last executing test programs: 11m12.0836456s ago: executing program 1 (id=3412): r0 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000180)={&(0x7f0000000400)=[{0x0, 0x0, 0xfff5, 0x0}], 0x1}) 11m11.932494932s ago: executing program 1 (id=3413): r0 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000001340)={{0x0, 0x0, 0x6e9, 0x0, 'syz0\x00'}, 0x3, 0x0, 0xe030, 0x0, 0x1, 0x0, 'syz1\x00', &(0x7f0000000180)=['\x00'], 0x1}) 11m11.678112786s ago: executing program 1 (id=3416): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x20, 0x1, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x0) 11m11.44406136s ago: executing program 1 (id=3418): syz_mount_image$jfs(&(0x7f0000000180), &(0x7f0000000040)='./file1\x00', 0x2000c06, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x24, 0x6303, &(0x7f0000001bc0)="$eJzs3c1vHGcdB/Df7JtfStuoh6pECLlteCmleS0hUKDtAQ5cOKBcUSLXrSJSQElAaRURV75w4I8AIXFEiCMn/oAeuHLjDyCSgwTqAXXQ2M/jjKe7XjuJd3Yzn4/kzPzmmfE+k++Od9cz4ycAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgPjhD358roiIK79KC05EfC76Eb2Ilapei4iVtRP1bV6IneZ4PiKGSxHV9jv/PBvxekR8/EzE9v0769Xi84fsx/f//I8//OSpH/39T8Mz//3Lrf4bk9a7ffu3//nr3YffXwAAAOiisizLIn3MPxkRg/TZHgB48uXX/zLJy9VzV2/OWX/UarVavYB1XTne3XoREZv1bar3DE7HA8CC2YxP2u4CLZJ/pw0i4qm2OwHMtaLtDnAstu/fWS9SvkX99WBttz1fC7Iv/81i7/6OSdNpmteYzOr5tRX9eG5Cf1Zm1Id5kvPvNfO/sts+Susdd/6zMin/0e6tT52T8+838294cvLvjc2/q3L+gyPl35c/AAAAAADMsfz7/xMtn/9devRdOZSDzv+uzagPAAAAAAAAAPC4HXX8v0Fj/L89xv8DAACAuVV9Vq/87pkHyyb9LbZq+eUi4unG+kDHpJtlVtvuBwAAAAAAAAAAAAB0yWD3Gt7LRcQwIp5eXS3Lsvqqa9ZH9ajbL7qu7z90Wds/5AEAYNfHzzTu5S8iliPicvpbf8PV1dWyXF5ZLVfLlaX8fna0tFyu1D7X5mm1bGl0iDfEg1FZfbPl2nZ10z4vT2tvfr/qsUZl/xAdm40WAweAiNh9Ndqe9Ir0P69Xi6ksn42W3+SwIA44/llQjn8Oo+3nKQAAAHD8yrIsi/TnvE+mc/69tjsFAMxEfv1vnhdQq9VqtVr95NV15Xh360VEbNa3qd4zGI4fABbMZnzSdhdokfw7bRARL7TdCWCuFW13gGOxff/OepHyLeqvB2l893wtyL78N4ud7fL246bTNK8xmdXzayv68dyE/jw/oz7Mk5x/r5n/ld32UVrv0fMv9/2asK1rjCblX+3niRb607acf7+Zf8NxH/+zshW9sfl3Vc5/cKT8+/IHAAAAAIA5ln//f2Kuzv+OHnZ3pjro/O/a2C2Ory8AAAAAAAAA8Lhs37+znu97zef/vzBmPfd/Pply/oX8Oynn32vk/9XGev3a/L23H+T/7/t31v9461+fz9PD5r+UZ4r0zCrSM6JIj1QM0vRR9u6ztob9UfVIw6LXH6Rrfsrhu3EtrsdGnN23bi/9fzxoP7evverpcKe97O+2n9/XPthrz9tf2Nc+TFcXlSu5/XSsx8/jeryz0161LU3Z/+Up7eWU9px/3/HfSdtpOnjw9WxVr6blRWNaufdR7zPHfX067nHeuvbF35w91j05nK3o7+1bXbV/L7XQn53/k6dG8cubGzdO375669aNc5Em+5aejzR5zPLxP0xfez//X95tzz/368frvY9GR85/XmzFYGL+L9fmq/19ZcZ9a0POf5S+cv7vpPbxx/8i5z/5+H+1hf4AAAAAAAAAAAAAAADAQcqy3LlF9K2IuJju/2nr3kwAYLby63+Z5OWzqvszfjy1esHrYs76M9P603K++qNWL2JdV473Zr2IiL/Vt6neM/x63DcDAObZpxHxz7Y7QWvk32H57/1V01NtdwaYqZsffPjTq9evb9y42XZPAAAAAAAAAICHlcf/XKuN/3yqLMu7jfX2jf/6dqw96vifgzyzN8DohIGq+0ffp4Ns9Ub9Xm248Rdj0vjfw725g8b/Hkx5vOGU9tGU9qUp7ctT2sfe6FGT83+xNt75qYg42Rh+vQvjvzbHvO+CnP9Ltedzlf9XGuvV8y9/v8j59/blf+bW+784c/ODD1+79v7V9zbe2/jZhXPnzl64ePHSpUtn3r12fePs7r8t9vh45fzz2NeuA+2WnH/OXP7dkvP/Uqrl3y05/y+nWv7dkvPP7/fk3y05//zZR/7dkvN/JdXy75ac/9dSLf9uyfm/murp+U/7jSaLJOf/9VQ7/rsl5/9aquXfLTn/06mWf7fk/M+k+pD5rxx3v5iNnH8+w+X475acf76yQf7dkvM/n2r5d0vO/0Kq5d8tOf/XUy3/bsn5fyPV8u+WnP/FVMu/W3L+30y1/Lsl538p1fLvlpz/t1It/27J+X871fLvlpz/G6mWf7fk/L+Tavl3S87/u6mWf7fk/L+Xavl3S87/zVTLv1se/P1/M2bMmMkzbf9kAgAAAAAAAAAAAACaZnE5cdv7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyfHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVh7+5i5Drr+4GfffXaeTMQ8nfyN7BxTBKSTXZtJ36hTTHhteGtBEKhL9iud22WOrbx2iXQSDYNlEgYFVW0DRdtAaE2NxW+4IJWgHKBWiFRQXtBe4FAqFxEVUABqRJUwFZzzvM8O3N2dmbXHu/OnPP5SPbPe+bMnGfOPOfs/Hb9nQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQLNbXzP38aEsyxp/8r+2Ztm1jX9vntyaL3vlRo8QAAAAuFK/zP9+/oa04OAq7tS0zr+89FtfWlxcXMzePfIXY59eXEw3TGbZ2KYsy2+LLv3gPUPN6wRPZBNDw01fD3fZ/EiX20e73D7W5fbxLrdv6nL7RJfbl+2AZTYXP4/JH2xn/s+txS7NbszG8tt2trnXE0Obhofjz3JyQ/l9FseOZfPZiWwum2lZv1h3KF//K7c2tvXGLG5ruGlb2xsz5CePH41jGAr7eGfLtpYeM/rRq7PJn/7k8aN/d/a5m9vVrruh5fGKcd65ozHOj4YlxViHsk1pn8RxDjeNc3ub12SkZZxD+f0a/y6P8/lVjnNkaZjrqvyaT2TD+b+/ne+n0eYf66X9tD0s+9ltWZZdWBp2eZ1l28qGsy0tS4aXXp+JYkY2HqMxlV6Yja5pnt66innaqLM7W+dp+ZiIr/+t4X6jK4yh+WX60UfGm173XyxezjyNGs96pWOlPAd7faz0yxyM8+Lb+ZN+su0c3Bme/+O3rzwH286dNnMwPe+mObij2xwcHh/Jx5xehKH8PktzcFfL+iP5loby+uztnefg9NlHT08vfOjD98w/euT43PG5k3t27ZrZs3fv/v37p4/Nn5ibKf6+zL3d/7Zkw+kY2BH2XTwG7iit2zxVFz83vuz8e7nH4USH43Brad1eH4ej5Sc3tD4H5PI5XRwb72zs9ImLw9kKx1j++tx15cdhet5Nx+Fo03HY9ntKm+NwdBXHYWOd03et7j3LaNOfdmNY+XvBlc3BrU1zsPx+pDwHe/1+pF/m4ESYF9+9a+XvBdvDeJ+cWuv7kZFlczA93XDuaSxJ7/cn9uel3by8pXHDNePZuYW5M/c+duTs2TO7slDWxYua5kp5vm5pek7Zsvk6vOb5enD+pU/e0mb51rCvJu5p/DWx4mvVWOe+ezu/Vvl3t/b7s2Xp7iyUHlvv/dnuu3ljf45n2We+/pGHv/r4Z16z4v5s9Jsfnb7y9+KpL206/46tcP6Nff+viu2lh3piZGy0OH5H0t4Zazkft75Uo/m5ayjf9vPTqzsfj4U/630+vrHD+Xhbad1en4/Hyk8uno+Huv2048qUX8+JME9OzHQ+HzfW2bZ7rXNytOP5+LZQh8L+f0XoFFJf1DR3Vpq3aVujo2PheY3GLbTO0z0t64+F3qyxrad3hzeFaZSrm6d33lasP9J0v2i95ulkad1ez9P0s6+V5ulQt5++XZ7y6zkR5sWNezrP08Y6z9x35efOzfGfTefO8W5zcGxkvDHmsTQJ8/N9trg5zsF7s6PZqexENpvfOp7Pp6F8W1P3r+5cOR7+rPe5cluHOXhnad1ez8H0fWyluTc0uvzJ90D59ZwI8+Kp+zvPwcY6r93X2/eud4YlaZ2m967ln6+t9DOvW0q76WrNldEwzq/v6/yz2cY6J/avtc/svJ/uDkuuabOfysfvSsfUbLY++2lbGOdz+1feT43xNNb59IFVzqeDWZad/8CD+c97w+9Xzp/7zpdafu/S7nc65z/w4I+vO/bPaxk/AIPvV0XZUnyva/rN1Gp+/w8AAAAMhNj3D4ea6P8BAACgMmLfH/9XeKL/BwAAgMqIff9oqEkV+v8/6b7Kttc+N/+r81lK5i8G8fa0Gx4q1osZ15nw9eTiksbyB78w9z//dH51wxvOsuwXD/1x2/W3PRTHVZgM47z0utbly3zpnlVt+/Aj59N2m/Prnw2PH5/PaqdBuwjuTJZlX7nhk/l2Jt9zMa/PPHQ4rw9fePKJxjrPHyi+jvd/9kXF+n8dwr8Hjx1puf+zYT/8MNSZN7XfH/F+X7z4iu373rW0vXi/oR3X50/7qfcWjxs/J+dTTxTrx/280vi/+omnv9hY/7GXtx//+eH24386PO4XQv35S4r1m1+Dxtfxfh8L44/bi/e79/Nfazv+Sx8v1j/9+mK9w6HG7d8Zvt75+ufmm/fXY0NHWp5X9oZivbj9me/8WX57fLz4+OXxTxy62LI/yvPjmX8vHme6tH5cHrcT/WNp+43HaZ6fcftP/+nhlv3cbfuXHn72JY3HLW//7tJ6pz9wV779pcdr/cSmv/nYJ9tuL47n4D+cbnk+B98ejuOw/afeG+ZjuP1/LxWPV/50hcNvbz3/xPU/u/V8y/OJ3vjTYvuXXnU8r5smNm+55trrrr/wssa+y7Jvbyoer9v2j//tqZbxf+6mYn/E22NGv7z9lcTtn/ng1MlTC+fmZ9NeffyG/LNz3lyMJ473hnBuLX996NTZ982dmZyZnMmyyep+hN5l+3yoPy7Khc5rLy47g971SHg9b/mrr2y5/d8+EZf/xzuL5RffVHzfuiOs96mwfGt4/bps/+fdxv/UrTflx/fQM2GEi8s/L/hKbN/53/u7fb5vLjz/8vuCON9Pv/h9+X5o3JZ/34jH9RWO/3uzxeN8OezXxfDJzDtuWtpe8/rxsxEuvqM43q94/4XTXHxd/z683m/5YfH4cVzx+X4vvI/52rbW812cH18+P1x+/PxTPC6E80l2obg9rhX398Xnb2o7vPg5JNmFm/Ov/zw9zs1reporWfjQwvSJ+ZPnHps+O7dwdnrhQx8+9OipcyfPHso/y/PQ+7vdf+n8tCU/P83O7b0vy89Wp4pylW30+E8/cnR238zts3PHjpw7dvaR03Nnjh9dWDg6N7tw+5Fjx+Y+2O3+87MP7Np9YM++3VPH52cf2H/gwJ4DU/MnTzWGUQyqi70zfzh18syh/C4LD9x3YNf99983M/Xoqdm5B/bNzEyd63b//HvTVOPefzR1Zu7EkbPzj85NLcx/eO6BXQf27t3d9dMAHz19bGFy+sy5k9PnFubOTBfPZfJsvrjxva/b/ammhe8X72fLhooP4svedvfe9PmsDV/4yIoPVaxS+gDR58Jn0XzjBaf3r+br2PePhZpUof8HAAAAcrHvHw810f8DAABAZcS+f1Ooif4fAAAAKiP2/ROhpv8SUJP+v3L5/23nV7V9+X/5/+b9Jf9fs/z/O/ot/1+cL+T/e2Nt+f/lrnL+v6v1yP+vakX5f/l/+X/5f/l/eqDf8v+x79+cZX7/DwAAABUV+/4toSb6fwAAAKiM2PdfE2qi/wcAAIDKiH3/taEmNen/5f/l/+X/5f/l/9tvX/5/MMn/d9Zn+f+J8gL5/43P/2f1yv9f6OX4NyD/v7n5C/l/+lG/5f9j339dqElN+n8AAACog9j3Xx9qov8HAACAyoh9/w2hJvp/AAAAqIzY928NNalJ/y//f0X5/5S5Gtz8f7Fl+X/5f/l/+f+qkP/vrM/y/8vI/298/t/1/wcq/99C/p9+1G/5/9j3vyDUpCb9PwAAANRB7PtfGGqi/wcAAID+M3p5d4t9/4tCTZb1/5e5AQAAAGDDxb7/xqwUBK/J7//l/13/v2+v/z8m/y//X+j//P9IJv/fP+T/O5P/76IX+f8L8v/y//L/8v9E/Zb/z/v+bCJ7cahJTfp/AAAAqIPY998UaqL/BwAAgMqIff//CzXR/wMAAEBlxL5/W6hJTfp/+f/K5P9/1vzSVSL/7/r/8v9B/+f/Xf+/n8j/dyb/34Xr/8v/y//L/9NTC207pY3L/8e+/+ZQk5r0/wAAAFAHse+/JdRE/w8AAACVEfv+/x9qov8HAACAyoh9//ZQk5r0//L/fZ7/j8nROl7/X/5f/j/o5/z/hPx/35H/70z+vwv5f/l/+X/5f3pq4fvF+9myjcr/x77/JaEmNen/AQAAoA5i3//SUBP9PwAAAFRG7PtfFmqi/wcAAIDKiH3/ZKhJTfr/teT/hy7I/6/kKl//f3wV1/9vIf+/Ifn/Ufn/Qp3y/5n8f9+R/+9M/r8L+X/5f/l/+X96qt/y/7HvvzXUpCb9PwAAANRB7Pt3hJro/wEAAKAyYt9/W6iJ/h8AAAAqI/b9O0NNatL/u/7/QOT/M/n/Hub/S3M8c/1/+f8Vti//P5jk/zuT/+9C/l/+X/5f/p+e6rf8f+z7Xx5qUpP+HwAAAOog9v23h5ro/wEAAKAyYt9/R6iJ/h8AAAAqI/b9d+b14Tu+GXJmden/5f/l/2uX/7961/+X/w/k/9vrmv+/IP/fC/L/ncn/dyH/L/8v/y//T0/1W/6/6PsnsleEmtSk/wcAAIA6iH3/XaEm+n8AAACojNj33x1qov8HAACAyoh9/1SoSU36f/l/+f9q5v//U/6/w/bl//s0/+/6/z0h/9+Z/H8X8v/y/73I/4+FBfL/8v9seP4/vl+LX8e+/55Qk5r0/wAAAFAHse+/N9RE/w8AAACVEfv+6VAT/T8AAABURuz7Z0JNatL/y//L/1cz/+/6/522f0X5/5ctPa78f0H+v7/I/3cm/99FL/P/m+T/a5v/v6Lr/4/J/1MpG53/L38d+/5doSY16f8BAACgDmLfvzvURP8PAAAAlRH7/j2hJvp/AAAAqIzY998XalKT/l/+X/5f/r8m+f/GIe76//L/NSD/31nv8//xKcr/u/6//H9v8v+u/0+19Fv+P/b994ea1KT/BwAAgDqIff/eUBP9PwAAAFRG7Pv3hZro/wEAAKAyYt+/P9SkJv2//L/8v/x/TfL/vbr+fxP5/4L8f3+R/+/M9f+7kP+X/x/g/H9jbsn/02/6Lf8f+/4DoSatjd/HP7+2pwkAAAD0kdj3vzLUpCa//wcAAIA6iH3/r4Wa6P8BAACgMmLf/+uhJjXp/+X/5f/l/+X/Nzj/P9Yt/z8u/y//vwby/53J/3ch/y//P8D5/xWu/39duFn+nw3Rb/n/2Pc/EGpSk/4fAAAA6iD2/b8RaqL/BwAAgMqIff+rQk30/wAAAFAZse8/GGpSk/5f/n+d8v9xofy//L/8v+v/y/9fVfL/ncn/dyH/L/9fvfx/r6//X/42ncj/006/5f9j3//qUJOa9P8AAABQB7HvfzDURP8PAAAAlRH7/teEmuj/AQAAoDJi3//aUJOa9P/y/67/v/H5/7GWscv/L91P/r8g/y//vxby/53J/3ch/y//L//v+v/0VL/l/2Pf/7pQk5r0/wAAAFAHse9/faiJ/h8AAAAqI/b9bwg10f8DAABAZcS+/42hJjXp/+X/5f83Pv/v+v8bnv9/ofx/u+3L/w8m+f/O5P+7kP+X/5f/l/+np/ot/x/7/t8MNalJ/w8AAAB1EPv+h0JN9P8AAABQGbHvf1Ooif4fAAAAKiP2/W8ONalJ/y//L/8v/y//7/r/7bcv/z+Y5P87G7D8/y+vD8vl/wvy//09/rXm/0dLX1+V/P8PVsr/L24q31/+n6uh3/L/se9/S6hJTfp/AAAAqIPY97811ET/DwAAAJUR+/63hZro/wEAAKAyYt//W6EmNen/5f8b41hKL8v/y//nC+T/5f/l/weW/H9nA5b/d/3/Evn//h6/6//L/7NcKf8/Fv+xUfn/2Pe/PdSkJv0/AAAA1EHs+x8ONdH/AwAAQGXEvv8doSb6fwAAAKiM2Pe/M9SkJv2//L/r/8v/y//L/7ffvvz/YJL/70z+vwv5f/n/fsv//5f8P4OtlP9PNir/H/v+R0JNatL/AwAAQB3Evv9doSb6fwAAAKiM2Pf/dqiJ/h8AAAAqI/b97w41qUn/L/8/KPn/Sfn/Neb/x8My+X/5f/n/epH/70z+vwv5f/n/fsv/u/4/A67f8v+x739PqMnq+/+JVa8JAAAAXE3lXyclse//nVCTmvz+HwAAAOog9v2/G2qi/wcAAIDKiH3/74Wa1KT/l/8flPy/6/9nrv8v/196PvL/8v/trF/+P5551pT/39Rt+/L/8v/y/4M7fvl/+X+W67f8f+z7fz+vp69ND1ST/h8AAADqoOj7J7L3hpro/wEAAGAgtPs/2WWx7z8UaqL/BwAAgMqIff/hUJOa9P/y//L/8v99mv//yx3f/O633np4l/y//L/8/5qs6/X/Gwe/6//L/8v/J/L/8v/y/5T1W/4/9v1HQk2WGr83u8A/AAAADLbY9/9BqElNfv8PAAAAdRD7/qOhJvp/AAAAqIzY98+GmtSk/5f/38D8/2iWZfL/8v8VvP5/3B+DlP+f2jRA+f940pX/b2td8//vWsqJy/+vNf8/3nZpOf8/JP/fQv5/zeP/RpZl6zb+8/8q/y//T1m/5f9j3z8XalKT/h8AAADqIPT9w8eKunSD/h8AAAAqI/b9x0NN9P8AAABQGbHvf1+oSU36f/l/1/+X/5f/Xyn/P5K5/n9f5v9d/78j+f/O+if/357r/8v/D/L4Xf9f/p/l+i3/H/v++VCTmvT/AAAAUAex739/qIn+n/9j706+NC3LO44/1VSf7j6cnJNdFlkk+6yyZhFWWSR/QBZsWCTnZBJUnKdunEec5wE9KuKAAygiKs4TOKGIIyrOIk44ISrtoeu6rq7qeut5u7reqvd57/vzWXhJ2U0VhAC/br7cAAAANCN3///FLfY/AAAANCN3///HLZ3sf/2//r/J/v+I/n/s8+/3+//6/9n0/wdD/z9O/z+H/l//r//X/7NQU+v/c/c/KG7pZP8DAABAD3L3XxK32P8AAADQjNz9l8Yt9j8AAAA0I3f/g+OWTva//l//32T//693/8/9/6L/3+nz6//1/y3T/4/T/8+h/9f/6//1/yzU1Pr/3P0PiVs62f8AAADQg9z9D41b7H8AAABoRu7+y+IW+x8AAACakbv/YXFLJ/v/jP5/beiz/8+MV//fUv/v/f8dP7/+X//fsoPt/y9/4M98+n/9v/4/6P/1//p/zjS1/j93/8Pjlk72PwAAAPQgd/8j4hb7HwAAAJqRu/+RcYv9DwAAAM3I3f+ouKWT/e/9f+//6//1//r/2Z9f/7+avP8/rqf+/7Lbzr/knuv//obdfH79v/5f/6//Z7Gm1v/n7n903NLJ/gcAAIAe5O5/TNxi/wMAAEAzcvc/Nm6x/wEAAGAFHZv50dz9j4tbOtn/+n/9v/4/+v+j+n/9v/6/Bfr/cT31/+fy+fX/+n/9v/6fxZpa/5+7//FxSyf7HwAAAHqQu/8JcYv9DwAAANM16x/EHpG7/3jcYv8DAABAM3L3n4hbOtn/C+z/81vq/0P2/3/R/69G/+/9f/2//r8J+v9x+v859P/6f/2//p+Fmlr/n7v/8rilk/0PAAAAPcjd/8S4xf4HAACAZuTuf1LcYv8DAABAM3L3Pzlu6WT/e//f+//6f/3/wff/G3+y1f+f/r2q/18c/f84/f8c+v+99vOH9f/6f/0/m+2y/79v5E/bC+n/c/c/JW7pZP8DAABAD3L3PzVusf8BAACgGbn7nxa32P8AAADQjNz9T49bOtn/+n/9v/5f/3/O/f/2P/RO8f7/bPr/g6H/HzeZ/n9tfeaH9f8r3/97/1//r/9ni6m9/5+7/xlxSyf7HwAAAHqQu/+ZccvI/t/1D+YDAAAAS5W7/1lxi5//BwAAgJWX1Vnu/mfHLZ3sf/2//l//r/8/+Pf/V7//v2HT16f/nxb9/7jJ9P870P/r/1f569f/6//Zbmr9f+7+58Qtnex/AAAA6EHu/iviFvsfAAAAmpG7/7lxi/0PAAAAzcjd/7y4pZP9P7v/P/2/T7r/PzMSHvT/Sf/fdv+fv0b9/2j/f6H3//uk/x+n/59D/6//1//v1P8fm/f99f/MMrX+P3f/8+OWTvY/AAAA9CB3/wviFvsfAAAAmpG7/4Vxi/0PAAAAzcjd/6K4pZP97/1//b/+fzf9/6FJ9P/e/9+wzPf/hwPv/9f1/2dpuf3/2v35V1D9/7l9/fp//f8qf/1N9v+Hh63v/4/8WwD0/8wytf4/d/+L45ZO9j8AAAD0IHf/S+IW+x8AAABWw+Z/dmDWW3HDULv/pXGL/Q8AAADNyN3/srilnf0/+lan/l//r/9fvff/9f8b9r//Xx+m0/97//9sef9/nP5/Dv3/fvTz6431/1fu9P2n0P8f37/3//953vfX/zPLlv7/ptMfX1b/n7v/5XFLO/sfAAAAupe7/xVxi/0PAAAAzcjd/8q4xf4HAACAZuTuf1Xc0sn+3/f+f+TfPqD/1//r//X/0+7/p/T+v/7/bOn/x+n/59D/e//f+//6f/Zu098ybun/N1lW/5+7/9VxSyf7HwAAAHqQu/81cYv9DwAAAM3I3X9l3GL/AwAAQDNy9782bulk/6/U+/+H9f/6f/2//l//r/8ft6f+/pD+v+j/9f/6f/2//p8FmFr/v3X397f/AQAAoAevO/WfR+PH6+1/AAAAaFHu/tfHLfY/AAAANCN3/xvilk72/0r1/yv4/n9+XP+v/x/0//p//f+B6Pb9/7VZfyXabof+/5b/PvHvWz+i/9f/6//Pqf8/pP/X/3fob0f+t0n0/ydP/91l7v43xi2d7H8AAADoQe7+q+IW+x8AAACakbv/TXGL/Q8AAADNyN1/ddyyy/0/1jxMmf7f+//6f/2//n/259f/r6Zu+/+z5P3/OfT/+n/v/+v/WahJ9P+bfjl3/5vjFj//DwAAAM3I3f+WuMX+BwAAgGbk7n9r3GL/AwAAQDNy978tbulk/+v/9f/6f/2//n/259f/ryb9/zj9/xyr1P9fvYf+f332h5fdz+/Vsr9+/b/+n+2m1v/n7r8mbulk/wMAAEAPcve/PW6x/wEAAKAZufvfEbfY/wAAANCM3P3vjFs62f/6f/2//l//r/+f/fn1/6tJ/z9O/z8Mw7UjX8Cs/v/kkWn2/97/n9zXr//X/7Pd1Pr/3P3vils62f8AAADQg9z918Yt9j8AAAA0I3f/dXGL/Q8AAADNyN3/7rilk/2v/9f/6//1//r/2Z9f/7+a9P/j9P9zrNL7//r/yX39+n/9P9tNrf/P3f+euKWT/Q8AAAA9yN1/fdxi/wMAAEAzcve/N26x/wEAAKAZuftviFs62f/6f/1/z/1//t93z/1//A5oqP8/9f/q+n/9/yrav/5/0P/r//X/c+j/9f/6f840tf4/d//74pZO9j8AAAD0IHf/jXGL/Q8AAADNyN3//rjF/gcAAIBm5O7/QNzSyf7X/+v/e+7/k/f/vf8/6/Pr/1eT9//H6f/n0P/r//X/+n8Wanb/f3xp/X/u/g/GLZ3sfwAAAOhB7v6b4hb7HwAAAJqRu/9DcYv9DwAAAM3I3f/huKWT/a//1/9v7f+HQf+v/9f/b5jR/99+71V/U7+8gP7/6KD/Xzj9/zj9/xz6/zb7/0NDQ/3/sR2/v/6fKZra+/+5+z8St3Sy/wEAAKAHufs/GrfY/wAAANCM3P0fi1vsfwAAAGhG7v6Pxy2d7H/9v/5/we//33XxjK9D/79B/7/y/b/3/1eA/n+c/n8O/X+b/b/3//X/LM3U+v/c/Z+IWzrZ/wAAANCD3P2fjFvsfwAAAGhG7v5PxS32PwAAADQjd/+n45ZO9r/+X/+/4P7f+//6f/3/DvT/B0P/P07/P4f+v7n+P//uXv+v/2c5ptb/5+7/TNzSyf4HAACAHuTuvzlusf8BAACgGbn7b4lb7H8AAABoRu7+z8Ytnex//b/+X/+/mv3/0S39/3mD/v/0t9f/920q/f8FF/zbrfp//b/+f/n9v/f/9f8s19T6/9z9n4tbOtn/AAAA0IPc/Z+PW+x/AAAAaEbu/i/ELfY/AAAANCN3/xfjlk72//b+//CwUahumNX/R6Om/99E/7/169f/z/7jw/v/+n/9//6bSv/v/f9z+/r1//r/Vf76d9X//+P276//p0VT6/9z998at3Sy/wEAAKAHufu/FLfY/wAAANCM3P1fjlvsfwAAAGhG7v7b4pZO9r/3//X/+n/9v/5/9ufX/68m/f84/f8c+n/9v/f/L/3P8/T/LM7U+v/c/V+JWzrZ/wAAANCD3P23xy32PwAAADQjd/9X4xb7HwAAAJqRu/9rcUsn+1//r/+/8fiwpv/X/+v/9f+t0P+P0/+XM3/TNvTT/x+d9cFl9/N7teyvv5n+3/v/LNDU+v/c/V+PWzrZ/wAAANCD3P3fiFvsfwAAAGhG7v5vxi32PwAAADQjd/+34pZO9r/+X//f/vv/F+v/z/j8+n/9f8v0//lX9Nn0/3P00//PtOx+ftW/fv2//p/tptb/5+6/I27pZP8DAABAD3L3fztusf8BAACgGbn7vxO32P8AAADQjNz9341bOtn/+v+++v+1ocf+3/v/+n/9f0/0/+P0/3Po//X/+n/9Pws1tf4/d/+da+td7n8AAABYVf/xT/97x9l+2ztP/efR4Xtxy4XDyePDMBzbh68PAAAAOFgP7P619WH4/qlf8vP/AAAA0KLc/T+IWzrZ//r/vvr/Pt//X/X+//CWX4/+X/+v/x+n/x+n/59D/6//1//r/1moqfX/uft/GLdsGn7ru/6tBAAAAKYkd/+P4pZOfv4fAAAAepC7/8dxy7b9f/Is/6l2AAAAYGpy9/8kbunk5//1/xPv/4d96v/j2+n/N0y7//f+v/5f/78b+v9xe+z/T67p//X/I/T/+n/9P2eaWv+fu/+ncUsn+x8AAAAateVHFHL33xW32P8AAADQjNz9P4tb7H8AAABoRu7+u+OWTva//v/A+/9M1ffx/f9j9d+8/995/3/F0ZmfX/+v/2+Z/n+c9//n0P+30v8f0f/r/5mGqfX/uft/Hrd0sv8BAACgB7n7fxG32P8AAADQjNz9v4xb7H8AAABoRu7+X8Utnex//f/E3/8/p/7/LN7/1//30f/v8Pnb6f//7vwTN1/0X9ddo//ntIPs//OPhQPu/4/s9te5mf5/Dv1/K/2/9//1/0zE4vv/9S0f3G3/n7v/13FLJ/sfAAAAepC7/564xf4HAACAZuTu/03cYv8DAABAM3L3/zZu6WT/6//1/1Pp//P39RL6/xPn3P8fG4ZhKf1/NsW99//e/9f/b+f9/3H6/zn0//p//b/+n4VafP+/9YO77f9z9/8ubulk/wMAAEAPcvf/Pm7J/b+26x+6BwAAACYmd/8f4hY//w8AAADNyN1/b9zSyf7X/+v/p9L/J+//n/5+bb3/f1HFqX32//9Q/03/v7/0/+P0/3Po//X/+n/9Pws1tf4/d/8f45ZO9j8AAAD0IHf/fXGL/Q8AAADNyN3/p7jF/gcAAIBm5O7/c9zSyf7X/7fa/2cRr//X/0+l//f+v/f/D4b+f5z+fw79v/5f/6//Z6Gm1v/n7v9rAAAA///CLFw4") mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0) 11m10.143252519s ago: executing program 1 (id=3431): r0 = openat$panthor(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000240)={0x14}) 11m9.054214856s ago: executing program 1 (id=3444): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x98, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_MASK={0x44, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x89}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x86}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20008004}, 0x4) 11m8.611258312s ago: executing program 32 (id=3444): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x98, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_MASK={0x44, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x89}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_TUPLE={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x86}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20008004}, 0x4) 10m0.45412851s ago: executing program 2 (id=4307): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x1}, {@in=@broadcast, 0x0, 0x33}, @in6=@local, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}, {}, {0xc}, 0x0, 0x0, 0xa, 0x0, 0x6}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) 10m0.304864202s ago: executing program 2 (id=4311): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, 0x0, &(0x7f00000002c0)) 10m0.162903644s ago: executing program 2 (id=4313): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x3, 0xffffffff}, @const={0x0, 0x0, 0x0, 0x2}, @func_proto={0x2, 0x0, 0x0, 0x8, 0x2}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x44}, 0x20) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x14, 0x4, 0x8, 0x1, 0x80, 0x1, 0xd, '\x00', 0x0, r0, 0x1, 0x1}, 0x50) 9m59.949499947s ago: executing program 2 (id=4316): syz_mount_image$jfs(&(0x7f0000000140), &(0x7f0000000000)='./file1\x00', 0x1000c00, &(0x7f0000002240)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@uid}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@nodiscard}, {@errors_continue}, {@discard_size={'discard', 0x3d, 