program:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="3000000010000108060000000500000057371fec", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\r\x00', @ANYRES32, @ANYBLOB="08001b"], 0x30}}, 0x0)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000140)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x1, 0x443b, &(0x7f0000004480)="$eJzs3c9PG1ceAPA3A7uBbJKFbA5ZaVdraSPtaneFIKfdJVIJIRBIaKqkiapeHANOoDU4AlP1kAO9ReqpUg9VD1Er9cYp4tBr+if00mN6jtQeeqlUKSqV7THxDLZwIwwl+nwkGOb9xl/P85vD+MWJyuLSWm5pLVdYyZXn766dz71XLq0vF0N8QA67fzrTjTiJ/eG5fmny5u3zIXy18M2z7e3t7VDVG1oaafr7xx8ezDcfG+JMnWq7rVvbL2+HEM7sGldVTwjhrS9DiEIIF5O08eTYH0I4Fep5tx98eCe3T6N5/LR4If989uHW6LmZzUdb7f/3KIRPS3/+z73l7/7eM/rtv/apewAAAAAAAAAAAAAAAAAAjripG9dvvTE8Ep5EoXcz2v287lRybPd87Pa++Vv3/1kAAAAAAAAAAAAAAAAAAAD4jXrx/H8uOt3i+f+J5DjWpv72a90fI90z/fr1icvDI8n+79Gu/P8mSd9f7AmDLfZ9z+7/fjFTv/X+77v7eVmN8TX6HQhRPJQ6j+OhoRA+TzZ+Pxsdj0vltcq/75bXVxb2bRhHVjr+9d37U9FJNvTvNP7jmfa7v///n3a9m6rnd/bvLfZKS8e/p225Lz6IOor/pUy9g4h/Z6J9nHVeHen499bS+psLjNUngGr8P+rdO/4Tmfa7Ff9TIYRcVB1rLjUDnE7S261XQrj5126M56hKx/93tbTUdZK8kO2u/58y8b+caf+w5v+N7AcRLaXj//taWl+qxIvrfzDe+/qfzLR/GPGvjn/DZN+R5vgvbh+rJ/amitReyU7n/6lM+92K/604GeepKPUO2Izq6e2+r4609PXftyv/xf1f3NH670qm/kHd/zX6bdz/Nab/f0b1+z9aS8e/v225Tq//6Uy9bs//Y7X1Hy8rHf/jtbT02nmg9rvT+M9k2u9W/Gurkr5G/Hsnn9e/RDT8fKye/pn1X0fS8f9DPTFuLrFR+11b/0V7r/+vZto/jPVfdfwbcXd7fVWk43+ibblq/L/u4PP/WqZe9+MfwrC1/ktLx/9k23K1679v7/jPZup1O/7/6GbjAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEfAeHIcCFE8lDqP46GhEC4l52fD8WiusJCfK5Xn310LYSJJz4XT0b1Sea5Qyi+tlBeK+UKpVJ4P4XKSfyb0RWulciW/XLg/udNWf7RYLKxW5oqFSghhKkn/SzjZaGtuqbJcuB9CuLKT98e4vHp/sbCSX1ha/f/w8PBwmN4Zw2BUfL9SXKnUe6/nhjCzU3cgahpcLfvqzlhORO+U11dXCqVa+rWmOqXyfKHUVGc2yfs4DEaV1fWV+UKlmC+V7zX6O0xjyXFi+sabN66N7Mq/E9WP4wc7LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB+pSej//skhNBbP4tDCLko+SNKflIePy1eyD+ffbg1em5m89HWs1ZlAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH5hBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCrt0jBIxEIUB+M2IaOkxrELS2SYoooURwRPoMTxMPIqX8A4WFrYWImwmsJtskWa3+r7mwfy8eQ9mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWO/2qX9+rJuIFOd/ZxEfr59f2/l9qUM31tNZ/8mR9uQw7h7665u6Ke+eFvlVOfpu8yb9/Xl7iT118t7t9s//02g5Z27o1u0/7TfNvYiUq4hoS36Zcq6qdXcBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAPztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYgWMBAAAAAGH+1lH0bQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADArwAAAP//kbomcA==")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000000)=0x84089)
write$UHID_INPUT(r3, &(0x7f00000001c0)={0x8, {"aafa7fa6b89a3668dd4a98abcde54575e5c94f91d64be60fa46e52d503382abd3b63f5f3118be1cfab82bc2a3d264fe2457eae27924d54e5c530af807b0a11b9ed1da1114d44f054d480c487344c6897de2d05ace279152ed364336652751e6d3b1ce3779b8d11413f45325d3bc453b6bad7f8cafe374b99c3547b4a213171ebdf7b17131dc7b65488015b449c028592d4330b36edee89833bf6ce8e582a85cd8f74c5bfef320d4464dbbd9b66956ec1e17551bf110a24e655ce3da1b4a5cb1b9588586a051c21f9a5eba4aa995c0f55db970ad28b3646507