Warning: Permanently added '[localhost]:25985' (ECDSA) to the list of known hosts. 2025/11/14 08:04:41 fuzzer started 2025/11/14 08:04:42 dialing manager at localhost:37161 2025/11/14 08:04:42 checking machine... 2025/11/14 08:04:42 checking revisions... syzkaller login: [ 58.964770] kmemleak: Automatic memory scanning thread ended 2025/11/14 08:04:42 testing simple program... [ 59.051756] cgroup: Unknown subsys name 'net' [ 59.119442] cgroup: Unknown subsys name 'cpuset' [ 59.135527] cgroup: Unknown subsys name 'rlimit' executing program executing program executing program [ 69.117884] audit: type=1400 audit(1763107492.477:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 70.247414] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.249944] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.253022] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.256969] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.261967] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 executing program [ 72.343280] Bluetooth: hci0: command tx timeout executing program [ 74.390731] Bluetooth: hci0: command tx timeout [ 76.438758] Bluetooth: hci0: command tx timeout executing program [ 78.486786] Bluetooth: hci0: command tx timeout executing program executing program [ 85.258817] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.260115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.330061] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.331267] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/11/14 08:05:08 building call list... executing program executing program [ 88.846452] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 89.614539] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list 2025/11/14 08:05:14 syscalls: 2214 2025/11/14 08:05:14 code coverage: enabled 2025/11/14 08:05:14 comparison tracing: enabled 2025/11/14 08:05:14 extra coverage: enabled 2025/11/14 08:05:14 setuid sandbox: enabled 2025/11/14 08:05:14 namespace sandbox: enabled 2025/11/14 08:05:14 Android sandbox: enabled 2025/11/14 08:05:14 fault injection: enabled 2025/11/14 08:05:14 leak checking: enabled 2025/11/14 08:05:14 net packet injection: enabled 2025/11/14 08:05:14 net device setup: enabled 2025/11/14 08:05:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/11/14 08:05:14 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/11/14 08:05:14 USB emulation: enabled 2025/11/14 08:05:14 hci packet injection: enabled 2025/11/14 08:05:14 wifi device emulation: enabled 2025/11/14 08:05:14 802.15.4 emulation: enabled 2025/11/14 08:05:14 fetching corpus: 0, signal 0/0 (executing program) 2025/11/14 08:05:14 fetching corpus: 0, signal 0/0 (executing program) 2025/11/14 08:05:15 starting 8 fuzzer processes 08:05:15 executing program 0: syz_emit_ethernet(0x66, &(0x7f0000000040)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "c770cc", 0x30, 0x2c, 0x0, @empty, @mcast2, {[], @time_exceed={0x5, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "887b00", 0x0, 0x0, 0x0, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}}}}}, 0x0) 08:05:15 executing program 1: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) io_setup(0x7, &(0x7f0000000380)=0x0) io_submit(r1, 0x1, &(0x7f0000002ac0)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) io_getevents(r1, 0x0, 0x1, &(0x7f0000000400)=[{}], 0x0) 08:05:15 executing program 7: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='comm\x00') write$P9_RUNLINKAT(r0, 0x0, 0x7) 08:05:15 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xb1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) lsetxattr$security_selinux(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:usbtty_device_t:s0\x00', 0x21, 0x0) 08:05:15 executing program 5: io_setup(0x2, &(0x7f0000000680)=0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0) io_submit(r0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) 08:05:15 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000000)=0x114a460b, 0x4) 08:05:15 executing program 6: r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000100)=0xffffff7f) 08:05:15 executing program 4: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff4000/0x4000)=nil, 0x0, 0x0) r0 = syz_io_uring_setup(0x2260, &(0x7f0000003a00), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff4000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000003ac0)) ioctl$sock_inet_SIOCGARP(0xffffffffffffffff, 0x8954, &(0x7f0000000180)={{0x2, 0x0, @dev}, {0x0, @remote}, 0x0, {0x2, 0x0, @remote}}) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x1e, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[0xffffffffffffffff]}, 0x1) [ 93.485292] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.490282] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 93.492339] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 