0x8}}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x621f, &(0x7f000000c5c0)="$eJzs3cuOHFcZB/Cv+jYXE8fKIgoWQpPEXEKIr8EYAiRZwIINC+QtsjWZRBYOINsgJ7LwRLNhwUOAkFgixJIVD5AFW3Y8AJZsJFAWKIVq5pxxTaV7esb2dHW7fj9pXPX1qZo+5X9XX6aq+gQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAED/8wY/PFRFx5VfphhMRn4t+RC9iparXImJl7UR9nRdiuzmej4jhUkS1/vY/z0a8HhEfH4+4/+DOenXz+QP24/t//scffnLsR3//0/DMf/9yq//GpOVu3/7tf/5699G3FwAAALqoLMuySB/zT0bEIH22BwCefvn1v0zy7eq5qzfnrD9qtVqtXsC6rhzvbr2IiM36OtV7BofjAWDBbMYnbXeBFsm/0wYRcaztTgBzrWi7AxyJ+w/urBcp36L+erC2057PBdmT/2axe33HpOk0zXNMZvX42op+PDehPysz6sM8yfn3mvlf2WkfpeWOOv9ZmZT/aOfSp87J+feb+Tc8Pfn3xubfVTn/waHy78sfAAAAAADmWP77/4mWj/8uPf6mHMh+x3/XZtQHAAAAAAAAAHjSDjv+36Ax/t8u4/8BAADA3Ko+q1d+d/zhbZO+i626/XIR8UxjeaBj0sUyq233AwAAAAAAAAAAAAC6ZLBzDu/lImIYEc+srpZlWf3UNevDetz1F13Xtx+6rO0neQAA2PHx8ca1/EXEckRcTt/1N1xdXS3L5ZXVcrVcWcrvZ0dLy+VK7XNtnla3LY0O8IZ4MCqrX7ZcW69u2uflae3N31fd16jsH6Bjs9Fi4AAQETuvRvcnvSL9z+vVYirLZ6PlNzksiH32fxaU/Z+DaPtxCgAAABy9sizLIn2d98l0zL/XdqcAgJnIr//N4wJqtVqtVqufvrquHO9uvYiIzfo61XsGw/EDwILZjE/a7gItkn+nDSLihbY7Acy1ou0OcCTuP7izXqR8i/rrQRrfPZ8Lsif/zWJ7vbz+uOk0zXNMZvX42op+PDehP8/PqA/zJOffa+Z/Zad9lJZ7/PzLPX8mbOsco0n5V9t5ooX+tC3n32/m33DU+/+sbEVvbP5dlfMfHCr/vvwBAAAAAGCO5b//n5ir47+jR92cqfY7/rs2do2j6wsAAAAAAAAAPCn3H9xZz9e95uP/XxiznOs/n045/0L+nZTz7zXy/2pjuX5t/t7bD/P/94M763+89a/P5+lB81/KM0V6ZBXpEVGkeyoGafo4W/dZW8P+qLqnYdHrD9I5P+Xw3bgW12Mjzu5Ztpf+Px62n9vTXvV0uN1e9nfaz+9pH+y25/Uv7GkfprOLypXcfjrW4+dxPd7Zbq/alqZs//KU9nJKe86/b//vpJz/oPZT5b+a2ovGtHLvo95n9vv6dNz9vHXti785e/SbM9VW9He3ra7avpda6M/2/8mxUfzy5saN07ev3rp141ykyZ5bz0eaPGE5/2H62X3+f3mnPT/v1/fXex+NDp3/vNiKwcT8X67NV9v7yoz71oac/yj95PzfSe3j9/9Fzn/y/v9qC/0BAAAAAAAAAAAAAACA/ZRluX2J6FsRcTFd/9PWtZkAwGzl1/8yybfPqu7P+P7U6gWviznrz0zrT8v56o9avYh1XTnem/UiIv5WX6d6z/Drcb8MAJhnn0bEP9vuBK2Rf4fl7/urpqfa7gwwUzc/+PCnV69f37hxs+2eAAAAAAAAAACPKo//uVYb//lUWZZ3G8vtGf/17Vh73PE/B3lmd4DRCQNV9w+/TfvZ6o36vdpw4y/GpPG/h7tz+43/PZhyf8Mp7aMp7UtT2pentI+90KMm5/9ibbzzUxFxsjH8ehfGf22Oed8FOf+Xao/nKv+vNJar51/+fpHz7+3J/8yt939x5uYHH7527f2r7228t/GzC+fOnb1w8eKlS5fOvHvt+sbZnX9b7PHRyvnnsa+dB9otOf+cufy7Jef/pVTLv1ty/l9Otfy7Jeef3+/Jv1ty/vmzj/y7Jef/Sqrl3y05/6+lWv7dkvN/NdXy75ac/9dTLf9uyfm/lmr5d0vO/3Sq5d8tOf8zqT5g/itH3S9mI+efj3DZ/7sl55/PbJB/t+T8z6da/t2S87+Qavl3S87/9VTLv1ty/t9Itfy7Jed/MdXy75ac/zdTLf9uyflfSrX8uyXn/61Uy79bcv7fTrX8uyXn/0aq5d8tOf/vpFr+3ZLz/26q5d8tOf/vpVr+3ZLzfzPV8u+Wh9//b8aMGTN5pu1nJgAAAAAAAAAAAACgaRanE7e9jQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA/9mBAwEAAAAAIP/XRqiqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrCDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFfbuLkaus74f+Jl989qBxEDI38nfwMYxISSb7NpO/EKbYsJrw1sJhEJfsF3v2iz4Da9dAo1k00CJhFFRRdtw0RYQanNTkQsuaAUoF6gVVSVoL+gNokLlIqoCCkiVoAK2mnOe59mZ2dmZXXu8PnPO5yMlv+zMmTlnzpyZ3e9uvnMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaHXra+c/2ciyrPlP/q+tWfa85n9vntqaX/aqa72FAAAAwJX6Zf7v525IFxxcw41alvnnl377K0tLS0vZe0b/fPyzS0vpiqksG9+UZfl10VM/eG+jdZngsWyyMdLy9Uif1Y/2uX6sz/Xjfa6f6HP9pj7XT/a5fsUOWGFz8fuY/M525v+5tdil2Y3ZeH7dzi63eqyxaWQk/i4n18hvszR+LFvITmTz2Wzb8sWyjXz5r93aXNebsriukZZ1bW8eIT959GjchkbYxzvb1rV8n9GPXpNN/fQnjx7923PP3txt9t0NbfdXbOcdO5rb+fFwSbGtjWxT2idxO0datnN7l+dktG07G/ntmv/duZ3PrXE7R5c3c0N1PueT2Uj+39/J99NY66/10n7aHi772W1Zll1c3uzOZVasKxvJtrRdMrL8/EwWR2TzPpqH0guzsXUdp7eu4Thtzrmd7cdp52siPv+3htuNrbINrU/Tjz420fK8/2Lpco7TqPmoV3utdB6Dg36tlOUYjMfFd/IH/XjXY3BnePyP3r76Mdj12OlyDKbH3XIM7uh3DI5MjObbnJ6ERn6b5WNwV9vyo/maGvl85vbex+DMuZNnZhY/8tG7F04eOT5/fP7Unl27Zvfs3bt///6ZYwsn5meLf1/m3i6/LdlIeg3sCPsuvgZe0bFs66G69IWJFe+/l/s6nOzxOtzaseygX4djnQ+usTEvyJXHdPHaeFdzp09eGslWeY3lz8+dV/46TI+75XU41vI67Po9pcvrcGwNr8PmMmfuXNvPLGMt/3TbhtW/F1zZMbi15Rjs/Hmk8xgc9M8jZTkGJ8Nx8b07V/9esD1s7+PT6/15ZHTFMZgebnjvaV6Sft6f3J+PbsflLc0rrpvIzi/On73nkSPnzp3dlYWxIV7Ucqx0Hq9bWh5TtuJ4HVn38Xpw4aWP39Ll8q1hX03e3fzX5KrPVXOZe+/p/Vzl392678+2S3dnYQzYRu/Pbt/Nm/tzIss+982PPfT1Rz/32lX3ZzNvfnzmyn8WT7m05f13fJX335j7f1WsL93VY6PjY8XrdzTtnfG29+P2p2osf+9q5Ot+bmZt78fj4Z+Nfj++scf78baOZQf9fjze+eDi+3Gj3287rkzn8zkZjpMTs73fj5vLbNu93mNyrOf78W1hNsL+f2VICikXtRw7qx23aV1jY+PhcY3FNbQfp3valh8P2ay5rid3hx8K01au7Ti947Zi+dGW20UbdZxOdSw76OM0/e5rteO00e+3b5en8/mcDMfFjXt6H6fNZZ6+98rfOzfH/2x575zodwyOj040t3k8HYT5+322tDkeg/dkR7PT2YlsLr92Ij+eGvm6pu9b23vlRPhno98rt/U4Bu/oWHbQx2D6PrbasdcYW/ngB6Dz+ZwMx8UT9/U+BpvLvG7fYH92vSNckpZp+dm18/drq/3O65aO3XS1jpWxsJ3f3Nf7d7PNZU7sX2/O7L2f7gqXXNdlP3W+fld7Tc1lG7OftoXtfHb/6vupuT3NZT57YI3H08Esyy586IH8973h7ysXzn/3K21/d+n2N50LH3rgx88/9k/r2X4Aht+virGl+F7X8peptfz9HwAAABgKMfePhJnI/wAAAFAZMffH/ys8kf8BAACgMmLuHwszqUL+/+P+i2x73bMLv7qQpWb+UhCvT7vhwWK52HGdDV9PLS1rXv7Al+b/5x8vrG3zRrIs+8WDf9R1+W0Pxu0qTIXtfOr17Zev8JW717Tuww9fSOtt7a9/Ptx/fDxrPQy6VXBnsyz72g2fztcz9d5L+Xz6wcP5fOji4481l3nuQPF1vP0zLyqW/6tQ/j147Ejb7Z8J++GHYc6+ufv+iLf78qVXbt/37uX1xds1dlyfP+wn3lfcb/ycnM88Viwf9/Nq2//1Tz355ebyj7y8+/ZfGOm+/U+G+/1SmD9/SbF863PQ/Dre7hNh++P64u3u+eI3um7/U58slj/zhmK5w2HG9d8Rvt75hmcXWvfXI40jbY8re2OxXFz/7Hf/NL8+3l+8/87tnzx0qW1/dB4fT/97cT8zHcvHy+N6on/oWH/zflqPz7j+J//kcNt+7rf+px565iXN++1c/10dy5350J35+pfvr/0Tm/76E5/uur64PQf//kzb4zn4jvA6Dut/4n3heAzX/+9Txf11frrC4Xe0v//E5T+/9ULb44ne9NNi/U+9+ng+N01u3nLd855//cWXNfddln1nU3F//dZ//G9Ot23/F24q9ke8Pnb0O9e/mrj+sx+ePnV68fzCXNqrj96Qf3bOW4rtidt7Q3hv7fz60Olz758/OzU7NZtlU9X9CL3L9sUwf1yMi72XXlrxDnrnw+H5vOUvv7bl9n/7VLz8P95VXH7pzcX3rVeE5T4TLt8anr/1rX+lJ269KX99N54OW7i08vOCr8T2nf+9f00Lhsff+XNBPN7PvPj9+X5oXpd/34iv6yvc/u/PFffz1bBfl8InM++4aXl9rcvHz0a49M7i9X7F+y+8zcXn9e/C8/3WHxb3H7crPt7vh59jvrGt/f0uHh9fvTDSef/5p3hcDO8n2cXi+rhU3N+Xnrup6+bFzyHJLt6cf/1n6X5uXtfDXM3iRxZnTiycOv/IzLn5xXMzix/56KGTp8+fOnco/yzPQx/od/vl96ct+fvT3Pzee7P83ep0Ma6ya739Zx4+Ordv9va5+WNHzh879/CZ+bPHjy4uHp2fW7z9yLFj8x/ud/uFuft37T6wZ9/u6eMLc/fvP3Bgz4HphVOnm5tRbFQfe2c/OH3q7KH8Jov333tg13333Ts7ffL03Pz9+2Znp8/3u33+vWm6ees/nD47f+LIuYWT89OLCx+dv3/Xgb17d/f9NMCTZ44tTs2cPX9q5vzi/NmZ4rFMncsvbn7v63d7qmnxP4ufZzs1ig/iy95+1970+axNX/rYqndVLNLxAaLPhs+i+dYLzuxfy9cx94+HmVQh/wMAAAC5mPsnwkzkfwAAAKiMmPs3hZnI/wAAAFAZMfdPhpn+l4Ca5P/K9f+3XVjT+vX/9f9b95f+f836/+8sW/+/eL/Q/x+MK+3f6/8H+v/6//r/+v/6/wxA2fr/MfdvzjJ//wcAAICKirl/S5iJ/A8AAACVEXP/dWEm8j8AAABURsz9zwszqUn+1//X/9f/1//X/+++fv3/4aT/35v+fx/6/zNZvfr/Fwe5/deg/7+59Qv9f8pog/r//5Jl2Zr6/zH3Pz/MpCb5HwAAAOog5v7rw0zkfwAAAKiMmPtvCDOR/wEAAKAyYu7fGmZSk/yv/39F/f/UudL/b99+/f92+v/heND/1//fAPr/ven/96H/7/z/w9X/b6P/TxmV7fz/Mfe/IMykJvkfAAAA6iDm/heGmcj/AAAAUD5jl3ezmPtfFGayIv9f5goAAACAay7m/huzjiJ4Tf7+r//v/P/6//r/+v/d17/2/v9opv9fHpfRv29bRv8/0P/X/9f/1//X/2cAytb/z3N/Npm9OMykJvkfAAAA6iDm/pvCTOR/AAAAqIyY+/9fmIn8DwAAAJURc/+2MJOa5H/9/8r0/3/W+tTp/+v/91q//r/z/1eZ8//3pv/fh/6//r/+v/4/A1W2/n/M/TeHmdQk/wMAAEAdxNx/S5iJ/A8AAACVEXP//w8zkf8BAACgMmLu3x5mUpP8r/9f8v5/bI46/7/+v/5/Kfv/k/r/paP/35v+fx/6//r/+v/6/wxU2fr/Mfe/JMykJvkfAAAA6iDm/peGmcj/AAAAUBkx978szET+BwAAgMqIuX8qzKQm+X89/f/GRf3/1Vzl8/9PrOH8/230//X/e61f/9/5/6tM/783/f8+9P/1//X/9f8ZqLL1/2PuvzXMpCb5HwAAAOog5v4dYSbyPwAAAFRGzP23hZnI/wAAAFAZMffvDDOpSf53/v+h6P9n+v/6//r/+v/6/2uj/9+b/n8f+v/6//r/+v8MVNn6/zH3vzzMpCb5HwAAAOog5v7bw0zkfwAAAKiMmPtfEWYi/wMAAEBlxNx/R5hJTfK//r/+v/6//r/+f/f16/8PJ/3/3vT/+9D/1//X/9f/Z6DK1v+Puf+VYSY1yf8AAABQBzH33xlmIv8DAABAZcTcf1eYifwPAAAAlRFz/3SYSU3yv/6//r/+v/6//n/39ev/Dyf9/970//vQ/9f/1//X/2egytb/j7n/7jCTmuR/AAAAqIOY++8JM5H/AQAAoDJi7p8JM5H/AQAAoDJi7p8NM6lJ/tf/1//X/9f/X1f//2XL96v/X9D/Lxf9/97a+/+dr7YW+v/6//r/16j/P169/v/PO95IqJWy9f9j7t8VZlKT/A8AAAB1EHP/7jAT+R8AAAAqI+b+PWEm8j8AAABURsz994aZ1CT/6//r/+v/6/87/3/39ev/Dyf9/94Gf/7/+BD1//X/9f+d/9/5/1mpbP3/mPvvCzOpSf4HAACAOoi5f2+YifwPAAAAlRFz/74wE/kfAAAAKiPm/v1hJjXJ//r/+v/6//r/+v/d16//P5z0/3sbfP/f+f/1/5fp/1/b/n/z2NL/p2zK1v+Puf9AmElN8j8AAADUQcz9rwozkf8BAACgMmLu/7UwE/kfAAAAKiPm/l8PM6lJ/u/Z/x/V/9f/1//X/7/2/f8J/X/9/3XQ/+9N/78P/X/9/yHu/zv/P2VUtv5/zP33h5nUJP8DAABAHcTc/xthJvI/AAAAVEbM/a8OM5H/AQAAoDJi7j8YZlKT/O/8/xvU/48X6v/r/+v/O/+//v9V1dG/Xzf9/0D/X/9f/1//X/+fAShb/z/m/teEmdQk/wMAAEAdxNz/QJiJ/A8AAACVEXP/a8NM5H8AAACojJj7XxdmUpP8r//v/P/Xvv8/3rbt+v/Lt9P/L+j/6/+vh/P/96b/34f+v/6//r/+PwNVtv5/zP2vDzOpSf4HAACAOoi5/w1hJvI/AAAAVEbM/W8MM5H/AQAAoDJi7n9TmElN8r/+v/7/te//O/+//n9B/1//fxD0/3vT/+9D/1//X/9f/5+BKlv/P+b+3wwzqUn+BwAAgDqIuf/BMBP5HwAAACoj5v43h5nI/wAAAFAZMfe/JcykJvlf/1//X/9f//9a9//j/tP/1/8fBP3/3oas///L68Pl+v8F/f9yb/96+/9jHV9flf7/D1br/y9t6ry9/j9XQ9n6/zH3vzXMpCb5HwAAAOog5v63hZnI/wAAAFAZMfe/PcxE/gcAAIDKiLn/t8JMapL/y9D/71Zm2tj+/3J7Wf9f/z+/QP/f+f/1/4eW/n9vQ9b/d/7/Dvr/5d5+5//X/2elsvX/Y+5/R5hJTfI/AAAA1EHM/Q+Fmcj/AAAAUBkx978zzET+BwAAgMqIuf9dYSY1yf9l6P87/7/+v/6//n+m/6//PyD6/73p//eh/6//X7b+/3/p/zPcytb/j7n/4TCTmuR/AAAAqIOY+98dZiL/AwAAQGXE3P/bYSbyPwAAAFRGzP3vCTOpSf7X/x+W/v+U/v86+/8T4TL9f/1//f960f/vTf+/D/1//f+y9f+d/58hV7b+f8z97w0zWXv+n1zzkgAAAMA1EXP/74SZ1OTv/wAAAFAHMff/bpiJ/A8AAACVEXP/74WZ1CT/6/8PS//f+f8z5//X/+94PPr/+v/dbFz/P77z6P/r/+v/R/r/+v/6/3QqW/8/5v7fDzOpSf4HAACAOoi5/31hJvI/AAAADIVu/092p5j7D4WZyP8AAABQGTH3Hw4zqUn+1//X/9f/L2n//y92/Ov3vv22w7v0//X/9f/XZUPP/9988Tv/v/6//n+i/6//r/9Pp7L1/2PuPxJmshz83uIE/wAAADDcYu7/gzCTmvz9HwAAAOog5v6jYSbyPwAAAFRGzP1zYSY1yf/6//r/+v8l7f8P8fn/4/4Ypv7/9KYh6v/HN139/642tP//7uWeuP7/evv/E10v7ez/N/T/2+j/r3v7v5Vlmf6//j/XUNn6/zH3z4eZ1CT/AwAAQB2E3D9yrJjLV8j/AAAAUBkx9x8PM5H/AQAAoDJi7n9/mElN8r/+v/6//r/+v/P/d19/afv/zv/fk/5/b+Xp/3fn/P/6/8O8/fr/+v+sVLb+f8z9C2EmNcn/AAAAUAcx938gzET+BwAAgMqIuf+DYSbyPwAAAFRGzP0nwkxqkv/1//X/9f/1//X/u69f/3846f/3pv/fh/6//r/+v/4/A1W2/n/M/SfDTGqS/+H/2LuPL0vLao/jp7jVdPVicmd3cAc6909gIGP9AxwwcaBruRyAijnRmCPmHDCLAQMoYsKcwIRiFhVzDigGDOWia+/dFd56T1XXqar3PM/nM7ibLu17yrt6yf3RfHkAAAB6kLv/krjF/gcAAIBm5O6/NG6x/wEAAKAZufsfErd0sv/1//r/Zvv/e+v/d/t8/b/+v2X6/3H6/zn0//p//b/+n4WaWv+fu/+hcUsn+x8AAAB6kLv/YXGL/Q8AAADNyN1/Wdxi/wMAAEAzcvc/PG7pZP9v6/9XZn32/5nx6v9b6v+9/7/r5+v/9f8tO9r+/4q7/5tP/6//1/8H/b/+X//PdlPr/3P3PyJu6WT/AwAAQA9y9z8ybrH/AQAAoBm5+x8Vt9j/AAAA0Izc/Y+OWzrZ/97/9/6//l//r/8f/nz9/3Ly/v+4nvr/y2694JI7rv//G/bz+fp//b/+X//PYk2t/8/d/5i4pZP9DwAAAD3I3f/YuMX+BwAAgGbk7n9c3GL/AwAAwBI6NfjV3P2Pj1s62f/6f/2//j/6/zX9v/5f/9+CvfX3J3f9+fr/0ED/fy6fr//X/+v/9f8s1tT6/9z9T4hbOtn/AAAA0IPc/U+MW+x/AAAAmK6hvxF7RO7+y+MW+x8AAACakbv/dNzSyf7X/x9+//9v/f9y9P/e/9f/6/+b4P3/cfr/OfT/+n/9v/6fhZpa/5+7/4q4pZP9DwAAAD3I3f+kuMX+BwAAgGbk7n9y3GL/AwAAQDNy9z8lbulk/+v/vf+v/9f/6/+HP1//v5z0/+P0/3Po/w/az5/Q/+v/9f9sts/+/66R/9peSP+fu/+pcUsn+x8AAAB6kLv/aXGL/Q8AAADNyN3/9LjF/gcAAIBm5O5/RtzSyf7X/+v/9f/6/3Pu/3f+0jtD/z9M/3809P/jJtP/r6wOfln/v/T9v/f/9f/6f7aY2vv/ufufGbd0sv8BAACgB7n7nxW3jOz/ff/FfAAAAOBY5e5/dtzi9/8BAABg6WV1lrv/OXFLJ/tf/6//1//r/73/P/z5Y/3/DZu+P/3/tOj/x02m/9+F/l//v8zfv/5f/89OU+v/c/c/N27pZP8DAABAD3L3Xxm32P8AAADQjNz9z4tb7H8AAABoRu7+58ctnez/4f7/7L+u/98b/f/W71//P/zrY1H9f/5v1P+P9v8Xef+/T/r/cfr/OfT/+n/9/279/6l5P1//z5Cp9f+5+18Qt3Sy/wEAAKAHuftfGLfY/wAAANCM3P0vilvsfwAAAGhG7v4Xxy2d7H/v/+v/9f/L1/97/3/Dcb7/Pzvy/n9V/79H+v9x+v859P/6f/3/+Pv/I/8UAP0/Q6bW/+fuf0nc0sn+BwAAgB7k7n9p3GL/AwAAwHLY/PcObP8bSkPu/pfFLfY/AAAANCN3/8vjlnb2/+hbnfp//b/+X/+v/x/+/Gn1/97/3yv9/zj9/xz6/8Po51cb6/+v2u3nT6H/v/yw+/8R+n+GbOn/bzz79ePq/3P3vyJuaWf/AwAAQPdy978ybrH/AQAAoBm5+18Vt9j/AAAA0Izc/a+OWzrZ/4fe/4/80wf0//p//b/+X/+v/180/f84/f8c2/v/Nf2/9/+9/6//5yC29P+bHFf/n7v/NXFLJ/sfAAAAepC7/7Vxi/0PAAAAzcjdf1XcYv8DAABAM3L3vy5u6WT/e/9f/6//1//r/4c/X/+/nA7U35+n/y/6f+//6//1//p/FmBq/X/u/tfHLZ3sfwAAAOhB7v43xC32PwAAADQjd/8b4xb7HwAAAJqRu/9NcUsn+1//f7j9f35d/6//n+n/9f/6/yPR7fv/K0N/Jtppl/7/5gedvu/Wr+j/9f/6f/2//p89+t+Rf20S/f/62f/vMnf/m+OWTvY/AAAA9CB3/1viFvsfAAAAmpG7/61xi/0PAAAAzcjdf3Xcss/9P9Y8TJn+3/v/+n/9/6b+/8RM/6//X3Ld9v975P3/OfT/+v8l7f/XT+r/maZJ9P+bfpy7/21xi9//BwAAgGbk7n973GL/AwAAQDNy978jbrH/AQAAoBm5+98Zt3Sy//X/+n/9v/7f+//Dn6//X076/3H6/zmWqf+/+gD9/+rwl4+7nz+o4/7+vf+v/2enqfX/ufuviVs62f8AAADQg9z974pb7H8AAABoRu7+d8ct9j8AAAA0I3f/e+KWTva//r/L/v+E/l//r//X/7dK/z9O/z+bza4d+QaG+v/1k9Ps/73/P7nvX/+v/2enqfX/ufvfG7d0sv8BAACgB7n7r41b7H8AAABoRu7+6+IW+x8AAACakbv/fXFLJ/tf/99l/+/9f/2//l//3yz9/zj9/xzL9P6//n9y37/+X//PTlPr/3P3vz9u6WT/AwAAQA9y918ft9j/AAAA0Izc/R+IW+x/AAAAmKjz9/0zcvffELd0sv/1//p//b/+X/8//PnV/5/a+LH+fzkcXv8/0//r//X/c+j/9f/6f7abWv+fu/+DcUsn+x8AAAB6kLv/Q3GL/Q8AAADNyN3/4bjF/gcAAIBm5O7/SNzSyf7X/+v/9f/6f/3/8Ocf4fv//znzB/r/hfD+/zj9/xz6f/2//l//z0IN9/+XH1v/n7v/o3FLJ/sfAAAAepC7/8a4xf4HAACAZuTu/1jcYv8DAABAM3L3fzxu6WT/6//1/1v7/9lM/6//1/9vOIL+f23m/f+F0/+P0//Pof9vs/8/b9ZQ/39q15+v/2eKpvb+f+7+T8Qtnex/AAAA6EHu/k/GLfY/AAAANCN3/6fiFvsfAAAAmpG7/9NxSyf7X/+v//f+v/5f/z/8+Uf4/r/+f4H0/+P0/3Po/9vs/73/r//n2Eyt/8/d/5m4pZP9DwAAAD3I3f/ZuMX+BwAAgGbk7v9c3GL/AwAAQDNy938+bulk/+v/9f/6f/2//n/487P/vzN+rP9fDvr/cQvv/8+fzWb6f/1/0P/r//X/bDe1/j93/xfilk72PwAAAPQgd/9NcYv9DwAAAM3I3X9z3GL/AwAAQDNy938xbulk/+v/9f/6/+Xs/9cOrf9fX9f/b/D+/3KaSv9/4YX3uaWL/t/7//r/TfT/+n/9P9tNrf/P3f+luKWT/Q8AAAA9yN3/5bjF/gcAAIBm5O7/Stxi/wMAAEAzcvd/NW7pZP/v7P9PzDYK1Q1D/X80avr/TfT/W79//f/wrw/v/+v/9f+Hbyr9fzfv/+v/9f+b6P/30f/fc+fP1//Toqn1/7n7b4lbOtn/AAAA0IPc/V+LW+x/AAAAaEbu/q/HLfY/AAAANCN3/61xSyf73/v/+n/9v/5f/z/8+fr/5aT/H6f/n0P/r//3/v+lD/gf/T+LM7X+P3f/N+KWTvY/AAAA9CB3/zfjFvsfAAAAmpG7/1txi/0PAAAAzcjd/+24pZP9r//X/+v/9f/6/+HP1/8vJ/3/OP1/2f4fbUM//f/a0BePu58/qOP+/pvp/73/zwJNrf/P3f+duKWT/Q8AAAA9yN3/3bjF/gcAAIBm5O7/Xtxi/wMAAEAzcvd/P27pZP/r//X/7ff/99f/b/t8/b/+v2X6//wz+jD9/xz99P+DjrufX/bvX/+v/2enqfX/uftvi1s62f8AAADQg9z9P4hb7H8AAABoRu7+H8Yt9j8AAAA0I3f/j+KWTva//r+v/n9l1mP/7/1//b/+vyf6/3H6/zn0//p//b/+n4WaWv+fu//2ldUu9z8AAAAsq/vd68G37fXfe/uZ/7k2+3HcctFsfY+/jQ0AAABM3N27f2V1NvvJmR/5/X8AAABoUe7+n8Ytnex//X9f/X+f7//r//X/+v+e6P/H6f/n0P/r//X/+n8Wamr9f+7+n8Utm4bf6r7/UwIAAABTkrv/53FLJ7//DwAAAD3I3f+LuGXH/vePAwQAAIBllbv/l3FLJ7//r/+feP8/O6T+P/59+v8N+n/9/9Dn6/+Xk/5/3AH7//UV/b/+f4T+X/+v/2e7qfX/uft/Fbd0sv8BAACgUVv+ikLu/l/HLfY/AAAANCN3/2/iFvsfAAAAmpG7/7dxSyf7X/9/5P1/puqH+P7/qfoj7/933v9fuTb4+Vv6/5n+X//fFv3/OO//z6H/b6X/P6n/1/8zDVPr/3P3/y5u6WT/AwAAQA9y9/8+brH/AQAAoBm5+/8Qt9j/AAAA0Izc/X+MWzrZ//r/ib//f079/x7e/9f/99H/7/L57bz//38XnL7p4gded43+n7OOsv/PXwv6f/2//n/DhPp/7//r/5mIxff/q1u+uN/+P3f/n+KWTvY/AAAA9CB3/x1xi/0PAAAAzcjd/+e4xf4HAACAZuTu/0vc0sn+1//r/6fS/+f/rY+h/z99zv3/qdlsdiz9fzbFvff/3v/X/+/k/f9x+v859P/6f/2//p+FWnz/v/WL++3/c/ffGbd0sv8BAACgB7n7/xq35P5f2fdfugcAAAAmJnf/3+IWv/8PAAAAzcjd//e4pZP9r//X/0+l/0/e/z/789p6///iilP77P/vUX+k/z9c+v9x+v859P/6f/2//p+Fmlr/n7v/H3FLJ/sfAAAAepC7/664xf4HAACAZuTu/2fcYv8DAABAM3L3/ytu6WT/6/9b7f+ziNf/6/+n0v97/9/7/0dD/z9O/z+H/l//r//X/7NQU+v/c/f/NwAA//9LLnlt") mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) 9m59.233843248s ago: executing program 2 (id=4323): set_mempolicy(0x4005, &(0x7f0000000000)=0x2, 0x8) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) 9m57.77128146s ago: executing program 2 (id=4345): r0 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0) write(r0, &(0x7f0000000200)="a4f4c955", 0x4) 9m57.433419275s ago: executing program 33 (id=4345): r0 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f0000000780)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0) write(r0, &(0x7f0000000200)="a4f4c955", 0x4) 1.38959049s ago: executing program 5 (id=13182): pipe(&(0x7f00000007c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f00000000c0)=[{0x0, 0x1c}], 0x1, 0x1) 1.125140714s ago: executing program 3 (id=13186): syz_mount_image$exfat(&(0x7f0000002bc0), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x14050, &(0x7f00000001c0)={[{@namecase}, {@errors_remount}, {@errors_continue}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@utf8}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@umask={'umask', 0x3d, 0x75}}, {@errors_continue}, {}]}, 0x1, 0x1540, &(0x7f0000002c00)="$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") stat(&(0x7f0000000340)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0) 1.121354144s ago: executing program 5 (id=13187): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0xc001200, 0x0, 0x0, 0x0, 0x0, 0x0) 1.050344375s ago: executing program 4 (id=13188): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000040)={0x0, 0xc00000, "f62d6e7cb6e86a82bb74608bd6eda58621ace278e9292a52", {0x3, 0x4}, 0x7ff}) 1.049822455s ago: executing program 0 (id=13189): r0 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x8, 0x0, &(0x7f0000000040)=0xfffffffffffffee7) 867.221858ms ago: executing program 5 (id=13190): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2000002, &(0x7f0000000100)={[{@volume={'volume', 0x3d, 0x3e}}, {@gid}, {@dmode={'dmode', 0x3d, 0x8}}, {@uid_ignore}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@unhide}, {@noadinicb}, {}, {@longad}]}, 0x1, 0xc32, &(0x7f0000000e00)="$eJzs3U1sXNd9N+D/uRyKI/l9KyZ2FCeNi0lbpLJiufqKqViFO6pptgFkWQjF7AJwJI7UgSmSIKlGNtKC6aaLLgIURRdZEWiNAikaGE0RdMm0LpBsvCiy6opoYSMoumCLAFkFLO6dM9KQIm1GFCVKeh6b+s3ce86dc+4Z3ysLOvcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABDxe6+dP3EyPexWAAAP0sXxr5445f4PAE+Uy/7/HwAAAAAAAAAAAAAA9rsURTwdKeYurqXJ6n1X/UJn8OatidGxrasdTFXNgap8+VM/eer0mS+9NHK2lxc6Mx9R/377bLwxfvl849XZG3Pz7YWF9lRjYqZzdXaqveMj7Lb+ZseqE9C48ebNqWvXFhqnXjy9Yfet4Q+HnjoyfG7k+ePP9cpOjI6Njd8pUu8vX7vnhnRtN8PjQBRxPFK88L2fplZEFLH7c1F/sGO/2cGqE8eqTkyMjlUdme60ZhbLnZd6J6KIaPRVavbO0dZjEbXBB9qH7TUjlsrmlw0+VnZvfK4137oy3W5cas0vdhY7szOXUre1ZX8aUcTZFLEcEatDdx9uMIqoRYrvHF5LVyJioHcevlhNDN6+HcUe9nEHynY2BiOWi0dgzPaxoSji9Ujxs/eOxtV8namuNV+IeL3MH0S8U+YrEan8YpyJ+GCL7xGPploU8efl+J9bS1PV9aB3XbnwtcZXZq7N9pXtXVd+yfvDXVeKh3R/OLgpH4x9fm2qRxGt6oq/lu79NzsAAAAAAAAAAAAAAAAA3G8Ho4jPRIrX/u2PqnnFUc1LP3xu5PeH/3//nPFnP+Y4ZdkXI2Kp2Nmc3AN5YuCldCmlhzyX+ElWjyL+OM//+9bDbgwAAAAAAAAAAAAAAAAAAMATrYifRIqX3z+alqN/TfHOzPXG5daV6e6qsL21f3trpq+vr683UjebOSdzLuVczrmSczVnFLl+zmbOyZxLOZdzruRczRkDuX7OZs7JnEs5l3Ou5FzNGbVcP2cz52TOpZzLOVdyruaMfbJ2LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA46SIIn4RKb79jbUUKSKaEZPRzZWhh906AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA0lIr4fqRo/EHz9rZaRKTq366j5S9nonmgzE9Gc6TMV6J5PmerylrzWw+h/ezOYCrix5FiqP7u7QHP4z/YfXf7axDvfPPOu8/WujnQ2zn84dBTRw6fGxn7tWe3e522asCxC52Zm7caE6NjY+N9m2v50z/Zt204f25xf7pORCy89fabrenp9vy9vyi/Aruo/gi9SLUnpadeVC+iti+a8XD6zhOgvP9/ECl++/1/793wu/f/evy/7rvbd/j4+Z/cuf+/vPlAO7z/1zbXy/f/8p6+1f3/6b5tL+ffjQzWIuqLN+YGj0TUF956+3jnRut6+3p75syJE18eGfny6RODByLq1zrT7b5X9+V0AQAAAAAAAAAAAAAAADw4qYjfjRStH6+lRkTcquZrDZ8bef74cwMxUM232jBv+43xy+cbr87emJtvLyy0pxoTM52rs1PtnX5cvZruNTE6tied+VgH97j9B+uvzs69Nd+5/oeLW+4/VD9/ZWFxvnV1691xMIqIZv+WY1WDJ0bHqkZPd1ozVdVLW06m/+UNpiL+I1JcPdNIn8/b8vz/zTP8N8z/X9p8oD2a//+Jvm3lZ6ZUxM8jxW/9xbPx+aqdh+Kuc5bL/U2kOHb2c7lcHCjL9drQfa5Ad2ZgWfZ/IsU//GJj2d58yKfvlD254xP7iCjH/3Ck+P6ffTd+PW/b+PyHrcf/0OYD7dH4P9O37dCG5xXsuuvk8T8eKV55+t34jbzto57/0Xv2xtFc+PbzOfZo/D/Vt204f+5v3p+uAwAAAAAAAAAAPNIGUxF/Gyl+OFZLL+VtO/n7f1ObD7RHf//r033bpu7PekUf+2LXJxUAAAAA9onBVMRPIsX1xXdvz6HeOP+7b/7n79yZ/zmaNu2t/pzvV6rnBtzPP//rN5w/d3L33QYAAAAAAAAAAAAAAAAAAIB9JaUiXsrrqU9W8/mntl1PfSVSvPZfL+Ry6UhZrrcO/HD1a/3i7Mzx89PTs1dbi60r0+3G+Fzrarus+0ykWPvrz+W6RbW+em+9+e4a73fWYp+PFGN/1yvbXYu9tzb5M72yS+2TZdlPRIr//PuNZXvrWH/qznFPlWX/KlJ8/Z+2LnvkTtnTZdnvRooffb3RK3uoLNt7Puqn75R98epssQejAgAAAAAAAAAAAAAAAAAAwJNmMBXxp5Hiv28s357Ln9f/H+x7W3nnm33r/W9yq1rnf7ha/3+71/ey/n/1XIGl7T4VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTymKeDtSzF1cSytD5fuu+oXOzM1bE6NjW1c7mKqaA1X58qd+8tTpM196aeRsLz+6/v32mXhj/PL5xquzN+bm2wsL7anGxEzn6uxUe8dH2G39zY5VJ6Bx482bU9euLTROvXh6w+5bwx8OPXVk+NzI88ef65WdGB0bG+8rUxu850+/S9pm+4Eo4i8jxQvf+2n64VBEEbs/Fx/z3dlrB6tOHKs6MTE6VnVkutOaWSx3XuqdiCKi0Vep2TtHD2AsdqUZsVQ2v2zwsbJ743Ot+daV6XbjUmt+sbPYmZ25lLqtLfvTiCLOpojliFgduvtwg1HEm5HiO4fX0j8PRQz0zsMXL45/9cSp7dtR7GEfd6BsZ2MwYrn4qDHbosNsMBRF/GOk+Nl7R+NfhiJq0f2JL0S8XuYPIt6J7nin8otxJuIDp/WxUYsi/rcc/3Nr6b2h8nrQu65c+FrjKzPXZvvK9q4rj/z94UHa5/eTehTxo+qKv5b+1X/XAAAAAAAAAAAAAAAAAPtIEb8aKV5+/2iq5gffnlPcmbneuNy6Mt2d1teb+9ebM72+vr7eSN1s5pzMuZRzOedKztWcUeT6OZtl1tfXJ/P7pZzLOVdyruaMgVw/ZzPnZM6lnMs5V3Ku5oxarp+zmXMy51LO5ZwrOVdzxj6ZuwcAAAAAAAAAAAAAAAAAADxeiuqfFN/+xlpaH6rWlx7o7VuxHuhj7/8CAAD//0pa+Ck=") symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00') 867.128547ms ago: executing program 4 (id=13191): r0 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x0, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000000)={0x2, @pix_mp={0x1, 0xffffff01, 0x34325258, 0x4, 0x823c2acb262e9051, [{0xc8, 0x9}, {0x400, 0x4}, {0x9db3, 0x400}, {0xa41, 0x8001}, {0x0, 0xb}, {0x67, 0xac17}, {0x9, 0x5}, {0x3, 0x9}], 0x9, 0x7, 0x8, 0x2, 0x2}}) 854.725648ms ago: executing program 0 (id=13192): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001340)=@mangle={'mangle\x00', 0x10, 0x6, 0x590, 0x0, 0x230, 0xf0, 0x230, 0x230, 0x740, 0x740, 0x740, 0x740, 0x740, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x0, {0x7a00000000000000}}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@private0, @ipv4=@empty, 0xe}}}, {{@ipv6={@dev, @loopback, [], [], 'pimreg0\x00', 'veth1_macvtap\x00'}, 0x0, 0x118, 0x140, 0x0, {}, [@common=@unspec=@connbytes={{0x38}}, @common=@unspec=@connbytes={{0x38}}]}, @common=@unspec=@AUDIT={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, [], [], 'bond_slave_1\x00', 'gretap0\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@multicast1, @ipv6=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0) 813.957468ms ago: executing program 3 (id=13193): r0 = socket$kcm(0x2, 0x5, 0x84) setsockopt$sock_attach_bpf(r0, 0x84, 0x25, &(0x7f0000000000), 0x20000010) 623.080281ms ago: executing program 0 (id=13194): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0100000003000000ec0b000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0xf, &(0x7f0000000740)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xe}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x16}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 622.958431ms ago: executing program 4 (id=13195): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/sync_on_suspend', 0x40202, 0x105) write$tcp_mem(r0, &(0x7f0000000500)={0xfffffffffffffffa, 0x20, 0x48001, 0x20, 0x3ff}, 0x48) 622.892361ms ago: executing program 3 (id=13196): r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x8, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000240)={0x25, 0x2, 0x8b066404ffce5ba6, "dd3e1ddbc8e90cb57346e6c94dfa5bf04abc3e8fc2976136531a278bc449dfd7", 0x34324d59}) 532.837363ms ago: executing program 5 (id=13197): r0 = socket(0xa, 0x3, 0x3a) connect$unix(r0, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e) 457.986614ms ago: executing program 0 (id=13198): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/comedi4\x00', 0x200, 0x0) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000040)={0xc000003, 0xf, &(0x7f0000000080)=[0x7d2, 0x9, 0x5, 0x4, 0x4, 0xffffdffe, 0x809, 0x40000003, 0x42, 0x7, 0xfffffffa, 0x8, 0x6, 0x880e, 0x1], 0x1, 0x20000001}) 452.831453ms ago: executing program 3 (id=13199): r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0xe97, 0x0) ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f0000000040)={0xfffffffa, 0xffff}) 403.266014ms ago: executing program 4 (id=13200): r0 = syz_open_dev$dri(&(0x7f0000000100), 0xcae5, 