program: r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000200), 0x2000, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x10, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x6c}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000400)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6e6f757365725f78617474722c636f686572656e63793d66756c6c2c646174613d77726974656261636b2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030312c61636c2c6e6f61636c2c6c6f63616c616c6c6f633d30303030303030303030303030303030302c00a89f6b8d5800aa954e6c8735dcd52921ce08462fb4ce7c1600883251443ac332f4d17b77d29867e4321610916dbc5963e9fb59a032c92e32ebffc3b739951e866d52bff6bd63136a656222062a8eea0cf97480bc8ac6c0e8a2aa38ffa8fa758cd54b9ef39a7f536d7b85173a83c34d78e210ecf4d040817bbe989e9eb015acb84b99b2ed90f71810cd92eeca69f5275cb7b7027d4babf643bd69b0a68134c022fe5dcd03834f547325ac2d1a5d16f074d898946ff71afa90180b317e645dd58a922e5d907462cd50dc23801c48c0d49ab012961d84d2eb85a3730a3f3177da048c3bc991216b11dca020afefc24ae7583b59534a0ab1fca82bf473216141db8e9864f7861d0500a920e1a8d3352d0662f586e743386e87b6c0c5ed6e4d192ef2990b44cedbb708e7a18b20dcd5573b603c4d659992647ffa8210abf4e9d232b52a8ea1dd1c045afd8e472cd1fbb775e89cca49d136a6"], 0x1, 0x4446, &(0x7f00000088c0)="$eJzs3b9vHFkdAPDvjH3ENslhH1ccEhIrcRIIkGVfBfgkHMeJz76YoMCdEM1mbW8Sw9ob2WtEkcJ0kaiQKBBFBBKdq8gFbfgTaChDHQkKGiSkCKPdnXV2xrt4E3kdkvt8Co/n/ba/M2/fFLMvzTTubu6WNndLle1Sff327geln9dre1vVSM9Jz/7fOr/+GcwwrpNXfe19lt24cu2Hn34Q8eeNvz49Ojo6iqbR6Gm26/d//fP+evexIy3Uabbbu7Wz8pOIePfEuJpGIuLHf4pIIuJylraQHccj4lK08z69/6tbpTMazaMn1Q/Lz1YfHM69v3Lw8LD/355E/K72pW/d2fr7V0fm/vaNM+oeAAAAAAAAAAAAAAAAAIDX3NLNG5/8YGY2HicxepCcfF93KTv2fT/26Kx8JWJy6H8uAAAAAAAAAAAAAAAAAAAA/F96/v5/KXmnx/v/i9lxvk/9o+8Nf4wMz/L3byxenZnN9n9PTuR/O0v6x+WRmOqx73tx//fLhfq9938/2c/L6oyv0+9kJOl07jxNp6cj/pBt/P5eMpHW6ruNb96u721vnNkwXlv5+Ld3789FJ9vQf9D4LxTaH/7+/188cTU1z2+d3SX2RsvHf6RvuT/+Mhko/lcK9c4j/ry8fPxHW2nj3QXm2xNAM/6/Hj09/ouF9ocV/7cjopQ0x1rKzQDNNUwzvd96hbx8/N9qpeWmzuwf2e/+/3ch/lcL7b+q+X+/+EFET/n4f66VNpYr8fz+n0pPv/+vFdp/FfFvjn/f5/9A8vG/0E4czRVp/ScHnf+XCu0PK/6fpNk4305yV8BB0k7v+3115OTjP3Yi//nzXzrQ+u+jQv3zev7r9Nt5/utM/19P2s9/9JaP/3jfcoPe/8uFesOe/+ejFElc7Jya9V9QPv4TrbT82rn9pZzd8b/wP+K/Umh/WPFvrUrG2vHvnv//c6Gd/nvrv4Hk4//5dmLaXWK/9bO1/ktOX/9/XGi/Hf9h3pYn13/N8e+nQ+zyDZKP/8W+5Zrx/8sAn//XC/WGv/6PmDHrv7R8/C/1Lde6/8dOj/9qod6w4/+1YTYOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8BpYyI6TkaTTufM0nZ6OuJKdvxcTyVplo7xWq6//bDdiMUsvxTvJnVp9rVIrb27XN6rlSq1WX4+4muW/G2PJbq3eKG9V7l07bms8uVut7DTWqpVGRCxl6V+OS5221jYbW5V7EfHRcd4X0vrOvbuV7fLG5s53Z2ZmZmL5eAxTSfUXjep2o917Ozdi5bjuZNI1uFb2x8djuZj8tL63s12ptdKvd9Wp1dcrta46q1neb2Iqaezsba9XGtVyrX6n099pkv0XDM4LmG/+SCMWl2/+6Ob12Yli/q2kfVwY3hAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAOP577z24gYbZ+lETHf+SXpVf7Rk+qH5WerDw7n3l85eHj4tF85AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/sgMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYVdOkZpIIjCAPxmLNTOY1gtu53tiiJauCJ4Aj2Gh9GjeAnvkCJF2hQhkMxC2OzCNkn1fc2D+Zl5D+YBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADDP03v38VY3ESmuNpcRf1//i8P8pdSf+/H7F2eYkdN5fu0eHuum/Hs6yu/K0bLNu3S9+v6Mkdr7HezJcJ/2+j7Xk3NN7dvUfH3fm0i5ioi25Lcp56qa9xYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzZgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCwAAAAAI87eOom8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB+BQAA///8NR6x") r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) write$FUSE_INIT(r2, &(0x7f00000000c0)={0xfffffffffffffe5a, 