fd4433840a74a5d3924699baa9bb802417722f20cc81eb5aef439f520b53d8a00cb1446c2bf1a44f0a38d873445a05d3ff9097a85dd7ce255d605f1e1247b4b46517924b6e8878dba5b34ff8c8bc29c4ed6f23f9d41daf9fda8b9f3e2b983d09dafaba7e5ca81f7a7587d4e9577ab36947ce7932e6db81bf1f230576dad0a45638644d47bfd0bc006075ea58a24245e2cae32e8e61a61872c6627862e416466a9c8448e205a0c4f3cbeebcadbf206500601427987e32e0b09315514d17f12b69efa97e7e29d37c91c1f34ea50525816f88ec19ce9581f3f3acf678d547a2bfd6bb427004a5ae36bb15f268d9c2ce4350f15560f597ed82f7f2702f3d8f670b6a7715ef87b01071d091bf0ed50eeac627df815cc940ae74dd97218b28fe151a33f7aa46da5755c5161b0e04a06dd923cf606958aa406f4634a4d210c6a19f33476b8b76ff665ce110e7009a5ec0ab049e047191c0441b7aafa3be6db39d1afa4ddce6909a39d4c88a1b19fdd30770438a798a65562008b5d1a444712fb47053b4a9f0ed03b17af62167099e9f2a316e78ffc3111b9c072f18a559835f07134c8cc7f83362011d79cea2159381110100fe866f382b5703d52cdeae67e182fd7cb80b582be84999d1b29aa42a359c2d4e6366382cb334b3516f621cb176365812b7b2cf4131107c65b5b1d47021b66bb6a439e1163c59d119d43a92925c4e8c6a78a8a607741cb6ab7ab973b1fba8e4bf9b803b6fbfa0093dc511552dedbd971e8594b866ef61ad776c29f3108e49d26b57efd150b0313373dc6b26ff2552bc4e80a33a7493070228aeba3b727288b1399201b6351cc05bba9a9194395db325a2f1e238059c34f9ef1ce63d69076f2d4f11cffc176d2c252fb7cdaa7c0936d010503bcdf69147d457c00a8cc7b589ca44535541993aeb8fa05391c627a0d6def5d390821e8f9414d2c4cbe5524c1b20d829ebfbf2177fb0bd445a4153bf295e1aebe940dd94c3667e5aa4a397bf5c3656c486748b02b3db58f0e5902af516407386d7a37fdc83f0b3b1d54c6553b88c3aedaae15db2e738ff2c182a375437fcd6433872d31bed2ed4e5c2f740417ca38cca8cc04e85b70d773e800ab0c9fcd44e9f34fea989832c9affb85ffa23134f06a761be86fc716591246292c86820f9b926aa6fd5f65e77fe89ded3f0c1e3961d4fd614301c8099fa1b1ed96901d9942ba0b7f13de53d323c4c4990793838895d82733f01563ab9d7863e7166672c795136bc16d66eb2f13b3ab5c24ad9e26a9f80b9946836f09e08fca22b436944cd01bfdedc310f97cc9097543c14e85bdb6cfa452252529b1eb486832998ff67057ea5008c962bec383ac86e58145b2f7ce884765ea70dad8948129f25d35c3fbffb00c563884c8daa0cbffa742f453684c96359f8cf1bd3b309690b689b7c76f508f2d5ee435ed050f7a141abbb586548eb5cb2709e2a1fb24ba3842ad8c34ef96b9812b8a8981f98b001e2ba405ce73b37b4d751b1ee3cd48bfd0c69c6307b2606b976b2efa778d72b4308e2b48ed3d7adf307b09c2fd7785c392c61304f4e4e0eb5e5ed985cc32c14a38ec0d511e6892fbbdc17a0ddee6af74d91677e36df571ef24ada2e62f3b225f1795effb04987d141080cc707a226dd9661b4e79d9630eb42cb3e277f39193cc328149ddc2a8e6f136613f8f15b4267222b9d89d81e0ecd4f324ace975c8a3b9ac3fc21081ca6174ea127e9b2411bfff862da515b3b4fcd24427cefeed1f54952af56db5d16841340426eae73cc2e0d9e76122506142c5859f568785320b677d54e6da4a69d4f1ef4eec7f5b31f8da551e2956ad4b67024d4ad900561808e1cf0572bda350995cde21cadbb5c636889a5920daf569d5ac21f68473e45eef096614971cd8ebca603a19ac465c6d06803337d3046fc8baa2ae665dacc894eac5e1f206cb2bce2db189b7634635f5a3a6aa4be4f8ac1e6352864ba85a1340a895aaf9d9b8a9175d60e70a0c1c69fd884d6989441b710b9f2be7bb0edf3258fa0b0ac7a6276cb23a370c1670b4aa80933344bac81267760562f170493f92633879ea0c2a4c5b2616b81308e3