0x129000) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000380)={0x2}) 319.772536ms ago: executing program 5 (id=13201): r0 = socket$inet6(0xa, 0x2, 0x3a) sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f0000000380)={0xa, 0x0, 0x3, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x8}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) 283.931517ms ago: executing program 0 (id=13202): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)={0x14, 0x43, 0x107, 0xfffffffe, 0x25dfdbfc, {0x3, 0x7c}}, 0x14}, 0x1, 0x0, 0x0, 0x4040844}, 0xc000) 271.491436ms ago: executing program 3 (id=13203): r0 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r0, &(0x7f0000001640)={&(0x7f0000000300)={0x2, 0x0, @multicast2=0xe0000001}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x11}, @multicast1}}}, @ip_retopts={{0x20, 0x0, 0x7, {[@generic={0x7, 0xd, "0900410000000008ea6e02"}]}}}], 0x40}, 0x20002800) 232.464677ms ago: executing program 4 (id=13204): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x84, &(0x7f0000000000)=ANY=[], 0x8b, 0x2e3, &(0x7f0000000800)="$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") syz_mount_image$vfat(&(0x7f0000002100), &(0x7f0000001200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x304982f, 0x0, 0x3, 0x0, &(0x7f00000000c0)) 79.268199ms ago: executing program 5 (id=13205): syz_mount_image$hfs(&(0x7f0000000680), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x41, 0x2b4, &(0x7f0000000200)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) 79.184449ms ago: executing program 0 (id=13206): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x8000}, 0x8) 79.094949ms ago: executing program 3 (id=13207): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=@newsa={0x154, 0x1a, 0x633, 0x0, 0x25dfdbfd, {{@in=@private=0xa010101, @in=@broadcast, 0x0, 0x4000, 0x4e24, 0x8001, 0x0, 0x20}, {@in=@multicast1, 0x0, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0xb}, {0x323, 0x0, 0x0, 0x0, 0x4000}, {}, {}, 0x70bd29, 0x0, 0xa, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x20, {0x0, 0x4e22, 0x0, @in=@private=0xa010101}}]}, 0x154}}, 0x0) 0s ago: executing program 4 (id=13208): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00') getdents64(r0, &(0x7f00000000c0)=""/28, 0x1c) kernel console output (not intermixed with test programs): ad 1-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 932.469040][ T5128] xpad 1-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 932.492331][ T9] usb 1-1: USB disconnect, device number 80 [ 932.749172][T30989] netlink: 'syz.3.11069': attribute type 6 has an invalid length. [ 932.935726][T30995] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11072'. [ 933.373943][T31015] loop4: detected capacity change from 0 to 256 [ 933.469398][ T28] audit: type=1326 audit(1782414943.255:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31016 comm="syz.5.11083" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 933.493602][ C0] vkms_vblank_simulate: vblank timer overrun [ 933.553530][T31015] FAT-fs (loop4): Directory bread(block 64) failed [ 933.559483][T31021] loop0: detected capacity change from 0 to 64 [ 933.560101][T31015] FAT-fs (loop4): Directory bread(block 65) failed [ 933.598492][ T28] audit: type=1326 audit(1782414943.255:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31016 comm="syz.5.11083" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 933.652132][T31015] FAT-fs (loop4): Directory bread(block 66) failed [ 933.658728][T31015] FAT-fs (loop4): Directory bread(block 67) failed [ 933.676049][T31015] FAT-fs (loop4): Directory bread(block 68) failed [ 933.691101][ T28] audit: type=1326 audit(1782414943.305:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31016 comm="syz.5.11083" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 933.741389][T31015] FAT-fs (loop4): Directory bread(block 69) failed [ 933.768555][T31015] FAT-fs (loop4): Directory bread(block 70) failed [ 933.775457][T31015] FAT-fs (loop4): Directory bread(block 71) failed [ 933.782649][T31015] FAT-fs (loop4): Directory bread(block 72) failed [ 933.789204][T31015] FAT-fs (loop4): Directory bread(block 73) failed [ 933.805470][ T28] audit: type=1326 audit(1782414943.305:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31016 comm="syz.5.11083" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 933.829630][ C0] vkms_vblank_simulate: vblank timer overrun [ 933.928671][ T28] audit: type=1326 audit(1782414943.305:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31016 comm="syz.5.11083" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 934.585468][T31054] netlink: 'syz.3.11100': attribute type 1 has an invalid length. [ 934.662359][T14145] usb 1-1: new high-speed USB device number 81 using dummy_hcd [ 934.684591][T31058] netlink: 256 bytes leftover after parsing attributes in process `syz.5.11102'. [ 934.852131][T14145] usb 1-1: Using ep0 maxpacket: 16 [ 934.876699][T14145] usb 1-1: config index 0 descriptor too short (expected 1068, got 27) [ 934.902683][T14145] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 934.934566][T14145] usb 1-1: New USB device found, idVendor=06f8, idProduct=b000, bcdDevice=7d.f9 [ 934.954330][T14145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 934.984025][T14145] usb 1-1: Product: syz [ 934.994068][T14145] usb 1-1: Manufacturer: syz [ 935.013575][T14145] usb 1-1: SerialNumber: syz [ 935.020945][T31071] netlink: 40 bytes leftover after parsing attributes in process `syz.4.11109'. [ 935.049913][T14145] usb 1-1: config 0 descriptor?? [ 935.058919][T31071] veth1_vlan: entered allmulticast mode [ 935.089520][T31071] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check. [ 935.266488][ T9] usb 1-1: USB disconnect, device number 81 [ 935.294718][T31078] netlink: 48 bytes leftover after parsing attributes in process `syz.5.11113'. [ 935.590460][T31091] netlink: 'syz.4.11118': attribute type 3 has an invalid length. [ 935.591885][T31092] loop5: detected capacity change from 0 to 256 [ 935.598787][T31091] netlink: 3 bytes leftover after parsing attributes in process `syz.4.11118'. [ 935.653677][T31092] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe0a6470d, utbl_chksum : 0xe619d30d) [ 935.742152][T31094] netlink: 'syz.4.11120': attribute type 21 has an invalid length. [ 935.750670][T31094] netlink: 144 bytes leftover after parsing attributes in process `syz.4.11120'. [ 935.792327][ T5850] usb 4-1: new high-speed USB device number 92 using dummy_hcd [ 936.004540][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 936.022757][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x4 has an invalid bInterval 0, changing to 7 [ 936.062243][ T5850] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.de [ 936.074344][T31103] loop5: detected capacity change from 0 to 1024 [ 936.090233][ T5850] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 936.117832][ T5850] usb 4-1: config 0 descriptor?? [ 936.352179][ T5850] ath6kl: Failed to submit usb control message: -71 [ 936.352194][T31115] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11128'. [ 936.352215][T31115] netlink: 60 bytes leftover after parsing attributes in process `syz.4.11128'. [ 936.358849][ T5850] ath6kl: unable to send the bmi data to the device: -71 [ 936.415410][T31115] netlink: 60 bytes leftover after parsing attributes in process `syz.4.11128'. [ 936.451812][T31119] bond0: (slave bridge_slave_1): Error: Device can not be enslaved while up [ 936.460989][ T5850] ath6kl: Unable to send get target info: -71 [ 936.496012][ T5850] ath6kl: Failed to init ath6kl core: -71 [ 936.522149][ T5850] ath6kl_usb: probe of 4-1:0.0 failed with error -71 [ 936.540446][ T5850] usb 4-1: USB disconnect, device number 92 [ 936.763073][T31128] autofs4:pid:31128:validate_dev_ioctl: invalid path supplied for cmd(0xc0189374) [ 937.068670][T31141] netlink: 'syz.0.11142': attribute type 1 has an invalid length. [ 937.222848][T31146] loop4: detected capacity change from 0 to 256 [ 937.303359][T31146] FAT-fs (loop4): Directory bread(block 64) failed [ 937.309948][T31146] FAT-fs (loop4): Directory bread(block 65) failed [ 937.354337][T31146] FAT-fs (loop4): Directory bread(block 66) failed [ 937.360927][T31146] FAT-fs (loop4): Directory bread(block 67) failed [ 937.376484][T31150] veth3: entered promiscuous mode [ 937.393408][T31150] veth3: entered allmulticast mode [ 937.412461][T31146] FAT-fs (loop4): Directory bread(block 68) failed [ 937.419083][T31146] FAT-fs (loop4): Directory bread(block 69) failed [ 937.446840][T31146] FAT-fs (loop4): Directory bread(block 70) failed [ 937.464671][T31146] FAT-fs (loop4): Directory bread(block 71) failed [ 937.480860][T31154] netlink: 'syz.0.11149': attribute type 5 has an invalid length. [ 937.481561][T31146] FAT-fs (loop4): Directory bread(block 72) failed [ 937.532136][T31146] FAT-fs (loop4): Directory bread(block 73) failed [ 937.634077][T31159] netlink: 'syz.3.11151': attribute type 4 has an invalid length. [ 937.671625][T31157] loop5: detected capacity change from 0 to 2048 [ 937.672095][T31159] netlink: 17 bytes leftover after parsing attributes in process `syz.3.11151'. [ 937.756040][T31157] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 938.140657][ T28] audit: type=1326 audit(1782414947.925:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31173 comm="syz.3.11158" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 938.239543][ T28] audit: type=1326 audit(1782414947.955:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31173 comm="syz.3.11158" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 938.327716][ T28] audit: type=1326 audit(1782414947.985:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31173 comm="syz.3.11158" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 938.431710][ T28] audit: type=1326 audit(1782414947.985:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31173 comm="syz.3.11158" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 938.496397][ T28] audit: type=1326 audit(1782414947.985:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31173 comm="syz.3.11158" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 939.027402][T31208] syz.5.11173: attempt to access beyond end of device [ 939.027402][T31208] nbd0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 939.211311][T31214] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551489) [ 939.257876][T31216] loop5: detected capacity change from 0 to 256 [ 939.271463][T31216] exfat: Deprecated parameter 'utf8' [ 939.279221][T31216] exfat: Deprecated parameter 'namecase' [ 939.287551][T31214] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535 [ 939.331864][T31216] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 939.582595][T31220] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11181'. [ 939.926080][T31204] loop0: detected capacity change from 0 to 32768 [ 939.973635][T31234] loop4: detected capacity change from 0 to 16 [ 940.004333][T31234] erofs: (device loop4): mounted with root inode @ nid 36. [ 940.315627][T31243] cgroup: noprefix used incorrectly [ 940.772511][T31260] x_tables: unsorted entry at hook 1 [ 940.942254][T14145] usb 4-1: new high-speed USB device number 93 using dummy_hcd [ 941.141243][T31274] overlayfs: missing 'lowerdir' [ 941.142114][T14145] usb 4-1: Using ep0 maxpacket: 16 [ 941.175500][T14145] usb 4-1: New USB device found, idVendor=08e4, idProduct=017f, bcdDevice= 0.40 [ 941.184998][T14145] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 941.219571][T14145] usb 4-1: Product: syz [ 941.224161][T14145] usb 4-1: Manufacturer: syz [ 941.230553][T14145] usb 4-1: SerialNumber: syz [ 941.242230][ T787] usb 1-1: new full-speed USB device number 82 using dummy_hcd [ 941.474169][ T787] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 941.497405][ T787] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 941.518052][T14145] usb 4-1: Can't get UAC3 power state for id 10 [ 941.519326][ T787] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 941.544526][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 941.553518][T14145] usb 4-1: BAAD SPEAKERPHONE c_chmask mismatch [ 941.574809][ T787] usb 1-1: SerialNumber: syz [ 941.662971][ T787] usb 1-1: 0:2 : does not exist [ 941.668029][T14145] snd-usb-audio: probe of 4-1:1.0 failed with error -22 [ 941.699898][T14145] usb 4-1: USB disconnect, device number 93 [ 941.764703][T31293] loop4: detected capacity change from 0 to 512 [ 941.779182][ T5876] udevd[5876]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 941.801491][ T28] audit: type=1326 audit(1782414951.585:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31294 comm="syz.5.11218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 941.838645][ T28] audit: type=1326 audit(1782414951.625:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31294 comm="syz.5.11218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 941.889629][ T28] audit: type=1326 audit(1782414951.655:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31294 comm="syz.5.11218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 941.974729][T31293] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 942.019171][T31293] ext4 filesystem being mounted at /1848/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 942.034426][ T28] audit: type=1326 audit(1782414951.655:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31294 comm="syz.5.11218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 942.069889][ T787] usb 1-1: USB disconnect, device number 82 [ 942.093002][ T28] audit: type=1326 audit(1782414951.655:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31294 comm="syz.5.11218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 942.118332][T31293] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.11217: corrupted xattr block 33: invalid header [ 942.181567][T31293] fscrypt (loop4, inode 15): Error -117 getting encryption context [ 942.280096][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 942.429992][T31308] xt_connbytes: Forcing CT accounting to be enabled [ 943.012230][T31329] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11232'. [ 943.024901][T31327] loop5: detected capacity change from 0 to 4096 [ 943.059694][T31327] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 943.196472][T31327] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 943.251481][T31335] loop0: detected capacity change from 0 to 16 [ 943.276262][T31327] 9pnet_fd: p9_fd_create_unix (31327): problem connecting socket: ./file0: -1 [ 943.277826][T31335] erofs: (device loop0): mounted with root inode @ nid 36. [ 943.381687][T31335] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535 [ 943.419339][T31335] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535 [ 943.459367][T31335] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 67108936 of nid 36 [ 943.627585][T31341] netlink: 'syz.4.11238': attribute type 7 has an invalid length. [ 943.643081][T31343] set match dimension is over the limit! [ 943.819811][T31346] netlink: 12 bytes leftover after parsing attributes in process `syz.5.11240'. [ 944.148569][T31359] loop0: detected capacity change from 0 to 64 [ 944.192622][T31359] syz.0.11247: attempt to access beyond end of device [ 944.192622][T31359] loop0: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 944.246900][T31364] x_tables: duplicate underflow at hook 2 [ 944.262571][T31359] Buffer I/O error on dev loop0, logical block 512, async page read [ 944.270670][T31359] syz.0.11247: attempt to access beyond end of device [ 944.270670][T31359] loop0: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 944.294113][T31359] Buffer I/O error on dev loop0, logical block 56576, async page read [ 944.688167][T31381] netlink: 'syz.0.11257': attribute type 2 has an invalid length. [ 945.200580][T31402] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11268'. [ 945.252569][T31402] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11268'. [ 945.261712][T31402] netlink: 'syz.4.11268': attribute type 6 has an invalid length. [ 946.142885][ T28] audit: type=1326 audit(1782414955.925:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.230093][ T28] audit: type=1326 audit(1782414955.925:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.304399][ T28] audit: type=1326 audit(1782414955.925:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.335471][ T28] audit: type=1326 audit(1782414955.925:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.372008][ T28] audit: type=1326 audit(1782414955.925:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.432360][ T28] audit: type=1326 audit(1782414955.925:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.499254][ T28] audit: type=1326 audit(1782414955.925:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.531341][ T28] audit: type=1326 audit(1782414955.925:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.572249][ T5850] usb 5-1: new full-speed USB device number 51 using dummy_hcd [ 946.583794][ T28] audit: type=1326 audit(1782414955.925:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.618243][ T28] audit: type=1326 audit(1782414955.925:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31441 comm="syz.0.11287" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x7fc00000 [ 946.765814][ T5850] usb 5-1: config 128 interface 0 has no altsetting 0 [ 946.782409][ T5850] usb 5-1: New USB device found, idVendor=13d8, idProduct=0020, bcdDevice=f7.31 [ 946.791510][ T5850] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 946.954476][T31462] netdevsim netdevsim5 netdevsim0: entered allmulticast mode [ 946.998526][T31462] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 947.063470][ T5850] comedi comedi5: could not set alternate setting 3 in high speed [ 947.071336][ T5850] usbduxsigma 5-1:128.0: driver 'usbduxsigma' failed to auto-configure device. [ 947.118272][ T5850] usbduxsigma: probe of 5-1:128.0 failed with error -71 [ 947.153448][ T5850] usb 5-1: USB disconnect, device number 51 [ 947.930842][T31472] loop4: detected capacity change from 0 to 4096 [ 948.002205][T31472] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 948.135161][T31476] loop5: detected capacity change from 0 to 256 [ 948.331603][T31476] FAT-fs (loop5): Directory bread(block 64) failed [ 948.350660][T31476] FAT-fs (loop5): Directory bread(block 65) failed [ 948.393249][T31476] FAT-fs (loop5): Directory bread(block 66) failed [ 948.399829][T31476] FAT-fs (loop5): Directory bread(block 67) failed [ 948.422321][T31476] FAT-fs (loop5): Directory bread(block 68) failed [ 948.428941][T31476] FAT-fs (loop5): Directory bread(block 69) failed [ 948.466600][T31476] FAT-fs (loop5): Directory bread(block 70) failed [ 948.492070][T31476] FAT-fs (loop5): Directory bread(block 71) failed [ 948.539189][T31476] FAT-fs (loop5): Directory bread(block 72) failed [ 948.563490][T31476] FAT-fs (loop5): Directory bread(block 73) failed [ 949.207861][T31502] netlink: 28 bytes leftover after parsing attributes in process `syz.5.11316'. [ 949.228028][T31502] netlink: 28 bytes leftover after parsing attributes in process `syz.5.11316'. [ 949.251572][T31502] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11316'. [ 949.282680][T31504] loop0: detected capacity change from 0 to 2048 [ 949.325291][T31504] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 949.332216][ T1205] usb 4-1: new full-speed USB device number 94 using dummy_hcd [ 