
[  256.358753][ T6874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  256.368862][ T6874] Call Trace:
[  256.372172][ T6874]  <TASK>
[  256.375146][ T6874]  dump_stack_lvl+0x16c/0x230
[  256.379883][ T6874]  ? show_regs_print_info+0x20/0x20
[  256.385134][ T6874]  ? load_image+0x3b0/0x3b0
[  256.389680][ T6874]  ? __lock_acquire+0x7c80/0x7c80
[  256.394751][ T6874]  should_fail_ex+0x39d/0x4d0
[  256.399477][ T6874]  prepare_alloc_pages+0x1e2/0x5f0
[  256.404632][ T6874]  __alloc_pages+0x127/0x460
[  256.409265][ T6874]  ? zone_statistics+0x170/0x170
[  256.414245][ T6874]  ? mt_find+0x422/0x5b0
[  256.418555][ T6874]  pte_alloc_one+0x89/0x540
[  256.423099][ T6874]  ? pfn_modify_allowed+0x560/0x560
[  256.428342][ T6874]  ? find_vma+0x12e/0x1b0
[  256.432707][ T6874]  ? generic_get_unmapped_area_topdown+0x660/0x660
[  256.439262][ T6874]  __pte_alloc+0x22/0x2a0
[  256.443644][ T6874]  ? mfill_atomic_copy+0x61b/0x1690
[  256.448924][ T6874]  mfill_atomic_copy+0x920/0x1690
[  256.454017][ T6874]  ? _compound_head+0x120/0x120
[  256.458954][ T6874]  ? __might_fault+0xaa/0x120
[  256.463664][ T6874]  ? __might_fault+0xc6/0x120
[  256.468360][ T6874]  ? __might_fault+0xaa/0x120
[  256.473063][ T6874]  userfaultfd_ioctl+0x1dbc/0x4f10
[  256.478218][ T6874]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  256.484321][ T6874]  ? userfaultfd_poll+0x1c0/0x1c0
[  256.489370][ T6874]  ? do_vfs_ioctl+0xd31/0x1bb0
[  256.494192][ T6874]  ? __ia32_compat_sys_ioctl+0x7f0/0x7f0
[  256.499870][ T6874]  ? tomoyo_path_number_perm+0x1ba/0x590
[  256.505521][ T6874]  ? __lock_acquire+0x7c80/0x7c80
[  256.510568][ T6874]  ? slab_free_freelist_hook+0x130/0x1b0
[  256.516225][ T6874]  ? tomoyo_path_number_perm+0x477/0x590
[  256.521972][ T6874]  ? __kmem_cache_free+0xba/0x1f0
[  256.527020][ T6874]  ? tomoyo_path_number_perm+0x4dc/0x590
[  256.532668][ T6874]  ? tomoyo_path_number_perm+0x1ba/0x590
[  256.538356][ T6874]  ? __fget_files+0x28/0x4d0
[  256.542973][ T6874]  ? bpf_lsm_file_ioctl+0x9/0x10
[  256.547920][ T6874]  ? security_file_ioctl+0x80/0xa0
[  256.553056][ T6874]  ? userfaultfd_poll+0x1c0/0x1c0
[  256.558091][ T6874]  __se_sys_ioctl+0xfd/0x170
[  256.562783][ T6874]  do_syscall_64+0x55/0xb0
[  256.567206][ T6874]  ? clear_bhb_loop+0x40/0x90
[  256.572098][ T6874]  ? clear_bhb_loop+0x40/0x90
[  256.576807][ T6874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  256.582717][ T6874] RIP: 0033:0x7f8bd638f749
[  256.587140][ T6874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.606761][ T6874] RSP: 002b:00007f8bd720a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  256.615273][ T6874] RAX: ffffffffffffffda RBX: 00007f8bd65e5fa0 RCX: 00007f8bd638f749
[  256.623257][ T6874] RDX: 0000200000000000 RSI: 00000000c028aa03 RDI: 0000000000000003
[  256.631239][ T6874] RBP: 00007f8bd720a090 R08: 0000000000000000 R09: 0000000000000000
[  256.639228][ T6874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  256.647210][ T6874] R13: 00007f8bd65e6038 R14: 00007f8bd65e5fa0 R15: 00007ffea6718868
[  256.655207][ T6874]  </TASK>
[  259.433272][ T6891] pim6reg: entered allmulticast mode
[  259.716711][ T6902] loop3: detected capacity change from 0 to 4096
[  259.798068][ T6911] loop1: detected capacity change from 0 to 1024
[  260.480683][ T6902] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  260.516391][ T6902] EXT4-fs (loop3): Test dummy encryption mode enabled
[  260.580367][ T6902] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  260.610602][ T6920] hfsplus: xattr searching failed
[  260.620699][ T6902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.650008][ T6918] loop2: detected capacity change from 0 to 8192
[  260.679692][ T6918] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  260.684915][ T6902] fs-verity: sha512 using implementation "sha512-avx2"
[  260.711981][ T6918] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  260.721823][ T6920] overlay: filesystem on ./bus not supported
[  260.734186][ T6918] REISERFS (device loop2): using ordered data mode
[  260.760285][ T6918] reiserfs: using flush barriers
[  260.766010][ T6923] hfsplus: xattr searching failed
[  260.796586][ T6918] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  260.857299][ T6911] hfsplus: xattr searching failed
[  260.864827][ T6918] REISERFS (device loop2): checking transaction log (loop2)
[  260.922476][ T6918] REISERFS (device loop2): Using r5 hash to sort names
[  260.980404][ T6918] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  261.219055][ T6583] hfsplus: bad catalog file entry
[  261.240096][ T6583] hfsplus: b-tree write err: -5, ino 3
[  261.553707][ T6934] Zero length message leads to an empty skb
[  262.902601][ T6583] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.971277][ T6926] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.971601][ T6940] syzkaller0: entered promiscuous mode
[  263.006424][ T6940] syzkaller0: entered allmulticast mode
[  263.052405][ T6583] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.238858][ T6583] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.404811][ T6583] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.688549][ T6946] loop1: detected capacity change from 0 to 8
[  263.953724][ T5858] kernel write not supported for file /amidi2 (pid: 5858 comm: kworker/1:5)
[  264.387718][ T6953] loop2: detected capacity change from 0 to 8192
[  264.456661][ T6953] REISERFS warning (device loop2): super-6504 reiserfs_getopt: the option "grpjquota" requires an argument
[  264.456661][ T6953] 
[  264.497992][ T5774] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  264.509889][ T5774] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  264.556755][ T5774] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  264.565485][ T5774] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  264.573496][ T5774] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  264.581080][ T5774] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  265.697086][   T28] kauditd_printk_skb: 181 callbacks suppressed
[  265.697103][   T28] audit: type=1326 audit(1765304479.229:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  265.734690][   T28] audit: type=1326 audit(1765304479.259:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  265.757973][   T28] audit: type=1326 audit(1765304479.259:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  265.792982][ T6973] FAULT_INJECTION: forcing a failure.