390f94124106a0c3a535d717decc3658786aca37c56b5caada433b5dad086b8bab3e07ceae1eb7de2c0202a2833e21c836e36406cb551ca9b0a80d181269d8c47cb1371d54d0afee75d1bac1bf42f8174f3e1fb5a4603a9f6f09a519ef4ab33449da2eac8a0ac163a7819f4f4a6835594ea490660188419c142e5db66ce1c08376301f8f859a1c9d4ee3483c5a8d98fee233627d80944ef3898ac3566f6ed6703f4ec3b9a5fe249f93ff1a65e732b442ecc72e81a3c5d5efe9c720d2df9ffb66c73de188686671963dc05b77c9f752380793f66f3d7df7b48d08af867e5b63c5d1dda9ddbd9dd1daaa1c519325966aeff581dd42dd6b30c71a30d0090020b3eb571d7813ad5201840dba519706ddc0aaca694bb772599b90beaace552cef4c02c9f38d37112b86aa23b3a64911d9bb4e039ecf9a9ae1a001bbefaae893b99f60584c988a79ee0ef4473188f9ed058e84aef27adad7000f72fef79b1b36aa5477b3734fdeb52b8ddfb422bea2eb3471813337fa8341b4002e1978e9e0834e8f1f418b66703fe9ea64ec7671223b0b384709a83c870cda80f7e8b8b8392ca97a1859132c3cd29ebea5a0d4f1c6a4ba47d6c75857a488aa70e243e399774408fc90f8b3fdb71bfde5b0e4539ccdf3d5246e4b252ceaef7cfe8d6e298bbbb2e3a39995749a77a37551fb2355c25234e5b90f8d66c76fbfafa49c05794a021dddf9b024ea2584ec285029743893238f4bc90dfe97c60ebda72cba2d2418b17f10e9dd13c7f29820fb9eb702c94af93de7fd2c3521ed9941d8d2ae17d6eede55274a70f8843202df55aab26932f40cda0402dff2bb85117485185b506d48410df5e8c8934304bbe178c3b5a7d60f7ae86c02cde17dab144911d56823f07f6baa57bf1cc03b05a8a2f9932d301b1b6c1fa517c503a59132c65c939a0cfa8e838c13d0b4f940c69057bcc8f6c8a37a777c24c1c95778c9d09d0c3e2eae46eee01057ee90b1f504e1af490d1763e233e3df79624b348919ff3f5d9afade420908aeb3589a9f6ab4b2840b1a4c71b665e6494be185ccf7f21b0cf268da85e7ac32c00a56f95d511f6c6de34f379c20de3135d220e677536bc949c11839f0950b73c28bb2904bdf202e752f3d697a889ce2a8d149f1710a372f1617b02bc0b14fc955a0adce09dfffaa3613b37dca696a1374bf173ff2d6c60f6e101cc4e3393bf42d8def5afd6bcf326476092615a2054e1ecea0b231dffa77157d08815f752c3c69356fcbc06fb5bd40d0bbf91cca39914566a5c2bb8fd6a08943fa4f1cda03af25bf056f129c2f0a21d551dacb95f37b881a977ea7741a9d91672ec7ed64bfb021d19b743da6577efc2becf3516ce8da1482d922c7ab794596b07826904cc3b6326e99a3d79bfa59e929c1867050644514e7fb6142dcf2c18c0502020529f09290c3633b99f934c4b9cb9709af76ae50ed07e11d51b5f5a717dec5921b359722393263189a750a87c62e71fc8d8d62fe49e7fafdb578c90faa73bdac9206434fc54c6bde650b81daa56712d480830484ae0eb03a34d14ebe59daafb9f6156c88f16e703c2a175ab238be3991fd775dcb40f69beef2c3798cda9030374b2e53845e08abb47a23771a73b3340a4baa6f69246662a4ecad08f796137ed3d00aa88fb98fd79e46ed92b5f533f6638210e7ddb3289ef82b97aea4903a30a14814d6017171e22bc1ac2ffc16541cd69dfddea71c239f7df2e9bba18fd19410e3d1d89331d49e995dcd541c3f2adea842abb8e25c49349d4869cdc0b57cc3ce80fed3f159e49cf5a2096c497d55fbcaa67fa16db6518dbab362cad1d1f8f9454f9d57bea8db9893135596a5f125f528754e19779c9c7e97a2b37449e46129503f979511b2a2819968692a4e1bc5c02e63f8ec8d9aa7d138d658268ecc0d4298bb2cb6c48e05080e8b543ebca2a9124bdad546a15a1154e78f96e0a37350f82a2608ea2056f286e6cd12f1eebc18f9abbfe810fc56a7f91dbfb1538d3123def5bc9a73c40ad1356b83ec583f0a4a90493c3a1e1c4fd0cec9740cfd01c512f8d99dbd05156aa3829b63faca121a9a6046444d62f4cf1124140abb