949.351767][T31504] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 949.567577][ T1205] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 949.596361][ T1205] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 2048, setting to 64 [ 949.638050][ T1205] usb 4-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00 [ 949.669909][ T1205] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 949.692183][T31517] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11323'. [ 949.716156][ T1205] usb 4-1: config 0 descriptor?? [ 949.902394][ T1205] rc_core: IR keymap rc-xbox-dvd not found [ 949.908308][ T1205] Registered IR keymap rc-empty [ 949.943109][ T1205] rc rc0: Xbox DVD USB Remote Control(045e,0284) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0 [ 949.995021][ T1205] input: Xbox DVD USB Remote Control(045e,0284) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input64 [ 950.106859][ T1205] usb 4-1: USB disconnect, device number 94 [ 950.112926][ C1] xbox_remote 4-1:0.0: xbox_remote_irq_in: usb_submit_urb()=-19 [ 950.363051][T31541] xt_TPROXY: Can be used only with -p tcp or -p udp [ 950.567342][T31549] loop0: detected capacity change from 0 to 2048 [ 950.608275][T31551] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 950.662413][T31553] loop4: detected capacity change from 0 to 64 [ 951.204743][T31572] netlink: 40 bytes leftover after parsing attributes in process `syz.4.11349'. [ 951.792807][T31592] ./file0: Can't open blockdev [ 952.024413][T31604] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 952.048980][T31600] loop5: detected capacity change from 0 to 4096 [ 952.086719][T31600] __ntfs_error: 2266 callbacks suppressed [ 952.086738][T31600] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 952.114265][T31600] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT. Will not be able to remount read-write. Run ntfsfix and/or chkdsk. [ 952.151827][T31600] ntfs: volume version 0.0. [ 952.283433][T31608] veth1_vlan: entered promiscuous mode [ 952.311615][T31608] veth1_vlan: left promiscuous mode [ 952.493626][T31615] openvswitch: netlink: Actions may not be safe on all matching packets [ 952.938458][T31627] loop5: detected capacity change from 0 to 4096 [ 952.976118][T31627] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 954.071670][T31637] loop0: detected capacity change from 0 to 40427 [ 954.114650][T31637] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 954.125728][T31656] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11389'. [ 954.142344][T31637] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 954.155833][T31656] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 954.170451][T31637] F2FS-fs (loop0): invalid crc value [ 954.365402][T31665] overlayfs: unescaped trailing colons in lowerdir mount option. [ 954.546489][T31637] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 954.555445][T31637] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 955.178933][T31685] loop4: detected capacity change from 0 to 4096 [ 955.202759][T31685] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 955.288596][T31690] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11404'. [ 956.332328][ T9] usb 6-1: new low-speed USB device number 28 using dummy_hcd [ 956.527843][ T9] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 956.548826][ T9] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 956.589483][ T9] usb 6-1: config 1 interface 0 has no altsetting 0 [ 956.605140][ T9] usb 6-1: string descriptor 0 read error: -22 [ 956.611746][ T9] usb 6-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 956.650376][ T9] usb 6-1: New USB device strings: Mfr=1, Product=3, SerialNumber=3 [ 956.695509][ T9] usb 6-1: 0:2 : does not exist [ 956.746949][ T9] usb-storage 6-1:1.1: USB Mass Storage device detected [ 957.123276][ T9] us122l: couldn't allocate write buffer [ 957.152590][ T9] snd-usb-us122l: probe of 6-1:1.1 failed with error -22 [ 957.186447][ T9] usb 6-1: USB disconnect, device number 28 [ 957.548613][T31773] openvswitch: netlink: Actions may not be safe on all matching packets [ 957.707587][ T28] audit: type=1400 audit(1782414967.495:2809): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=31778 comm="syz.0.11447" [ 957.849801][T31785] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11451'. [ 957.922954][T31787] xt_NFQUEUE: number of queues (62232) out of range (got 67565) [ 958.215281][T31799] loop5: detected capacity change from 0 to 128 [ 958.419426][T31807] netlink: 'syz.0.11461': attribute type 21 has an invalid length. [ 958.447797][T31807] netlink: 100 bytes leftover after parsing attributes in process `syz.0.11461'. [ 958.493733][T31810] loop4: detected capacity change from 0 to 16 [ 958.538537][T31810] erofs: (device loop4): mounted with root inode @ nid 36. [ 959.147738][T31834] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11474'. [ 959.259042][T31836] loop5: detected capacity change from 0 to 2048 [ 959.305068][T31836] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 959.356049][T31836] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 960.121819][T31872] loop4: detected capacity change from 0 to 256 [ 960.379611][T31884] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11498'. [ 960.591508][T31887] bond3: entered promiscuous mode [ 960.599866][T31893] ieee802154 phy1 wpan1: encryption failed: -22 [ 960.903412][T31903] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11508'. [ 961.330395][T31922] netlink: 24 bytes leftover after parsing attributes in process `syz.0.11518'. [ 962.424852][T31969] netlink: 'syz.4.11540': attribute type 21 has an invalid length. [ 962.449971][T31969] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11540'. [ 963.325040][T31977] loop4: detected capacity change from 0 to 32768 [ 963.368611][T31977] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 963.406951][T31977] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 963.452417][ T1205] usb 6-1: new full-speed USB device number 29 using dummy_hcd [ 963.545487][T31977] XFS (loop4): Ending clean mount [ 963.623832][T13808] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 963.673560][ T1205] usb 6-1: config 0 has an invalid interface number: 143 but max is 0 [ 963.692012][ T1205] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 963.705327][ T1205] usb 6-1: config 0 has no interface number 0 [ 963.718543][ T1205] usb 6-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=7a.5a [ 963.727969][ T1205] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 963.746482][ T1205] usb 6-1: Product: syz [ 963.750701][ T1205] usb 6-1: Manufacturer: syz [ 963.779217][ T1205] usb 6-1: SerialNumber: syz [ 963.822325][ T1205] usb 6-1: config 0 descriptor?? [ 964.094002][ T9] usb 6-1: USB disconnect, device number 29 [ 964.349702][T32026] loop0: detected capacity change from 0 to 8192 [ 964.422035][T32026] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 964.492055][ T1205] usb 5-1: new full-speed USB device number 52 using dummy_hcd [ 964.592735][ T5967] usb 4-1: new high-speed USB device number 95 using dummy_hcd [ 964.688550][ T1205] usb 5-1: config 127 has too many interfaces: 129, using maximum allowed: 32 [ 964.712652][ T1205] usb 5-1: config 127 has an invalid interface descriptor of length 8, skipping [ 964.731810][ T1205] usb 5-1: config 127 has an invalid descriptor of length 0, skipping remainder of the config [ 964.762265][ T1205] usb 5-1: config 127 has 0 interfaces, different from the descriptor's value: 129 [ 964.782978][ T5967] usb 4-1: Using ep0 maxpacket: 16 [ 964.790722][ T1205] usb 5-1: New USB device found, idVendor=0499, idProduct=101d, bcdDevice=e2.ad [ 964.803996][ T1205] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 964.813016][ T1205] usb 5-1: Product: syz [ 964.817748][ T5967] usb 4-1: config 254 has an invalid interface number: 235 but max is 0 [ 964.830747][ T1205] usb 5-1: Manufacturer: syz [ 964.835826][ T5967] usb 4-1: config 254 has no interface number 0 [ 964.851794][ T1205] usb 5-1: SerialNumber: syz [ 964.856709][ T5967] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32 [ 964.872386][ T5967] usb 4-1: config 254 interface 235 has no altsetting 0 [ 964.892333][ T5967] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1 [ 964.901696][ T5967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=5 [ 964.922069][ T5967] usb 4-1: Product: syz [ 964.931472][ T5967] usb 4-1: Manufacturer: syz [ 964.946790][ T5967] usb 4-1: SerialNumber: syz [ 964.964800][T32029] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 965.149625][ T1205] usb 5-1: USB disconnect, device number 52 [ 965.192704][ T5967] usbtest 4-1:254.235: couldn't get endpoints, -71 [ 965.208572][ T5967] usbtest: probe of 4-1:254.235 failed with error -71 [ 965.222108][ T5967] usb 4-1: USB disconnect, device number 95 [ 966.084700][T32084] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11592'. [ 966.142980][T32086] autofs4:pid:32086:autofs_fill_super: called with bogus options [ 966.540612][T32106] netlink: 148 bytes leftover after parsing attributes in process `syz.5.11601'. [ 966.604953][T32106] netlink: 148 bytes leftover after parsing attributes in process `syz.5.11601'. [ 967.312040][ T9] usb 1-1: new high-speed USB device number 83 using dummy_hcd [ 967.344301][T32138] loop4: detected capacity change from 0 to 8 [ 967.373549][T32138] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 967.423408][ T5775] udevd[5775]: incorrect cramfs checksum on /dev/loop4 [ 967.425421][T32138] cramfs: Error -5 while decompressing! [ 967.440508][T32138] cramfs: ffffffff973f5328(26)->ffff8880556cd000(4096) [ 967.454473][T32138] cramfs: Error -3 while decompressing! [ 967.460070][T32138] cramfs: ffffffff973f5342(26)->ffff88805d32b000(4096) [ 967.468383][T32138] cramfs: Error -3 while decompressing! [ 967.504316][T32138] cramfs: ffffffff973f535c(16)->ffff888058eec000(4096) [ 967.523332][ T9] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 967.537299][ T9] usb 1-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3 [ 967.546307][T32138] cramfs: Error -5 while decompressing! [ 967.554516][T32138] cramfs: ffffffff973f5328(26)->ffff8880556cd000(4096) [ 967.561596][ T9] usb 1-1: Product: syz [ 967.566933][ T9] usb 1-1: Manufacturer: syz [ 967.572650][ T9] usb 1-1: SerialNumber: syz [ 967.598836][ T9] usb 1-1: config 0 descriptor?? [ 967.627187][ T9] ch341 1-1:0.0: ch341-uart converter detected [ 967.722492][T32148] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11621'. [ 967.753384][T32148] netlink: 56 bytes leftover after parsing attributes in process `syz.5.11621'. [ 968.057837][ T9] usb 1-1: failed to send control message: -71 [ 968.072083][ T9] ch341-uart: probe of ttyUSB0 failed with error -71 [ 968.093350][ T9] usb 1-1: USB disconnect, device number 83 [ 968.100471][ T9] ch341 1-1:0.0: device disconnected [ 968.219370][T32166] usb usb8: usbfs: process 32166 (syz.3.11629) did not claim interface 0 before use [ 968.449597][T32174] loop4: detected capacity change from 0 to 1764 [ 968.509204][T32174] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 968.750490][T32184] netlink: 'syz.3.11639': attribute type 21 has an invalid length. [ 968.871706][T32190] SET target dimension over the limit! [ 970.051103][T32234] loop4: detected capacity change from 0 to 4096 [ 970.073264][T32234] EXT4-fs: Ignoring removed nobh option [ 970.082182][T32234] EXT4-fs: Ignoring removed nobh option [ 970.166368][T32234] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0082] [ 970.216255][T32234] System zones: 0-5 [ 970.259158][T32234] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 970.260529][T32246] loop0: detected capacity change from 0 to 4096 [ 970.294285][T32246] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 970.485312][T32246] ntfs3: loop0: failed to convert "c46c" to iso8859-2 [ 970.509528][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 970.675439][T32254] netlink: 'syz.5.11673': attribute type 21 has an invalid length. [ 970.675489][T32255] netlink: 'syz.3.11674': attribute type 1 has an invalid length. [ 970.922157][T32261] netlink: 'syz.3.11676': attribute type 1 has an invalid length. [ 970.946337][T32261] netlink: 220 bytes leftover after parsing attributes in process `syz.3.11676'. [ 971.673851][T32289] loop0: detected capacity change from 0 to 128 [ 971.705762][T32289] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0002] [ 971.722927][T32289] System zones: 1-3, 19-19, 35-36 [ 971.734465][T32289] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 971.762388][T32289] ext4 filesystem being mounted at /3004/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 971.793899][T32289] EXT4-fs warning (device loop0): verify_group_input:169: Last group not full [ 971.868482][ T5784] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 972.090903][T32303] kernel read not supported for file /!selinuxwk1ÐmÃ9Éž*T“ýâ‘ïª#j—¼ÞYÌÅmVËvm(pÉ-QZ#Ò{„¿ (pid: 32303 comm: syz.5.11696) [ 972.433229][T32319] xt_CT: You must specify a L4 protocol and not use inversions on it [ 972.713127][T32331] tmpfs: Bad value for 'mpol' [ 972.866964][T32335] netlink: 56 bytes leftover after parsing attributes in process `syz.4.11712'. [ 972.890308][T32338] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11714'. [ 972.899615][T32335] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11712'. [ 972.899682][T32335] netlink: 31 bytes leftover after parsing attributes in process `syz.4.11712'. [ 972.899699][T32335] netlink: 'syz.4.11712': attribute type 2 has an invalid length. [ 972.899714][T32335] netlink: 31 bytes leftover after parsing attributes in process `syz.4.11712'. [ 973.084007][T32341] loop5: detected capacity change from 0 to 4096 [ 973.118508][T32341] ntfs: (device loop5): load_attribute_list(): Cannot read attribute list since runlist is missing. [ 973.153095][T32341] ntfs: (device loop5): ntfs_read_locked_inode(): Failed to load attribute list attribute. [ 973.190960][T32341] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 973.227185][T32341] ntfs: (device loop5): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 973.302431][T32341] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 973.336250][T32341] ntfs: volume version 3.1. [ 973.340992][T32341] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Missing length entry in mapping pairs array. [ 973.387211][T32341] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Invalid length in mapping pairs array. [ 973.442110][T32341] ntfs: (device loop5): ntfs_read_block(): Failed to read from inode 0x2, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 973.501646][T32355] loop4: detected capacity change from 0 to 8 [ 973.510290][T32341] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Missing length entry in mapping pairs array. [ 973.555438][T32341] ntfs: (device loop5): ntfs_mapping_pairs_decompress(): Invalid length in mapping pairs array. [ 974.252847][T32377] No such timeout policy "syz0" [ 974.409638][T32381] loop5: detected capacity change from 0 to 1024 [ 974.458619][T32381] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 974.496119][T32381] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 974.946372][T32393] loop4: detected capacity change from 0 to 8192 [ 974.974229][T32393] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 975.075001][T32393] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 1046) [ 975.075154][T32393] FAT-fs (loop4): Filesystem has been set read-only [ 975.141497][T13808] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 1046) [ 975.762583][T32429] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11759'. [ 976.001216][T32441] netlink: 'syz.3.11765': attribute type 1 has an invalid length. [ 976.062566][ T787] usb 1-1: new high-speed USB device number 84 using dummy_hcd [ 976.255817][ T787] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 976.266100][ T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 976.309593][ T787] usb 1-1: Product: syz [ 976.318813][ T787] usb 1-1: Manufacturer: syz [ 976.336747][ T787] usb 1-1: SerialNumber: syz [ 976.358130][ T787] usb 1-1: config 0 descriptor?? [ 976.379285][ T787] ch341 1-1:0.0: ch341-uart converter detected [ 976.496148][T32457] loop4: detected capacity change from 0 to 64 [ 976.600107][ T787] usb 1-1: failed to receive control message: -121 [ 976.626495][ T787] ch341-uart: probe of ttyUSB0 failed with error -121 [ 976.843926][ T787] usb 1-1: USB disconnect, device number 84 [ 976.851607][ T787] ch341 1-1:0.0: device disconnected [ 976.925942][T32463] loop5: detected capacity change from 0 to 8192 [ 976.960531][T32463] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 977.010102][T32463] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal [ 977.020217][T32463] REISERFS (device loop5): using ordered data mode [ 977.030825][T32463] reiserfs: using flush barriers [ 977.040802][T32463] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 977.090606][T32463] REISERFS (device loop5): checking transaction log (loop5) [ 977.137140][T32463] REISERFS (device loop5): Using r5 hash to sort names [ 977.615799][T32488] ieee802154 phy1 wpan1: encryption failed: -90 [ 977.710184][T32490] block device autoloading is deprecated and will be removed. [ 977.799291][T32494] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11791'. [ 977.822362][T32494] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11791'. [ 978.086497][T32504] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 978.129713][T32502] loop5: detected capacity change from 0 to 4096 [ 978.150407][T32502] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 978.194270][T32502] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 978.207350][T32502] ntfs3: loop5: mft corrupted [ 978.221663][T32502] ntfs3: loop5: Failed to load $Extend (-22). [ 978.234369][T32502] ntfs3: loop5: Failed to initialize $Extend. [ 978.402340][T32512] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11799'. [ 978.882159][T32528] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 51000004 out of range (51000..2150000) [ 978.933584][T32531] loop4: detected capacity change from 0 to 64 [ 979.370996][T32547] loop5: detected capacity change from 0 to 512 [ 979.417115][T32547] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 979.459900][T32547] EXT4-fs (loop5): orphan cleanup on readonly fs [ 979.505188][T32547] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:512: comm syz.5.11816: Block bitmap for bg 0 marked uninitialized [ 979.637409][T32547] EXT4-fs (loop5): Remounting filesystem read-only [ 979.662581][T32547] EXT4-fs (loop5): 1 orphan inode deleted [ 979.669665][T32547] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 979.682314][ T1205] usb 4-1: new high-speed USB device number 96 using dummy_hcd [ 979.772536][T32547] loop5: Can't mount, would change RO state [ 979.873485][T16099] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 979.892175][ T1205] usb 4-1: Using ep0 maxpacket: 32 [ 979.902714][ T1205] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 979.919772][ T1205] usb 4-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0 [ 979.988056][ T1205] usb 4-1: config 0 interface 0 has no altsetting 0 [ 980.016001][ T1205] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 980.035633][ T1205] usb 4-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3 [ 980.059198][ T1205] usb 4-1: Product: syz [ 980.066100][ T1205] usb 4-1: Manufacturer: