[ 51.862069][ T39] audit: type=1400 audit(1652248626.948:74): avc: denied { write } for pid=3626 comm="sh" path="pipe:[28474]" dev="pipefs" ino=28474 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '[localhost]:38190' (ECDSA) to the list of known hosts. [ 54.436945][ T39] audit: type=1400 audit(1652248629.548:75): avc: denied { execute } for pid=3656 comm="sh" name="syz-executor354561512" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 54.466432][ T39] audit: type=1400 audit(1652248629.548:76): avc: denied { execute_no_trans } for pid=3656 comm="sh" path="/syz-executor354561512" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 54.493280][ T39] audit: type=1400 audit(1652248629.558:77): avc: denied { execmem } for pid=3656 comm="syz-executor354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 54.516633][ T39] audit: type=1400 audit(1652248629.558:78): avc: denied { create } for pid=3656 comm="syz-executor354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 54.541804][ T39] audit: type=1400 audit(1652248629.558:79): avc: denied { write } for pid=3656 comm="syz-executor354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 54.565256][ T39] audit: type=1400 audit(1652248629.558:80): avc: denied { read } for pid=3656 comm="syz-executor354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 54.588629][ T39] audit: type=1400 audit(1652248629.578:81): avc: denied { mounton } for pid=3658 comm="syz-executor354" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 54.614109][ T39] audit: type=1400 audit(1652248629.578:82): avc: denied { mount } for pid=3658 comm="syz-executor354" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 55.518043][ T3664] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 55.528090][ T3664] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 55.538887][ T3664] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 55.548898][ T3664] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 55.561414][ T3664] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 55.570099][ T3664] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 56.154842][ T3664] ------------[ cut here ]------------ [ 56.162735][ T3664] refcount_t: addition on 0; use-after-free. [ 56.170482][ T3664] WARNING: CPU: 2 PID: 3664 at lib/refcount.c:25 refcount_warn_saturate+0x169/0x1e0 [ 56.180593][ T3664] Modules linked in: [ 56.188414][ T3664] CPU: 2 PID: 3664 Comm: kworker/u19:1 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0 [ 56.202311][ T3664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 56.215625][ T3664] Workqueue: hci0 hci_rx_work [ 56.221168][ T3664] RIP: 0010:refcount_warn_saturate+0x169/0x1e0 [ 56.228007][ T3664] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89 [ 56.248562][ T3664] RSP: 0018:ffffc90002db7960 EFLAGS: 00010282 [ 56.254921][ T3664] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 56.264611][ T3664] RDX: ffff888023fd2180 RSI: ffffffff815f4a18 RDI: fffff520005b6f1e [ 56.273848][ T3664] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001 [ 56.282804][ T3664] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff88801988f000 [ 56.290879][ T3664] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003 [ 56.299588][ T3664] FS: 0000000000000000(0000) GS:ffff88802cc00000(0000) knlGS:0000000000000000 [ 56.310030][ T3664] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.316838][ T3664] CR2: 00007fb4db140958 CR3: 000000000ba8e000 CR4: 0000000000150ee0 [ 56.324882][ T3664] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.333072][ T3664] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.342330][ T3664] Call Trace: [ 56.346135][ T3664] [ 56.349803][ T3664] l2cap_chan_hold+0xff/0x120 [ 56.354939][ T3664] l2cap_global_chan_by_psm+0x3b1/0x4a0 [ 56.363305][ T3664] ? l2cap_chan_hold+0x120/0x120 [ 56.368806][ T3664] l2cap_recv_frame+0x68d/0x8e60 [ 56.374583][ T3664] ? find_held_lock+0x2d/0x110 [ 56.379946][ T3664] ? hci_rx_work+0x4ad/0xd60 [ 56.385429][ T3664] ? lock_downgrade+0x6e0/0x6e0 [ 56.391261][ T3664] ? l2cap_config_rsp.isra.0+0x12a0/0x12a0 [ 56.397256][ T3664] ? __mutex_unlock_slowpath+0x157/0x5e0 [ 56.404315][ T3664] ? wait_for_completion_io_timeout+0x20/0x20 [ 56.410871][ T3664] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 56.417110][ T3664] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 56.423389][ T3664] ? hci_conn_enter_active_mode+0x136/0x360 [ 56.429402][ T3664] ? lock_downgrade+0x6e0/0x6e0 [ 56.434167][ T3664] ? hci_conn_check_link_mode+0x500/0x500 [ 56.440205][ T3664] l2cap_recv_acldata+0xa96/0xc10 [ 56.445249][ T3664] hci_rx_work+0x4d5/0xd60 [ 56.449802][ T3664] process_one_work+0x996/0x1610 [ 56.454950][ T3664] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 56.460552][ T3664] ? rwlock_bug.part.0+0x90/0x90 [ 56.465479][ T3664] ? _raw_spin_lock_irq+0x41/0x50 [ 56.470432][ T3664] worker_thread+0x665/0x1080 [ 56.475081][ T3664] ? process_one_work+0x1610/0x1610 [ 56.480269][ T3664] kthread+0x2e9/0x3a0 [ 56.491595][ T3664] ? kthread_complete_and_exit+0x40/0x40 [ 56.500156][ T3664] ret_from_fork+0x1f/0x30 [ 56.506770][ T3664] [ 56.510021][ T3664] Kernel panic - not syncing: panic_on_warn set ... [ 56.519057][ T3664] CPU: 2 PID: 3664 Comm: kworker/u19:1 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0 [ 56.529790][ T3664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 56.542449][ T3664] Workqueue: hci0 hci_rx_work [ 56.548331][ T3664] Call Trace: [ 56.551624][ T3664] [ 56.554605][ T3664] dump_stack_lvl+0xcd/0x134 [ 56.559314][ T3664] panic+0x2d7/0x636 [ 56.563334][ T3664] ? panic_print_sys_info.part.0+0x10b/0x10b [ 56.569332][ T3664] ? __warn.cold+0x1d1/0x2c5 [ 56.574061][ T3664] ? refcount_warn_saturate+0x169/0x1e0 [ 56.579647][ T3664] __warn.cold+0x1e2/0x2c5 [ 56.585540][ T3664] ? wake_up_klogd.part.0+0x8e/0xd0 [ 56.590737][ T3664] ? refcount_warn_saturate+0x169/0x1e0 [ 56.596358][ T3664] report_bug+0x1bd/0x210 [ 56.601244][ T3664] handle_bug+0x3c/0x60 [ 56.605536][ T3664] exc_invalid_op+0x14/0x40 [ 56.610379][ T3664] asm_exc_invalid_op+0x12/0x20 [ 56.615843][ T3664] RIP: 0010:refcount_warn_saturate+0x169/0x1e0 [ 56.622639][ T3664] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89 [ 56.653479][ T3664] RSP: 0018:ffffc90002db7960 EFLAGS: 00010282 [ 56.661340][ T3664] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 56.670954][ T3664] RDX: ffff888023fd2180 RSI: ffffffff815f4a18 RDI: fffff520005b6f1e [ 56.679957][ T3664] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001 [ 56.691320][ T3664] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff88801988f000 [ 56.702222][ T3664] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003 [ 56.714723][ T3664] ? wake_up_klogd.part.0+0x8e/0xd0 [ 56.720282][ T3664] ? vprintk+0x88/0x90 [ 56.724684][ T3664] l2cap_chan_hold+0xff/0x120 [ 56.730188][ T3664] l2cap_global_chan_by_psm+0x3b1/0x4a0 [ 56.736706][ T3664] ? l2cap_chan_hold+0x120/0x120 [ 56.742512][ T3664] l2cap_recv_frame+0x68d/0x8e60 [ 56.748041][ T3664] ? find_held_lock+0x2d/0x110 [ 56.753966][ T3664] ? hci_rx_work+0x4ad/0xd60 [ 56.760213][ T3664] ? lock_downgrade+0x6e0/0x6e0 [ 56.766492][ T3664] ? l2cap_config_rsp.isra.0+0x12a0/0x12a0 [ 56.774096][ T3664] ? __mutex_unlock_slowpath+0x157/0x5e0 [ 56.780953][ T3664] ? wait_for_completion_io_timeout+0x20/0x20 [ 56.788297][ T3664] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 56.795973][ T3664] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 56.803624][ T3664] ? hci_conn_enter_active_mode+0x136/0x360 [ 56.809619][ T3664] ? lock_downgrade+0x6e0/0x6e0 [ 56.815005][ T3664] ? hci_conn_check_link_mode+0x500/0x500 [ 56.821876][ T3664] l2cap_recv_acldata+0xa96/0xc10 [ 56.828126][ T3664] hci_rx_work+0x4d5/0xd60 [ 56.834457][ T3664] process_one_work+0x996/0x1610 [ 56.840670][ T3664] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 56.846859][ T3664] ? rwlock_bug.part.0+0x90/0x90 [ 56.851875][ T3664] ? _raw_spin_lock_irq+0x41/0x50 [ 56.856882][ T3664] worker_thread+0x665/0x1080 [ 56.861698][ T3664] ? process_one_work+0x1610/0x1610 [ 56.866989][ T3664] kthread+0x2e9/0x3a0 [ 56.871293][ T3664] ? kthread_complete_and_exit+0x40/0x40 [ 56.877906][ T3664] ret_from_fork+0x1f/0x30 [ 56.882446][ T3664] [ 56.886955][ T3664] Kernel Offset: disabled [ 56.892424][ T3664] Rebooting in 86400 seconds.. VM DIAGNOSIS: 05:57:11 Registers: info registers vcpu 0 RAX=000000000002a119 RBX=ffffffff8babc700 RCX=ffffffff896d0fd1 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffffff8ba07e18 R8 =0000000000000001 R9 =ffff88802ca3b093 R10=ffffed1005947612 R11=0000000000000000 R12=fffffbfff17578e0 R13=0000000000000000 R14=ffffffff8db8e250 R15=0000000000000000 RIP=ffffffff896ffdfb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802ca00000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb4db141075 CR3=0000000018227000 CR4=00150ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00ff0000000000000000000000000000 XMM02=00ff000000000000000000000000ff00 XMM03=54205b5d3533373236312e3635202020 XMM04=00000000000000000000000000000000 XMM05=ffffffffffffffffffffffffffffffff XMM06=00000000000000000000000000000000 XMM07=652d7a7973223d6d6d6f632038353633 XMM08=2500656c6f736e6f632f7665642f000a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000300 RBX=ffffffff8d7a0ce0 RCX=ffffffff815d652f RDX=fffffbfff1af419d RSI=0000000000000004 RDI=ffffffff8d7a0ce0 RBP=1ffff9200065ef92 RSP=ffffc900032f7c88 R8 =0000000000000001 R9 =ffffffff8d7a0ce3 R10=fffffbfff1af419c R11=0000000000000001 R12=ffffffff8d7a0ce4 R13=00000000000000ff R14=0000000000000003 R15=fffffbfff1af419c RIP=ffffffff815d6577 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00005555556ee300 ffffffff 00c00000 GS =0000 ffff88802cb00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020000180 CR3=0000000018365000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=0000000000000000000000ff00000000 XMM05=000000000000000000000000000000ff XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff845b180c RDI=ffffffff90899800 RBP=ffffffff908997c0 RSP=ffffc90002db72e0 R8 =000000000000002a R9 =0000000000000000 R10=ffffffff845b17fd R11=000000000000001f R12=0000000000000000 R13=fffffbfff211334b R14=fffffbfff2113302 R15=dffffc0000000000 RIP=ffffffff845b1832 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cc00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb4db140958 CR3=000000000ba8e000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=0000000000000000000000ff00000000 XMM05=000000000000000000000000000000ff XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000000000024461 RBX=ffff888011944080 RCX=ffffffff896d0fd1 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc9000069fe00 R8 =0000000000000001 R9 =ffff88802cd3b093 R10=ffffed10059a7612 R11=0000000000000000 R12=ffffed1002328810 R13=0000000000000003 R14=ffffffff8db8e250 R15=0000000000000000 RIP=ffffffff896ffdfb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cd00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb4db141075 CR3=0000000022e31000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffff0000000000 XMM02=ffffffffffffffffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=00000000000000000000000000000000 XMM05=000000000000000000000000000000ff XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000