0x0, 0x0, {0x7, 0x2b, 0xf6, 0x44000000, 0x6, 0xd06, 0x4, 0xe5, 0x0, 0x0, 0x40, 0xfffffc00}}, 0x50) (async) write$FUSE_INIT(r2, &(0x7f00000000c0)={0xfffffffffffffe5a, 0x0, 0x0, {0x7, 0x2b, 0xf6, 0x44000000, 0x6, 0xd06, 0x4, 0xe5, 0x0, 0x0, 0x40, 0xfffffc00}}, 0x50) fallocate(r2, 0x0, 0x0, 0xffff) (async) fallocate(r2, 0x0, 0x0, 0xffff) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0) (async) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0) ioctl$FITRIM(r2, 0xc0185879, &(0x7f0000000000)={0x10000, 0x1, 0x7ff}) openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/crypto\x00', 0x0, 0x0) (async) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/crypto\x00', 0x0, 0x0) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000280)=0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r1, 0x50009417, &(0x7f00000009c0)={{r3}, r4, 0x2, @inherit={0x50, &(0x7f0000000680)={0x1, 0x1, 0x7, 0x4, {0x2b, 0x6, 0x8000000000000000, 0x1578}, [0x3]}}, @devid}) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r1, 0x50009417, &(0x7f00000009c0)={{r3}, r4, 0x2, @inherit={0x50, &(0x7f0000000680)={0x1, 0x1, 0x7, 0x4, {0x2b, 0x6, 0x8000000000000000, 0x1578}, [0x3]}}, @devid}) r5 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'macvlan0\x00'}) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000002c0)={0x0, 0xe6, "d9daec22bdd7da6862ca4be57a8d732269d0fb4762de2c68877cf234830c1be16758c3e10180ddfc4b9fd4f8f523e96d9de408c4dafc600e6446290bdb1db5576d1fd36917e75cd6390a9a053f7af97c12d6389b42d6ef51945cdd5c5a675a74ada99f8246aa1c342ee84afd7774532ce63f46fba5ca999bbe1239edb7546d58a103cf85fa03dc178b358b21562273e82a5cd381501555028a5b74ba5a59a0fa4d229f0950d87d2e5233d8f6f16927d13b06dad695a65c5244601529caae0ff282a5af8b3b42c7725a8f6c49a65ddd2ff0147292f10f0b554f6133c37ef8f65eebdf32662248"}, &(0x7f0000000080)=0xee) read$FUSE(r0, &(0x7f00000019c0)={0x2020, 0x0, 0x0}, 0x2020) ioctl$TIOCGSID(r3, 0x5429, &(0x7f00000003c0)=0x0) write$FUSE_LK(r2, &(0x7f0000000700)={0x28, 0xfffffffffffffff5, r7, {{0x1, 0x800, 0x1, r8}}}, 0x28) (async) write$FUSE_LK(r2, &(0x7f0000000700)={0x28, 0xfffffffffffffff5, r7, {{0x1, 0x800, 0x1, r8}}}, 0x28) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f00000000c0)={r6, 0xf, 0x2, [0x37, 0x3]}, &(0x7f0000000100)=0xc) (async) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f00000000c0)={r6, 0xf, 0x2, [0x37, 0x3]}, &(0x7f0000000100)=0xc) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000003a00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000004480)={{r0}, r4, 0x14, @unused=[0x5, 0x4, 0x101], @devid=r9}) [ 75.444016][ T5297] Bluetooth: hci0: command tx timeout [ 75.876167][ T5322] loop0: detected capacity change from 0 to 32768 [ 75.883763][ T5322] ======================================================= [ 75.883763][ T5322] WARNING: The mand mount option has been deprecated and [ 75.883763][ T5322] and is ignored by this kernel. Remove the mand [ 75.883763][ T5322] option from the mount to silence this warning. [ 75.883763][ T5322] ======================================================= [ 75.958971][ T5322] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 75.994192][ T5322] (syz.0.0,5322,0):ocfs2_change_extent_flag:5216 ERROR: Owner 