syz [ 980.088466][ T1205] usb 4-1: SerialNumber: syz [ 980.103079][ T1205] usb 4-1: config 0 descriptor?? [ 980.219992][T32580] loop5: detected capacity change from 0 to 164 [ 980.544524][ T1205] gs_usb 4-1:0.0: Couldn't get device config: (err=-71) [ 980.561098][ T1205] gs_usb: probe of 4-1:0.0 failed with error -71 [ 980.577172][ T1205] usb 4-1: USB disconnect, device number 96 [ 981.064304][T32610] netlink: 'syz.4.11847': attribute type 10 has an invalid length. [ 981.072694][T32610] netlink: 40 bytes leftover after parsing attributes in process `syz.4.11847'. [ 981.092156][T32610] netlink: 'syz.4.11847': attribute type 10 has an invalid length. [ 981.106949][T32610] netlink: 40 bytes leftover after parsing attributes in process `syz.4.11847'. [ 981.342218][T32622] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 51000004 out of range (51000..2150000) [ 981.475125][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 981.475141][ T28] audit: type=1326 audit(1782414991.265:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32625 comm="syz.0.11853" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdbc9b9ce59 code=0x0 [ 981.498115][T32629] netlink: 'syz.5.11854': attribute type 5 has an invalid length. [ 981.832596][T32641] netlink: 'syz.0.11861': attribute type 12 has an invalid length. [ 981.852620][T32641] netlink: 132 bytes leftover after parsing attributes in process `syz.0.11861'. [ 982.099694][T32653] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 982.536439][T32667] loop0: detected capacity change from 0 to 1024 [ 983.032215][ C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 983.072108][ T5967] usb 5-1: new high-speed USB device number 53 using dummy_hcd [ 983.162313][T32689] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11885'. [ 983.189568][T32689] netlink: 68 bytes leftover after parsing attributes in process `syz.3.11885'. [ 983.203807][T32689] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11885'. [ 983.227318][T32689] netlink: 68 bytes leftover after parsing attributes in process `syz.3.11885'. [ 983.252105][ T5967] usb 5-1: Using ep0 maxpacket: 16 [ 983.294473][ T5967] usb 5-1: config 0 has no interfaces? [ 983.303545][ T5967] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 983.332677][ T5967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 983.340724][ T5967] usb 5-1: Product: syz [ 983.375467][ T5967] usb 5-1: Manufacturer: syz [ 983.380121][ T5967] usb 5-1: SerialNumber: syz [ 983.406499][ T5967] r8152-cfgselector 5-1: config 0 descriptor?? [ 983.645115][ T5967] usbip-host 5-1: 5-1 is not in match_busid table... skip! [ 983.692804][T13786] usb 5-1: config 0 descriptor?? [ 983.801223][T32707] loop0: detected capacity change from 0 to 4096 [ 983.809861][T32707] ntfs: (device loop0): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 983.862386][ T1205] usb 4-1: new full-speed USB device number 97 using dummy_hcd [ 983.889500][T13786] usb 5-1: can't set config #0, error -71 [ 983.890281][ T5967] usb 5-1: USB disconnect, device number 53 [ 983.942342][T32707] ntfs: volume version 3.1. [ 984.028785][T32707] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 984.067180][T32707] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 984.095012][ T1205] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 984.106078][T32707] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to map page. [ 984.132475][T32707] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5). [ 984.137033][ T1205] usb 4-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39 [ 984.163893][ T1205] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 984.165045][T32707] ntfs: (device loop0): ntfs_truncate(): Cannot truncate inode 0x43, attribute type 0x80, because the conversion from resident to non-resident attribute failed with error code -5. [ 984.177303][ T1205] usb 4-1: Product: syz [ 984.214836][T32717] SET target dimension over the limit! [ 984.219899][ T1205] usb 4-1: Manufacturer: syz [ 984.236905][ T1205] usb 4-1: SerialNumber: syz [ 984.245500][ T1205] usb 4-1: config 0 descriptor?? [ 984.264054][ T1205] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b [ 984.282906][ T5784] ntfs: (device loop0): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 984.621479][T32729] loop0: detected capacity change from 0 to 512 [ 984.650835][T32729] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 984.687424][T32729] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 984.690722][ T1205] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 984.708170][ T1205] gspca_pac7302: probe of 4-1:0.0 failed with error -71 [ 984.723140][T32729] System zones: 0-1, 15-15, 18-18, 34-34 [ 984.732259][ T1205] usb 4-1: USB disconnect, device number 97 [ 984.756862][T32729] EXT4-fs (loop0): orphan cleanup on readonly fs [ 984.780744][T32729] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 984.807397][T32729] EXT4-fs warning (device loop0): ext4_enable_quotas:7188: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 984.827713][T32729] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 984.852717][T32729] EXT4-fs error (device loop0): ext4_orphan_get:1430: comm syz.0.11905: bad orphan inode 16 [ 984.863170][ T9] usb 5-1: new high-speed USB device number 54 using dummy_hcd [ 984.889129][T32729] ext4_test_bit(bit=15, block=18) = 1 [ 984.905709][T32729] is_bad_inode(inode)=0 [ 984.910230][T32729] NEXT_ORPHAN(inode)=0 [ 984.916089][T32729] max_ino=32 [ 984.919358][T32729] i_nlink=2 [ 984.927593][T32729] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 984.959349][T32729] fscrypt (loop0, inode 16): Error -61 getting encryption context [ 984.987763][T32723] loop5: detected capacity change from 0 to 32768 [ 985.036920][T32723] blkno = 8ed2c, nblocks = 1 [ 985.049037][T32723] ERROR: (device loop5): dbFree: block to be freed is outside the map [ 985.049037][T32723] [ 985.052968][ T9] usb 5-1: Using ep0 maxpacket: 16 [ 985.064141][T32723] ERROR: (device loop5): remounting filesystem as read-only [ 985.065321][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 985.078775][T32723] ialloc: diAlloc returned -17! [ 985.085977][ T9] usb 5-1: unable to get BOS descriptor or descriptor too short [ 985.153938][ T9] usb 5-1: config 198 has an invalid interface number: 59 but max is 0 [ 985.187163][ T9] usb 5-1: config 198 has no interface number 0 [ 985.205505][ T9] usb 5-1: config 198 interface 59 altsetting 6 endpoint 0xC has invalid maxpacket 1024, setting to 64 [ 985.234057][ T9] usb 5-1: config 198 interface 59 altsetting 6 endpoint 0xB has invalid maxpacket 1024, setting to 64 [ 985.260264][ T9] usb 5-1: config 198 interface 59 has no altsetting 0 [ 985.280373][ T9] usb 5-1: New USB device found, idVendor=0867, idProduct=9812, bcdDevice=58.84 [ 985.312047][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 985.330355][ T9] usb 5-1: Product: syz [ 985.340499][ T9] usb 5-1: Manufacturer: syz [ 985.362533][ T9] usb 5-1: SerialNumber: syz [ 985.684026][ T9] comedi comedi5: Endpoint has wrong direction [ 985.715785][ T9] dt9812 5-1:198.59: driver 'dt9812' failed to auto-configure device. [ 985.776237][ T9] usb 5-1: USB disconnect, device number 54 [ 986.502143][T32766] netlink: 'syz.5.11923': attribute type 7 has an invalid length. [ 986.510017][T32766] netlink: 140 bytes leftover after parsing attributes in process `syz.5.11923'. [ 987.661898][ T309] loop4: detected capacity change from 0 to 32768 [ 987.688945][ T309] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 987.869617][ T5772] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 987.976684][ T348] loop4: detected capacity change from 0 to 64 [ 988.055573][ T348] syz.4.11947: attempt to access beyond end of device [ 988.055573][ T348] loop4: rw=2049, sector=268435468, nr_sectors = 2 limit=64 [ 988.124666][ T348] Buffer I/O error on dev loop4, logical block 134217734, lost async page write [ 988.501695][ T363] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 988.534428][ T365] netlink: 12 bytes leftover after parsing attributes in process `syz.5.11955'. [ 989.086695][ T387] binfmt_misc: register: failed to install interpreter file ./file0 [ 989.159139][ T390] netlink: 'syz.4.11967': attribute type 28 has an invalid length. [ 989.198376][ T390] netlink: 'syz.4.11967': attribute type 29 has an invalid length. [ 989.213019][ T390] netlink: 132 bytes leftover after parsing attributes in process `syz.4.11967'. [ 989.753269][ T417] netlink: 'syz.4.11981': attribute type 21 has an invalid length. [ 990.290602][ T431] lo: entered promiscuous mode [ 990.677603][ T444] loop0: detected capacity change from 0 to 256 [ 990.942281][ T1205] usb 4-1: new full-speed USB device number 98 using dummy_hcd [ 990.956045][ T452] loop5: detected capacity change from 0 to 2048 [ 991.029392][ T452] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 991.136629][ T1205] usb 4-1: config 246 has an invalid descriptor of length 0, skipping remainder of the config [ 991.212659][ T1205] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 9.63 [ 991.228193][ T1205] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 991.235418][T16099] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 991.251904][ T1205] usb 4-1: Product: syz [ 991.258072][ T1205] usb 4-1: Manufacturer: syz [ 991.268603][ T1205] usb 4-1: SerialNumber: syz [ 991.391056][ T469] netlink: 'syz.4.12006': attribute type 27 has an invalid length. [ 991.440372][ T469] netlink: 'syz.4.12006': attribute type 3 has an invalid length. [ 991.449633][ T469] netlink: 132 bytes leftover after parsing attributes in process `syz.4.12006'. [ 991.560751][ T1205] usb 4-1: Cannot retrieve CPort count: -71 [ 991.572161][ T1205] usb 4-1: Cannot retrieve CPort count: -71 [ 991.588070][ T475] loop0: detected capacity change from 0 to 512 [ 991.588365][ T1205] es2_ap_driver: probe of 4-1:246.0 failed with error -71 [ 991.614854][ T1205] usb 4-1: USB disconnect, device number 98 [ 991.638430][ T475] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 991.691323][ T475] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 991.705295][ T475] ext4 filesystem being mounted at /3097/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 991.720989][ T5967] usb 6-1: new high-speed USB device number 30 using dummy_hcd [ 991.776106][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 991.932121][ T5967] usb 6-1: Using ep0 maxpacket: 16 [ 991.942096][ T5967] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 991.957340][ T5967] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 991.966965][ T5967] usb 6-1: Product: syz [ 991.971386][ T5967] usb 6-1: Manufacturer: syz [ 991.976931][ T5967] usb 6-1: SerialNumber: syz [ 991.984014][ T5967] r8152-cfgselector 6-1: config 0 descriptor?? [ 992.210374][ T5967] usbip-host 6-1: 6-1 is not in match_busid table... skip! [ 992.412993][ T5967] usb 6-1: USB disconnect, device number 30 [ 992.868676][ T514] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 993.287379][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 993.345311][ T530] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.12034'. [ 993.390378][ T533] loop0: detected capacity change from 0 to 2048 [ 993.445227][ T533] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 993.481862][ T533] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 993.525200][ T533] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 994.185658][ T555] loop0: detected capacity change from 0 to 256 [ 994.213114][ T555] exfat: Deprecated parameter 'utf8' [ 994.231496][ T555] exfat: Deprecated parameter 'utf8' [ 994.249223][ T555] exfat: Deprecated parameter 'utf8' [ 994.331683][ T535] loop4: detected capacity change from 0 to 32768 [ 994.370848][ T555] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 994.415494][ T535] JBD2: Ignoring recovery information on journal [ 994.540709][ T567] infiniband syz2: set down [ 994.552602][ T567] netlink: 'syz.5.12050': attribute type 3 has an invalid length. [ 994.578472][ T535] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 994.607501][ T567] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check. [ 994.962949][T13808] ocfs2: Unmounting device (7,4) on (node local) [ 995.590330][ T602] nvme_fabrics: unknown parameter or missing value ']' in ctrl creation request [ 995.807282][ T613] Scaler: ================= START STATUS ================= [ 995.815520][ T613] Scaler: ================== END STATUS ================== [ 996.018832][ T620] loop4: detected capacity change from 0 to 1024 [ 996.122874][ T620] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 996.167712][ T620] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 996.220980][ T620] EXT4-fs error (device loop4): ext4_get_journal_inode:5820: inode #32: comm syz.4.12073: iget: special inode unallocated [ 996.303023][ T620] EXT4-fs (loop4): no journal found [ 996.308280][ T620] EXT4-fs (loop4): can't get journal size [ 996.360090][ T620] EXT4-fs (loop4): filesystem is read-only [ 996.403451][ T620] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 996.515282][ T640] netlink: 'syz.0.12084': attribute type 3 has an invalid length. [ 996.525480][ T639] netlink: 16 bytes leftover after parsing attributes in process `syz.5.12082'. [ 996.530708][ T640] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check. [ 996.582865][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 996.661897][ T642] loop0: detected capacity change from 0 to 64 [ 997.055555][ T5967] usb 6-1: new high-speed USB device number 31 using dummy_hcd [ 997.277608][ T5967] usb 6-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 997.301977][ T5967] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 997.327552][ T5967] usb 6-1: Product: syz [ 997.338100][ T5967] usb 6-1: Manufacturer: syz [ 997.338906][ T668] xt_policy: too many policy elements [ 997.343865][ T5967] usb 6-1: SerialNumber: syz [ 997.389125][ T5967] usb 6-1: config 0 descriptor?? [ 997.430745][ T5967] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 997.678488][ T682] netlink: 'syz.4.12104': attribute type 6 has an invalid length. [ 997.685425][ T681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12105'. [ 997.858182][ T5967] usb 6-1: USB disconnect, device number 31 [ 998.476241][ T709] bond4: entered allmulticast mode [ 998.577336][ T28] audit: type=1400 audit(1782415008.365:2825): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA009F5 pid=715 comm="syz.5.12120" [ 998.736544][ T725] loop0: detected capacity change from 0 to 64 [ 999.274651][ T746] netlink: 112 bytes leftover after parsing attributes in process `syz.4.12136'. [ 999.290405][ T746] netlink: 232 bytes leftover after parsing attributes in process `syz.4.12136'. [ 999.492218][T14145] usb 6-1: new high-speed USB device number 32 using dummy_hcd [ 999.643168][ T762] loop0: detected capacity change from 0 to 512 [ 999.663474][ T762] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 999.722122][T14145] usb 6-1: Using ep0 maxpacket: 16 [ 999.737096][T14145] usb 6-1: unable to get BOS descriptor or descriptor too short [ 999.749557][T14145] usb 6-1: config 8 has an invalid interface number: 254 but max is 0 [ 999.764458][ T762] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 999.782100][T14145] usb 6-1: config 8 has no interface number 0 [ 999.788966][T14145] usb 6-1: config 8 interface 254 has no altsetting 0 [ 999.820859][T14145] usb 6-1: New USB device found, idVendor=0c72, idProduct=0013, bcdDevice=4e.f5 [ 999.840376][T14145] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 999.863210][T14145] usb 6-1: Product: syz [ 999.868536][T14145] usb 6-1: Manufacturer: syz [ 999.902459][T14145] usb 6-1: SerialNumber: syz [ 1000.178534][T14145] usb 6-1: USB disconnect, device number 32 [ 1000.234372][ T777] loop4: detected capacity change from 0 to 256 [ 1000.241683][ T777] exfat: Deprecated parameter 'utf8' [ 1000.269174][ T777] exfat: Deprecated parameter 'namecase' [ 1000.282366][ T777] exfat: Deprecated parameter 'namecase' [ 1000.293261][ T777] exfat: Deprecated parameter 'utf8' [ 1000.311635][ T777] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 1000.408177][ T28] audit: type=1800 audit(1782415010.195:2826): pid=777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.12151" name="file1" dev="loop4" ino=1048677 res=0 errno=0 [ 1000.818917][ T800] loop4: detected capacity change from 0 to 256 [ 1000.977544][ T800] FAT-fs (loop4): Directory bread(block 64) failed [ 1000.992413][ T800] FAT-fs (loop4): Directory bread(block 65) failed [ 1000.999251][ T800] FAT-fs (loop4): Directory bread(block 66) failed [ 1001.032553][ T800] FAT-fs (loop4): Directory bread(block 67) failed [ 1001.039335][ T800] FAT-fs (loop4): Directory bread(block 68) failed [ 1001.092164][ T800] FAT-fs (loop4): Directory bread(block 69) failed [ 1001.098849][ T800] FAT-fs (loop4): Directory bread(block 70) failed [ 1001.126341][ T800] FAT-fs (loop4): Directory bread(block 71) failed [ 1001.136992][ T800] FAT-fs (loop4): Directory bread(block 72) failed [ 1001.151268][ T800] FAT-fs (loop4): Directory bread(block 73) failed [ 1001.412323][ T819] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12171'. [ 1001.698819][ T830] netlink: 36 bytes leftover after parsing attributes in process `syz.5.12178'. [ 1001.721245][ T830] netlink: 56 bytes leftover after parsing attributes in process `syz.5.12178'. [ 1001.744410][ T830] netlink: 44 bytes leftover after parsing attributes in process `syz.5.12178'. [ 1001.782207][ T830] netlink: 40 bytes leftover after parsing attributes in process `syz.5.12178'. [ 1002.299014][ T856] loop4: detected capacity change from 0 to 512 [ 1002.448516][ T859] netlink: 'syz.5.12189': attribute type 1 has an invalid length. [ 1002.504593][ T859] netlink: 'syz.5.12189': attribute type 2 has an invalid length. [ 1002.578360][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1002.593765][ T870] loop0: detected capacity change from 0 to 4096 [ 1002.635992][ T856] EXT4-fs error (device loop4): ext4_dirty_inode:6143: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1002.680366][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1002.712756][ T856] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1002.743954][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1002.768430][ T870] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1002.792427][ T856] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 1002.814681][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1002.828061][ T870] ntfs3: loop0: Failed to load $Extend (-22). [ 1002.835356][ T856] EXT4-fs error (device loop4): ext4_truncate:4301: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1002.850178][ T856] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 1002.859364][ T870] ntfs3: loop0: Failed to initialize $Extend. [ 1002.924964][ T856] EXT4-fs (loop4): 1 truncate cleaned up [ 1002.942580][T13786] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 1002.964706][ T856] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1002.999892][T13786] EXT4-fs error (device loop4): ext4_release_dquot:6989: comm kworker/u4:3: Failed to release dquot type 1 [ 1003.013887][ T856] ext4 filesystem being mounted at /2080/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1003.105293][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1003.202186][ T856] EXT4-fs error (device