program: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000240), 0x3af4701e) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2) ioctl$VIDIOC_G_AUDOUT(r1, 0x80345631, 0x0) syz_mount_image$btrfs(&(0x7f00000001c0), &(0x7f0000005140)='./file0\x00', 0x1000884, &(0x7f0000000900)={[{@clear_cache}, {@nodatacow}, {@nossd_spread}, {@noautodefrag}, {@nobarrier}, {@nospace_cache}, {@nospace_cache}, {@usebackuproot}]}, 0x1, 0x5100, &(0x7f000000f3c0)="$eJzs3U+IVWUfB/Dnzp1x5lVw7isEtsoikGrh4CYioqtMUFF0y8VgBE4tgnThJEi0EMQW/Vt4S4paSK6kFsksjKA2LqQwArehYS7cKAaSi3Yac8957pz7HO+5d0ZtTD8fmTnnOb/zPOe5l7O43+uccwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACEEF74/bNDVfVT16bPnJtp7jywZebyvul1p0OodbbX8vqOrc++8ua2HS9OxA6zL2fLRqPfkFnX81ljVc/GhX69P6+HEMaSAer58pk1pVGLq3vKA1a6fnH30U17mxuPH27Xr146e7L80lkwsdITWCn5eXVh8Vxqdn6PJHt024VTr9Zzimb90xPuX3kRAMCSTLU6i+7H0fwjbre9P60n7WbSbift+AmhXWwsRzbuqn7z3JDWV2iezSwqjPedZ1LP3/9uu5X2T9pJ1FjCPHt3zSPNRL95ziX1lZonAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJ3kkbdHH6qqn7o2febcTHPngS0zl/dNrzsdQqOzvZaVa6vfP9z869utxw78uPmr4xeef6ye94vL0cLO4be48sRkCG8UKhfisBfXhtDqLXSa4cty4a3OynOxAAAAwN3k/s7vkW47i4NjPe1aJ03WOv+iLCxev7j76Ka9zY3HD7frVy+dPbn88Vp9xmvecLxuu7H4UysE4xh/0/EW63HXPaVxqqUjpnn+8fNTf1f1L+X/RnX+j++c/A8AAMDNkP/TcaoNyv/fvfbHJ1X9S/l/Q88hS/k/zjjm/5GwvPwPAAAAd7Lbnf+bpXGqDcr/4y+NfV3Vv5T/p4bL/6PFaceNv8YJ75oMYWrQ1AEAAIA+4v+7L361EPN69s1BmtefevTguarxSvm/OVz+H7ulrwoAAAC4GUe+2P5wVb2U/1vD5f/x2zprAAAAYCne+XDig6p6Kf/PDpf/V+fL/MqHrNNP8a8QDk2GMLGwMpcVfg7tp7sFAAAA4BaJOf3PT3f+ULVfKf/PVd//P97pIF7/33P/v9L1/4VCdte/J90YAAAAgHtR+Xr+eHv87MkF/Z6/P+z1/w/87+CrVccv5f/9w+X/enF5K5//BwAAAMvwX3v+3/bSONUG3f//vo/e/aWqfyn/t4fL/3G5pvjyTsT3573JENYvrOR3E/wmHm5XUpgfKxQ6WkmPbbFHXpgfLxQ65pIemydDeHBhZX9S+H8stJPClbV54UhSOB0L+fnQLRxLCifimfb52ny6aeH7WMgvsJiPV1Cs6V4SkfS42q/HQuGGPc52Dw4AAHBPieE5z7Jjvc2QRtn52qAdVg/aYWTQDvVBO4wmO6Q79tseZnsLcXv7zMalPf//yHD5P74Vq7JFv+v/Q7z+P3+uYff6/9lYaCSF+VhopXcMaMVjZGH343iMRivvcWV9twAAAAB3tfi9QH2F5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP+zda4xcV30A8LPP2ZfXm0BFSBEsUMe44PXaDg+1qVinqYpCKeuSElWIYmOvw+INNrZTcATIsYNSFCVNSyT40CiOEKrzIalFggJNoriRMIqaB0rViCRKRFoniCg0DaCkEAlXs/ee2Tvn7jxs7zre9PeTvHNm/ud55+E59945FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg/4cjX/3C3zaLP/Dbi554+tKJz+7fcOkLX77o7EdCmJx9vCMLdwxcc9PEL2678Pb9d6+7+c5jF7+7Ny+Xx8Ng9U9nfufqWOuxZSHc1RFCdxpYPZQFevL7Q7G+twyFcFaYC9RKTA1kJdKGww/6QzgY5gK1qr7fH8JQIXDJo/ffd101cWN/CCtCCJW0jacqWRv9aeC83iwwkAZ2dGeBV45naoHvdWYBOGXxzVB70R+erM8wMn+5Bq+/ngXr2GsrHV5XTIw0zvfzDYvcqYLe9IHJU3raStWxKEpvjyPebUvg3Vbazjd42opfpPJvKMfnQpXQuXVq2+YrZvbERzrD2FhXo5oW6Xl+/KUvbTmR9JJ5HcYOjCzI6/D6h1fc1rXqIw/duXrFc4fec+D5U+3mjwubtJhebJWQv+aWzPMYTfg