[  265.792982][ T6973] name failslab, interval 1, probability 0, space 0, times 0
[  265.805961][   T28] audit: type=1326 audit(1765304479.259:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  265.838653][ T6973] CPU: 1 PID: 6973 Comm: syz.0.295 Not tainted syzkaller #0
[  265.846003][ T6973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  265.856089][ T6973] Call Trace:
[  265.859382][ T6973]  <TASK>
[  265.862325][ T6973]  dump_stack_lvl+0x16c/0x230
[  265.867028][ T6973]  ? vsnprintf+0x1980/0x1a40
[  265.871638][ T6973]  ? show_regs_print_info+0x20/0x20
[  265.876861][ T6973]  ? load_image+0x3b0/0x3b0
[  265.881385][ T6973]  ? snprintf+0xdb/0x120
[  265.885648][ T6973]  should_fail_ex+0x39d/0x4d0
[  265.890353][ T6973]  should_failslab+0x9/0x20
[  265.894889][ T6973]  slab_pre_alloc_hook+0x59/0x310
[  265.899942][ T6973]  ? aa_label_asxprint+0x70/0x120
[  265.905008][ T6973]  ? aa_label_asxprint+0x70/0x120
[  265.910068][ T6973]  __kmem_cache_alloc_node+0x53/0x260
[  265.915491][ T6973]  ? aa_label_snxprint+0x5a1/0xa90
[  265.920637][ T6973]  ? aa_label_asxprint+0x70/0x120
[  265.925686][ T6973]  __kmalloc+0xa4/0x240
[  265.929872][ T6973]  aa_label_asxprint+0x70/0x120
[  265.934743][ T6973]  apparmor_secid_to_secctx+0xac/0x150
[  265.940227][ T6973]  security_secid_to_secctx+0x70/0xa0
[  265.945617][ T6973]  audit_log_task_context+0xc2/0x1e0
[  265.950922][ T6973]  ? audit_log_key+0x50/0x50
[  265.955531][ T6973]  ? audit_log_start+0x699/0x830
[  265.960497][ T6973]  audit_log_task+0x190/0x2e0
[  265.965193][ T6973]  ? audit_core_dumps+0x110/0x110
[  265.970242][ T6973]  ? migrate_disable+0x180/0x180
[  265.975216][ T6973]  audit_seccomp+0x85/0x180
[  265.979746][ T6973]  __seccomp_filter+0xa49/0x1b70
[  265.984706][ T6973]  ? file_end_write+0x159/0x250
[  265.989576][ T6973]  ? __secure_computing+0x2f0/0x2f0
[  265.994802][ T6973]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  266.000450][ T6973]  ? mutex_unlock+0x10/0x10
[  266.004987][ T6973]  ? __fget_files+0x44a/0x4d0
[  266.009693][ T6973]  ? lock_chain_count+0x20/0x20
[  266.014573][ T6973]  ? __secure_computing+0x111/0x2f0
[  266.019793][ T6973]  syscall_trace_enter+0xa7/0x150
[  266.024839][ T6973]  do_syscall_64+0x28/0xb0
[  266.029264][ T6973]  ? clear_bhb_loop+0x40/0x90
[  266.034066][ T6973]  ? clear_bhb_loop+0x40/0x90
[  266.038757][ T6973]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  266.044664][ T6973] RIP: 0033:0x7fb7b778f749
[  266.049094][ T6973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.068706][ T6973] RSP: 002b:00007fb7b85e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.077132][ T6973] RAX: ffffffffffffffda RBX: 00007fb7b79e6090 RCX: 00007fb7b778f749
[  266.085112][ T6973] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: ffffffffffffffff
[  266.093090][ T6973] RBP: 00007fb7b85e3090 R08: 0000000000000000 R09: 0000000000000000
[  266.101084][ T6973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.109073][ T6973] R13: 00007fb7b79e6128 R14: 00007fb7b79e6090 R15: 00007ffd6873a118
[  266.117068][ T6973]  </TASK>
[  266.176314][   T28] audit: type=1326 audit(1765304479.259:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  266.226397][ T6973] audit: error in audit_log_task_context
[  266.239716][   T28] audit: type=1326 audit(1765304479.259:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  266.307901][   T28] audit: type=1326 audit(1765304479.259:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  266.316400][ T1202] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  266.356377][   T28] audit: type=1326 audit(1765304479.259:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  266.419012][   T28] audit: type=1326 audit(1765304479.259:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.0.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb7b778f749 code=0x7ffc0000
[  266.587576][ T1202] usb 3-1: Using ep0 maxpacket: 8
[  266.616859][ T5774] Bluetooth: hci0: command tx timeout
[  266.637389][ T1202] usb 3-1: unable to get BOS descriptor or descriptor too short
[  266.659643][ T1202] usb 3-1: config 4 interface 0 has no altsetting 0
[  266.711267][ T1202] usb 3-1: string descriptor 0 read error: -22
[  266.729300][ T1202] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  266.746504][ T1202] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  266.784826][ T1202] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  267.102211][ T1202] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  267.797397][ T1202] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  267.805084][ T1202] usb 3-1: media controller created
[  267.834755][ T1202] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  267.927248][ T6964] chnl_net:caif_netlink_parms(): no params data found
[  268.077082][ T1202] zl10353_read_register: readreg error (reg=127, ret==0)
[  268.171802][ T6996] Bluetooth: MGMT ver 1.22
[  268.228581][ T1202] usb 3-1: USB disconnect, device number 8
[  268.230540][ T6993] syzkaller0: entered promiscuous mode
[  268.247527][ T6993] syzkaller0: entered allmulticast mode
[  268.397234][ T6583] hsr_slave_0: left promiscuous mode
[  268.403943][ T6583] hsr_slave_1: left promiscuous mode
[  268.411125][ T6583] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  268.419620][ T6583] batman_adv: batadv0: Removing interface: batadv_slave_0
[  268.439497][ T6583] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  268.448288][ T6583] batman_adv: batadv0: Removing interface: batadv_slave_1
[  268.459659][ T6583] bridge_slave_1: left allmulticast mode
[  268.465464][ T6583] bridge_slave_1: left promiscuous mode
[  268.474410][ T6583] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.492325][ T6583] bridge_slave_0: left allmulticast mode
[  268.498276][ T6583] bridge_slave_0: left promiscuous mode
[  268.504089][ T6583] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.582080][ T6583] veth1_macvtap: left promiscuous mode
[  268.596189][ T6583] veth0_macvtap: left promiscuous mode
[  268.602297][ T6583] veth1_vlan: left promiscuous mode
[  268.609975][ T6583] veth0_vlan: left promiscuous mode
[  268.768185][ T5774] Bluetooth: hci0: command tx timeout
[  268.883924][ T7009] FAULT_INJECTION: forcing a failure.
[  268.883924][ T7009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.897174][ T7009] CPU: 1 PID: 7009 Comm: syz.0.301 Not tainted syzkaller #0
[  268.904493][ T7009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  268.914581][ T7009] Call Trace:
[  268.917884][ T7009]  <TASK>
[  268.920863][ T7009]  dump_stack_lvl+0x16c/0x230
[  268.925593][ T7009]  ? show_regs_print_info+0x20/0x20
[  268.930830][ T7009]  ? load_image+0x3b0/0x3b0
[  268.935373][ T7009]  ? __might_fault+0xaa/0x120
[  268.940072][ T7009]  ? __lock_acquire+0x7c80/0x7c80
[  268.945125][ T7009]  should_fail_ex+0x39d/0x4d0
[  268.949862][ T7009]  _copy_from_iter+0x1d3/0x1290
[  268.954752][ T7009]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  268.960422][ T7009]  ? lockdep_hardirqs_on+0x98/0x150
[  268.965658][ T7009]  ? copyout_mc+0x70/0x70
[  268.970034][ T7009]  ? __check_object_size+0x506/0xa30
[  268.975358][ T7009]  netlink_sendmsg+0x75c/0xbe0
[  268.980240][ T7009]  ? lockdep_hardirqs_on+0x98/0x150
[  268.985480][ T7009]  ? netlink_getsockopt+0x580/0x580
[  268.990715][ T7009]  ? netlink_getsockopt+0x580/0x580
[  268.995942][ T7009]  ____sys_sendmsg+0x5bf/0x950
[  269.000745][ T7009]  ? __asan_memset+0x22/0x40
[  269.005366][ T7009]  ? __sys_sendmsg_sock+0x30/0x30
[  269.010426][ T7009]  ? __import_iovec+0x5f2/0x860
[  269.015325][ T7009]  ? import_iovec+0x73/0xa0
[  269.019883][ T7009]  ___sys_sendmsg+0x220/0x290
[  269.024597][ T7009]  ? __sys_sendmsg+0x270/0x270
[  269.029442][ T7009]  __se_sys_sendmsg+0x1a5/0x270
[  269.034336][ T7009]  ? __x64_sys_sendmsg+0x80/0x80
[  269.039319][ T7009]  ? lockdep_hardirqs_on+0x98/0x150
[  269.044550][ T7009]  do_syscall_64+0x55/0xb0
[  269.048988][ T7009]  ? clear_bhb_loop+0x40/0x90
[  269.053699][ T7009]  ? clear_bhb_loop+0x40/0x90
[  269.058406][ T7009]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  269.064324][ T7009] RIP: 0033:0x7fb7b778f749
[  269.068779][ T7009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.088417][ T7009] RSP: 002b:00007fb7b85c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.096864][ T7009] RAX: ffffffffffffffda RBX: 00007fb7b79e6180 RCX: 00007fb7b778f749
[  269.104891][ T7009] RDX: 0000000004000800 RSI: 0000200000000000 RDI: 0000000000000005
[  269.112899][ T7009] RBP: 00007fb7b85c2090 R08: 0000000000000000 R09: 0000000000000000
[  269.120903][ T7009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.128902][ T7009] R13: 00007fb7b79e6218 R14: 00007fb7b79e6180 R15: 00007ffd6873a118
[  269.136933][ T7009]  </TASK>
[  269.535212][ T7014] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  270.776398][ T5774] Bluetooth: hci0: command tx timeout
[  270.839051][ T7020] loop1: detected capacity change from 0 to 1024
[  270.891671][ T7020] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  271.753349][ T6583] team0 (unregistering): Port device team_slave_1 removed
[  271.802290][   T28] kauditd_printk_skb: 65 callbacks suppressed
[  271.802306][   T28] audit: type=1800 audit(1765304485.339:308): pid=7020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.305" name="file1" dev="loop1" ino=15 res=0 errno=0
[  272.064572][ T6583] team0 (unregistering): Port device team_slave_0 removed
[  272.730878][ T6583] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  272.760529][ T6583] bond_slave_1 (unregistering): left promiscuous mode
[  272.858572][ T5774] Bluetooth: hci0: command tx timeout
[  272.913825][ T7033] 9pnet_fd: Insufficient options for proto=fd
[  272.921885][ T6583] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  272.933863][ T6583] bond_slave_0 (unregistering): left promiscuous mode
[  273.588045][ T6583] bond0 (unregistering): Released all slaves
[  273.797439][ T7037] syzkaller0: entered promiscuous mode
[  273.803013][ T7037] syzkaller0: entered allmulticast mode
[  273.933340][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.249182][ T6964] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.257115][ T6964] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.266760][ T6964] bridge_slave_0: entered allmulticast mode
[  274.274220][ T6964] bridge_slave_0: entered promiscuous mode
[  274.317559][ T6964] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.324742][ T6964] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.379813][ T6964] bridge_slave_1: entered allmulticast mode
[  274.405211][ T6964] bridge_slave_1: entered promiscuous mode
[  274.544906][ T6964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  274.548414][ T7066] comedi comedi3: comedi_test: 6 microvolt, 2047 microsecond waveform attached
[  274.577539][ T6964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  274.665779][ T7069] FAULT_INJECTION: forcing a failure.