2344791fd67c4bca3947dc8bef60eca8a7fc714bcbb1da1d621df9d7975929336dde5f397afa83455adda162b947397874ef9506578f63747a5c0bf1624369bda6fdb0ab1ce92f652fc23f52c6cb610ae0c6fdbeec4bb237786c4081fd603f8d9b2d56694c867438054be6353f55339c0d5d73a6e899a0a3dca9f8ae04c4755a2bb7531ec8c558538a7c51fee36a310b1ce0596317f20f697da3cc702259c381fb559a673c2d8172f880d4be29ee5d9a1da7d2e54d86b78807330750f03c5e97229c6279c48cb10337d648c1865f28418bf8f544f75e78c01e21d3ba0b6a3dd2aab219b903865ea8c20f8abf0cf9e1cebf36bfffa3f551fa88450b0591745edd87a4a34bd1ab7497d1c1fd7bc69e3782d596f8ad292226bb335dae3e2fdc0df59f3d0fef1e9bbb82ac1bacd175de47bbe96312559dfc0b6a230e053f5ae4dee81c0429c6a89fa33976ebceee1c23ef99b9bd52cd82bae60d0c4ce6decfb9b51dac6f9791cecf1c8bcaa941df1a5b2d93a9db5834128e312c1a61951bd288be005dc2da367469987494368e95a4a6cde2a4a80c4ee96e45f9c141cedfb996ccfbddeed953a966906728257f640336af5a27ed7a9090b17c9ae9941c5255cba2d1e30108fb358c1d4d9abad589ea58a688e53e6123a828859e90d27e1af95cb74fcf580637ddb38b2e85ad27dbc897be7b8e4c5b2b05dd5ca54a1d20dfa79c8fc1723387b829cafd3b1bdf3892ec5e874fcc43bd9df6909384942769f69885508b1007b9d6a3e6bc997f3d2ee3aab3c86634a9879f395bd5da9ffbec7b9beaeb45bdae750a2f3bb911808eb288dabedfa9fb379e890deced062e45fdf20227df13de32dc2949ce841f54e9d7d63ebc615c191dbb6242a8ec7fa8c480d839448e9b720814d22f95d48c0abcc44e620c0033f0f3c932c6d7de12d0a027f0d80d6374e05454293818d374bc009395aa1ba1acc1daacc59e5c9e08d369a67cc442c34b877d56c71704e981e6d0ca5ca88968af2f56a7f195d530faf79268d94d60b3d140385c2ae8017b101be2d161842a67d33028bb1d2aec1d08d1511d4a348b18bad129b49759864f54251fdb4ace0436ac694418d43ee053046e222f29cf4af6aaec2ebd812aa894cb5bdde8f055c1c6db84054cb1341ba6dbbb52f83a4ee78572184e638b26970498ea29baf9747cb9aa7b7dae19ff803642568c9443fd389b664e9e826f358184bec82cc1c3903aa9b4a9d6e0054b6f89b87c022707b24cb2019a290dda", 0x1000}}, 0x1006)
ioctl$KDSETMODE(r2, 0x4b45, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000ac0)=[&(0x7f0000000900)={0x0, 0x0, 0x0, 0x1, 0x7b, 0xffffffffffffffff, 0x0, 0x0, 0x503, 0x0, 0x3}])
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x641, 0x101001)
write$evdev(r4, &(0x7f0000000300)=[{{0x77359400}, 0x2, 0x10, 0xb}, {{}, 0x0, 0x97, 0x10}, {{0x0, 0xea60}, 0x14, 0xa, 0x2eca}], 0xfed1)
perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x2188, 0x0, 0x0, 0x7, 0x200000, 0xfffffffd, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
[ 85.096845][ T5304] Bluetooth: hci0: command tx timeout
[ 85.191844][ T5324] gretap0: refused to change device tx_queue_len
[ 85.194767][ T5324] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 85.493504][ T5324] e1000e 0000:00:02.0 eth1: NIC Link is Down
[ 85.785151][ T5325] loop0: detected capacity change from 0 to 32768
[ 85.799900][ T5325] =======================================================
[ 85.799900][ T5325] WARNING: The mand mount option has been deprecated and
[ 85.799900][ T5325] and is ignored by this kernel. Remove the mand
[ 85.799900][ T5325] option from the mount to silence this warning.