8WQJvv9K3pFFfukII2z7zex9tFi/N/0eaz//jyznedtbljrW+OpzNzeMjQzHx4nA2NwcAAIAlYynsNd0xdu8HmtVXmv+Ptnf8Px7yzyfz2WiPhDAxmziwPIRzZh/PArfG5j69PIS3z6Ym6wMbksCREN48m1hVqyop0RdLjCaBnw7ngYkkcDQGJpPAt2PghiRwdQwcTgJbYuBIErgwBsJ0/Th+fzgfR9uB/hjYlG3Ew/EshF8Ox9aSbfVkrSoAAIAFks8Oe+rvFs51ONUMcXp5uL9VhngGdsMMlaSGdAZbm1Y1rKG7VQ2drWqojXtf8+GXau5oVXPpNIyO+gw3/epvPhaaKM3/x5vP/yvzdKSjdPw/hI2zf2PuzjwyU4tvmqzLAAAAAJyCwf995lvN4qX5/0R75//HfSJdhczhwbgbYvvyEMbrA1m1f1gOZEe9B/MAAAAALAW14/G1Y+HT+W12inY6ny7nnzzB/PHA/8S8+XuP3LOpWX9L8//J9s7/H6i/zTpxNPbi68tD6CsEfhh7WQ3MGo2Bn3ywPpCP/2jcANfGqvITE2pVXRtLbIqB8SRwsFGJH9VKnFMfyJ+sWuMHauOYzksUAgAAAHDaxd0B8bh8PP//Hb9Z94Vm5Urz/00ndv7/7Dy4dHr/zGAIa7pD6Ep/GPDgQLYwYAwMdeSJeweyurrSqq4aCOGC6sDSqp7J1//vTtcYfLQ/qyoGznnHoZfOqya+1R/CmmLgsU/c8t5qYk8SqDX+l/0hvK062rTx7/ZljfekjX+jL4S3FgK1qj7dF0K1sd60qvsr+XUM0qr+uRLCGwqBWlXvq4SwNwCwRMX/SrcWH9y998rtm2dmpnYtYiLuw+8P26Znpsa27JjZWmnQp61Jn+uWMbqqPKZ2r3zzZL5E0cfv2DjUTrr2O8HxYlv5fvzSiYP5/fhdqGd2nOt66u6uT4f8rneWmwiFb1KNhty5yEMeKFYy9ySW6o/5e8Ng6Lti99SusS9u3rNn19rsb7vZ12V/42GmbFutTbfVwHx9a+Pl0XC1rMTJbquVxUrW7Ll855rde69cPX355sumLpv63Nr3rRs/f3z9+PvPX1Md1Xj2t8VQV85XdTLU47e0Oa4FHOq53YVKTsenhoSExFJL7Bhc2fT/5NL8f2fz+X/81Imf/Pn6DI2O/4/Ew/zZ43OH+TfFwMF2j/+PNDqaXzsxYDQJ7IuBfQ7zAwAA8PoQJ/lxb2bcK/2zVd99rlm50vx/X3u//1+g9f9rS9df3GiZ/1WxxHij9f/TZf5r6//va7T+f7rMf239/4Ovwfr/V9QCySb5pfX/AQCA14MFXP+/+lCT9f9bLu+fXiCglKHl8v7pBQJKGVou49/uBQJOeP3/p/7zr/47NFGa/9/Q3vzfwv0AAABw5vjKn33hd5rFS/P/g+3N/0//+n+h0fn/o40Ck40WBrT+HwAAAEtUo/X/Rq4Z+FSzcqX5/+H25v+vHM901uWOtb46nK1pF9I17V4crv1kAAAAAJaGzjA21tNm3rqVUTecfJuP50uBNksXPfMnx07s/P8j7c3/636Xcf3DK27rWvWRh169c/WK5w6958Dzc8f/AQAAgMXT7n4JAAAAAAAAAAAAAADgtffMf+xf3yxe+v1/2Dj7eKPf/8fr/sXfF7yxLnestfX6f/n9Sz58+97ZJQsfHA7hncXA9v3bzwr5tflXFgP3fXLVm6qJ/WmJe56+8Nlq4lNp4EOrz365mrggCWyKiyS+OQ3Eqyq+vCwJxOUV/z0NxO1xOA305oGvLcvG0ZFuq58NZduqI91WTwyFsLwQqG2ru4ayNjrSAd6YBGoD/HwaiAP88zzQmfbq9sGsVzEwFIvePJj1CgCAM1b8FtgTtk3PTI3Hr/Dx9tzu+tuobsmyq8rVdrTZ/JP50mQfv2PjUDvprvS76Ny1xntCpTqEtaWvq8UsHbOjXJhaWmy6NzYYcqvV3joblEud6KbrbTyi/mxEY1t2zGztaTnw9a2zrOtumWVtabJTzNI5u0nbqKWNvrQxoja3TRtdjvc7w9hYV5LrD2JwJNRp9Ypo9/f6xXX+Gr0Kink+d+zAK83qK83/R9qb/1eK43o5vxjAvnhlvb9bbpl/AAAAWFxf2/Drb8Z/H7vmgcea5S3N/0fbm//HPVj5oeBsb8eReP3/A8tDmL20/kgWuDU29+nlIbx9NjUZS2QX1L84lhjPArfGHSarYolNk/VV9cXA4STw0+E8cCQJHI2BfC/FoZDvyvn74RDeO5vaWF9iZywxkgQ+GgOjSWAsBsaTwLIYmEgCLyzLA5NJ4N9iIEzXb6s7luXbCgAA4ETk86ye+rshnecd7m6VoaNVhoFWGTpbZai0ytBoFPH+d2KGnuTklY5Cpp601v6kllKGeDH8E+5XKUP4UX3OtGCp6Xj+Qe18g476DHd/oLsSmijN/8fbm/8P1N9mrR+N8/+56/9lgR/G7n09njo+GgM/+WB9IN8xcDROdq+tVTWZl8gn7dfGEhMxMJoEdsbARBLYtDEPHHxTfSCfadcaP1BrfDovUQgAAADAaRd3EMTdNHH+f/Purw42K1ea/0+0N/+P7Q0WG7s61npsWQh3dcz1phZYPZQF4n6Mofjz+LcMhXBWYQdHrcTUQFaiN2k4/KA/+4V6b1rV9/uzHx/E+5c8ev9911UTN/aHsKKw96XWxlOVrI3+NHBebxYYSAM7urNA3PNTC3yvMwvAKavtFYwvqPxUl5qR+cs1eP29Xq4Jmg6vtA90nnzz/eZqsZR2uOb7VGtO7Glruv+WBVN6exzxbluK77YR77biF6n8G8rxuVAldG6d2rb5ipk98ZHiL1lLFul5Lv5KtZ30ArwO9518b1urpB0YTz4+xucvN//rsCNWd/3DK27rWvWRh+5cvaL6lD7fdjcaiD8Uvv/L/zr048LmXWyVkL/mltznyaTPk6X438Copy2EsPGFb1zbLF6a/0+2N//vTm5n/TpuzN3LQ3hXYeM+GDf/Hy/PPgcLgexT8g3lQHbI/b+GG35yAgAAwEKr7e6o7S+Yzm+zE8LTeXI5/+QJ5o/7Kybmzd9uvwf++pMrmsVL8/9Nzef/fUk3Hf93/J+F0ld/1/H/eZ3pu6L70gf2ndKu6FJ1LArH/+d1pr/bHP+fl+P/r7vj/88des8Bx/8Xm+P/8zrTn7bSt6SdvnSFEJ77o3ufaBYvzf93tjf/t/7f/Iv21db/29Ro/b+djdb/22f9PwAAYFE1WGguneeVVu8rZUhX7ytlaLlAYMslBq3/d8Lr/z177lO/CU2U5v/72pv/x5fDYLH1pbL+3+jGBlXdEAM7LQwIAADAmajRDgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABeW3f/w/9sbRZ/4LcXPfH0pROf3b/h0he+fNHZj4QwPft4RxbuGLjmpolf3Hbh7fvvXnfznccufnclL9eT3/5uXe5Y66vDIRwsPDIUEy8OV+/MBS758O17u6uJB4dDeGcxsH3/9rNCOF759nAIK4uB+z656k3VxP60xD1PX/hsNfGpNPCh1We/XE1ckAc60u7+47Ksux1pd69bFsLyQqDW3c8uq6+q1saf5oHOtI1/GsraiIGhWPSbQ1kbMTATS0z3hbCmO4SutKoHKllVXWlV/1LJqupKq/pKJYQLQgjdaVVP92ZVdacjf6Q3qyoGznnHoZfOqyYO9oawphh47BO3vLea+HwSqDX+F70hvK36kkkb/05P1nhP2viNPSG8NYTQm5b4VXdWojct8Ux3CG8oBGqNf6Y7hL2B14X44VP3ibZ775XbN8/MTO1axERv3lZ/2DY9MzW2ZcfM1krSp0Y6CunjV5382J986Utbqrcfv2PjUDvp7rxcz2yX1/XU3V1/pvc+9mugWMnc81Gqv1Lr7mDou2L31K6xL27es2fX2uxvo+yhtz77uuxvVx7NttXapbKtVhYrWbPn8p1rdu+9cvX05Zsvm7ps6nNr37du/Pzx9ePvP39NdVTj2d+FGOotp3+o53YXKjkdHwASEhJLLdFZ9+k2fqZ/kJe+6M91tCdUZj+gS9OKYpaO2VEuxKA3nOSIT+Z7SssRrS1NHEpZ1rXOsr40mZjL0p9lmf1eV5ocFmvqnN2k8X5nGBvrarQdRurvFjfvz09h8z6eb7p20wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8H/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuBQAA//+4TB3h") ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f00000002c0)={0xffffff00, 0x101, 0x8, 0x8, 0x40}) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r2, 0x4, 0x6000) ioctl$SG_SET_TIMEOUT(0xffffffffffffffff, 0x2201, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$fou(&(0x7f0000000100), r3) syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) io_submit(r4, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x4000000, 0x8000000}]) (fail_nth: 36) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r0, 0x0) [ 88.152184][ T5291] Bluetooth: hci0: command tx timeout [ 88.964809][ T5328] loop0: detected capacity change from 0 to 32768 [ 88.980307][ T5328] btrfs: Deprecated parameter 'usebackuproot' [ 88.990362][ T5328] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 89.020624][ T5328] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.0 (5328) [ 89.096102][ T5328] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 89.106610][ T5328] BTRFS