[  274.665779][ T7069] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.705633][ T6964] team0: Port device team_slave_0 added
[  274.718763][ T7069] CPU: 0 PID: 7069 Comm: syz.0.312 Not tainted syzkaller #0
[  274.726133][ T7069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  274.736222][ T7069] Call Trace:
[  274.739529][ T7069]  <TASK>
[  274.742473][ T7069]  dump_stack_lvl+0x16c/0x230
[  274.747180][ T7069]  ? show_regs_print_info+0x20/0x20
[  274.752442][ T7069]  ? load_image+0x3b0/0x3b0
[  274.757069][ T7069]  ? __might_fault+0xaa/0x120
[  274.761756][ T7069]  ? __lock_acquire+0x7c80/0x7c80
[  274.766801][ T7069]  should_fail_ex+0x39d/0x4d0
[  274.771512][ T7069]  _copy_from_iter+0x1d3/0x1290
[  274.776383][ T7069]  ? slab_post_alloc_hook+0x8a/0x4d0
[  274.781690][ T7069]  ? __virt_addr_valid+0x18c/0x540
[  274.786820][ T7069]  ? __lock_acquire+0x7c80/0x7c80
[  274.791855][ T7069]  ? rcu_is_watching+0x15/0xb0
[  274.796646][ T7069]  ? copyout_mc+0x70/0x70
[  274.800999][ T7069]  ? __virt_addr_valid+0x18c/0x540
[  274.806137][ T7069]  ? __virt_addr_valid+0x18c/0x540
[  274.811266][ T7069]  ? __virt_addr_valid+0x469/0x540
[  274.816399][ T7069]  ? __check_object_size+0x506/0xa30
[  274.821716][ T7069]  netlink_sendmsg+0x75c/0xbe0
[  274.826499][ T7069]  ? netlink_getsockopt+0x580/0x580
[  274.831711][ T7069]  ? aa_sock_msg_perm+0x94/0x150
[  274.836753][ T7069]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  274.842051][ T7069]  ? security_socket_sendmsg+0x80/0xa0
[  274.847522][ T7069]  ? netlink_getsockopt+0x580/0x580
[  274.852731][ T7069]  ____sys_sendmsg+0x5bf/0x950
[  274.857514][ T7069]  ? __asan_memset+0x22/0x40
[  274.862121][ T7069]  ? __sys_sendmsg_sock+0x30/0x30
[  274.867158][ T7069]  ? __import_iovec+0x5f2/0x860
[  274.872031][ T7069]  ? import_iovec+0x73/0xa0
[  274.876642][ T7069]  ___sys_sendmsg+0x220/0x290
[  274.881348][ T7069]  ? __sys_sendmsg+0x270/0x270
[  274.886142][ T7069]  ? __lock_acquire+0x7c80/0x7c80
[  274.891200][ T7069]  __se_sys_sendmsg+0x1a5/0x270
[  274.896067][ T7069]  ? __x64_sys_sendmsg+0x80/0x80
[  274.901028][ T7069]  ? lockdep_hardirqs_on+0x98/0x150
[  274.906251][ T7069]  do_syscall_64+0x55/0xb0
[  274.910686][ T7069]  ? clear_bhb_loop+0x40/0x90
[  274.915376][ T7069]  ? clear_bhb_loop+0x40/0x90
[  274.920096][ T7069]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.926035][ T7069] RIP: 0033:0x7fb7b778f749
[  274.930467][ T7069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.950102][ T7069] RSP: 002b:00007fb7b8604038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  274.958620][ T7069] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778f749
[  274.966606][ T7069] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  274.974613][ T7069] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  274.982596][ T7069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.990577][ T7069] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  274.998578][ T7069]  </TASK>
[  275.079597][ T6964] team0: Port device team_slave_1 added
[  275.158722][ T6964] batman_adv: batadv0: Adding interface: batadv_slave_0
[  275.186430][ T6964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.291988][ T6964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  275.328667][ T6964] batman_adv: batadv0: Adding interface: batadv_slave_1
[  275.351914][ T6964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  276.461093][ T6964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  276.583857][ T6964] hsr_slave_0: entered promiscuous mode
[  276.597974][ T6964] hsr_slave_1: entered promiscuous mode
[  276.606979][ T6964] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  276.624830][ T6964] Cannot create hsr debugfs directory
[  277.156434][ T5856] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  277.199692][ T6964] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  277.234383][ T6964] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  277.264262][ T6964] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  277.284982][ T6964] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  277.350518][ T5856] usb 2-1: unable to get BOS descriptor or descriptor too short
[  277.364438][ T5856] usb 2-1: config 6 has an invalid interface number: 200 but max is 0
[  277.406501][ T5856] usb 2-1: config 6 has no interface number 0
[  277.412833][ T5856] usb 2-1: config 6 interface 200 altsetting 8 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  277.459491][ T5856] usb 2-1: config 6 interface 200 has no altsetting 0
[  277.491549][ T5856] usb 2-1: string descriptor 0 read error: -22
[  277.508006][ T5856] usb 2-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[  277.537285][ T5856] usb 2-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3
[  277.584324][ T5856] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[  277.686524][ T6964] 8021q: adding VLAN 0 to HW filter on device bond0
[  277.741018][ T7099] loop2: detected capacity change from 0 to 136
[  277.748337][ T6964] 8021q: adding VLAN 0 to HW filter on device team0
[  277.809614][ T5856] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  277.832071][ T6583] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.839373][ T6583] bridge0: port 1(bridge_slave_0) entered forwarding state
[  277.841012][ T7099] Attempt to read inode for relocated directory
[  277.861832][ T5856] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[  277.882668][ T5856] usb 2-1: media controller created
[  277.942762][ T2920] bridge0: port 2(bridge_slave_1) entered blocking state
[  277.949997][ T2920] bridge0: port 2(bridge_slave_1) entered forwarding state
[  277.993853][ T5856] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  278.142951][ T5856] dvb-usb: bulk message failed: -71 (6/0)
[  278.386137][ T5856] dvb-usb: bulk message failed: -71 (6/0)
[  278.394298][ T5856] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[  279.109705][ T7114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.314'.
[  279.143655][ T7114] loop0: detected capacity change from 0 to 64
[  279.159206][ T7114] hfs: gid requires an argument
[  279.164253][ T7114] hfs: unable to parse mount options
[  279.979417][ T5856] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input6
[  280.000821][ T5856] dvb-usb: schedule remote query interval to 150 msecs.
[  280.007917][ T5856] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[  280.022379][ T5856] usb 2-1: USB disconnect, device number 5
[  280.244001][ T6377] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  280.247943][ T5856] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[  280.795030][ T6964] 8021q: adding VLAN 0 to HW filter on device batadv0
[  281.035884][ T7116] loop2: detected capacity change from 0 to 32768
[  281.087432][ T7116] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.318 (7116)
[  281.256965][ T7116] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  281.294646][ T7116] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  281.326995][ T7116] BTRFS info (device loop2): using free space tree
[  281.567196][ T7116] BTRFS info (device loop2): enabling ssd optimizations
[  281.574222][ T7116] BTRFS info (device loop2): auto enabling async discard
[  281.836999][ T7116] fuse: Bad value for 'user_id'
[  281.892902][ T6964] veth0_vlan: entered promiscuous mode
[  281.950616][ T6964] veth1_vlan: entered promiscuous mode
[  282.043673][ T7162] syzkaller0: entered promiscuous mode
[  282.096083][ T7162] syzkaller0: entered allmulticast mode
[  282.125608][ T7129] loop1: detected capacity change from 0 to 32768
[  282.201113][ T6964] veth0_macvtap: entered promiscuous mode
[  282.248681][ T5769] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  282.374564][ T6964] veth1_macvtap: entered promiscuous mode
[  282.510435][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  282.555763][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.586766][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  282.613536][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.636687][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  282.654651][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.671160][ T6964] batman_adv: batadv0: Interface activated: batadv_slave_0
[  282.682199][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  282.717884][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.399822][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.410438][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.422722][ T6964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.434342][ T6964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.455320][ T6964] batman_adv: batadv0: Interface activated: batadv_slave_1
[  284.537988][   T23] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  284.550227][ T6964] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  284.587693][ T6964] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  284.616584][ T6964] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  284.625360][ T6964] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.086086][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  285.131834][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.329352][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  286.372971][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.696875][   T28] audit: type=1800 audit(1765304500.229:309): pid=7189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.291" name="file2" dev="overlay" ino=27 res=0 errno=0
[  286.812751][ T7176] loop0: detected capacity change from 0 to 32768
[  286.867676][ T7176] xfs: Unknown parameter 'euid>00000000000000000000'
[  286.956478][ T6793] I/O error, dev loop0, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  287.307265][ T7199] FAULT_INJECTION: forcing a failure.