93.494534] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 93.496311] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 93.498408] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 93.499529] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 93.504901] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 93.506297] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.509195] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.511233] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 93.516793] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 93.518494] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 93.521886] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 93.523410] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 93.553481] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 93.566910] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 93.571755] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 93.577354] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 93.578973] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 93.581449] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 93.583304] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 93.585113] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 93.589691] ================================================================== [ 93.590910] BUG: KASAN: slab-use-after-free in hci_cmd_work+0x66d/0x6d0 [ 93.592023] Read of size 2 at addr ffff88800cbc78f8 by task kworker/u11:4/853 [ 93.598612] [ 93.598910] CPU: 1 UID: 0 PID: 853 Comm: kworker/u11:4 Not tainted 6.18.0-rc5-next-20251114 #1 PREEMPT(voluntary) [ 93.598942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 93.598957] Workqueue: hci3 hci_cmd_work [ 93.598989] Call Trace: [ 93.598998] [ 93.599006] dump_stack_lvl+0xca/0x120 [ 93.599037] print_report+0xcb/0x610 [ 93.599067] ? __virt_addr_valid+0x100/0x5d0 [ 93.599094] ? hci_cmd_work+0x66d/0x6d0 [ 93.599124] ? hci_cmd_work+0x66d/0x6d0 [ 93.599154] kasan_report+0xca/0x100 [ 93.599184] ? hci_cmd_work+0x66d/0x6d0 [ 93.599217] hci_cmd_work+0x66d/0x6d0 [ 93.599249] process_one_work+0x8e1/0x19c0 [ 93.599289] ? __pfx_process_one_work+0x10/0x10 [ 93.599323] ? move_linked_works+0x172/0x270 [ 93.599349] ? assign_work+0x196/0x240 [ 93.599382] worker_thread+0x67e/0xe90 [ 93.599415] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 93.599443] ? __pfx_worker_thread+0x10/0x10 [ 93.599477] kthread+0x3c8/0x740 [ 93.599507] ? __pfx_kthread+0x10/0x10 [ 93.599537] ? ret_from_fork+0x79/0x7a0 [ 93.599560] ? lock_release+0xc8/0x290 [ 93.599596] ? __pfx_kthread+0x10/0x10 [ 93.599627] ret_from_fork+0x67a/0x7a0 [ 93.599650] ? __pfx_ret_from_fork+0x10/0x10 [ 93.599672] ? save_fpregs_to_fpstate+0x145/0x270 [ 93.599703] ? __switch_to+0x759/0x1060 [ 93.599735] ? __pfx_kthread+0x10/0x10 [ 93.599766] ret_from_fork_asm+0x1a/0x30 [ 93.599804] [ 93.599812] [ 93.621514] Allocated by task 847: [ 93.622087] kasan_save_stack+0x24/0x50 [ 93.622742] kasan_save_track+0x14/0x30 [ 93.623388] __kasan_slab_alloc+0x59/0x70 [ 93.624061] kmem_cache_alloc_node_noprof+0x228/0x6b0 [ 93.624901] __alloc_skb+0x2ab/0x370 [ 93.625518] hci_cmd_sync_alloc+0x34/0x300 [ 93.626209] __hci_cmd_sync_sk+0xf7/0x5c0 [ 93.626894] hci_read_bd_addr_sync+0x2c/0x170 [ 93.627616] hci_dev_open_sync+0x145c/0x1f60 [ 93.628324] hci_power_on+0xdb/0x5d0 [ 93.628932] process_one_work+0x8e1/0x19c0 [ 93.629613] worker_thread+0x67e/0xe90 [ 93.630246] kthread+0x3c8/0x740 [ 93.630809] ret_from_fork+0x67a/0x7a0 [ 93.631433] ret_from_fork_asm+0x1a/0x30 [ 93.632092] [ 93.632369] Freed by task 858: [ 93.632885] kasan_save_stack+0x24/0x50 [ 93.633530] kasan_save_track+0x14/0x30 [ 93.634173] kasan_save_free_info+0x3a/0x60 [ 93.634881] __kasan_slab_free+0x43/0x70 [ 93.635538] kmem_cache_free+0x26f/0x500 [ 93.636201] kfree_skbmem+0x18a/0x1f0 [ 93.636818] sk_skb_reason_drop+0x10e/0x1b0 [ 93.637499] vhci_read+0x3d5/0x5d0 [ 93.638075] vfs_read+0x1eb/0xc70 [ 93.638639] ksys_read+0x121/0x240 [ 93.639207] do_syscall_64+0xbf/0x430 [ 93.639824] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.640634] [ 93.640912] The buggy address belongs to the object at ffff88800cbc78c0 [ 93.640912] which belongs to the cache skbuff_head_cache of size 232 [ 93.642925] The buggy address is located 56 bytes inside of [ 93.642925] freed 232-byte region [ffff88800cbc78c0, ffff88800cbc79a8) [ 93.644786] [ 93.645063] The buggy address belongs to the physical page: [ 93.645941] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xcbc7 [ 93.647169] memcg:ffff88800cbcd181 [ 93.647725] flags: 0x100000000000000(node=0|zone=1) [ 93.648504] page_type: f5(slab) [ 93.649037] raw: 0100000000000000 ffff8880096c78c0 ffffea0000367000 dead000000000006 [ 93.650247] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff88800cbcd181 [ 93.651454] page