[ 85.799900][ T5325] =======================================================
[ 85.904729][ T5325] JBD2: Ignoring recovery information on journal
[ 85.975664][ T5325] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 86.021748][ T5324] ==================================================================
[ 86.025084][ T5324] BUG: KASAN: slab-use-after-free in ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.028959][ T5324] Read of size 4 at addr ffff888043931000 by task syz.0.0/5324
[ 86.031965][ T5324]
[ 86.032795][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full)
[ 86.032808][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.032813][ T5324] Call Trace:
[ 86.032818][ T5324]
[ 86.032822][ T5324] dump_stack_lvl+0x189/0x250
[ 86.032835][ T5324] ? __virt_addr_valid+0x18c/0x540
[ 86.032846][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.032852][ T5324] ? __kasan_check_byte+0x12/0x40
[ 86.032861][ T5324] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.032871][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.032878][ T5324] ? lock_release+0x4b/0x3e0
[ 86.032888][ T5324] ? __virt_addr_valid+0x18c/0x540
[ 86.032896][ T5324] ? __virt_addr_valid+0x469/0x540
[ 86.032906][ T5324] print_report+0xb4/0x290
[ 86.032915][ T5324] ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.032925][ T5324] kasan_report+0x118/0x150
[ 86.032936][ T5324] ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.032946][ T5324] ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.032957][ T5324] ? check_noncircular+0xe0/0x160
[ 86.032964][ T5324] ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[ 86.032973][ T5324] ? lockdep_unlock+0x89/0x120
[ 86.032981][ T5324] ? validate_chain+0x897/0x2140
[ 86.032990][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.033000][ T5324] ocfs2_claim_new_inode+0x332/0x7a0
[ 86.033010][ T5324] ? __pfx_ocfs2_claim_new_inode+0x10/0x10
[ 86.033020][ T5324] ? _raw_spin_lock_irq+0xae/0xf0
[ 86.033065][ T5324] ? __pfx__raw_spin_lock_irq+0x10/0x10
[ 86.033074][ T5324] ocfs2_mknod_locked+0x100/0x250
[ 86.033085][ T5324] ? __pfx_ocfs2_mknod_locked+0x10/0x10
[ 86.033094][ T5324] ? dquot_alloc_inode+0x216/0xa50
[ 86.033104][ T5324] ? ocfs2_block_signals+0x94/0xe0
[ 86.033115][ T5324] ? __pfx_ocfs2_block_signals+0x10/0x10
[ 86.033127][ T5324] ? ocfs2_init_security_get+0x139/0x1a0
[ 86.033137][ T5324] ocfs2_mknod+0x10c7/0x2050
[ 86.033152][ T5324] ? __pfx_ocfs2_mknod+0x10/0x10
[ 86.033163][ T5324] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 86.033173][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.033186][ T5324] ? do_raw_spin_unlock+0x4d/0x240
[ 86.033193][ T5324] ? look_up_lock_class+0x74/0x170
[ 86.033201][ T5324] ? register_lock_class+0x51/0x320
[ 86.033210][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.033220][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.033229][ T5324] ? do_raw_spin_lock+0x121/0x290
[ 86.033260][ T5324] ? do_raw_spin_unlock+0x4d/0x240
[ 86.033277][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.033285][ T5324] ? ocfs2_lookup+0x4a0/0x990
[ 86.033298][ T5324] ocfs2_create+0x1a5/0x440
[ 86.033311][ T5324] ? __pfx_ocfs2_lookup+0x10/0x10
[ 86.033321][ T5324] ? from_kgid+0x1b0/0x650
[ 86.033334][ T5324] ? __pfx_ocfs2_create+0x10/0x10
[ 86.033345][ T5324] ? HAS_UNMAPPED_ID+0x11a/0x180
[ 86.033359][ T5324] ? inode_permission+0xf8/0x490
[ 86.033368][ T5324] ? bpf_lsm_inode_create+0x9/0x20
[ 86.033375][ T5324] ? __pfx_ocfs2_create+0x10/0x10
[ 86.033383][ T5324] path_openat+0x14f4/0x3830
[ 86.033389][ T5324] ? arch_stack_walk+0xfc/0x150