[  287.307265][ T7199] name failslab, interval 1, probability 0, space 0, times 0
[  287.360774][ T7199] CPU: 1 PID: 7199 Comm: syz.4.328 Not tainted syzkaller #0
[  287.368152][ T7199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  287.378248][ T7199] Call Trace:
[  287.381563][ T7199]  <TASK>
[  287.384522][ T7199]  dump_stack_lvl+0x16c/0x230
[  287.389257][ T7199]  ? show_regs_print_info+0x20/0x20
[  287.394520][ T7199]  ? load_image+0x3b0/0x3b0
[  287.399164][ T7199]  ? __lock_acquire+0x7c80/0x7c80
[  287.404235][ T7199]  should_fail_ex+0x39d/0x4d0
[  287.408963][ T7199]  should_failslab+0x9/0x20
[  287.413513][ T7199]  slab_pre_alloc_hook+0x59/0x310
[  287.418589][ T7199]  ? sk_prot_alloc+0xe7/0x210
[  287.423309][ T7199]  ? sk_prot_alloc+0xe7/0x210
[  287.428028][ T7199]  __kmem_cache_alloc_node+0x53/0x260
[  287.433450][ T7199]  ? sk_prot_alloc+0xe7/0x210
[  287.438154][ T7199]  __kmalloc+0xa4/0x240
[  287.442335][ T7199]  sk_prot_alloc+0xe7/0x210
[  287.446865][ T7199]  ? sk_alloc+0x24/0x360
[  287.451144][ T7199]  sk_alloc+0x3a/0x360
[  287.455248][ T7199]  ? bpf_ctx_init+0x163/0x1a0
[  287.459955][ T7199]  ? bpf_prog_test_run_skb+0x268/0x11c0
[  287.465537][ T7199]  bpf_prog_test_run_skb+0x39a/0x11c0
[  287.470951][ T7199]  ? __fget_files+0x28/0x4d0
[  287.475588][ T7199]  ? cpu_online+0x60/0x60
[  287.479945][ T7199]  bpf_prog_test_run+0x321/0x390
[  287.484906][ T7199]  __sys_bpf+0x440/0x800
[  287.489169][ T7199]  ? bpf_link_show_fdinfo+0x350/0x350
[  287.494566][ T7199]  ? lock_chain_count+0x20/0x20
[  287.499435][ T7199]  __x64_sys_bpf+0x7c/0x90
[  287.503860][ T7199]  do_syscall_64+0x55/0xb0
[  287.508288][ T7199]  ? clear_bhb_loop+0x40/0x90
[  287.512980][ T7199]  ? clear_bhb_loop+0x40/0x90
[  287.517675][ T7199]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  287.523586][ T7199] RIP: 0033:0x7f219ed8f749
[  287.528018][ T7199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.547650][ T7199] RSP: 002b:00007f219fc6d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  287.556075][ T7199] RAX: ffffffffffffffda RBX: 00007f219efe5fa0 RCX: 00007f219ed8f749
[  287.564058][ T7199] RDX: 0000000000000048 RSI: 00002000000002c0 RDI: 000000000000000a
[  287.572063][ T7199] RBP: 00007f219fc6d090 R08: 0000000000000000 R09: 0000000000000000
[  287.580061][ T7199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.588047][ T7199] R13: 00007f219efe6038 R14: 00007f219efe5fa0 R15: 00007fff07653ce8
[  287.596070][ T7199]  </TASK>
[  287.847584][ T7204] FAULT_INJECTION: forcing a failure.
[  287.847584][ T7204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.896852][ T7204] CPU: 1 PID: 7204 Comm: syz.2.324 Not tainted syzkaller #0
[  287.904219][ T7204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  287.914321][ T7204] Call Trace:
[  287.917631][ T7204]  <TASK>
[  287.920608][ T7204]  dump_stack_lvl+0x16c/0x230
[  287.925337][ T7204]  ? show_regs_print_info+0x20/0x20
[  287.930581][ T7204]  ? load_image+0x3b0/0x3b0
[  287.935129][ T7204]  ? __might_fault+0xaa/0x120
[  287.939842][ T7204]  ? __lock_acquire+0x7c80/0x7c80
[  287.944903][ T7204]  should_fail_ex+0x39d/0x4d0
[  287.949646][ T7204]  _copy_from_user+0x2f/0xe0
[  287.954281][ T7204]  __se_sys_mount+0x179/0x3c0
[  287.959043][ T7204]  ? __x64_sys_mount+0xc0/0xc0
[  287.963857][ T7204]  ? lockdep_hardirqs_on+0x98/0x150
[  287.969104][ T7204]  ? __x64_sys_mount+0x20/0xc0
[  287.973904][ T7204]  do_syscall_64+0x55/0xb0
[  287.978396][ T7204]  ? clear_bhb_loop+0x40/0x90
[  287.983114][ T7204]  ? clear_bhb_loop+0x40/0x90
[  287.987831][ T7204]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  287.993767][ T7204] RIP: 0033:0x7f9a6b78f749
[  287.998215][ T7204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.017862][ T7204] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  288.026320][ T7204] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  288.034329][ T7204] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  288.042348][ T7204] RBP: 00007f9a6c704090 R08: 0000200000000000 R09: 0000000000000000
[  288.050362][ T7204] R10: 0000000000200084 R11: 0000000000000246 R12: 0000000000000001
[  288.058366][ T7204] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  288.066388][ T7204]  </TASK>
[  289.530359][ T7218] capability: warning: `syz.0.331' uses deprecated v2 capabilities in a way that may be insecure
[  289.594683][ T7220] syzkaller0: entered promiscuous mode
[  289.624886][ T7220] syzkaller0: entered allmulticast mode
[  290.699578][ T7240] loop2: detected capacity change from 0 to 64
[  290.712128][ T7240] hfs: gid requires an argument
[  290.717239][ T7240] hfs: unable to parse mount options
[  291.552948][ T7237] netlink: 8 bytes leftover after parsing attributes in process `syz.1.335'.
[  291.566749][ T6793] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  291.597530][ T7237] netlink: 56 bytes leftover after parsing attributes in process `syz.1.335'.
[  291.608514][ T7238] netlink: 4 bytes leftover after parsing attributes in process `syz.2.334'.
[  291.716909][ T7232] FAULT_INJECTION: forcing a failure.
[  291.716909][ T7232] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.771156][ T7232] CPU: 0 PID: 7232 Comm: syz.0.333 Not tainted syzkaller #0
[  291.778520][ T7232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  291.788704][ T7232] Call Trace:
[  291.792033][ T7232]  <TASK>
[  291.794996][ T7232]  dump_stack_lvl+0x16c/0x230
[  291.799721][ T7232]  ? show_regs_print_info+0x20/0x20
[  291.804944][ T7232]  ? load_image+0x3b0/0x3b0
[  291.809469][ T7232]  ? __might_fault+0xaa/0x120
[  291.814174][ T7232]  ? __lock_acquire+0x7c80/0x7c80
[  291.819215][ T7232]  should_fail_ex+0x39d/0x4d0
[  291.823910][ T7232]  _copy_from_user+0x2f/0xe0
[  291.828517][ T7232]  ___sys_sendmsg+0x159/0x290
[  291.833297][ T7232]  ? __sys_sendmsg+0x270/0x270
[  291.838084][ T7232]  ? __lock_acquire+0x7c80/0x7c80
[  291.843137][ T7232]  __se_sys_sendmsg+0x1a5/0x270
[  291.848002][ T7232]  ? __x64_sys_sendmsg+0x80/0x80
[  291.852978][ T7232]  ? lockdep_hardirqs_on+0x98/0x150
[  291.858194][ T7232]  do_syscall_64+0x55/0xb0
[  291.862615][ T7232]  ? clear_bhb_loop+0x40/0x90
[  291.867306][ T7232]  ? clear_bhb_loop+0x40/0x90
[  291.871999][ T7232]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  291.877904][ T7232] RIP: 0033:0x7fb7b778f749
[  291.882324][ T7232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.901958][ T7232] RSP: 002b:00007fb7b8604038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.910389][ T7232] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778f749
[  291.918371][ T7232] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000000000000007
[  291.926362][ T7232] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  291.934373][ T7232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.942370][ T7232] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  291.950380][ T7232]  </TASK>
[  292.367008][ T7245] loop4: detected capacity change from 0 to 1024
[  292.374404][ T7245] EXT4-fs: Ignoring removed orlov option
[  292.429755][ T7245] EXT4-fs: Ignoring removed nomblk_io_submit option
[  292.822903][ T7245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.159400][ T7268] FAULT_INJECTION: forcing a failure.