loop4): ext4_dirty_inode:6143: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1003.253302][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1003.299741][ T856] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1003.335073][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1003.390484][ T856] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1003.417795][ T856] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.12188: corrupted inode contents [ 1003.449145][ T893] --map-set only usable from mangle table [ 1003.461561][ T856] EXT4-fs error (device loop4): ext4_truncate:4301: inode #16: comm syz.4.12188: mark_inode_dirty error [ 1003.540826][ T856] EXT4-fs error (device loop4) in ext4_setattr:5682: Corrupt filesystem [ 1003.567548][ T28] audit: type=1326 audit(1782415013.355:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=894 comm="syz.3.12205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1003.631704][ T28] audit: type=1326 audit(1782415013.385:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=894 comm="syz.3.12205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1003.669488][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1003.687876][T13786] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 1003.700006][ T28] audit: type=1326 audit(1782415013.445:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=894 comm="syz.3.12205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1003.772410][ T28] audit: type=1326 audit(1782415013.445:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=894 comm="syz.3.12205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1003.882282][ T28] audit: type=1326 audit(1782415013.445:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=894 comm="syz.3.12205" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1004.607417][ T952] loop0: detected capacity change from 0 to 512 [ 1004.639417][ T952] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1004.683952][ T952] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1004.722200][ T952] ext4 filesystem being mounted at /3173/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1004.814905][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1005.000570][ T962] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.12228'. [ 1005.208420][ T939] loop4: detected capacity change from 0 to 32768 [ 1005.270018][ T939] jfs_strtoUCS: char2uni returned -22. [ 1005.301381][ T939] charset = cp936, char = 0xd4 [ 1005.623069][ T28] audit: type=1326 audit(1782415015.415:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=979 comm="syz.4.12237" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1005.732118][ T28] audit: type=1326 audit(1782415015.415:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=979 comm="syz.4.12237" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1005.822210][ T28] audit: type=1326 audit(1782415015.415:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=979 comm="syz.4.12237" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1005.908087][ T28] audit: type=1326 audit(1782415015.415:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=979 comm="syz.4.12237" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1005.961587][ T990] netlink: 'syz.4.12242': attribute type 2 has an invalid length. [ 1006.012092][ T28] audit: type=1326 audit(1782415015.465:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=979 comm="syz.4.12237" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1006.197912][ T1001] netlink: 88 bytes leftover after parsing attributes in process `syz.0.12247'. [ 1006.454851][ T1010] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12252'. [ 1006.856311][ T1032] loop0: detected capacity change from 0 to 512 [ 1006.872545][ T1032] EXT4-fs: Ignoring removed bh option [ 1006.877985][ T1032] EXT4-fs: inline encryption not supported [ 1006.926404][ T1032] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 1006.985521][ T1032] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1007.032775][ T1032] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.12260: bg 0: block 248: padding at end of block bitmap is not set [ 1007.053200][ T1032] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.12260: Failed to acquire dquot type 1 [ 1007.077079][ T1044] netlink: 'syz.3.12262': attribute type 1 has an invalid length. [ 1007.092268][ T1032] EXT4-fs (loop0): 1 truncate cleaned up [ 1007.103273][ T1032] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 1007.110629][ T1044] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.12262'. [ 1007.128938][ T1044] netlink: 'syz.3.12262': attribute type 1 has an invalid length. [ 1007.223261][ T1032] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.12260: Failed to acquire dquot type 1 [ 1007.393147][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 1007.579511][ T1068] loop4: detected capacity change from 0 to 65 [ 1007.591634][ T1069] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12272'. [ 1007.624564][ T1068] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway [ 1007.906823][ T1079] loop0: detected capacity change from 0 to 256 [ 1008.184151][ T1087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12281'. [ 1008.195241][ T1087] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12281'. [ 1008.457145][ T1093] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12284'. [ 1008.690115][ T1100] netlink: 532 bytes leftover after parsing attributes in process `syz.3.12288'. [ 1008.912610][ T1109] netlink: 132 bytes leftover after parsing attributes in process `syz.4.12292'. [ 1009.049452][ T1108] loop5: detected capacity change from 0 to 4096 [ 1009.118776][ T1108] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 1009.252188][ T787] usb 1-1: new low-speed USB device number 85 using dummy_hcd [ 1009.464116][ T787] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1009.496712][ T787] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1009.532287][ T787] usb 1-1: config 1 interface 0 has no altsetting 0 [ 1009.552015][ T787] usb 1-1: string descriptor 0 read error: -22 [ 1009.558620][ T787] usb 1-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 1009.576300][ T787] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=3 [ 1009.631192][ T787] usb 1-1: 0:2 : does not exist [ 1009.690975][ T787] usb-storage 1-1:1.1: USB Mass Storage device detected [ 1009.852315][ T787] usb_set_interface error [ 1009.870706][ T787] snd-usb-us122l: probe of 1-1:1.1 failed with error -22 [ 1009.922316][ T787] usb 1-1: USB disconnect, device number 85 [ 1010.026523][ T1139] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 1010.066798][ T1143] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.12306'. [ 1010.448175][ T1152] loop4: detected capacity change from 0 to 512 [ 1010.511038][ T1152] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e01c, mo2=0002] [ 1010.565626][ T1152] System zones: 1-12 [ 1010.570091][ T1152] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.12310: Directory hole found for htree index block 0 [ 1010.640469][ T1152] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -117 [ 1010.659444][ T1152] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.12310: Directory hole found for htree index block 0 [ 1010.687993][ T1152] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 1010.723665][ T1152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1010.837037][ T1152] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.12310: Directory hole found for htree index block 0 [ 1011.005302][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1011.624944][ T1198] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1011.802781][ T1207] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.12335'. [ 1011.821204][ T1207] openvswitch: netlink: IP tunnel attribute has 3064 unknown bytes. [ 1012.276268][ T1230] netlink: 666 bytes leftover after parsing attributes in process `syz.3.12345'. [ 1012.475393][ T1241] netlink: 44 bytes leftover after parsing attributes in process `syz.0.12349'. [ 1012.708703][ T1250] CIFS mount error: No usable UNC path provided in device string! [ 1012.708703][ T1250] [ 1012.753041][ T1250] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1013.072370][ T9] usb 1-1: new high-speed USB device number 86 using dummy_hcd [ 1013.262803][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 1013.272113][ T5850] usb 4-1: new high-speed USB device number 99 using dummy_hcd [ 1013.286940][ T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1013.318607][ T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1013.344895][ T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1013.347813][ T1279] netlink: 'syz.4.12367': attribute type 1 has an invalid length. [ 1013.362779][ T1279] netlink: 'syz.4.12367': attribute type 3 has an invalid length. [ 1013.363913][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1013.370595][ T1279] netlink: 224 bytes leftover after parsing attributes in process `syz.4.12367'. [ 1013.394852][ T9] usb 1-1: Product: syz [ 1013.399636][ T9] usb 1-1: Manufacturer: syz [ 1013.405408][ T9] usb 1-1: SerialNumber: syz [ 1013.512341][ T5850] usb 4-1: Using ep0 maxpacket: 8 [ 1013.522028][ T5850] usb 4-1: New USB device found, idVendor=04e8, idProduct=6889, bcdDevice= 0.00 [ 1013.531214][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1013.564835][ T5850] usb 4-1: Product: syz [ 1013.582216][ T5850] usb 4-1: Manufacturer: syz [ 1013.586872][ T5850] usb 4-1: SerialNumber: syz [ 1013.642583][ T1285] loop4: detected capacity change from 0 to 4096 [ 1013.660355][ T1285] EXT4-fs: Ignoring removed mblk_io_submit option [ 1013.674581][ T1285] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1013.708702][ T1285] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1013.796637][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1013.809422][ T5850] kalmia 4-1:1.0 (unnamed net_device) (uninitialized): Error sending init packet. Status -71 [ 1013.846512][ T5850] kalmia: probe of 4-1:1.0 failed with error -71 [ 1013.862578][ T9] usb 1-1: cannot find UAC_HEADER [ 1013.906370][ T5850] usb 4-1: USB disconnect, device number 99 [ 1013.965198][ T9] snd-usb-audio: probe of 1-1:1.0 failed with error -22 [ 1014.005387][ T9] usb 1-1: USB disconnect, device number 86 [ 1014.031151][ T5772] udevd[5772]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1014.170336][ T1301] loop4: detected capacity change from 0 to 1024 [ 1014.173534][ T1300] netlink: 'syz.5.12375': attribute type 10 has an invalid length. [ 1014.190156][ T1300] hsr0: entered promiscuous mode [ 1014.209683][ T1301] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1014.213624][ T1300] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 1014.239330][ T1300] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 1014.264730][ T1301] EXT4-fs error (device loop4): ext4_map_blocks:720: inode #3: block 5: comm syz.4.12376: lblock 5 mapped to illegal pblock 5 (length 1) [ 1014.287930][ T1300] bond0: (slave hsr0): Error -95 calling set_mac_address [ 1014.300806][ T1301] __quota_error: 8 callbacks suppressed [ 1014.300821][ T1301] Quota error (device loop4): write_blk: dquota write failed [ 1014.322989][ T1301] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5 [ 1014.332759][ T1301] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1014.342950][ T1301] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.12376: Failed to acquire dquot type 0 [ 1014.366154][ T1301] EXT4-fs error (device loop4): ext4_map_blocks:610: inode #3: block 5: comm syz.4.12376: lblock 5 mapped to illegal pblock 5 (length 1) [ 1014.407053][ T1305] netlink: 28 bytes leftover after parsing attributes in process `syz.5.12377'. [ 1014.419064][ T1301] Quota error (device loop4): do_insert_tree: Can't read tree quota block 5 [ 1014.432614][ T1301] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1014.447768][ T1301] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.12376: Failed to acquire dquot type 0 [ 1014.460829][ T1301] EXT4-fs error (device loop4): ext4_free_blocks:6694: comm syz.4.12376: Freeing blocks not in datazone - block = 0, count = 4096 [ 1014.492684][ T1301] EXT4-fs error (device loop4): ext4_map_blocks:610: inode #3: block 5: comm syz.4.12376: lblock 5 mapped to illegal pblock 5 (length 1) [ 1014.561734][ T1301] Quota error (device loop4): do_insert_tree: Can't read tree quota block 5 [ 1014.591536][ T1301] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 1014.612477][ T1301] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.12376: Failed to acquire dquot type 0 [ 1014.632151][ T1301] EXT4-fs (loop4): 1 orphan inode deleted [ 1014.649321][ T1301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1014.703988][ T1301] EXT4-fs error (device loop4): ext4_map_blocks:610: inode #3: block 5: comm syz.4.12376: lblock 5 mapped to illegal pblock 5 (length 1) [ 1014.747263][ T1301] Quota error (device loop4): find_next_id: Can't read quota tree block 5 [ 1014.838613][ T28] audit: type=1326 audit(1782415024.625:2841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1317 comm="syz.0.12383" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdbc9b9ce59 code=0x0 [ 1014.877750][T13808] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1015.090313][ T1326] netlink: 16 bytes leftover after parsing attributes in process `syz.3.12387'. [ 1015.121911][ T1326] netlink: 108 bytes leftover after parsing attributes in process `syz.3.12387'. [ 1015.131131][ T1326] netlink: 16 bytes leftover after parsing attributes in process `syz.3.12387'. [ 1015.769041][ T1352] syz.3.12399 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 1015.845279][ T1355] loop4: detected capacity change from 0 to 128 [ 1015.893045][ T1355] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 1015.957535][ T1355] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1015.985609][ T1359] SET target dimension over the limit! [ 1015.998083][ T1361] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12404'. [ 1016.077150][ T1355] UDF-fs: error (device loop4): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 187 marked as free, partition length is 32) [ 1016.353911][ T1371] netlink: 'syz.0.12410': attribute type 1 has an invalid length. [ 1016.372442][ T1371] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.12410'. [ 1016.440326][ T1375] netlink: 'syz.3.12411': attribute type 2 has an invalid length. [ 1016.466014][ T1375] netlink: 'syz.3.12411': attribute type 1 has an invalid length. [ 1016.629454][ T1383] netlink: 52 bytes leftover after parsing attributes in process `syz.4.12414'. [ 1016.834462][ T28] audit: type=1326 audit(1782415026.615:2842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1391 comm="syz.5.12418" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1017.026448][ T1399] loop0: detected capacity change from 0 to 1024 [ 1017.788672][ T1427] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (20) [ 1017.903800][ T1431] loop0: detected capacity change from 0 to 2048 [ 1017.931055][ T1431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1018.242971][ T1436] dvmrp0: entered allmulticast mode [ 1018.257095][ T1438] netlink: 14 bytes leftover after parsing attributes in process `syz.3.12440'. [ 1018.333806][ T1417] loop4: detected capacity change from 0 to 32768 [ 1018.365469][ T1417] [ 1018.365469][ T1417] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1018.365469][ T1417] [ 1018.417125][ T1417] ERROR: (device loop4): ea_get: invalid ea.flag [ 1018.417125][ T1417] [ 1018.474048][ T1417] ERROR: (device loop4): remounting filesystem as read-only [ 1018.829155][ T1429] loop5: detected capacity change from 0 to 32768 [ 1018.850686][ T1448] bridge4: entered promiscuous mode [ 1018.932535][ T1429] XFS (loop5): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 1019.063342][ T1429] XFS (loop5): Ending clean mount [ 1019.093827][ T1457] 8021q: adding VLAN 0 to HW filter on device bond6 [ 1019.243736][ T1471] loop0: detected capacity change from 0 to 128 [ 1019.279302][ T1471] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1019.293228][T16099] XFS (loop5): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 1019.304396][ T1471] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1019.562892][ T1475] netlink: 220 bytes leftover after parsing attributes in process `syz.0.12455'. [ 1019.582366][ T1475] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12455'. [ 1019.591362][ T1475] tc_dump_action: action bad kind [ 1020.333450][ T1501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12467'. [ 1020.357627][ T1501] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12467'. [ 1020.987184][ T787] usb 1-1: new high-speed USB device number 87 using dummy_hcd [ 1021.200879][ T787] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1021.215470][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1021.240632][ T787] usb 1-1: config 0 descriptor?? [ 1021.264090][ T787] cp210x 1-1:0.0: cp210x converter detected [ 1021.465521][ T1544] 9pnet: Could not find request transport: f [ 1021.678345][ T787] cp210x 1-1:0.0: failed to get vendor val 0x370c size 13: -71 [ 1021.698932][ T787] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 1021.718007][ T787] usb 1-1: cp210x converter now attached to ttyUSB0 [ 1021.753523][ T787] usb 1-1: USB disconnect, device number 87 [ 1021.794320][ T787] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1021.828461][ T787] cp210x 1-1:0.0: device disconnected [ 1021.867481][ T1560] Sensor A: ================= START STATUS ================= [ 1021.902763][ T1560] Sensor A: Test Pattern: 75% Colorbar [ 1021.922466][ T1560] Sensor A: Show Information: All [ 1021.927582][ T1560] Sensor A: Vertical Flip: false [ 1021.950883][ T1560] Sensor A: Horizontal Flip: false [ 1021.976203][ T1564] loop5: detected capacity change from 0 to 512 [ 1021.977028][ T1560] Sensor A: Brightness: 128 [ 1021.997187][ T1564] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1022.012315][ T1560] [ 1022.022504][ T1560] Sensor A: Contrast: 128 [ 1022.029274][ T1564] EXT4-fs warning (device loop5): ext4_xattr_inode_get:546: inode #11: comm syz.5.12497: ea_inode file size=4 entry size=6 [ 1022.033992][ T1560] Sensor A: Hue: [ 1022.052595][ T1564] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2855: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 1022.058901][ T1560] 0 [ 1022.080086][ T1560] Sensor A: Saturation: 128 [ 1022.087504][ T1560] Sensor A: ================== END STATUS ================== [ 1022.088268][ T1564] EXT4-fs error (device loop5): ext4_do_update_inode:5255: inode #15: comm syz.5.12497: corrupted inode contents [ 1022.139987][ T1564] EXT4-fs (loop5): Remounting filesystem read-only [ 1022.149691][ T1564] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -5) [ 1022.161519][ T1564] EXT4-fs (loop5): 1 orphan inode deleted [ 1022.168784][ T1564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1022.262988][T16099] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1022.499773][ T1577] loop0: detected capacity change from 0 to 1764 [ 1023.014597][ T1597] netlink: 'syz.5.12512': attribute type 21 has an invalid length. [ 1023.046579][ T1597] netlink: 'syz.5.12512': attribute type 1 has an invalid length. [ 1023.072009][ T1597] netlink: 132 bytes leftover after parsing attributes in process `syz.5.12512'. [ 1023.163997][ T1601] loop0: detected capacity change from 0 to 4096 [ 1023.799280][ T1627] cgroup: name respecified [ 1023.844201][ T1629] Bluetooth: hci0: Opcode 0x0c20 failed: -22 [ 1023.936855][ T1632] loop4: detected capacity change from 0 to 16 [ 1023.964085][ T1632] erofs: (device loop4): mounted with root inode @ nid 36. [ 1024.178634][ T1645] kAFS: No cell specified [ 1024.232016][ T9] usb 4-1: new high-speed USB device number 100 using dummy_hcd [ 1024.316912][ T1650] autofs4:pid:1650:autofs_fill_super: called with bogus options [ 1024.432625][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 1024.462609][ T9] usb 4-1: config 0 has an invalid interface number: 35 but max is 0 [ 1024.477939][ T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1024.517153][ T9] usb 4-1: config 0 has no interface number 0 [ 1024.542095][ T9] usb 4-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1024.592820][ T9] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 1024.609236][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1024.627674][ T9] usb 4-1: Product: syz [ 1024.648328][ T9] usb 4-1: Manufacturer: syz [ 1024.657941][ T9] usb 4-1: SerialNumber: syz [ 1024.694801][ T9] usb 4-1: config 0 descriptor?? [ 1024.723830][ T9] radio-si470x 4-1:0.35: could not find interrupt in endpoint [ 1024.751344][ T9] radio-si470x: probe of 4-1:0.35 failed with error -5 [ 1024.794092][ T1667] vivid-004: disconnect [ 1024.810178][ T1666] vivid-004: reconnect [ 1024.936750][ T9] radio-raremono 4-1:0.35: this is not Thanko's Raremono. [ 1024.952463][ T9] usbhid 4-1:0.35: couldn't find an input interrupt endpoint [ 1025.192956][ T787] usb 4-1: USB disconnect, device number 100 [ 1025.888769][ T1697] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12557'. [ 1025.893498][ T1696] netlink: 372 bytes leftover after parsing attributes in process `syz.5.12558'. [ 1025.913463][T24280] Bluetooth: hci0: command tx timeout [ 1026.072357][ T1703] netlink: 52 bytes leftover after parsing attributes in process `syz.3.12561'. [ 1026.307948][ T1715] ±ÿ: renamed from lo (while UP) [ 1026.522239][T14145] usb 5-1: new high-speed USB device number 55 using dummy_hcd [ 1026.722814][T14145] usb 5-1: Using ep0 maxpacket: 8 [ 1026.745145][T14145] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1026.767954][T14145] usb 5-1: config 86 has an invalid interface number: 78 but max is 0 [ 1026.802214][T14145] usb 5-1: config 86 has an invalid descriptor of length 0, skipping remainder of the config [ 1026.852313][T14145] usb 5-1: config 86 has no interface number 0 [ 1026.858564][T14145] usb 5-1: config 86 interface 78 altsetting 128 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1026.900457][T14145] usb 5-1: config 86 interface 78 altsetting 128 bulk endpoint 0x88 has invalid maxpacket 0 [ 1026.932627][T14145] usb 5-1: config 86 interface 78 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1026.977446][T14145] usb 5-1: config 86 interface 78 has no altsetting 0 [ 1026.997804][T14145] usb 5-1: New USB device found, idVendor=0bfd, idProduct=0121, bcdDevice=a4.7d [ 1027.032269][T14145] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1027.040315][T14145] usb 5-1: Product: syz [ 1027.063015][T14145] usb 5-1: Manufacturer: syz [ 1027.067843][T14145] usb 5-1: SerialNumber: syz [ 1027.122485][ T1743] netlink: 'syz.0.12581': attribute type 1 has an invalid length. [ 1027.354317][T14145] kvaser_usb 5-1:86.78: Cannot get usb endpoint(s) [ 1027.382403][T14145] usb 5-1: USB disconnect, device number 55 [ 1028.312621][ T1789] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1028.517947][ T1797] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12607'. [ 1028.533021][ T1798] MTD: Attempt to mount non-MTD device "./file0" [ 1028.539589][ T1798] ./file0: Can't open blockdev [ 1029.012220][ T1809] i2c i2c-0: Invalid block write size 252 [ 1029.241724][ T1816] erspan1: entered promiscuous mode [ 1029.280425][ T1794] loop4: detected capacity change from 0 to 32768 [ 1029.392922][ T1794] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 1029.502228][ T1828] loop0: detected capacity change from 0 to 4096 [ 1029.516289][ T1828] __ntfs_error: 3 callbacks suppressed [ 1029.516305][ T1828] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 1029.557100][ T1828] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 1029.643660][ T1828] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 1029.678511][ T1828] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 1029.739717][ T1828] ntfs: (device loop0): check_mft_mirror(): Failed to read $MFTMirr. [ 1029.767094][ T1828] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1029.806951][ T1828] ntfs: volume version 3.1. [ 1029.814083][ T1828] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1029.831089][ T1828] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1029.843233][ T1828] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 1029.890233][T13808] ocfs2: Unmounting device (7,4) on (node local) [ 1029.918463][ T1828] ntfs: (device loop0): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4). Marking corrupt inode and base inode 0x1a as bad. Run chkdsk. [ 1030.664678][ T1855] loop0: detected capacity change from 0 to 2048 [ 1030.711664][ T1855] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1030.759331][ T1855] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1031.014383][ T1839] loop5: detected capacity change from 0 to 32768 [ 1031.089762][ T1865] netlink: 'syz.4.12641': attribute type 1 has an invalid length. [ 1031.098882][ T1839] JBD2: Ignoring recovery information on journal [ 1031.286066][ T1839] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1031.542073][ T1839] OCFS2: ERROR (device loop5): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #1792 has bad signature [ 1031.601592][ T1839] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1031.640445][ T1839] OCFS2: File system is now read-only. [ 1031.671127][ T1839] (syz.5.12627,1839,0):ocfs2_search_chain:1785 ERROR: status = -30 [ 1031.722331][ T1839] (syz.5.12627,1839,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 1031.730312][ T1839] (syz.5.12627,1839,0):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30 [ 1031.763863][ T1839] (syz.5.12627,1839,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 1031.773362][ T1839] (syz.5.12627,1839,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 1031.786866][ T1839] (syz.5.12627,1839,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 1031.820508][ T1839] (syz.5.12627,1839,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 1031.851204][ T1839] (syz.5.12627,1839,1):ocfs2_mknod:385 ERROR: status = -30 [ 1031.872899][ T1839] (syz.5.12627,1839,0):ocfs2_mknod:502 ERROR: status = -30 [ 1031.880181][ T1839] (syz.5.12627,1839,0):ocfs2_create:676 ERROR: status = -30 [ 1032.088106][T16099] ocfs2: Unmounting device (7,5) on (node local) [ 1033.389692][ T1948] bridge6: entered promiscuous mode [ 1033.396690][ T1948] bridge6: entered allmulticast mode [ 1034.652060][T14145] usb 6-1: new high-speed USB device number 33 using dummy_hcd [ 1034.783232][ T1997] loop0: detected capacity change from 0 to 256 [ 1034.862388][T14145] usb 6-1: config 0 has an invalid interface number: 117 but max is 0 [ 1034.881294][T14145] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1034.905325][T14145] usb 6-1: config 0 has no interface number 0 [ 1034.912343][T14145] usb 6-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1034.951324][T14145] usb 6-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1034.984070][T14145] usb 6-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 1035.012137][T14145] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1035.038999][T14145] usb 6-1: Product: syz [ 1035.043472][ T9] usb 4-1: new high-speed USB device number 101 using dummy_hcd [ 1035.061855][T14145] usb 6-1: Manufacturer: syz [ 1035.066764][T14145] usb 6-1: SerialNumber: syz [ 1035.089339][T14145] usb 6-1: config 0 descriptor?? [ 1035.234627][ T9] usb 4-1: config 0 has an invalid interface number: 199 but max is 1 [ 1035.244429][ T9] usb 4-1: config 0 has no interface number 1 [ 1035.250617][ T9] usb 4-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1035.282059][ T9] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 1035.313782][ T9] usb 4-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 1035.332951][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1035.341032][ T9] usb 4-1: SerialNumber: syz [ 1035.369662][ T9] usb 4-1: config 0 descriptor?? [ 1035.393303][ T9] usb 4-1: Found UVC 0.00 device (0002:0000) [ 1035.429960][ T9] usb 4-1: No valid video chain found. [ 1035.549659][ T2022] IPv6: sit3: Disabled Multicast RS [ 1035.588089][ T9] usb 6-1: USB disconnect, device number 33 [ 1035.612716][T14145] usb 4-1: USB disconnect, device number 101 [ 1035.706847][ T2028] loop4: detected capacity change from 0 to 512 [ 1035.730601][ T2028] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1035.744026][ T2028] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1035.763121][ T2028] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1035.839357][ T2033] netlink: 'syz.0.12721': attribute type 1 has an invalid length. [ 1035.850634][ T2033] netlink: 224 bytes leftover after parsing attributes in process `syz.0.12721'. [ 1035.922087][ T2028] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 1035.939243][ T2028] EXT4-fs error (device loop4): ext4_add_entry:2486: inode #2: comm syz.4.12719: Directory hole found for htree leaf block 0 [ 1035.952987][ T2028] EXT4-fs (loop4): Remounting filesystem read-only [ 1036.007322][T13808] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 1036.400730][ T2053] netlink: 128 bytes leftover after parsing attributes in process `syz.4.12727'. [ 1036.469978][ T2053] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1036.490824][ T2054] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12728'. [ 1037.082096][ T5967] usb 4-1: new high-speed USB device number 102 using dummy_hcd [ 1037.148110][ T2084] comedi comedi4: bad chanlist[0]=0x00200007 chan=7 range length=2 [ 1037.292501][ T5967] usb 4-1: Using ep0 maxpacket: 16 [ 1037.306603][ T5967] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1037.330273][ T5967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1037.351100][ T5967] usb 4-1: Product: syz [ 1037.368109][ T5967] usb 4-1: Manufacturer: syz [ 1037.375524][ T5967] usb 4-1: SerialNumber: syz [ 1037.385987][ T5967] r8152-cfgselector 4-1: config 0 descriptor?? [ 1037.733161][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 1037.733177][ T28] audit: type=1326 audit(1782415047.525:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2107 comm="syz.4.12756" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1037.775543][ T28] audit: type=1326 audit(1782415047.525:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2107 comm="syz.4.12756" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1037.810171][ T28] audit: type=1326 audit(1782415047.565:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2107 comm="syz.4.12756" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1037.847774][ T5967] r8152-cfgselector 4-1: Unknown version 0x0000 [ 1037.879799][ T5967] r8152-cfgselector 4-1: USB disconnect, device number 102 [ 1037.898190][ T28] audit: type=1326 audit(1782415047.565:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2107 comm="syz.4.12756" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1038.002114][ T28] audit: type=1326 audit(1782415047.565:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2107 comm="syz.4.12756" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1038.026738][ C0] vkms_vblank_simulate: vblank timer overrun [ 1038.429632][ T2132] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode 802.3ad(4) [ 1038.994464][ T2156] ubi8: attaching mtd0 [ 1039.035368][ T2156] ubi8: scanning is finished [ 1039.040464][ T2156] ubi8: empty MTD device detected [ 1039.061358][ T2156] ubi8 error: ubi_read_volume_table: LEB size too small for a volume record [ 1039.167402][ T2156] ubi8 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1039.632145][ T5850] usb 6-1: new full-speed USB device number 34 using dummy_hcd [ 1039.668471][ T2181] loop0: detected capacity change from 0 to 736 [ 1039.837647][ T5850] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1039.862635][ T5850] usb 6-1: not running at top speed; connect to a high speed hub [ 1039.897490][ T5850] usb 6-1: config 5 has an invalid interface number: 206 but max is 0 [ 1039.918813][ T5850] usb 6-1: config 5 has no interface number 0 [ 1039.940399][ T5850] usb 6-1: config 5 interface 206 has no altsetting 0 [ 1039.956366][ T5850] usb 6-1: New USB device found, idVendor=0bda, idProduct=0140, bcdDevice=87.b4 [ 1039.986286][ T5850] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1040.001690][ T5850] usb 6-1: Product: syz [ 1040.039668][ T5850] usb 6-1: Manufacturer: syz [ 1040.054932][ T5850] usb 6-1: SerialNumber: syz [ 1040.298850][ T5850] rtsx_usb: probe of 6-1:5.206 failed with error -22 [ 1040.321307][ T2202] batadv3: entered promiscuous mode [ 1040.334396][ T5850] usb 6-1: USB disconnect, device number 34 [ 1040.839720][ T2204] loop0: detected capacity change from 0 to 32768 [ 1040.887455][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1040.927907][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1040.957210][ T2218] netlink: 128 bytes leftover after parsing attributes in process `syz.3.12810'. [ 1040.989565][ T2218] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1041.018848][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 1041.108704][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 1041.202061][ T5850] usb 5-1: new high-speed USB device number 56 using dummy_hcd [ 1041.203417][ T2204] JBD2: Ignoring recovery information on journal [ 1041.345742][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC. [ 1041.375327][ T2204] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1041.392188][ T5850] usb 5-1: Using ep0 maxpacket: 32 [ 1041.397728][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC. [ 1041.404784][ T5850] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1041.452884][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 1041.457946][ T5850] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1041.525839][ T5850] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1041.538718][ T5850] usb 5-1: Product: syz [ 1041.549119][ T5850] usb 5-1: Manufacturer: syz [ 1041.562014][ T5850] usb 5-1: SerialNumber: syz [ 1041.583461][ T5850] usb 5-1: config 0 descriptor?? [ 1041.590928][ T5850] usb 5-1: bad CDC descriptors [ 1041.622698][ T5850] usb 5-1: unsupported MDLM descriptors [ 1041.625150][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC. [ 1041.770400][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC. [ 1041.806495][ T2204] (syz.0.12804,2204,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af [ 1041.810853][ T5850] usb 5-1: USB disconnect, device number 56 [ 1041.848824][ T2204] (syz.0.12804,2204,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 1041.875147][ T2204] (syz.0.12804,2204,0):ocfs2_quota_read:201 ERROR: status = -5 [ 1041.905246][ T2204] Quota error (device loop0): find_tree_dqentry: Can't read quota tree block 5 [ 1041.948071][ T2204] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 1041.972389][ T2204] (syz.0.12804,2204,0):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 1042.008430][ T2204] (syz.0.12804,2204,0):ocfs2_mknod:314 ERROR: status = -5 [ 1042.026202][ T2204] (syz.0.12804,2204,0):ocfs2_mknod:502 ERROR: status = -5 [ 1042.039663][ T2250] binder: 2249:2250 ioctl c018620c 200000001180 returned -22 [ 1042.054541][ T2204] (syz.0.12804,2204,0):ocfs2_create:676 ERROR: status = -5 [ 1042.177008][ T5784] ocfs2: Unmounting device (7,0) on (node local) [ 1042.214006][ T28] audit: type=1326 audit(1782415052.005:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2255 comm="syz.3.12830" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1042.314296][ T28] audit: type=1326 audit(1782415052.005:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2255 comm="syz.3.12830" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1042.378185][ T28] audit: type=1326 audit(1782415052.005:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2255 comm="syz.3.12830" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6630d9ce59 code=0x7ffc0000 [ 1042.878693][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 1042.878709][ T28] audit: type=1326 audit(1782415052.665:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2274 comm="syz.5.12837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1042.955815][ T28] audit: type=1326 audit(1782415052.665:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2274 comm="syz.5.12837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1042.980038][ C0] vkms_vblank_simulate: vblank timer overrun [ 1043.078028][ T28] audit: type=1326 audit(1782415052.685:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2274 comm="syz.5.12837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1043.119608][ T2283] loop5: detected capacity change from 0 to 512 [ 1043.138440][ T28] audit: type=1326 audit(1782415052.685:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2274 comm="syz.5.12837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1043.162740][ C0] vkms_vblank_simulate: vblank timer overrun [ 1043.170022][ T2283] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1043.224910][ T28] audit: type=1326 audit(1782415052.685:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2274 comm="syz.5.12837" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a5b59ce59 code=0x7ffc0000 [ 1043.242006][ T2283] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1043.249090][ C0] vkms_vblank_simulate: vblank timer overrun [ 1043.337193][ T2283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1043.401612][ T2283] ext4 filesystem being mounted at /2070/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1043.427774][ T2296] loop0: detected capacity change from 0 to 8 [ 1043.454028][ T2296] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 1043.632713][T16099] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1044.022253][ T2314] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12854'. [ 1044.043679][ T2314] netlink: 'syz.3.12854': attribute type 1 has an invalid length. [ 1044.072465][ T2314] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12854'. [ 1044.372110][ T5967] usb 5-1: new high-speed USB device number 57 using dummy_hcd [ 1044.442299][ T2334] netlink: 'syz.5.12865': attribute type 1 has an invalid length. [ 1044.450282][ T2334] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.12865'. [ 1044.562147][ T5967] usb 5-1: Using ep0 maxpacket: 32 [ 1044.572028][ T5967] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 1044.581654][ T5967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1044.594489][ T5967] usb 5-1: Product: syz [ 1044.598702][ T5967] usb 5-1: Manufacturer: syz [ 1044.622177][ T5967] usb 5-1: SerialNumber: syz [ 1044.654165][ T5967] usb 5-1: config 0 descriptor?? [ 1044.706065][ T2343] xt_hashlimit: size too large, truncated to 1048576 [ 1044.914959][ T2349] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12872'. [ 1045.072291][ T2355] loop5: detected capacity change from 0 to 2048 [ 1045.093151][ T5967] peak_usb 5-1:0.0 can0: unable to request usb[type=0 value=0] err=-71 [ 1045.121649][ T5967] peak_usb 5-1:0.0: unable to