[ 86.033407][ T5324] ? __pfx_path_openat+0x10/0x10
[ 86.033417][ T5324] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.033432][ T5324] do_filp_open+0x1fa/0x410
[ 86.033443][ T5324] ? __pfx_do_filp_open+0x10/0x10
[ 86.033459][ T5324] ? _raw_spin_unlock+0x28/0x50
[ 86.033477][ T5324] ? alloc_fd+0x64c/0x6c0
[ 86.033489][ T5324] do_sys_openat2+0x121/0x1c0
[ 86.033497][ T5324] ? __pfx_do_sys_openat2+0x10/0x10
[ 86.033504][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.033512][ T5324] __x64_sys_openat+0x138/0x170
[ 86.033519][ T5324] do_syscall_64+0xf6/0x210
[ 86.033530][ T5324] ? clear_bhb_loop+0x60/0xb0
[ 86.033538][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.033545][ T5324] RIP: 0033:0x7ff47ab8e969
[ 86.033554][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 86.033560][ T5324] RSP: 002b:00007ff47ba65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 86.033568][ T5324] RAX: ffffffffffffffda RBX: 00007ff47adb5fa0 RCX: 00007ff47ab8e969
[ 86.033573][ T5324] RDX: 000000000000275a RSI: 0000200000000180 RDI: ffffffffffffff9c
[ 86.033578][ T5324] RBP: 00007ff47ac10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 86.033582][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.033588][ T5324] R13: 0000000000000000 R14: 00007ff47adb5fa0 R15: 00007ffea0499e78
[ 86.033599][ T5324]
[ 86.033602][ T5324]
[ 86.217020][ T5324] Allocated by task 5331:
[ 86.218922][ T5324] kasan_save_track+0x3e/0x80
[ 86.220964][ T5324] __kasan_slab_alloc+0x6c/0x80
[ 86.222825][ T5324] kmem_cache_alloc_noprof+0x1c1/0x3c0
[ 86.225025][ T5324] vm_area_alloc+0x24/0x140
[ 86.226856][ T5324] mmap_region+0xcf4/0x1e50
[ 86.228681][ T5324] do_mmap+0xc68/0x1100
[ 86.230546][ T5324] vm_mmap_pgoff+0x31b/0x4c0
[ 86.232755][ T5324] ksys_mmap_pgoff+0x51f/0x760
[ 86.234706][ T5324] do_syscall_64+0xf6/0x210
[ 86.236624][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.239189][ T5324]
[ 86.240205][ T5324] Freed by task 15:
[ 86.241839][ T5324] kasan_save_track+0x3e/0x80
[ 86.243819][ T5324] kasan_save_free_info+0x46/0x50
[ 86.245985][ T5324] __kasan_slab_free+0x62/0x70
[ 86.247915][ T5324] slab_free_after_rcu_debug+0x127/0x290
[ 86.250102][ T5324] rcu_core+0xca8/0x1710
[ 86.251907][ T5324] handle_softirqs+0x286/0x870
[ 86.253973][ T5324] run_ksoftirqd+0x9b/0x100
[ 86.255908][ T5324] smpboot_thread_fn+0x542/0xa60
[ 86.258045][ T5324] kthread+0x70e/0x8a0
[ 86.259705][ T5324] ret_from_fork+0x4b/0x80
[ 86.261630][ T5324] ret_from_fork_asm+0x1a/0x30
[ 86.263572][ T5324]
[ 86.264644][ T5324] Last potentially related work creation:
[ 86.267041][ T5324] kasan_save_stack+0x3e/0x60
[ 86.269041][ T5324] kasan_record_aux_stack+0xbc/0xd0
[ 86.271176][ T5324] kmem_cache_free+0x2ee/0x3f0
[ 86.273140][ T5324] exit_mmap+0x593/0xba0
[ 86.274932][ T5324] __mmput+0x118/0x420
[ 86.276639][ T5324] exit_mm+0x1da/0x2c0
[ 86.278405][ T5324] do_exit+0x859/0x2550
[ 86.280113][ T5324] do_group_exit+0x21c/0x2d0
[ 86.282040][ T5324] __x64_sys_exit_group+0x3f/0x40
[ 86.284106][ T5324] x64_sys_call+0x21ba/0x21c0
[ 86.286129][ T5324] do_syscall_64+0xf6/0x210
[ 86.288032][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.290478][ T5324]
[ 86.291497][ T5324] The buggy address belongs to the object at ffff888043931000
[ 86.291497][ T5324] which belongs to the cache vm_area_struct of size 256
[ 86.297323][ T5324] The buggy address is located 0 bytes inside of
[ 86.297323][ T5324] freed 256-byte region [ffff888043931000, ffff888043931100)
[ 86.302741][ T5324]
[ 86.303706][ T5324] The buggy address belongs to the physical page:
[ 86.306496][ T5324] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43931