17058 tried to clear 1 flags on an extent that didn't have them [ 75.999921][ T5322] (syz.0.0,5322,0):ocfs2_mark_extent_written:5280 ERROR: status = -5 [ 76.005342][ T5322] (syz.0.0,5322,0):ocfs2_write_cluster:1142 ERROR: status = -5 [ 76.008626][ T5322] (syz.0.0,5322,0):ocfs2_write_cluster_by_desc:1226 ERROR: status = -5 [ 76.012262][ T5322] (syz.0.0,5322,0):ocfs2_write_begin_nolock:1799 ERROR: status = -5 [ 76.024588][ T5322] (syz.0.0,5322,0):ocfs2_write_begin:1887 ERROR: status = -5 [ 76.032477][ T5330] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.050366][ T5330] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.055139][ T5330] OCFS2: File system is now read-only. [ 76.058050][ T5330] (syz.0.0,5330,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.061256][ T5330] (syz.0.0,5330,0):ocfs2_allocate_unwritten_extents:1477 ERROR: status = -30 [ 76.065651][ T5330] (syz.0.0,5330,0):__ocfs2_change_file_space:2045 ERROR: status = -30 [ 76.070901][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.081960][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.086825][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.090007][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.094050][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 8 [ 76.098864][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.107826][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.112038][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.115905][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.119521][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 9 [ 76.124714][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.134417][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.139382][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.143097][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.146806][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 10 [ 76.151392][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.162227][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.166981][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.170183][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.174132][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 11 [ 76.178821][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.188327][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.192997][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.196233][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.199762][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 12 [ 76.204948][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.213635][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.217607][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.220741][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.224959][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 13 [ 76.229725][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.238446][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.244242][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.247471][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.250973][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 14 [ 76.256203][ T5323] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.267439][ T5323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.272568][ T5323] (syz.0.0,5323,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.275809][ T5323] (syz.0.0,5323,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.279439][ T5323] (syz.0.0,5323,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 15 [ 76.286383][ T5321] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.295297][ T5321] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.299594][ T5321] (syz.0.0,5321,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.303278][ T5323] ================================================================== [ 76.306660][ T5323] BUG: KASAN: slab-use-after-free in ocfs2_fault+0xd3/0x3f0 [ 76.309890][ T5323] Read of size 8 at addr ffff88801a124a58 by task syz.0.0/5323 [ 76.313114][ T5323] [ 76.314209][ T5323] CPU: 0 UID: 0 PID: 5323 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.314223][ T5323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.314229][ T5323] Call Trace: [ 76.314236][ T5323] [ 76.314241][ T5323] dump_stack_lvl+0x189/0x250 [ 76.314256][ T5323] ? __kasan_check_byte+0x12/0x40 [ 76.314268][ T5323] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.314278][ T5323] ? lock_release+0x4b/0x3e0 [ 76.314294][ T5323] ? __virt_addr_valid+0x4a5/0x5c0 [ 76.314305][ T5323] print_report+0xca/0x240 [ 76.314318][ T5323] ? ocfs2_fault+0xd3/0x3f0 [ 76.314326][ T5323] kasan_report+0x118/0x150 [ 76.314337][ T5323] ? ocfs2_fault+0xd3/0x3f0 [ 76.314347][ T5323] ocfs2_fault+0xd3/0x3f0 [ 76.314357][ T5323] ? __pfx_ocfs2_fault+0x10/0x10 [ 76.314368][ T5323] __do_fault+0x138/0x390 [ 76.314379][ T5323] __handle_mm_fault+0x35e3/0x5400 [ 76.314398][ T5323] ? __pfx___handle_mm_fault+0x10/0x10 [ 76.314415][ T5323] ? follow_page_pte+0x7ef/0x13e0 [ 76.314430][ T5323] handle_mm_fault+0x40a/0x8e0 [ 76.314447][ T5323] __get_user_pages+0x165c/0x2a00 [ 76.314466][ T5323] populate_vma_page_range+0x29f/0x3a0 [ 76.314480][ T5323] ? __pfx_populate_vma_page_range+0x10/0x10 [ 76.314492][ T5323] ? userfaultfd_unmap_complete+0x278/0x2d0 [ 76.314504][ T5323] ? down_read+0x1ad/0x2e0 [ 76.314557][ T5323] __mm_populate+0x24c/0x380 [ 76.314570][ T5323] ? __pfx___mm_populate+0x10/0x10 [ 76.314583][ T5323] ? up_write+0x1c4/0x420 [ 76.314593][ T5323] vm_mmap_pgoff+0x387/0x4d0 [ 76.314608][ T5323] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 76.314620][ T5323] ? __fget_files+0x2a/0x420 [ 76.314631][ T5323] ? __fget_files+0x2a/0x420 [ 76.314641][ T5323] ? __fget_files+0x2a/0x420 [ 76.314651][ T5323] ksys_mmap_pgoff+0x51f/0x760 [ 76.314667][ T5323] do_syscall_64+0xfa/0xfa0 [ 76.314677][ T5323] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.314691][ T5323] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.314701][ T5323] ? clear_bhb_loop+0x60/0xb0 [ 76.314712][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.314722][ T5323] RIP: 0033:0x7f8e78d8eec9 [ 76.314733][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.314741][ T5323] RSP: 002b:00007f8e79b5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 76.314754][ T5323] RAX: ffffffffffffffda RBX: 00007f8e78fe6090 RCX: 00007f8e78d8eec9 [ 76.314761][ T5323] RDX: 00000000027ffff7 RSI: 0000000000600000 RDI: 0000200000000000 [ 76.314774][ T5323] RBP: 00007f8e78e11f91 R08: 0000000000000007 R09: 0000000000000000 [ 76.314781][ T5323] R10: 0000000004012011 R11: 0000000000000246 R12: 