read PCAN-USB Pro bootloader info (err -71) [ 1045.149224][ T2355] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1045.242818][ T5967] peak_usb: probe of 5-1:0.0 failed with error -71 [ 1045.279188][ T5967] usb 5-1: USB disconnect, device number 57 [ 1046.509659][ T2410] loop4: detected capacity change from 0 to 1024 [ 1047.251907][ T2442] can: request_module (can-proto-3) failed. [ 1047.543480][ T9] usb 1-1: new low-speed USB device number 88 using dummy_hcd [ 1047.747013][ T2465] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 1047.753895][ T9] usb 1-1: config index 0 descriptor too short (expected 1307, got 27) [ 1047.785267][ T9] usb 1-1: config 0 has an invalid interface number: 0 but max is -1 [ 1047.811762][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 1047.832241][ T9] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 1047.882109][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1047.917165][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1047.948540][ T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 1047.989436][ T9] usb 1-1: string descriptor 0 read error: -22 [ 1047.996592][ T9] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 1048.025194][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1048.065111][ T9] usb 1-1: config 0 descriptor?? [ 1048.092209][ T9] hub 1-1:0.0: bad descriptor, ignoring hub [ 1048.098262][ T9] hub: probe of 1-1:0.0 failed with error -5 [ 1048.133125][ T9] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input69 [ 1048.438834][ T9] usb 1-1: USB disconnect, device number 88 [ 1048.782380][ T5967] usb 6-1: new high-speed USB device number 35 using dummy_hcd [ 1048.798936][ T2499] (unnamed net_device) (uninitialized): peer notification delay (9) is not a multiple of miimon (5), value rounded to 5 ms [ 1048.817722][ T2499] (unnamed net_device) (uninitialized): option use_carrier: invalid value (6) [ 1048.880810][ T2488] loop4: detected capacity change from 0 to 32768 [ 1048.948669][ T2488] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1048.974435][ T5967] usb 6-1: Using ep0 maxpacket: 16 [ 1048.992711][ T5967] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1049.050529][ T5967] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 41692, setting to 1024 [ 1049.144169][ T5967] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 1049.172139][ T5967] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1049.190686][ T5967] usb 6-1: Product: syz [ 1049.205484][ T5967] usb 6-1: Manufacturer: syz [ 1049.213232][ T5967] usb 6-1: SerialNumber: syz [ 1049.236066][ T2488] XFS (loop4): Ending clean mount [ 1049.249973][ T5967] usb 6-1: config 0 descriptor?? [ 1049.264352][ T2488] XFS (loop4): Quotacheck needed: Please wait. [ 1049.273282][ T5967] hub 6-1:0.0: bad descriptor, ignoring hub [ 1049.291981][ T5967] hub: probe of 6-1:0.0 failed with error -5 [ 1049.312257][ T5967] input: syz syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input70 [ 1049.397639][ T2488] XFS (loop4): Quotacheck: Done. [ 1049.423392][ T9] usb 1-1: new high-speed USB device number 89 using dummy_hcd [ 1049.608548][T13808] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1049.622040][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 1049.629634][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 1049.640077][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0 [ 1049.670428][ T9] usb 1-1: New USB device found, idVendor=ae6f, idProduct=79f4, bcdDevice=8f.99 [ 1049.713070][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1049.741552][ T9] usb 1-1: Product: syz [ 1049.753829][ T5850] usb 6-1: USB disconnect, device number 35 [ 1049.761792][ T9] usb 1-1: Manufacturer: syz [ 1049.787738][ T9] usb 1-1: SerialNumber: syz [ 1049.809703][ T9] usb 1-1: config 0 descriptor?? [ 1050.008911][ T2538] netlink: 'syz.4.12942': attribute type 3 has an invalid length. [ 1050.056656][ T9] usb 1-1: USB disconnect, device number 89 [ 1050.481136][ T28] audit: type=1326 audit(1782415060.265:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2558 comm="syz.4.12953" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1050.510727][ T28] audit: type=1326 audit(1782415060.265:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2558 comm="syz.4.12953" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1050.572236][ T5850] usb 4-1: new high-speed USB device number 103 using dummy_hcd [ 1050.606116][ T28] audit: type=1326 audit(1782415060.295:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2558 comm="syz.4.12953" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1050.650848][ T2561] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12954'. [ 1050.700832][ T28] audit: type=1326 audit(1782415060.295:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2558 comm="syz.4.12953" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1050.767266][ T28] audit: type=1326 audit(1782415060.295:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2558 comm="syz.4.12953" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f292439ce59 code=0x7ffc0000 [ 1050.837847][ T5850] usb 4-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64 [ 1050.856541][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1050.889981][ T5850] usb 4-1: Product: syz [ 1050.912024][ T5850] usb 4-1: Manufacturer: syz [ 1050.932073][ T5850] usb 4-1: SerialNumber: syz [ 1050.949115][ T5850] usb 4-1: config 0 descriptor?? [ 1050.962213][ T5850] hub 4-1:0.0: bad descriptor, ignoring hub [ 1050.977858][ T5850] hub: probe of 4-1:0.0 failed with error -5 [ 1050.985118][ T2577] bridge_slave_0: entered promiscuous mode [ 1050.990653][ T5850] f81232 4-1:0.0: f81534a converter detected [ 1051.006247][ T2577] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1051.042013][ T2580] nft_compat: unsupported protocol 1 [ 1051.213009][ T5850] usb 4-1: f81534a converter now attached to ttyUSB0 [ 1051.522772][ T5850] usb 4-1: USB disconnect, device number 103 [ 1051.549387][ T5850] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0 [ 1051.582716][ T5850] f81232 4-1:0.0: device disconnected [ 1051.662317][ T2609] netlink: 'syz.0.12973': attribute type 7 has an invalid length. [ 1051.679824][ T2609] netlink: 'syz.0.12973': attribute type 8 has an invalid length. [ 1051.842088][ T1205] usb 5-1: new high-speed USB device number 58 using dummy_hcd [ 1052.044175][ T1205] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 1052.062021][ T1205] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1052.083573][ T1205] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1052.102006][ T1205] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1052.120314][ T1205] usb 5-1: Manufacturer: syz [ 1052.151295][ T1205] usb 5-1: config 0 descriptor?? [ 1052.179812][ T1205] igorplugusb 5-1:0.0: endpoint incorrect [ 1052.433954][ T1205] usb 5-1: USB disconnect, device number 58 [ 1052.704349][ T2658] xt_TCPMSS: Only works on TCP SYN packets [ 1053.141572][ T2671] x_tables: arp_tables: NFQUEUE target: not valid for this family [ 1054.015842][ T2707] loop4: detected capacity change from 0 to 164 [ 1054.528407][ T2735] loop0: detected capacity change from 0 to 512 [ 1054.536075][ T2735] EXT4-fs: Ignoring removed oldalloc option [ 1054.573540][ T2735] EXT4-fs (loop0): filesystem is read-only [ 1054.600238][ T2735] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 1054.648390][ T2735] EXT4-fs (loop0): filesystem is read-only [ 1054.662374][T14145] usb 6-1: new high-speed USB device number 36 using dummy_hcd [ 1054.690911][ T2735] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1054.735169][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1054.752720][ T2735] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.13020: bg 0: block 64: padding at end of block bitmap is not set [ 1054.801171][ T2735] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 1054.818499][ T2735] EXT4-fs (loop0): 1 orphan inode deleted [ 1054.833766][ T2735] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1054.908887][T14145] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1054.925180][T14145] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1054.952028][T14145] usb 6-1: Product: syz [ 1054.956247][T14145] usb 6-1: Manufacturer: syz [ 1054.983801][T14145] usb 6-1: SerialNumber: syz [ 1054.998521][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1055.068204][T14145] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1055.129256][ T9] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1055.148834][ T2755] tmpfs: Bad value for 'size' [ 1055.522944][ T2765] loop0: detected capacity change from 0 to 4096 [ 1055.538537][ T2765] ntfs: (device loop0): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 1055.605074][T14145] usb 6-1: USB disconnect, device number 36 [ 1055.726161][ T2765] ntfs: volume version 3.1. [ 1055.916666][ T2773] loop4: detected capacity change from 0 to 4096 [ 1056.242095][ T9] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 1056.267899][ T9] ath9k_htc: Failed to initialize the device [ 1056.302844][T14145] usb 6-1: ath9k_htc: USB layer deinitialized [ 1056.546309][ T2800] Timeout policy `syz1' can only be used by L3 protocol number 17157 [ 1056.559029][ T2801] loop0: detected capacity change from 0 to 256 [ 1056.589313][ T2801] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1056.652905][ T2801] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 0000fc00) [ 1056.676953][ T2804] loop5: detected capacity change from 0 to 256 [ 1056.683069][ T2801] FAT-fs (loop0): Filesystem has been set read-only [ 1056.734632][ T2804] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1056.818255][ T2804] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 1056.863457][ T5784] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 0000fc00) [ 1056.890354][ T2804] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1057.639617][ T2838] netlink: 20 bytes leftover after parsing attributes in process `syz.0.13061'. [ 1058.151763][ T2832] loop4: detected capacity change from 0 to 32768 [ 1058.240502][ T2832] ERROR: (device loop4): xtTruncate_pmap: XT_GETPAGE: xtree page corrupt [ 1058.240502][ T2832] [ 1058.314088][ T2832] ERROR: (device loop4): remounting filesystem as read-only [ 1058.321449][ T2832] ERROR: (device loop4): jfs_unlink: [ 1058.321449][ T2832] [ 1058.492359][ T2869] netlink: 'syz.3.13073': attribute type 1 has an invalid length. [ 1058.505544][T13808] ERROR: (device loop4): xtTruncate: XT_GETPAGE: xtree page corrupt [ 1058.505544][T13808] [ 1058.508107][ T2869] netlink: 'syz.3.13073': attribute type 3 has an invalid length. [ 1058.546834][ T2869] netlink: 224 bytes leftover after parsing attributes in process `syz.3.13073'. [ 1059.026061][ T2888] loop0: detected capacity change from 0 to 512 [ 1059.090784][ T2888] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1059.191342][ T2888] ext4 filesystem being mounted at /3399/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1059.327618][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1060.272872][ T2936] netlink: 248 bytes leftover after parsing attributes in process `syz.3.13105'. [ 1060.517473][ T2909] loop0: detected capacity change from 0 to 40427 [ 1060.560168][ T2909] F2FS-fs (loop0): Fix alignment : done, start(4096) end(16896) block(12288) [ 1060.605313][ T2909] F2FS-fs (loop0): invalid crc value [ 1060.621582][ T2909] F2FS-fs (loop0): invalid crc value [ 1060.629413][ T2909] F2FS-fs (loop0): Failed to get valid F2FS checkpoint [ 1060.708539][ T2950] netlink: 300 bytes leftover after parsing attributes in process `syz.4.13111'. [ 1060.890214][ T2955] netlink: 188 bytes leftover after parsing attributes in process `syz.3.13113'. [ 1061.232893][ T2968] gre1: entered promiscuous mode [ 1061.444066][ T2974] loop4: detected capacity change from 0 to 512 [ 1061.527290][ T2974] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000103) [ 1062.183343][ T3003] netlink: 12 bytes leftover after parsing attributes in process `syz.5.13137'. [ 1062.460479][ T3016] loop0: detected capacity change from 0 to 512 [ 1062.515672][ T3016] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1062.576109][ T3016] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 1062.597240][ T3016] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1062.649256][ T3016] Quota error (device loop0): dq_insert_tree: Quota tree root isn't allocated! [ 1062.662434][ T3017] loop4: detected capacity change from 0 to 8192 [ 1062.686754][ T3016] Quota error (device loop0): qtree_write_dquot: Error -5 occurred while creating quota [ 1062.711814][ T3017] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1062.752660][ T3016] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.13143: Failed to acquire dquot type 1 [ 1062.762910][ T3017] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 1062.782147][ T3017] REISERFS (device loop4): using ordered data mode [ 1062.790415][ T3017] reiserfs: using flush barriers [ 1062.798022][ T3017] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1062.815357][ T3017] REISERFS (device loop4): checking transaction log (loop4) [ 1062.850127][ T3016] EXT4-fs (loop0): Remounting filesystem read-only [ 1062.879952][ T3016] EXT4-fs (loop0): 1 truncate cleaned up [ 1062.942246][ T3016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1063.008285][ T3017] REISERFS (device loop4): Using tea hash to sort names [ 1063.028484][ T3017] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 1063.111170][ T5784] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1063.515817][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.542308][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.551556][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.616917][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.664273][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.678600][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.687447][ T3050] loop4: detected capacity change from 0 to 2048 [ 1063.694656][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.705697][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.715956][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1063.740769][ T3055] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1063.762475][ T3046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13157'. [ 1064.323627][ T3073] netlink: 'syz.3.13170': attribute type 1 has an invalid length. [ 1064.952261][ C0] ip6_tunnel: ip6tnl4 xmit: Local address not yet configured! [ 1065.351634][ T3116] loop5: detected capacity change from 0 to 2048 [ 1065.419723][ T3116] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1065.987332][ T3143] loop4: detected capacity change from 0 to 64 [ 1066.088405][ T3148] loop5: detected capacity change from 0 to 64 [ 1066.102079][ T42] ------------[ cut here ]------------ [ 1066.107611][ T42] kernel BUG at fs/hfs/inode.c:449! [ 1066.137932][ T3149] netlink: 'syz.3.13207': attribute type 32 has an invalid length. [ 1066.160266][ T3148] hfs: unable to locate alternate MDB [ 1066.160429][ T42] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 1066.171742][ T42] CPU: 0 PID: 42 Comm: kworker/u4:2 Not tainted syzkaller #0 [ 1066.177881][ T3148] hfs: continuing without an alternate MDB [ 1066.179108][ T42] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 1066.194975][ T42] Workqueue: writeback wb_workfn (flush-7:4) [ 1066.200995][ T42] RIP: 0010:hfs_write_inode+0x87b/0x880 [ 1066.206567][ T42] Code: c7 c1 00 63 30 97 80 e1 07 80 c1 03 38 c1 0f 8c 6f fe ff ff 48 c7 c7 00 63 30 97 e8 ff 1d 84 ff e9 5e fe ff ff e8 a5 a9 2b ff <0f> 0b 0f 1f 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 bf [ 1066.226280][ T42] RSP: 0018:ffffc90000b2f340 EFLAGS: 00010293 [ 1066.232344][ T42] RAX: ffffffff825b3bab RBX: ffff88805b36c928 RCX: ffff888018ab9e00 [ 1066.240313][ T42] RDX: 0000000000000000 RSI: ffffffff8d339400 RDI: 0000000000000000 [ 1066.248300][ T42] RBP: ffffc90000b2f4d0 R08: ffff888018ab9e00 R09: 0000000000000003 [ 1066.256272][ T42] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 1066.264251][ T42] R13: 1ffff92000165e6c R14: ffff88805b36c8d8 R15: 0000000000000000 [ 1066.272231][ T42] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1066.281158][ T42] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1066.287732][ T42] CR2: 00007f254a020000 CR3: 000000005db02000 CR4: 00000000003506f0 [ 1066.295706][ T42] Call Trace: [ 1066.298977][ T42] [ 1066.301900][ T42] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1066.307279][ T42] ? __rwlock_init+0x150/0x150 [ 1066.312042][ T42] __writeback_single_inode+0x720/0xee0 [ 1066.317582][ T42] writeback_sb_inodes+0x813/0x1020 [ 1066.322783][ T42] ? queue_io+0x530/0x530 [ 1066.327114][ T42] ? move_expired_inodes+0x726/0x770 [ 1066.332400][ T42] ? rcu_is_watching+0x15/0xb0 [ 1066.337167][ T42] ? queue_io+0x3ba/0x530 [ 1066.341488][ T42] wb_writeback+0x45e/0xbe0 [ 1066.346005][ T42] ? queue_io+0x2d1/0x530 [ 1066.350354][ T42] ? percpu_ref_tryget+0x250/0x250 [ 1066.355468][ T42] ? lockdep_hardirqs_on_prepare+0x44c/0x7d0 [ 1066.361450][ T42] ? __lock_acquire+0x7d80/0x7d80 [ 1066.366470][ T42] ? _raw_spin_unlock_irq+0x23/0x50 [ 1066.371662][ T42] wb_workfn+0x400/0xe60 [ 1066.375905][ T42] ? inode_wait_for_writeback+0x230/0x230 [ 1066.381620][ T42] ? lockdep_hardirqs_on_prepare+0x44c/0x7d0 [ 1066.387609][ T42] ? __lock_acquire+0x7d80/0x7d80 [ 1066.392639][ T42] ? read_lock_is_recursive+0x20/0x20 [ 1066.398017][ T42] ? _raw_spin_unlock_irq+0x23/0x50 [ 1066.403214][ T42] ? process_scheduled_works+0x975/0x1600 [ 1066.408924][ T42] ? process_scheduled_works+0x975/0x1600 [ 1066.414636][ T42] process_scheduled_works+0xa60/0x1600 [ 1066.420244][ T42] ? worker_attach_to_pool+0x370/0x370 [ 1066.425693][ T42] ? assign_work+0x3cc/0x5d0 [ 1066.430273][ T42] worker_thread+0xa5e/0xfe0 [ 1066.434867][ T42] kthread+0x2fa/0x390 [ 1066.438927][ T42] ? pr_cont_work+0x550/0x550 [ 1066.443611][ T42] ? kthread_blkcg+0xd0/0xd0 [ 1066.448190][ T42] ret_from_fork+0x48/0x80 [ 1066.452597][ T42] ? kthread_blkcg+0xd0/0xd0 [ 1066.457175][ T42] ret_from_fork_asm+0x11/0x20 [ 1066.461936][ T42] [ 1066.465042][ T42] Modules linked in: [ 1066.468996][ C0] vkms_vblank_simulate: vblank timer overrun [ 1066.500665][ T42] ---[ end trace 0000000000000000 ]--- [ 1066.516568][ T42] RIP: 0010:hfs_write_inode+0x87b/0x880 [ 1066.522839][ T42] Code: c7 c1 00 63 30 97 80 e1 07 80 c1 03 38 c1 0f 8c 6f fe ff ff 48 c7 c7 00 63 30 97 e8 ff 1d 84 ff e9 5e fe ff ff e8 a5 a9 2b ff <0f> 0b 0f 1f 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 bf [ 1066.542717][ T42] RSP: 0018:ffffc90000b2f340 EFLAGS: 00010293 [ 1066.548932][ T42] RAX: ffffffff825b3bab RBX: ffff88805b36c928 RCX: ffff888018ab9e00 [ 1066.559331][ T42] RDX: 0000000000000000 RSI: ffffffff8d339400 RDI: 0000000000000000 [ 1066.567547][ T42] RBP: ffffc90000b2f4d0 R08: ffff888018ab9e00 R09: 0000000000000003 [ 1066.575782][ T42] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 1066.584024][ T42] R13: 1ffff92000165e6c R14: ffff88805b36c8d8 R15: 0000000000000000 [ 1066.592286][ T42] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1066.601357][ T42] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1066.608128][ T42] CR2: 00007fff9d242000 CR3: 0000000076f2f000 CR4: 00000000003506f0 [ 1066.616435][ T42] Kernel panic - not syncing: Fatal exception [ 1066.622864][ T42] Kernel Offset: disabled [ 1066.627174][ T42] Rebooting in 86400 seconds..