[ 86.310243][ T5324] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 86.313230][ T5324] page_type: f5(slab)
[ 86.314968][ T5324] raw: 04fff00000000000 ffff88803044fb40 ffffea0000e48240 dead000000000004
[ 86.318481][ T5324] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[ 86.322235][ T5324] page dumped because: kasan: bad access detected
[ 86.324974][ T5324] page_owner tracks the page as allocated
[ 86.327364][ T5324] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5131, tgid 5131 (rm), ts 52333042674, free_ts 51296574777
[ 86.335035][ T5324] post_alloc_hook+0x1d8/0x230
[ 86.337123][ T5324] get_page_from_freelist+0x21ce/0x22b0
[ 86.339440][ T5324] __alloc_frozen_pages_noprof+0x181/0x370
[ 86.341928][ T5324] alloc_pages_mpol+0x232/0x4a0
[ 86.343957][ T5324] allocate_slab+0x8a/0x3b0
[ 86.345939][ T5324] ___slab_alloc+0xbfc/0x1480
[ 86.347905][ T5324] kmem_cache_alloc_noprof+0x283/0x3c0
[ 86.350174][ T5324] vm_area_dup+0x28/0x540
[ 86.351968][ T5324] __split_vma+0x1a0/0x9b0
[ 86.354056][ T5324] vma_modify+0x327/0x460
[ 86.355831][ T5324] vma_modify_flags+0x1e8/0x230
[ 86.357953][ T5324] mprotect_fixup+0x400/0x9b0
[ 86.359940][ T5324] do_mprotect_pkey+0x8cd/0xce0
[ 86.362001][ T5324] __x64_sys_mprotect+0x80/0x90
[ 86.364060][ T5324] do_syscall_64+0xf6/0x210
[ 86.366040][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.368498][ T5324] page last free pid 5014 tgid 5014 stack trace:
[ 86.371186][ T5324] __free_frozen_pages+0xb0e/0xcd0
[ 86.373298][ T5324] rcu_core+0xca8/0x1710
[ 86.375135][ T5324] handle_softirqs+0x286/0x870
[ 86.377147][ T5324] __irq_exit_rcu+0xca/0x1f0
[ 86.379010][ T5324] irq_exit_rcu+0x9/0x30
[ 86.380763][ T5324] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 86.383084][ T5324] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 86.385630][ T5324]
[ 86.386686][ T5324] Memory state around the buggy address:
[ 86.389025][ T5324] ffff888043930f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.392232][ T5324] ffff888043930f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 86.395472][ T5324] >ffff888043931000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.398660][ T5324] ^
[ 86.400281][ T5324] ffff888043931080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 86.403379][ T5324] ffff888043931100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 86.406827][ T5324] ==================================================================
[ 86.620179][ T5324] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 86.623111][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted 6.15.0-rc7-syzkaller-00144-gb1427432d3b6 #0 PREEMPT(full)
[ 86.627742][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.632203][ T5324] Call Trace:
[ 86.633631][ T5324]
[ 86.634893][ T5324] dump_stack_lvl+0x99/0x250
[ 86.636821][ T5324] ? __asan_memcpy+0x40/0x70
[ 86.638747][ T5324] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.640933][ T5324] ? __pfx__printk+0x10/0x10
[ 86.642957][ T5324] panic+0x2db/0x790
[ 86.644614][ T5324] ? __pfx_panic+0x10/0x10
[ 86.646519][ T5324] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 86.649009][ T5324] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 86.651652][ T5324] ? print_memory_metadata+0x314/0x400
[ 86.653919][ T5324] ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.656572][ T5324] check_panic_on_warn+0x89/0xb0
[ 86.658708][ T5324] ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.661174][ T5324] end_report+0x78/0x160
[ 86.663030][ T5324] kasan_report+0x129/0x150