0000000000000000 [ 76.314786][ T5323] R13: 00007f8e78fe6128 R14: 00007f8e78fe6090 R15: 00007ffc7ad95148 [ 76.314798][ T5323] [ 76.314802][ T5323] [ 76.429893][ T5323] Allocated by task 5323: [ 76.431691][ T5323] kasan_save_track+0x3e/0x80 [ 76.433785][ T5323] __kasan_slab_alloc+0x6c/0x80 [ 76.435878][ T5323] kmem_cache_alloc_noprof+0x367/0x6e0 [ 76.438215][ T5323] vm_area_alloc+0x24/0x140 [ 76.440142][ T5323] mmap_region+0xdcd/0x2110 [ 76.441984][ T5323] do_mmap+0xc45/0x10d0 [ 76.443787][ T5323] vm_mmap_pgoff+0x2a6/0x4d0 [ 76.445680][ T5323] ksys_mmap_pgoff+0x51f/0x760 [ 76.447741][ T5323] do_syscall_64+0xfa/0xfa0 [ 76.449832][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.452378][ T5323] [ 76.453460][ T5323] Freed by task 5323: [ 76.455183][ T5323] kasan_save_track+0x3e/0x80 [ 76.457078][ T5323] __kasan_save_free_info+0x46/0x50 [ 76.459032][ T5323] __kasan_slab_free+0x5c/0x80 [ 76.461107][ T5323] slab_free_after_rcu_debug+0x12c/0x2a0 [ 76.463577][ T5323] rcu_core+0xcab/0x1770 [ 76.465378][ T5323] handle_softirqs+0x286/0x870 [ 76.467469][ T5323] __irq_exit_rcu+0xca/0x1f0 [ 76.469382][ T5323] irq_exit_rcu+0x9/0x30 [ 76.471189][ T5323] sysvec_apic_timer_interrupt+0xa6/0xc0 [ 76.473459][ T5323] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 76.475789][ T5323] [ 76.476789][ T5323] Last potentially related work creation: [ 76.479036][ T5323] kasan_save_stack+0x3e/0x60 [ 76.480915][ T5323] kasan_record_aux_stack+0xbd/0xd0 [ 76.483051][ T5323] kmem_cache_free+0x4a2/0x690 [ 76.485163][ T5323] vms_complete_munmap_vmas+0x626/0x8a0 [ 76.487408][ T5323] mmap_region+0x11e1/0x2110 [ 76.489419][ T5323] do_mmap+0xc45/0x10d0 [ 76.491139][ T5323] vm_mmap_pgoff+0x2a6/0x4d0 [ 76.493109][ T5323] ksys_mmap_pgoff+0x51f/0x760 [ 76.495236][ T5323] do_syscall_64+0xfa/0xfa0 [ 76.497213][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.499774][ T5323] [ 76.500827][ T5323] The buggy address belongs to the object at ffff88801a124a00 [ 76.500827][ T5323] which belongs to the cache vm_area_struct of size 256 [ 76.506347][ T5323] The buggy address is located 88 bytes inside of [ 76.506347][ T5323] freed 256-byte region [ffff88801a124a00, ffff88801a124b00) [ 76.511789][ T5323] [ 76.512812][ T5323] The buggy address belongs to the physical page: [ 76.515465][ T5323] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1a124 [ 76.519141][ T5323] memcg:ffff888011b47401 [ 76.520698][ T5323] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 76.523708][ T5323] page_type: f5(slab) [ 76.525601][ T5323] raw: 00fff00000000000 ffff888030416b40 ffffea0000488080 dead000000000004 [ 76.529200][ T5323] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff888011b47401 [ 76.532736][ T5323] page dumped because: kasan: bad access detected [ 76.535532][ T5323] page_owner tracks the page as allocated [ 76.537849][ T5323] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5004, tgid 5004 (sh), ts 42744879484, free_ts 40392901622 [ 76.545933][ T5323] post_alloc_hook+0x240/0x2a0 [ 76.548598][ T5323] get_page_from_freelist+0x2365/0x2440 [ 76.551629][ T5323] __alloc_frozen_pages_noprof+0x181/0x370 [ 76.554962][ T5323] alloc_pages_mpol+0x232/0x4a0 [ 76.557104][ T5323] allocate_slab+0x96/0x3a0 [ 76.559130][ T5323] ___slab_alloc+0xe94/0x18a0 [ 76.561131][ T5323] __kmem_cache_alloc_bulk+0x1e2/0x590 [ 76.563292][ T5323] __pcs_replace_empty_main+0x292/0x540 [ 76.565603][ T5323] kmem_cache_alloc_noprof+0x453/0x6e0 [ 76.567909][ T5323] vm_area_dup+0x2b/0x680 [ 76.569798][ T5323] __split_vma+0x1a9/0xa00 [ 76.571679][ T5323] vms_gather_munmap_vmas+0x4c6/0x12e0 [ 76.573849][ T5323] mmap_region+0x722/0x2110 [ 76.575480][ T5323] do_mmap+0xc45/0x10d0 [ 76.577079][ T5323] vm_mmap_pgoff+0x2a6/0x4d0 [ 76.578826][ T5323] ksys_mmap_pgoff+0x51f/0x760 [ 76.580602][ T5323] page last free pid 15 tgid 15 stack trace: [ 76.582757][ T5323] __free_frozen_pages+0xbc4/0xd30 [ 76.584571][ T5323] tlb_remove_table_rcu+0x85/0x100 [ 76.586522][ T5323] rcu_core+0xcab/0x1770 [ 76.588063][ T5323] handle_softirqs+0x286/0x870 [ 76.589819][ T5323] run_ksoftirqd+0x9b/0x100 [ 76.591390][ T5323] smpboot_thread_fn+0x542/0xa60 [ 76.593144][ T5323] kthread+0x711/0x8a0 [ 76.594628][ T5323] ret_from_fork+0x4bc/0x870 [ 76.596216][ T5323] ret_from_fork_asm+0x1a/0x30 [ 76.597984][ T5323] [ 76.598847][ T5323] Memory state around the buggy address: [ 76.600999][ T5323] ffff88801a124900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 76.604163][ T5323] ffff88801a124980: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 76.607458][ T5323] >ffff88801a124a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 76.610261][ T5323] ^ [ 76.612809][ T5323] ffff88801a124a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 76.615987][ T5323] ffff88801a124b00: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 [ 76.619279][ T5323] ================================================================== [ 76.633765][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.636565][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.654259][ T5321] (syz.0.0,5321,0):ocfs2_populate_write_desc:1385 ERROR: status = -30 [ 76.657386][ T5321] (syz.0.0,5321,0):ocfs2_write_begin_nolock:1691 ERROR: status = -30 [ 76.660820][ T5321] (syz.0.0,5321,0):__ocfs2_page_mkwrite:97 ERROR: status = -30 [ 76.753596][ T5321] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.761985][ T5321] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.766790][ T5321] (syz.0.0,5321,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.769978][ T5321] (syz.0.0,5321,0):ocfs2_populate_write_desc:1385 ERROR: status = -30 [ 76.773844][ T5321] (syz.0.0,5321,0):ocfs2_write_begin_nolock:1691 ERROR: status = -30 [ 76.777226][ T5321] (syz.0.0,5321,0):__ocfs2_page_mkwrite:97 ERROR: status = -30 [ 76.802934][ T5321] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.811137][ T5321] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.815767][ T5321] (syz.0.0,5321,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.818915][ T5321] (syz.0.0,5321,0):ocfs2_populate_write_desc:1385 ERROR: status = -30 [ 76.822282][ T5321] (syz.0.0,5321,0):ocfs2_write_begin_nolock:1691 ERROR: status = -30 [ 76.826430][ T5321] (syz.0.0,5321,0):__ocfs2_page_mkwrite:97 ERROR: status = -30 [ 76.829692][ T5322] OCFS2: ERROR (device loop0): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 17058 has bad extent record (0, 1, 0) [ 76.838610][ T5322] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 76.844671][ T5322] (syz.0.0,5322,0):ocfs2_get_clusters:634 ERROR: status = -30 [ 76.847958][ T5322] (syz.0.0,5322,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 76.851632][ T5322] (syz.0.0,5322,0):ocfs2_get_block:153 ERROR: get_blocks() failed, inode: 0xffff888043dd4178, block: 8 [ 76.857795][ T5323] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 76.860877][ T5323] CPU: 0 UID: 0 PID: 5323 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 76.864724][ T5323] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 76.868628][ T5323] Call Trace: [ 76.869885][ T5323] [ 76.870963][ T5323] dump_stack_lvl+0x99/0x250 [ 76.872763][ T5323] ? __asan_memcpy+0x40/0x70 [ 76.874561][ T5323] ? __pfx_dump_stack_lvl+0x10/0x10 [ 76.876396][ T5323] ? __pfx__printk+0x10/0x10 [ 76.878077][ T5323] vpanic+0x237/0x6d0 [ 76.879666][ T5323] ? __pfx_vpanic+0x10/0x10 [ 76.881334][ T5323] ? preempt_schedule+0xae/0xc0 [ 76.883120][ T5323] ? __pfx_preempt_schedule+0x10/0x10 [ 76.885407][ T5323] panic+0xb9/0xc0 [ 76.886965][ T5323] ? __pfx_panic+0x10/0x10 [ 76.888812][ T5323] ? _raw_spin_unlock_irqrestore+0xfd/0x110 [ 76.891241][ T5323] ? ocfs2_fault+0xd3/0x3f0 [ 76.893207][ T5323] check_panic_on_warn+0x89/0xb0 [ 76.895258][ T5323] ? ocfs2_fault+0xd3/0x3f0 [ 76.897144][ T5323] end_report+0x78/0x160 [ 76.898877][ T5323] kasan_report+0x129/0x150 [ 76.900838][ T5323] ? ocfs2_fault+0xd3/0x3f0 [ 76.903023][ T5323] ocfs2_fault+0xd3/0x3f0 [ 76.904626][ T5323] ? __pfx_ocfs2_fault+0x10/0x10 [ 76.906439][ T5323] __do_fault+0x138/0x390 [ 76.908027][ T5323] __handle_mm_fault+0x35e3/0x5400 [ 76.909975][ T5323] ? __pfx___handle_mm_fault+0x10/0x10 [ 76.911813][ T5323] ? follow_page_pte+0x7ef/0x13e0 [ 76.913734][ T5323] handle_mm_fault+0x40a/0x8e0 [ 76.915492][ T5323] __get_user_pages+0x165c/0x2a00 [ 76.917372][ T5323] populate_vma_page_range+0x29f/0x3a0 [ 76.919461][ T5323] ? __pfx_populate_vma_page_range+0x10/0x10 [ 76.922127][ T5323] ? userfaultfd_unmap_complete+0x278/0x2d0 [ 76.924355][ T5323] ? down_read+0x1ad/0x2e0 [ 76.925995][ T5323] __mm_populate+0x24c/0x380 [ 76.927828][ T5323] ? __pfx___mm_populate+0x10/0x10 [ 76.929777][ T5323] ? up_write+0x1c4/0x420 [ 76.931445][ T5323] vm_mmap_pgoff+0x387/0x4d0 [ 76.933267][ T5323] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 76.935182][ T5323] ? __fget_files+0x2a/0x420 [ 76.936932][ T5323] ? __fget_files+0x2a/0x420 [ 76.938671][ T5323] ? __fget_files+0x2a/0x420 [ 76.940310][ T5323] ksys_mmap_pgoff+0x51f/0x760 [ 76.941980][ T5323] do_syscall_64+0xfa/0xfa0 [ 76.943589][ T5323] ? lockdep_hardirqs_on+0x9c/0x150 [ 76.945559][ T5323] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.947702][ T5323] ? clear_bhb_loop+0x60/0xb0 [ 76.949540][ T5323] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 76.951856][ T5323] RIP: 0033:0x7f8e78d8eec9 [ 76.953606][ T5323] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 76.961346][ T5323] RSP: 002b:00007f8e79b5a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 76.964552][ T5323] RAX: ffffffffffffffda RBX: 00007f8e78fe6090 RCX: 00007f8e78d8eec9 [ 76.967396][ T5323] RDX: 00000000027ffff7 RSI: 0000000000600000 RDI: 0000200000000000 [ 76.970474][ T5323] RBP: 00007f8e78e11f91 R08: 0000000000000007 R09: 0000000000000000 [ 76.973540][ T5323] R10: 0000000004012011 R11: 0000000000000246 R12: 0000000000000000 [ 76.976885][ T5323] R13: 00007f8e78fe6128 R14: 00007f8e78fe6090 R15: 00007ffc7ad95148 [ 76.980226][ T5323] [ 76.981869][ T5323] Kernel Offset: disabled [ 76.983726][ T5323] Rebooting in 86400 seconds..