info (device loop0): using crc32c checksum algorithm [ 89.250073][ T41] BTRFS warning (device loop0): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xb6fb6650 level 0 [ 89.272013][ T5328] BTRFS warning (device loop0): couldn't read tree root [ 89.281987][ T5328] BTRFS warning (device loop0): try to load backup roots slot 1 [ 89.297889][ T41] BTRFS warning (device loop0): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x7a216cc0 level 0 [ 89.309796][ T5328] BTRFS warning (device loop0): couldn't read tree root [ 89.317270][ T5328] BTRFS warning (device loop0): try to load backup roots slot 2 [ 89.327247][ T41] BTRFS error (device loop0): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 89.333045][ T5328] BTRFS warning (device loop0): couldn't read tree root [ 89.338073][ T5328] BTRFS warning (device loop0): try to load backup roots slot 3 [ 89.381297][ T5328] BTRFS info (device loop0): rebuilding free space tree [ 89.478156][ T5328] BTRFS info (device loop0): disabling free space tree [ 89.487173][ T5328] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 89.498547][ T5328] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 89.520454][ T5328] BTRFS info (device loop0): checking UUID tree [ 89.527671][ T5328] BTRFS info (device loop0): setting nodatasum [ 89.536996][ T5328] BTRFS info (device loop0): setting nodatacow [ 89.540450][ T5328] BTRFS info (device loop0): enabling ssd optimizations [ 89.547421][ T5328] BTRFS info (device loop0): turning off barriers [ 89.557000][ T5328] BTRFS info (device loop0): turning on async discard [ 89.560368][ T5328] BTRFS info (device loop0): force clearing of disk cache [ 89.567157][ T5328] BTRFS info (device loop0): trying to use backup root at mount time [ 89.648838][ T5327] FAULT_INJECTION: forcing a failure. [ 89.648838][ T5327] name failslab, interval 1, probability 0, space 0, times 1 [ 89.658428][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 89.658446][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 89.658452][ T5327] Call Trace: [ 89.658457][ T5327] [ 89.658463][ T5327] dump_stack_lvl+0xe8/0x150 [ 89.658569][ T5327] should_fail_ex+0x412/0x560 [ 89.658617][ T5327] should_failslab+0xa8/0x100 [ 89.658630][ T5327] ? alloc_ordered_extent+0x271/0x890 [ 89.658645][ T5327] kmem_cache_alloc_noprof+0x87/0x650 [ 89.658666][ T5327] alloc_ordered_extent+0x271/0x890 [ 89.658682][ T5327] ? __pfx_alloc_ordered_extent+0x10/0x10 [ 89.658704][ T5327] btrfs_alloc_ordered_extent+0x1f1/0xad0 [ 89.658722][ T5327] ? btrfs_create_io_em+0x527/0x6d0 [ 89.658737][ T5327] btrfs_create_dio_extent+0x7c/0x160 [ 89.658753][ T5327] btrfs_get_blocks_direct_write+0x851/0xcd0 [ 89.658776][ T5327] ? __pfx_btrfs_get_blocks_direct_write+0x10/0x10 [ 89.658810][ T5327] btrfs_dio_iomap_begin+0xa80/0x1010 [ 89.658834][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 89.658853][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 89.658866][ T5327] iomap_iter+0x600/0xf90 [ 89.658882][ T5327] ? blk_start_plug+0x51/0x1b0 [ 89.658898][ T5327] __iomap_dio_rw+0xcd7/0x1e40 [ 89.658927][ T5327] ? __pfx___iomap_dio_rw+0x10/0x10 [ 89.658957][ T5327] btrfs_direct_write+0x81f/0xb70 [ 89.658975][ T5327] ? __pfx_btrfs_direct_write+0x10/0x10 [ 89.658988][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 89.659043][ T5327] btrfs_do_write_iter+0x330/0x840 [ 89.659060][ T5327] ? __pfx_btrfs_do_write_iter+0x10/0x10 [ 89.659073][ T5327] ? aio_write+0x547/0x870 [ 89.659090][ T5327] aio_write+0x5cd/0x870 [ 89.659107][ T5327] ? __pfx_aio_write+0x10/0x10 [ 89.659128][ T5327] ? __might_fault+0xaf/0x130 [ 89.659152][ T5327] io_submit_one+0x7bb/0x14c0 [ 89.659193][ T5327] ? irqentry_exit+0x218/0x760 [ 89.659213][ T5327] ? __pfx_io_submit_one+0x10/0x10 [ 89.659227][ T5327] ? __might_fault+0xaf/0x130 [ 89.659245][ T5327] ? __might_fault+0xaf/0x130 [ 89.659258][ T5327] __se_sys_io_submit+0x195/0x340 [ 89.659269][ T5327] ? __pfx___se_sys_io_submit+0x10/0x10 [ 89.659276][ T5327] ? ksys_write+0x242/0x270 [ 89.659291][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.659302][ T5327] do_syscall_64+0x15f/0xf80 [ 89.659313][ T5327] ? trace_irq_disable+0x3b/0x140 [ 89.659323][ T5327] ? clear_bhb_loop+0x40/0x90 [ 89.659331][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.659338][ T5327] RIP: 0033:0x7fbf8b39ce59 [ 89.659347][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 89.659356][ T5327] RSP: 002b:00007fbf8c32ffe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 89.659368][ T5327] RAX: ffffffffffffffda RBX: 00007fbf8b615fa0 RCX: 00007fbf8b39ce59 [ 89.659375][ T5327] RDX: 0000200000000540 RSI: 000000000000003b RDI: 00007fbf8c2e6000 [ 89.659381][ T5327] RBP: 00007fbf8c330050 R08: 0000000000000000 R09: 0000000000000000 [ 89.659387][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 89.659393][ T5327] R13: 00007fbf8b616038 R14: 00007fbf8b615fa0 R15: 00007ffe1b463da8 [ 89.659411][ T5327] [ 89.660097][ T5327] ------------[ cut here ]------------ [ 89.801326][ T5327] 1 [ 89.801337][ T5327] WARNING: fs/btrfs/space-info.h:275 at btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0, CPU#0: syz.0.0/5327 [ 89.807678][ T5327] Modules linked in: [ 89.809602][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 89.813427][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 