[  293.159400][ T7268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.172656][ T7268] CPU: 1 PID: 7268 Comm: syz.0.340 Not tainted syzkaller #0
[  293.180070][ T7268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  293.190141][ T7268] Call Trace:
[  293.193430][ T7268]  <TASK>
[  293.196374][ T7268]  dump_stack_lvl+0x16c/0x230
[  293.201083][ T7268]  ? show_regs_print_info+0x20/0x20
[  293.206305][ T7268]  ? load_image+0x3b0/0x3b0
[  293.210828][ T7268]  ? __might_fault+0xaa/0x120
[  293.215519][ T7268]  ? __lock_acquire+0x7c80/0x7c80
[  293.220568][ T7268]  should_fail_ex+0x39d/0x4d0
[  293.225266][ T7268]  _copy_from_user+0x2f/0xe0
[  293.229884][ T7268]  ___sys_sendmsg+0x159/0x290
[  293.234622][ T7268]  ? __sys_sendmsg+0x270/0x270
[  293.239428][ T7268]  ? __lock_acquire+0x7c80/0x7c80
[  293.244487][ T7268]  __se_sys_sendmsg+0x1a5/0x270
[  293.249359][ T7268]  ? __x64_sys_sendmsg+0x80/0x80
[  293.254325][ T7268]  ? lockdep_hardirqs_on+0x98/0x150
[  293.259558][ T7268]  do_syscall_64+0x55/0xb0
[  293.263983][ T7268]  ? clear_bhb_loop+0x40/0x90
[  293.268677][ T7268]  ? clear_bhb_loop+0x40/0x90
[  293.273387][ T7268]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  293.279299][ T7268] RIP: 0033:0x7fb7b778f749
[  293.283729][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.303345][ T7268] RSP: 002b:00007fb7b85c2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.311773][ T7268] RAX: ffffffffffffffda RBX: 00007fb7b79e6180 RCX: 00007fb7b778f749
[  293.319759][ T7268] RDX: 0000000020000000 RSI: 0000200000000040 RDI: 0000000000000006
[  293.327743][ T7268] RBP: 00007fb7b85c2090 R08: 0000000000000000 R09: 0000000000000000
[  293.335733][ T7268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.343720][ T7268] R13: 00007fb7b79e6218 R14: 00007fb7b79e6180 R15: 00007ffd6873a118
[  293.351742][ T7268]  </TASK>
[  293.612768][ T6964] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.072268][ T7274] netlink: 8 bytes leftover after parsing attributes in process `syz.2.336'.
[  294.112843][ T7274] netlink: 24 bytes leftover after parsing attributes in process `syz.2.336'.
[  294.236550][ T5838] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  294.324979][ T7274] loop2: detected capacity change from 0 to 1024
[  294.410654][ T7274] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  294.494833][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.574597][ T5838] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.643854][ T5838] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  294.691424][ T5769] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.696478][ T5838] usb 5-1: New USB device found, idVendor=0463, idProduct=ffff, bcdDevice= 0.00
[  294.770930][ T5838] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.857740][ T5838] usb 5-1: config 0 descriptor??
[  295.134930][ T7295] loop2: detected capacity change from 0 to 64
[  295.277575][ T7297] netlink: 12 bytes leftover after parsing attributes in process `syz.0.344'.
[  295.301533][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.335906][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.365501][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.378588][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.399744][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.419104][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.434196][ T7300] syzkaller0: entered promiscuous mode
[  295.440088][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.449430][ T7300] syzkaller0: entered allmulticast mode
[  295.455286][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.469116][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.689087][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.697924][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.705472][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.713705][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.721564][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.729343][ T5838] hid-generic 0003:0463:FFFF.0002: unknown main item tag 0x0
[  295.759310][ T7306] loop0: detected capacity change from 0 to 1024
[  295.792569][ T5838] hid-generic 0003:0463:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 0463:ffff] on usb-dummy_hcd.4-1/input0
[  295.817162][ T7306] EXT4-fs: Ignoring removed mblk_io_submit option
[  295.856420][ T7306] EXT4-fs: inline encryption not supported
[  295.983829][ T7306] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  296.076573][ T7306] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.346: bad orphan inode 11
[  296.097719][ T7306] EXT4-fs (loop0): Remounting filesystem read-only
[  296.110430][ T7306] ext4_test_bit(bit=10, block=4) = 1
[  296.115969][ T7306] is_bad_inode(inode)=0
[  296.123637][ T7306] NEXT_ORPHAN(inode)=3254779904
[  296.130159][ T7306] max_ino=32
[  296.133519][ T7306] i_nlink=0
[  296.138413][ T7306] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.388585][ T7314] netlink: 300 bytes leftover after parsing attributes in process `syz.1.349'.
[  296.519214][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.687602][ T7320] FAULT_INJECTION: forcing a failure.
[  296.687602][ T7320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.744486][ T7320] CPU: 0 PID: 7320 Comm: syz.2.348 Not tainted syzkaller #0
[  296.751939][ T7320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  296.762043][ T7320] Call Trace:
[  296.765350][ T7320]  <TASK>
[  296.768315][ T7320]  dump_stack_lvl+0x16c/0x230
[  296.773045][ T7320]  ? show_regs_print_info+0x20/0x20
[  296.778305][ T7320]  ? load_image+0x3b0/0x3b0
[  296.782861][ T7320]  ? __might_fault+0xaa/0x120
[  296.787573][ T7320]  ? __lock_acquire+0x7c80/0x7c80
[  296.792650][ T7320]  should_fail_ex+0x39d/0x4d0
[  296.797376][ T7320]  _copy_from_iter+0x1d3/0x1290
[  296.802267][ T7320]  ? __virt_addr_valid+0x18c/0x540
[  296.807417][ T7320]  ? __lock_acquire+0x7c80/0x7c80
[  296.812485][ T7320]  ? copyout_mc+0x70/0x70
[  296.816855][ T7320]  ? __virt_addr_valid+0x18c/0x540
[  296.822008][ T7320]  ? __virt_addr_valid+0x18c/0x540
[  296.827154][ T7320]  ? __virt_addr_valid+0x469/0x540
[  296.832317][ T7320]  ? __check_object_size+0x506/0xa30
[  296.837649][ T7320]  netlink_sendmsg+0x75c/0xbe0
[  296.842455][ T7320]  ? netlink_getsockopt+0x580/0x580
[  296.847693][ T7320]  ? aa_sock_msg_perm+0x94/0x150
[  296.852676][ T7320]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  296.857991][ T7320]  ? security_socket_sendmsg+0x80/0xa0
[  296.863497][ T7320]  ? netlink_getsockopt+0x580/0x580
[  296.868725][ T7320]  ____sys_sendmsg+0x5bf/0x950
[  296.873546][ T7320]  ? __asan_memset+0x22/0x40
[  296.878176][ T7320]  ? __sys_sendmsg_sock+0x30/0x30
[  296.883237][ T7320]  ? __import_iovec+0x5f2/0x860
[  296.888137][ T7320]  ? import_iovec+0x73/0xa0
[  296.892690][ T7320]  ___sys_sendmsg+0x220/0x290
[  296.897418][ T7320]  ? __sys_sendmsg+0x270/0x270
[  296.902254][ T7320]  ? __lock_acquire+0x7c80/0x7c80
[  296.907340][ T7320]  __se_sys_sendmsg+0x1a5/0x270
[  296.912406][ T7320]  ? __x64_sys_sendmsg+0x80/0x80
[  296.917396][ T7320]  ? lockdep_hardirqs_on+0x98/0x150
[  296.922651][ T7320]  do_syscall_64+0x55/0xb0
[  296.927104][ T7320]  ? clear_bhb_loop+0x40/0x90
[  296.931824][ T7320]  ? clear_bhb_loop+0x40/0x90
[  296.936542][ T7320]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  296.942474][ T7320] RIP: 0033:0x7f9a6b78f749
[  296.946923][ T7320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.966570][ T7320] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.975026][ T7320] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  296.983033][ T7320] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[  296.991036][ T7320] RBP: 00007f9a6c704090 R08: 0000000000000000 R09: 0000000000000000
[  296.999041][ T7320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.007050][ T7320] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  297.015079][ T7320]  </TASK>
[  297.056846][ T7323] netlink: 300 bytes leftover after parsing attributes in process `syz.1.350'.
[  297.113519][ T7325] loop0: detected capacity change from 0 to 512
[  297.137677][ T7325] EXT4-fs: Ignoring removed orlov option
[  297.204853][ T7325] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  297.284862][ T7325] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  297.333793][ T7325] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2249: inode #15: comm syz.0.351: corrupted in-inode xattr: e_value size too large
[  297.349393][ T7329] FAULT_INJECTION: forcing a failure.