dumped because: kasan: bad access detected [ 93.652328] [ 93.652602] Memory state around the buggy address: [ 93.653367] ffff88800cbc7780: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 93.654497] ffff88800cbc7800: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc [ 93.655632] >ffff88800cbc7880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb [ 93.656753] ^ [ 93.657860] ffff88800cbc7900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 93.658989] ffff88800cbc7980: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc [ 93.660112] ================================================================== [ 93.661359] Disabling lock debugging due to kernel taint [ 93.664863] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 93.666206] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 93.667776] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 93.669968] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 93.672721] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 93.674971] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 93.676392] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 93.678333] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 93.679976] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 93.681757] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 93.683468] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 93.687428] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 93.687901] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 93.689480] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 93.691296] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 93.714896] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 93.718892] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 95.574899] Bluetooth: hci0: command tx timeout [ 95.576689] Bluetooth: hci2: command tx timeout [ 95.577367] Bluetooth: hci1: command tx timeout [ 95.702870] Bluetooth: hci4: command tx timeout [ 95.766744] Bluetooth: hci7: command tx timeout [ 95.767488] Bluetooth: hci6: command tx timeout [ 95.768343] Bluetooth: hci3: command tx timeout [ 95.768393] Bluetooth: hci5: command tx timeout [ 97.622752] Bluetooth: hci1: command tx timeout [ 97.623300] Bluetooth: hci2: command tx timeout [ 97.624394] Bluetooth: hci0: command tx timeout [ 97.750749] Bluetooth: hci4: command tx timeout [ 97.814936] Bluetooth: hci7: command tx timeout [ 97.815387] Bluetooth: hci6: command tx timeout [ 97.815768] Bluetooth: hci5: command tx timeout [ 97.815803] Bluetooth: hci3: command tx timeout [ 99.671711] Bluetooth: hci0: command tx timeout [ 99.671745] Bluetooth: hci2: command tx timeout [ 99.672160] Bluetooth: hci1: command tx timeout [ 99.798983] Bluetooth: hci4: command tx timeout [ 99.863119] Bluetooth: hci3: command tx timeout [ 99.863137] Bluetooth: hci5: command tx timeout [ 99.863534] Bluetooth: hci6: command tx timeout [ 99.863996] Bluetooth: hci7: command tx timeout [ 101.718653] Bluetooth: hci1: command tx timeout [ 101.718774] Bluetooth: hci2: command tx timeout [ 101.719108] Bluetooth: hci0: command tx timeout [ 101.846661] Bluetooth: hci4: command tx timeout [ 101.910777] Bluetooth: hci6: command tx timeout [ 101.913242] Bluetooth: hci7: command tx timeout [ 101.913265] Bluetooth: hci5: command tx timeout [ 101.914019] Bluetooth: hci3: command tx timeout VM DIAGNOSIS: 08:05:17 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf3cb80 RCX=ffffffff8169b13c RDX=ffff888009548000 RSI=ffffffff8169b116 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880095576e8 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=1ffff1100d9c6c41 R12=ffffed100d9e7971 R13=ffff88806cf3cb88 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff8169b118 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0193c95900 00000000 00000000 GS =0000 ffff8880e538f000 00000000 00000000 LDT=0000 fffffe5100000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1ce3228070 CR3=000000000c6e9000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f464ee967c000007f464ee967c8 XMM02=00007f464ee967e000007f464ee967c0 XMM03=00007f464ee967c800007f464ee967c0 XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8293dd05 RDI=ffffffff889747c0 RBP=ffffffff88974780 RSP=ffff8880169df618 R8 =0000000000000000 R9 =ffffed10013bf046 R10=000000000000006b R11=6330303838386652 R12=000000000000006b R13=0000000000000010 R14=ffffffff88974780 R15=ffffffff8293dcf0 RIP=ffffffff8293dd5d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e548f000 00000000 00000000 LDT=0000 fffffe4300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055948e9f6e78 CR3=000000001d522000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000001000 XMM03=00000000000000000000000000800000 XMM04=ffffffffffffffffffffffffffffff00 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000