89.817920][ T5327] RIP: 0010:btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 89.821241][ T5327] Code: 00 00 74 08 48 89 df e8 28 6c 1c fe 4c 8b 3b 4c 89 ff 4c 8b 64 24 10 4c 89 e6 e8 c5 a2 af fd 4d 39 e7 73 16 e8 5b a0 af fd 90 <0f> 0b 90 45 31 ff 41 80 7c 2d 00 00 75 95 eb 9b e8 45 a0 af fd 41 [ 89.829859][ T5327] RSP: 0018:ffffc9000315f2a0 EFLAGS: 00010293 [ 89.832546][ T5327] RAX: ffffffff84163375 RBX: ffff888041eca880 RCX: ffff88801fa5ca00 [ 89.836010][ T5327] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 000000000053e000 [ 89.839589][ T5327] RBP: dffffc0000000000 R08: ffffffff9030e6f7 R09: 1ffffffff2061cde [ 89.843076][ T5327] R10: dffffc0000000000 R11: fffffbfff2061cdf R12: 0000000000800000 [ 89.846881][ T5327] R13: 1ffff110083d9510 R14: ffff888041eca800 R15: 000000000053e000 [ 89.850374][ T5327] FS: 00007fbf8c3306c0(0000) GS:ffff88808c87f000(0000) knlGS:0000000000000000 [ 89.854288][ T5327] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 89.857541][ T5327] CR2: 000055da8ddff080 CR3: 0000000041249000 CR4: 0000000000352ef0 [ 89.861105][ T5327] Call Trace: [ 89.862612][ T5327] [ 89.864085][ T5327] btrfs_free_reserved_data_space+0x9f/0xe0 [ 89.866676][ T5327] btrfs_dio_iomap_begin+0x8bd/0x1010 [ 89.869131][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 89.871717][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 89.874080][ T5327] iomap_iter+0x600/0xf90 [ 89.875896][ T5327] ? blk_start_plug+0x51/0x1b0 [ 89.878121][ T5327] __iomap_dio_rw+0xcd7/0x1e40 [ 89.880336][ T5327] ? __pfx___iomap_dio_rw+0x10/0x10 [ 89.882702][ T5327] btrfs_direct_write+0x81f/0xb70 [ 89.884985][ T5327] ? __pfx_btrfs_direct_write+0x10/0x10 [ 89.887459][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 89.889703][ T5327] btrfs_do_write_iter+0x330/0x840 [ 89.891866][ T5327] ? __pfx_btrfs_do_write_iter+0x10/0x10 [ 89.894364][ T5327] ? aio_write+0x547/0x870 [ 89.896362][ T5327] aio_write+0x5cd/0x870 [ 89.898297][ T5327] ? __pfx_aio_write+0x10/0x10 [ 89.900336][ T5327] ? __might_fault+0xaf/0x130 [ 89.902321][ T5327] io_submit_one+0x7bb/0x14c0 [ 89.904412][ T5327] ? irqentry_exit+0x218/0x760 [ 89.906498][ T5327] ? __pfx_io_submit_one+0x10/0x10 [ 89.908935][ T5327] ? __might_fault+0xaf/0x130 [ 89.911056][ T5327] ? __might_fault+0xaf/0x130 [ 89.913151][ T5327] __se_sys_io_submit+0x195/0x340 [ 89.915319][ T5327] ? __pfx___se_sys_io_submit+0x10/0x10 [ 89.917934][ T5327] ? ksys_write+0x242/0x270 [ 89.919996][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.922797][ T5327] do_syscall_64+0x15f/0xf80 [ 89.924713][ T5327] ? trace_irq_disable+0x3b/0x140 [ 89.927146][ T5327] ? clear_bhb_loop+0x40/0x90 [ 89.929276][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 89.931962][ T5327] RIP: 0033:0x7fbf8b39ce59 [ 89.933860][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 89.942032][ T5327] RSP: 002b:00007fbf8c32ffe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 89.945494][ T5327] RAX: ffffffffffffffda RBX: 00007fbf8b615fa0 RCX: 00007fbf8b39ce59 [ 89.949254][ T5327] RDX: 0000200000000540 RSI: 000000000000003b RDI: 00007fbf8c2e6000 [ 89.952700][ T5327] RBP: 00007fbf8c330050 R08: 0000000000000000 R09: 0000000000000000 [ 89.956125][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 89.959418][ T5327] R13: 00007fbf8b616038 R14: 00007fbf8b615fa0 R15: 00007ffe1b463da8 [ 89.962782][ T5327] [ 89.964170][ T5327] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 89.967231][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 89.971059][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 89.975212][ T5327] Call Trace: [ 89.976831][ T5327] [ 89.978146][ T5327] vpanic+0x56c/0xa60 [ 89.979867][ T5327] ? __pfx__printk+0x10/0x10 [ 89.981924][ T5327] ? __pfx_vpanic+0x10/0x10 [ 89.983879][ T5327] ? is_bpf_text_address+0x292/0x2b0 [ 89.986090][ T5327] ? is_bpf_text_address+0x26/0x2b0 [ 89.988219][ T5327] panic+0xc5/0xd0 [ 89.989657][ T5327] ? __pfx_panic+0x10/0x10 [ 89.991580][ T5327] __warn+0x315/0x4c0 [ 89.993289][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 89.996259][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 89.999252][ T5327] __report_bug+0x29a/0x540 [ 90.001052][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 90.003881][ T5327] ? __pfx___report_bug+0x10/0x10 [ 90.006123][ T5327] ? __lock_acquire+0x6b5/0x2cf0 [ 90.008318][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 90.011251][ T5327] report_bug+0x16a/0x220 [ 90.013112][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 90.016148][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f8/0x6b0 [ 90.019098][ T5327] handle_bug+0x9c/0x200 [ 90.021064][ T5327] exc_invalid_op+0x1a/0x50 [ 90.023085][ T5327] asm_exc_invalid_op+0x1a/0x20 [ 90.025190][ T5327] RIP: 0010:btrfs_free_reserved_data_space_noquota+0x3f6/0x6b0 [ 90.028354][ T5327] Code: 00 00 74 08 48 89 df e8 28 6c 1c fe 4c 8b 3b 4c 89 ff 4c 8b 64 24 10 4c 89 e6 e8 c5 a2 af fd 4d 39 e7 73 16 e8 5b a0 af fd 90 <0f> 0b 90 45 31 ff 41 80 7c 2d 00 00 75 95 eb 9b e8 45 a0 af fd 41 [ 90.036649][ T5327] RSP: 0018:ffffc9000315f2a0 EFLAGS: 00010293 [ 90.039350][ T5327] RAX: ffffffff84163375 RBX: ffff888041eca880 RCX: ffff88801fa5ca00 [ 90.042826][ T5327] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 000000000053e000 [ 90.046238][ T5327] RBP: dffffc0000000000 R08: ffffffff9030e6f7 R09: 1ffffffff2061cde [ 90.049646][ T5327] R10: dffffc0000000000 R11: fffffbfff2061cdf R12: 0000000000800000 [ 90.052851][ T5327] R13: 1ffff110083d9510 R14: ffff888041eca800 R15: 000000000053e000 [ 90.056083][ T5327] ? btrfs_free_reserved_data_space_noquota+0x3f5/0x6b0 [ 90.059042][ T5327] btrfs_free_reserved_data_space+0x9f/0xe0 [ 90.061589][ T5327] btrfs_dio_iomap_begin+0x8bd/0x1010 [ 90.063982][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 90.066540][ T5327] ? __pfx_btrfs_dio_iomap_begin+0x10/0x10 [ 90.069218][ T5327] iomap_iter+0x600/0xf90 [ 90.071268][ T5327] ? blk_start_plug+0x51/0x1b0 [ 90.073905][ T5327] __iomap_dio_rw+0xcd7/0x1e40 [ 90.076438][ T5327] ? __pfx___iomap_dio_rw+0x10/0x10 [ 90.079132][ T5327] btrfs_direct_write+0x81f/0xb70 [ 90.081906][ T5327] ? __pfx_btrfs_direct_write+0x10/0x10 [ 90.084978][ T5327] ? lockdep_hardirqs_on+0x7a/0x110 [ 90.087249][ T5327] btrfs_do_write_iter+0x330/0x840 [ 90.089254][ T5327] ? __pfx_btrfs_do_write_iter+0x10/0x10 [ 90.091590][ T5327] ? aio_write+0x547/0x870 [ 90.093734][ T5327] aio_write+0x5cd/0x870 [ 90.095401][ T5327] ? __pfx_aio_write+0x10/0x10 [ 90.097297][ T5327] ? __might_fault+0xaf/0x130 [ 90.099279][ T5327] io_submit_one+0x7bb/0x14c0 [ 90.101195][ T5327] ? irqentry_exit+0x218/0x760 [ 90.103100][ T5327] ? __pfx_io_submit_one+0x10/0x10 [ 90.105244][ T5327] ? __might_fault+0xaf/0x130 [ 90.107168][ T5327] ? __might_fault+0xaf/0x130 [ 90.109182][ T5327] __se_sys_io_submit+0x195/0x340 [ 90.111375][ T5327] ? __pfx___se_sys_io_submit+0x10/0x10 [ 90.113854][ T5327] ? ksys_write+0x242/0x270 [ 90.115851][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.118437][ T5327] do_syscall_64+0x15f/0xf80 [ 90.120459][ T5327] ? trace_irq_disable+0x3b/0x140 [ 90.122753][ T5327] ? clear_bhb_loop+0x40/0x90 [ 90.124859][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.127418][ T5327] RIP: 0033:0x7fbf8b39ce59 [ 90.129318][ T5327] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 90.137497][ T5327] RSP: 002b:00007fbf8c32ffe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 90.140919][ T5327] RAX: ffffffffffffffda RBX: 00007fbf8b615fa0 RCX: 00007fbf8b39ce59 [ 90.144221][ T5327] RDX: 0000200000000540 RSI: 000000000000003b RDI: 00007fbf8c2e6000 [ 90.147606][ T5327] RBP: 00007fbf8c330050 R08: 0000000000000000 R09: 0000000000000000 [ 90.150967][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 90.154407][ T5327] R13: 00007fbf8b616038 R14: 00007fbf8b615fa0 R15: 00007ffe1b463da8 [ 90.157899][ T5327] [ 90.159685][ T5327] Kernel Offset: disabled [ 90.161631][ T5327] Rebooting in 86400 seconds..