[  297.349393][ T7329] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.362739][ T7329] CPU: 1 PID: 7329 Comm: syz.2.352 Not tainted syzkaller #0
[  297.370075][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  297.373201][ T7325] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.351: couldn't read orphan inode 15 (err -117)
[  297.380149][ T7329] Call Trace:
[  297.380162][ T7329]  <TASK>
[  297.380172][ T7329]  dump_stack_lvl+0x16c/0x230
[  297.380211][ T7329]  ? show_regs_print_info+0x20/0x20
[  297.408150][ T7329]  ? load_image+0x3b0/0x3b0
[  297.412727][ T7329]  ? __might_fault+0xaa/0x120
[  297.417547][ T7329]  ? __lock_acquire+0x7c80/0x7c80
[  297.422638][ T7329]  should_fail_ex+0x39d/0x4d0
[  297.427380][ T7329]  _copy_from_iter+0x1d3/0x1290
[  297.432284][ T7329]  ? __virt_addr_valid+0x18c/0x540
[  297.437449][ T7329]  ? __lock_acquire+0x7c80/0x7c80
[  297.442530][ T7329]  ? copyout_mc+0x70/0x70
[  297.446928][ T7329]  ? __virt_addr_valid+0x18c/0x540
[  297.452079][ T7329]  ? __virt_addr_valid+0x18c/0x540
[  297.457238][ T7329]  ? __virt_addr_valid+0x469/0x540
[  297.462409][ T7329]  ? __check_object_size+0x506/0xa30
[  297.467834][ T7329]  netlink_sendmsg+0x75c/0xbe0
[  297.472657][ T7329]  ? netlink_getsockopt+0x580/0x580
[  297.477922][ T7329]  ? aa_sock_msg_perm+0x94/0x150
[  297.482932][ T7329]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  297.488277][ T7329]  ? security_socket_sendmsg+0x80/0xa0
[  297.492927][ T7325] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.493769][ T7329]  ? netlink_getsockopt+0x580/0x580
[  297.511003][ T7329]  ____sys_sendmsg+0x5bf/0x950
[  297.515829][ T7329]  ? __asan_memset+0x22/0x40
[  297.520471][ T7329]  ? __sys_sendmsg_sock+0x30/0x30
[  297.525557][ T7329]  ? __import_iovec+0x5f2/0x860
[  297.530479][ T7329]  ? import_iovec+0x73/0xa0
[  297.535048][ T7329]  ___sys_sendmsg+0x220/0x290
[  297.539813][ T7329]  ? __sys_sendmsg+0x270/0x270
[  297.544647][ T7329]  ? __lock_acquire+0x7c80/0x7c80
[  297.549743][ T7329]  __se_sys_sendmsg+0x1a5/0x270
[  297.554631][ T7329]  ? __x64_sys_sendmsg+0x80/0x80
[  297.559643][ T7329]  ? lockdep_hardirqs_on+0x98/0x150
[  297.564900][ T7329]  do_syscall_64+0x55/0xb0
[  297.569364][ T7329]  ? clear_bhb_loop+0x40/0x90
[  297.574082][ T7329]  ? clear_bhb_loop+0x40/0x90
[  297.578805][ T7329]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  297.584748][ T7329] RIP: 0033:0x7f9a6b78f749
[  297.589201][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.608868][ T7329] RSP: 002b:00007f9a6c704038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.617344][ T7329] RAX: ffffffffffffffda RBX: 00007f9a6b9e5fa0 RCX: 00007f9a6b78f749
[  297.625370][ T7329] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[  297.633431][ T7329] RBP: 00007f9a6c704090 R08: 0000000000000000 R09: 0000000000000000
[  297.641449][ T7329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.649558][ T7329] R13: 00007f9a6b9e6038 R14: 00007f9a6b9e5fa0 R15: 00007ffe9e4edb68
[  297.657608][ T7329]  </TASK>
[  297.711181][ T7325] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[  299.348973][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.401309][ T7349] syzkaller0: entered promiscuous mode
[  299.416770][ T7349] syzkaller0: entered allmulticast mode
[  299.435560][ T5838] usb 5-1: USB disconnect, device number 2
[  299.626476][ T7353] netlink: 12 bytes leftover after parsing attributes in process `syz.0.356'.
[  299.880249][ T7343] loop2: detected capacity change from 0 to 32768
[  299.984124][ T7343] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  300.213025][ T7343] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  300.287930][ T7375] FAULT_INJECTION: forcing a failure.
[  300.287930][ T7375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  300.347987][ T7375] CPU: 1 PID: 7375 Comm: syz.1.360 Not tainted syzkaller #0
[  300.355375][ T7375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  300.365480][ T7375] Call Trace:
[  300.368803][ T7375]  <TASK>
[  300.371786][ T7375]  dump_stack_lvl+0x16c/0x230
[  300.376534][ T7375]  ? show_regs_print_info+0x20/0x20
[  300.381827][ T7375]  ? load_image+0x3b0/0x3b0
[  300.386393][ T7375]  ? __might_fault+0xaa/0x120
[  300.391125][ T7375]  ? __lock_acquire+0x7c80/0x7c80
[  300.396214][ T7375]  should_fail_ex+0x39d/0x4d0
[  300.400982][ T7375]  _copy_from_user+0x2f/0xe0
[  300.405637][ T7375]  core_sys_select+0x4f2/0x950
[  300.410475][ T7375]  ? poll_select_set_timeout+0x160/0x160
[  300.415111][ T7343] XFS (loop2): Ending clean mount
[  300.416164][ T7375]  ? sigprocmask+0x190/0x190
[  300.425805][ T7375]  ? __fget_files+0x44a/0x4d0
[  300.430540][ T7375]  __se_sys_pselect6+0x285/0x310
[  300.435560][ T7375]  ? __x64_sys_pselect6+0xf0/0xf0
[  300.440658][ T7375]  ? __x64_sys_pselect6+0x21/0xf0
[  300.445746][ T7375]  do_syscall_64+0x55/0xb0
[  300.450210][ T7375]  ? clear_bhb_loop+0x40/0x90
[  300.454954][ T7375]  ? clear_bhb_loop+0x40/0x90
[  300.459679][ T7375]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  300.465609][ T7375] RIP: 0033:0x7f8bd638f749
[  300.470043][ T7375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.489667][ T7375] RSP: 002b:00007f8bd71e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  300.498096][ T7375] RAX: ffffffffffffffda RBX: 00007f8bd65e6090 RCX: 00007f8bd638f749
[  300.506085][ T7375] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000040
[  300.514079][ T7375] RBP: 00007f8bd71e9090 R08: 0000000000000000 R09: 0000000000000000
[  300.522072][ T7375] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  300.530059][ T7375] R13: 00007f8bd65e6128 R14: 00007f8bd65e6090 R15: 00007ffea6718868
[  300.538057][ T7375]  </TASK>
[  300.544590][ T7343] XFS (loop2): Quotacheck needed: Please wait.
[  300.792952][ T7343] XFS (loop2): Quotacheck: Done.
[  301.002887][ T5769] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  301.367899][ T7391] netlink: 28 bytes leftover after parsing attributes in process `syz.1.363'.
[  301.451564][ T7388] bridge1: entered promiscuous mode
[  301.482841][ T7388] bridge1: entered allmulticast mode
[  301.502652][ T7388] team0: Port device bridge1 added
[  301.738092][ T7401] loop4: detected capacity change from 0 to 512
[  301.777368][ T7401] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  301.789539][ T7401] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  301.804308][ T7401] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  301.925648][ T7401] EXT4-fs (loop4): 1 truncate cleaned up
[  301.939357][ T7401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.788304][ T7402] FAULT_INJECTION: forcing a failure.
[  302.788304][ T7402] name failslab, interval 1, probability 0, space 0, times 0
[  302.801010][ T7402] CPU: 1 PID: 7402 Comm: syz.0.365 Not tainted syzkaller #0
[  302.808295][ T7402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  302.818440][ T7402] Call Trace:
[  302.821808][ T7402]  <TASK>
[  302.824753][ T7402]  dump_stack_lvl+0x16c/0x230
[  302.829450][ T7402]  ? show_regs_print_info+0x20/0x20
[  302.834668][ T7402]  ? load_image+0x3b0/0x3b0
[  302.839190][ T7402]  ? __might_sleep+0xe0/0xe0
[  302.843788][ T7402]  ? __lock_acquire+0x7c80/0x7c80
[  302.848829][ T7402]  should_fail_ex+0x39d/0x4d0
[  302.853543][ T7402]  should_failslab+0x9/0x20
[  302.858060][ T7402]  slab_pre_alloc_hook+0x59/0x310
[  302.863123][ T7402]  ? d_instantiate+0x6f/0x90
[  302.867725][ T7402]  kmem_cache_alloc+0x5a/0x2e0
[  302.872514][ T7402]  ? alloc_empty_file+0x9e/0x1d0
[  302.877469][ T7402]  alloc_empty_file+0x9e/0x1d0
[  302.882243][ T7402]  alloc_file+0x5c/0x600
[  302.886504][ T7402]  alloc_file_pseudo+0x17e/0x200
[  302.891457][ T7402]  ? alloc_empty_backing_file+0xe0/0xe0
[  302.897007][ T7402]  ? __rwlock_init+0x150/0x150
[  302.901777][ T7402]  ? bpf_lsm_inode_alloc_security+0x9/0x10
[  302.907610][ T7402]  ? do_raw_spin_unlock+0x121/0x230
[  302.912831][ T7402]  sock_alloc_file+0xb7/0x280
[  302.917629][ T7402]  do_accept+0x3a0/0x680
[  302.921884][ T7402]  ? __ia32_sys_listen+0x70/0x70
[  302.926838][ T7402]  __sys_accept4+0x9b/0x100
[  302.931341][ T7402]  __x64_sys_accept4+0x9a/0xb0
[  302.936114][ T7402]  do_syscall_64+0x55/0xb0
[  302.940537][ T7402]  ? clear_bhb_loop+0x40/0x90
[  302.945221][ T7402]  ? clear_bhb_loop+0x40/0x90
[  302.949904][ T7402]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  302.955800][ T7402] RIP: 0033:0x7fb7b778f749
[  302.960231][ T7402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.979950][ T7402] RSP: 002b:00007fb7b8604038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  302.988371][ T7402] RAX: ffffffffffffffda RBX: 00007fb7b79e5fa0 RCX: 00007fb7b778f749
[  302.996347][ T7402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  303.004321][ T7402] RBP: 00007fb7b8604090 R08: 0000000000000000 R09: 0000000000000000
[  303.012292][ T7402] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  303.020266][ T7402] R13: 00007fb7b79e6038 R14: 00007fb7b79e5fa0 R15: 00007ffd6873a118
[  303.028262][ T7402]  </TASK>
[  303.816501][ T7401] x_tables: duplicate entry at hook 2
[  304.029830][ T7414] loop2: detected capacity change from 0 to 256
[  304.132048][ T6964] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.913828][ T7430] syzkaller0: entered promiscuous mode
[  304.930751][ T7430] syzkaller0: entered allmulticast mode
[  305.008983][ T7422] loop4: detected capacity change from 0 to 32768
[  305.046525][ T7422] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 scanned by syz.4.369 (7422)
[  305.125890][ T7422] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  305.168789][ T7422] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  305.199174][ T7422] BTRFS info (device loop4): using free space tree
[  306.763088][ T7422] BTRFS info (device loop4): enabling ssd optimizations
[  306.792542][ T7422] BTRFS info (device loop4): auto enabling async discard
[  307.034517][ T7422] overlayfs: failed to resolve './bus': -2
[  311.716699][ T7484] FAULT_INJECTION: forcing a failure.