[ 86.665054][ T5324] ? ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.667566][ T5324] ocfs2_claim_suballoc_bits+0x8b2/0x2450
[ 86.670322][ T5324] ? check_noncircular+0xe0/0x160
[ 86.672600][ T5324] ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[ 86.675176][ T5324] ? lockdep_unlock+0x89/0x120
[ 86.677195][ T5324] ? validate_chain+0x897/0x2140
[ 86.679346][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.681469][ T5324] ocfs2_claim_new_inode+0x332/0x7a0
[ 86.683740][ T5324] ? __pfx_ocfs2_claim_new_inode+0x10/0x10
[ 86.686366][ T5324] ? _raw_spin_lock_irq+0xae/0xf0
[ 86.688502][ T5324] ? __pfx__raw_spin_lock_irq+0x10/0x10
[ 86.690820][ T5324] ocfs2_mknod_locked+0x100/0x250
[ 86.692944][ T5324] ? __pfx_ocfs2_mknod_locked+0x10/0x10
[ 86.695360][ T5324] ? dquot_alloc_inode+0x216/0xa50
[ 86.697596][ T5324] ? ocfs2_block_signals+0x94/0xe0
[ 86.699677][ T5324] ? __pfx_ocfs2_block_signals+0x10/0x10
[ 86.702633][ T5324] ? ocfs2_init_security_get+0x139/0x1a0
[ 86.706232][ T5324] ocfs2_mknod+0x10c7/0x2050
[ 86.707958][ T5324] ? __pfx_ocfs2_mknod+0x10/0x10
[ 86.710014][ T5324] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 86.712370][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.714487][ T5324] ? do_raw_spin_unlock+0x4d/0x240
[ 86.716891][ T5324] ? look_up_lock_class+0x74/0x170
[ 86.719137][ T5324] ? register_lock_class+0x51/0x320
[ 86.721408][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.723330][ T5324] ? __lock_acquire+0xaac/0xd20
[ 86.725366][ T5324] ? do_raw_spin_lock+0x121/0x290
[ 86.727524][ T5324] ? do_raw_spin_unlock+0x4d/0x240
[ 86.729799][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.731840][ T5324] ? ocfs2_lookup+0x4a0/0x990
[ 86.733816][ T5324] ocfs2_create+0x1a5/0x440
[ 86.735819][ T5324] ? __pfx_ocfs2_lookup+0x10/0x10
[ 86.738074][ T5324] ? from_kgid+0x1b0/0x650
[ 86.740021][ T5324] ? __pfx_ocfs2_create+0x10/0x10
[ 86.742112][ T5324] ? HAS_UNMAPPED_ID+0x11a/0x180
[ 86.744233][ T5324] ? inode_permission+0xf8/0x490
[ 86.746282][ T5324] ? bpf_lsm_inode_create+0x9/0x20
[ 86.748383][ T5324] ? __pfx_ocfs2_create+0x10/0x10
[ 86.750545][ T5324] path_openat+0x14f4/0x3830
[ 86.752487][ T5324] ? arch_stack_walk+0xfc/0x150
[ 86.754378][ T5324] ? __pfx_path_openat+0x10/0x10
[ 86.756521][ T5324] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.759066][ T5324] do_filp_open+0x1fa/0x410
[ 86.761011][ T5324] ? __pfx_do_filp_open+0x10/0x10
[ 86.763103][ T5324] ? _raw_spin_unlock+0x28/0x50
[ 86.765127][ T5324] ? alloc_fd+0x64c/0x6c0
[ 86.766942][ T5324] do_sys_openat2+0x121/0x1c0
[ 86.768932][ T5324] ? __pfx_do_sys_openat2+0x10/0x10
[ 86.771027][ T5324] ? rcu_is_watching+0x15/0xb0
[ 86.773147][ T5324] __x64_sys_openat+0x138/0x170
[ 86.775128][ T5324] do_syscall_64+0xf6/0x210
[ 86.777285][ T5324] ? clear_bhb_loop+0x60/0xb0
[ 86.779177][ T5324] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.781876][ T5324] RIP: 0033:0x7ff47ab8e969
[ 86.783815][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 86.791784][ T5324] RSP: 002b:00007ff47ba65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 86.795196][ T5324] RAX: ffffffffffffffda RBX: 00007ff47adb5fa0 RCX: 00007ff47ab8e969
[ 86.798559][ T5324] RDX: 000000000000275a RSI: 0000200000000180 RDI: ffffffffffffff9c
[ 86.801664][ T5324] RBP: 00007ff47ac10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 86.805028][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.808288][ T5324] R13: 0000000000000000 R14: 00007ff47adb5fa0 R15: 00007ffea0499e78
[ 86.811518][ T5324]
[ 86.813543][ T5324] Kernel Offset: disabled
[ 86.815426][ T5324] Rebooting in 86400 seconds..