[  311.716699][ T7484] name failslab, interval 1, probability 0, space 0, times 0
[  311.729602][ T7484] CPU: 0 PID: 7484 Comm: syz.2.378 Not tainted syzkaller #0
[  311.736926][ T7484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  311.747014][ T7484] Call Trace:
[  311.750318][ T7484]  <TASK>
[  311.753254][ T7484]  dump_stack_lvl+0x16c/0x230
[  311.757953][ T7484]  ? show_regs_print_info+0x20/0x20
[  311.763194][ T7484]  ? load_image+0x3b0/0x3b0
[  311.767724][ T7484]  ? __mutex_trylock_common+0x153/0x250
[  311.773312][ T7484]  should_fail_ex+0x39d/0x4d0
[  311.778013][ T7484]  should_failslab+0x9/0x20
[  311.782531][ T7484]  slab_pre_alloc_hook+0x59/0x310
[  311.787566][ T7484]  ? trace_contention_end+0x39/0xe0
[  311.792796][ T7484]  kmem_cache_alloc_node+0x60/0x330
[  311.798002][ T7484]  ? __alloc_skb+0x108/0x2c0
[  311.802605][ T7484]  __alloc_skb+0x108/0x2c0
[  311.807034][ T7484]  hci_mgmt_cmd+0x1ca/0xef0
[  311.811552][ T7484]  hci_sock_sendmsg+0x6cc/0xed0
[  311.816416][ T7484]  ? hci_sock_getsockopt+0x5b0/0x5b0
[  311.821726][ T7484]  ? aa_sock_msg_perm+0x94/0x150
[  311.826689][ T7484]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  311.831979][ T7484]  ? security_socket_sendmsg+0x80/0xa0
[  311.837465][ T7484]  sock_write_iter+0x2bb/0x3f0
[  311.842235][ T7484]  ? sock_read_iter+0x3b0/0x3b0
[  311.847094][ T7484]  ? common_file_perm+0x198/0x1f0
[  311.852128][ T7484]  vfs_write+0x43b/0x940
[  311.856387][ T7484]  ? file_end_write+0x250/0x250
[  311.861253][ T7484]  ? __fget_files+0x44a/0x4d0
[  311.865946][ T7484]  ? __fdget_pos+0x1d8/0x330
[  311.870548][ T7484]  ? ksys_write+0x75/0x250
[  311.874982][ T7484]  ksys_write+0x147/0x250
[  311.879331][ T7484]  ? __ia32_sys_read+0x90/0x90
[  311.884121][ T7484]  ? lockdep_hardirqs_on+0x98/0x150
[  311.889345][ T7484]  do_syscall_64+0x55/0xb0
[  311.893761][ T7484]  ? clear_bhb_loop+0x40/0x90
[  311.898455][ T7484]  ? clear_bhb_loop+0x40/0x90
[  311.903177][ T7484]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  311.909188][ T7484] RIP: 0033:0x7f9a6b78f749
[  311.913619][ T7484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.933237][ T7484] RSP: 002b:00007f9a6c6e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  311.941659][ T7484] RAX: ffffffffffffffda RBX: 00007f9a6b9e6090 RCX: 00007f9a6b78f749
[  311.949649][ T7484] RDX: 0000000000000007 RSI: 0000200000000080 RDI: 0000000000000004
[  311.957623][ T7484] RBP: 00007f9a6c6e3090 R08: 0000000000000000 R09: 0000000000000000
[  311.965704][ T7484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.973682][ T7484] R13: 00007f9a6b9e6128 R14: 00007f9a6b9e6090 R15: 00007ffe9e4edb68
[  311.981691][ T7484]  </TASK>
[  311.988876][ T7484] Bluetooth: MGMT ver 1.22
[  313.582475][ T6964] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  314.373975][ T7506] syzkaller0: entered promiscuous mode
[  314.411407][ T7506] syzkaller0: entered allmulticast mode
[  314.532594][ T7518] loop0: detected capacity change from 0 to 256
[  316.365142][ T7518] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  318.306942][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  318.313451][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  319.427158][ T7539] loop0: detected capacity change from 0 to 1024
[  319.440327][ T7539] EXT4-fs: Ignoring removed oldalloc option
[  319.449510][ T7539] EXT4-fs: Ignoring removed nomblk_io_submit option
[  320.252331][ T7539] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  320.299969][ T7539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.443148][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.630196][ T7550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.390'.
[  321.662350][ T7550] loop2: detected capacity change from 0 to 64
[  323.418972][ T7573] 9pnet_fd: Insufficient options for proto=fd
[  324.386531][ T7581] FAULT_INJECTION: forcing a failure.
[  324.386531][ T7581] name failslab, interval 1, probability 0, space 0, times 0
[  324.399772][ T7581] CPU: 0 PID: 7581 Comm: syz.1.393 Not tainted syzkaller #0
[  324.407082][ T7581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  324.417147][ T7581] Call Trace:
[  324.420440][ T7581]  <TASK>
[  324.423373][ T7581]  dump_stack_lvl+0x16c/0x230
[  324.428072][ T7581]  ? asm_sysvec_call_function_single+0x1a/0x20
[  324.434235][ T7581]  ? show_regs_print_info+0x20/0x20
[  324.439463][ T7581]  ? load_image+0x3b0/0x3b0
[  324.443993][ T7581]  ? lock_acquire+0x1f2/0x410
[  324.448693][ T7581]  should_fail_ex+0x39d/0x4d0
[  324.453393][ T7581]  should_failslab+0x9/0x20
[  324.457914][ T7581]  slab_pre_alloc_hook+0x59/0x310
[  324.462955][ T7581]  kmem_cache_alloc+0x5a/0x2e0
[  324.467747][ T7581]  ? __inet_hash_connect+0x828/0x18d0
[  324.473135][ T7581]  __inet_hash_connect+0x828/0x18d0
[  324.478389][ T7581]  ? inet_hash_connect+0x130/0x130
[  324.483533][ T7581]  ? inet_bhash2_reset_saddr+0x80/0x80
[  324.489021][ T7581]  tcp_v4_connect+0xca6/0x18d0
[  324.493814][ T7581]  ? tcp_twsk_unique+0x990/0x990
[  324.498797][ T7581]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  324.504461][ T7581]  ? tcp_v6_connect+0x667/0x17c0
[  324.509411][ T7581]  tcp_v6_connect+0xa95/0x17c0
[  324.514191][ T7581]  ? tcp_v6_pre_connect+0xf0/0xf0
[  324.519231][ T7581]  ? asm_sysvec_call_function_single+0x1a/0x20
[  324.525405][ T7581]  ? mark_lock+0x94/0x320
[  324.529751][ T7581]  __inet_stream_connect+0x2a8/0xe60
[  324.535052][ T7581]  ? lock_chain_count+0x20/0x20
[  324.539920][ T7581]  ? __local_bh_enable_ip+0x12e/0x1c0
[  324.545301][ T7581]  ? inet_dgram_connect+0x360/0x360
[  324.550510][ T7581]  ? __local_bh_enable_ip+0x12e/0x1c0
[  324.555917][ T7581]  ? _local_bh_enable+0xa0/0xa0
[  324.560784][ T7581]  inet_stream_connect+0x66/0xa0
[  324.565775][ T7581]  ? __inet_stream_connect+0xe60/0xe60
[  324.571389][ T7581]  __sys_connect+0x397/0x420
[  324.575998][ T7581]  ? __sys_connect_file+0x180/0x180
[  324.581349][ T7581]  ? __x64_sys_connect+0x1d/0x90
[  324.586317][ T7581]  __x64_sys_connect+0x7a/0x90
[  324.591104][ T7581]  do_syscall_64+0x55/0xb0
[  324.595561][ T7581]  ? clear_bhb_loop+0x40/0x90
[  324.600253][ T7581]  ? clear_bhb_loop+0x40/0x90
[  324.604943][ T7581]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  324.610877][ T7581] RIP: 0033:0x7f8bd638f749
[  324.615338][ T7581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.634953][ T7581] RSP: 002b:00007f8bd71e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  324.643375][ T7581] RAX: ffffffffffffffda RBX: 00007f8bd65e6090 RCX: 00007f8bd638f749
[  324.651354][ T7581] RDX: 000000000000001c RSI: 0000200000000340 RDI: 0000000000000008
[  324.659327][ T7581] RBP: 00007f8bd71e9090 R08: 0000000000000000 R09: 0000000000000000
[  324.667311][ T7581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.675290][ T7581] R13: 00007f8bd65e6128 R14: 00007f8bd65e6090 R15: 00007ffea6718868
[  324.683303][ T7581]  </TASK>
[  326.327362][ T7586] netlink: 4 bytes leftover after parsing attributes in process `syz.0.389'.
[  326.354409][ T7586] loop0: detected capacity change from 0 to 64
[  327.448435][ T7591] loop4: detected capacity change from 0 to 1024
[  327.498395][ T7591] EXT4-fs: Ignoring removed orlov option
[  327.602029][ T7591] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.806390][ T5827] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  436.826203][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  436.833219][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5771/1:b..l
[  436.841764][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=26917, q=413 ncpus=2)
[  436.849520][    C1] task:syz-executor    state:R  running task     stack:21224 pid:5771  ppid:5761   flags:0x00004002
[  436.861720][    C1] Call Trace:
[  436.865048][    C1]  <TASK>
[  436.868013][    C1]  __schedule+0x14d2/0x44d0
[  436.872583][    C1]  ? __lock_acquire+0x11b0/0x7c80
[  436.877651][    C1]  ? asan.module_dtor+0x20/0x20
[  436.882548][    C1]  ? mark_lock+0x94/0x320
[  436.886926][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  436.892952][    C1]  ? preempt_schedule_irq+0xaa/0x140
[  436.898280][    C1]  preempt_schedule_irq+0xb5/0x140
[  436.903449][    C1]  ? preempt_schedule_notrace+0x110/0x110
[  436.909252][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  436.915103][    C1]  irqentry_exit+0x67/0x70
[  436.919569][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  436.925065][    C1] RIP: 0010:xas_descend+0x12/0x490
[  436.930235][    C1] Code: f7 89 f5 e8 a0 0c 83 f7 89 ee e9 35 ff ff ff 66 0f 1f 84 00 00 00 00 00 55 41 57 41 56 41 55 41 54 53 48 83 ec 18 48 89 34 24 <48> 89 fb 49 bf 00 00 00 00 00 fc ff df e8 3c 9e 2b f7 4c 8d 73 08
[  436.949883][    C1] RSP: 0018:ffffc9000456f6d8 EFLAGS: 00000296
[  436.955991][    C1] RAX: ffffffff8a5a681e RBX: ffff88805284a940 RCX: 0000000000000000
[  436.964081][    C1] RDX: ffff888027e0bc00 RSI: ffff88805284a940 RDI: ffffc9000456f820
[  436.972083][    C1] RBP: ffff88805284a942 R08: ffff888027e0bc00 R09: 0000000000000002
[  436.980084][    C1] R10: 0000000000000003 R11: 0000000000000000 R12: 0000000000000000
[  436.988080][    C1] R13: 1ffff920008adf06 R14: 1ffff1100a509528 R15: 000000000000000c
[  436.996091][    C1]  ? xas_find+0x1ce/0xab0
[  437.000480][    C1]  ? xas_start+0x3b0/0x770
[  437.004943][    C1]  xas_find+0x1e4/0xab0
[  437.009155][    C1]  find_lock_entries+0x1c7/0xfe0
[  437.014122][    C1]  ? find_lock_entries+0x104/0xfe0
[  437.019274][    C1]  ? find_get_entries+0x8c0/0x8c0
[  437.024347][    C1]  shmem_undo_range+0x254/0x1a40
[  437.029316][    C1]  ? __lock_acquire+0x1334/0x7c80
[  437.034384][    C1]  ? shmem_truncate_range+0xa0/0xa0
[  437.039688][    C1]  ? inode_wait_for_writeback+0x1b4/0x200
[  437.045449][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  437.050502][    C1]  ? do_raw_spin_lock+0x121/0x2c0
[  437.055569][    C1]  shmem_evict_inode+0x273/0xa70
[  437.060562][    C1]  ? inode_wait_for_writeback+0x1b4/0x200
[  437.066325][    C1]  ? shmem_free_in_core_inode+0xb0/0xb0
[  437.071912][    C1]  ? sb_clear_inode_writeback+0x360/0x360
[  437.077677][    C1]  ? do_raw_spin_lock+0x121/0x2c0
[  437.082757][    C1]  ? bit_waitqueue+0x30/0x30
[  437.087383][    C1]  ? do_raw_spin_unlock+0x121/0x230
[  437.092619][    C1]  ? shmem_free_in_core_inode+0xb0/0xb0
[  437.098200][    C1]  evict+0x486/0x870
[  437.102131][    C1]  ? __lock_acquire+0x7c80/0x7c80
[  437.107197][    C1]  ? proc_nr_inodes+0x230/0x230
[  437.112081][    C1]  ? do_raw_spin_unlock+0x121/0x230
[  437.117327][    C1]  ? _raw_spin_unlock+0x28/0x40
[  437.122213][    C1]  ? iput+0x70a/0x920
[  437.126233][    C1]  do_unlinkat+0x37b/0x570
[  437.130690][    C1]  ? fsnotify_link_count+0xf0/0xf0
[  437.135843][    C1]  ? getname_flags+0x20a/0x500
[  437.140661][    C1]  __x64_sys_unlink+0x49/0x50
[  437.145369][    C1]  do_syscall_64+0x55/0xb0
[  437.149811][    C1]  ? clear_bhb_loop+0x40/0x90
[  437.154531][    C1]  ? clear_bhb_loop+0x40/0x90
[  437.159258][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  437.165187][    C1] RIP: 0033:0x7fb7b778ecf7
[  437.169636][    C1] RSP: 002b:00007ffd687393a8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[  437.178085][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb7b778ecf7
[  437.186089][    C1] RDX: 00007ffd687393d0 RSI: 00007ffd68739460 RDI: 00007ffd68739460
[  437.194095][    C1] RBP: 00007ffd68739460 R08: 0000000000000000 R09: 0000000000000000
[  437.202091][    C1] R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffd6873a4f0
[  437.210093][    C1] R13: 00007fb7b7813d7d R14: 000000000004fe34 R15: 00007ffd6873a530
[  437.218125][    C1]  </TASK>
[  437.221171][    C1] rcu: rcu_preempt kthread starved for 10536 jiffies! g26917 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  437.232396][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  437.242405][    C1] rcu: RCU grace-period kthread stack dump:
[  437.248329][    C1] task:rcu_preempt     state:R  running task     stack:27752 pid:17    ppid:2      flags:0x00004000
[  437.259141][    C1] Call Trace:
[  437.262444][    C1]  <TASK>
[  437.265402][    C1]  __schedule+0x14d2/0x44d0
[  437.269975][    C1]  ? _raw_spin_lock_bh+0x50/0x50
[  437.274960][    C1]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  437.280888][    C1]  ? asan.module_dtor+0x20/0x20
[  437.285781][    C1]  ? enqueue_timer+0x225/0x530
[  437.290596][    C1]  ? __mod_timer+0x984/0xdb0
[  437.295238][    C1]  schedule+0xbd/0x170
[  437.299349][    C1]  schedule_timeout+0x160/0x280
[  437.304247][    C1]  ? console_conditional_schedule+0x40/0x40
[  437.310171][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  437.316098][    C1]  ? update_process_times+0x1b0/0x1b0
[  437.321526][    C1]  ? prepare_to_swait_event+0x339/0x360
[  437.327120][    C1]  rcu_gp_fqs_loop+0x302/0x1560
[  437.332017][    C1]  ? rcu_gp_init+0x110e/0x1510
[  437.336828][    C1]  ? dump_blkd_tasks+0x810/0x810
[  437.341848][    C1]  ? rcu_gp_init+0x1510/0x1510
[  437.346652][    C1]  ? rcu_gp_cleanup+0xb4c/0xca0
[  437.351549][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  437.356786][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  437.362028][    C1]  rcu_gp_kthread+0x99/0x380
[  437.366679][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  437.371850][    C1]  ? __kthread_parkme+0x7a/0x1c0
[  437.376828][    C1]  ? __kthread_parkme+0x162/0x1c0
[  437.381907][    C1]  kthread+0x2fa/0x390
[  437.386017][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  437.391195][    C1]  ? kthread_blkcg+0xd0/0xd0
[  437.395827][    C1]  ret_from_fork+0x48/0x80
[  437.400314][    C1]  ? kthread_blkcg+0xd0/0xd0
[  437.404938][    C1]  ret_from_fork_asm+0x11/0x20
[  437.409761][    C1]  </TASK>
[  437.412821][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  437.419166][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[  437.426218][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  437.436301][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  437.442059][    C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 23 bb 40 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[  437.461716][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c2
[  437.467831][    C1] RAX: 8cf5182b8d266300 RBX: ffffffff8161881b RCX: 8cf5182b8d266300
[  437.475843][    C1] RDX: 0000000000000001 RSI: ffffffff8aaabce0 RDI: ffffffff8afc6f80
[  437.483850][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[  437.491866][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: ffffffff8e4a2128
[  437.499881][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110037ca780
[  437.507969][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  437.516942][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  437.523562][    C1] CR2: 00007fba7a0abe80 CR3: 000000002f7c4000 CR4: 00000000003506e0
[  437.531568][    C1] Call Trace:
[  437.534878][    C1]  <TASK>
[  437.537840][    C1]  default_idle+0x13/0x20
[  437.542217][    C1]  default_idle_call+0x6c/0xa0
[  437.547023][    C1]  do_idle+0x1eb/0x510
[  437.551133][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  437.556368][    C1]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  437.562053][    C1]  cpu_startup_entry+0x43/0x60
[  437.566852][    C1]  start_secondary+0xee/0xf0
[  437.571473][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[  437.577596][    C1]  </TASK>