[ 282.647142][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 282.713145][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 301.436893][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:15068' (ECDSA) to the list of known hosts. 1970/01/01 00:06:29 fuzzer started 1970/01/01 00:06:42 dialing manager at localhost:39383 [ 407.807571][ T2043] cgroup: Unknown subsys name 'net' [ 409.109044][ T2043] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:48 syscalls: 2918 1970/01/01 00:06:48 code coverage: enabled 1970/01/01 00:06:48 comparison tracing: enabled 1970/01/01 00:06:48 extra coverage: enabled 1970/01/01 00:06:48 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:06:48 setuid sandbox: enabled 1970/01/01 00:06:48 namespace sandbox: enabled 1970/01/01 00:06:48 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:48 fault injection: enabled 1970/01/01 00:06:48 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:48 net packet injection: enabled 1970/01/01 00:06:48 net device setup: enabled 1970/01/01 00:06:48 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:48 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:48 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:06:48 USB emulation: enabled 1970/01/01 00:06:48 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:48 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:48 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:06:49 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:06:55 fetching corpus: 50, signal 32426/35611 (executing program) 1970/01/01 00:06:58 fetching corpus: 100, signal 44742/49020 (executing program) 1970/01/01 00:07:03 fetching corpus: 150, signal 50489/55931 (executing program) 1970/01/01 00:07:07 fetching corpus: 199, signal 58455/64760 (executing program) 1970/01/01 00:07:10 fetching corpus: 245, signal 64763/71900 (executing program) 1970/01/01 00:07:14 fetching corpus: 292, signal 70891/78722 (executing program) 1970/01/01 00:07:18 fetching corpus: 342, signal 74528/83097 (executing program) 1970/01/01 00:07:21 fetching corpus: 392, signal 78134/87348 (executing program) 1970/01/01 00:07:23 fetching corpus: 441, signal 81906/91679 (executing program) 1970/01/01 00:07:25 fetching corpus: 491, signal 85200/95507 (executing program) 1970/01/01 00:07:29 fetching corpus: 541, signal 90221/100752 (executing program) 1970/01/01 00:07:31 fetching corpus: 589, signal 94004/104813 (executing program) 1970/01/01 00:07:36 fetching corpus: 638, signal 96917/108054 (executing program) 1970/01/01 00:07:38 fetching corpus: 687, signal 98546/110171 (executing program) 1970/01/01 00:07:41 fetching corpus: 736, signal 101971/113750 (executing program) 1970/01/01 00:07:46 fetching corpus: 785, signal 104449/116434 (executing program) 1970/01/01 00:07:51 fetching corpus: 835, signal 106001/118363 (executing program) 1970/01/01 00:07:54 fetching corpus: 883, signal 107942/120534 (executing program) 1970/01/01 00:07:58 fetching corpus: 933, signal 110610/123199 (executing program) 1970/01/01 00:08:00 fetching corpus: 983, signal 114118/126399 (executing program) 1970/01/01 00:08:03 fetching corpus: 1031, signal 116206/128505 (executing program) 1970/01/01 00:08:06 fetching corpus: 1080, signal 117951/130240 (executing program) 1970/01/01 00:08:08 fetching corpus: 1130, signal 119714/131962 (executing program) 1970/01/01 00:08:11 fetching corpus: 1180, signal 121644/133814 (executing program) 1970/01/01 00:08:14 fetching corpus: 1229, signal 122650/134979 (executing program) 1970/01/01 00:08:16 fetching corpus: 1279, signal 124099/136460 (executing program) 1970/01/01 00:08:19 fetching corpus: 1329, signal 125570/137852 (executing program) 1970/01/01 00:08:21 fetching corpus: 1379, signal 126971/139180 (executing program) 1970/01/01 00:08:24 fetching corpus: 1429, signal 128150/140304 (executing program) 1970/01/01 00:08:26 fetching corpus: 1478, signal 129407/141522 (executing program) 1970/01/01 00:08:28 fetching corpus: 1527, signal 130780/142745 (executing program) 1970/01/01 00:08:30 fetching corpus: 1577, signal 132672/144250 (executing program) 1970/01/01 00:08:33 fetching corpus: 1626, signal 133866/145299 (executing program) 1970/01/01 00:08:35 fetching corpus: 1676, signal 134642/146067 (executing program) 1970/01/01 00:08:37 fetching corpus: 1725, signal 135701/147001 (executing program) 1970/01/01 00:08:39 fetching corpus: 1774, signal 136574/147853 (executing program) 1970/01/01 00:08:41 fetching corpus: 1824, signal 137539/148717 (executing program) 1970/01/01 00:08:42 fetching corpus: 1873, signal 138560/149540 (executing program) 1970/01/01 00:08:45 fetching corpus: 1922, signal 139471/150289 (executing program) 1970/01/01 00:08:48 fetching corpus: 1972, signal 140806/151218 (executing program) 1970/01/01 00:08:52 fetching corpus: 2022, signal 142089/152044 (executing program) 1970/01/01 00:08:54 fetching corpus: 2072, signal 143087/152730 (executing program) 1970/01/01 00:08:57 fetching corpus: 2122, signal 144577/153621 (executing program) 1970/01/01 00:09:00 fetching corpus: 2172, signal 145916/154411 (executing program) 1970/01/01 00:09:04 fetching corpus: 2221, signal 147096/155077 (executing program) 1970/01/01 00:09:08 fetching corpus: 2271, signal 148339/155748 (executing program) 1970/01/01 00:09:14 fetching corpus: 2319, signal 149520/156412 (executing program) 1970/01/01 00:09:17 fetching corpus: 2368, signal 150243/156858 (executing program) 1970/01/01 00:09:21 fetching corpus: 2417, signal 151418/157472 (executing program) 1970/01/01 00:09:24 fetching corpus: 2466, signal 152199/157897 (executing program) 1970/01/01 00:09:26 fetching corpus: 2516, signal 153120/158319 (executing program) 1970/01/01 00:09:30 fetching corpus: 2565, signal 154007/158741 (executing program) 1970/01/01 00:09:34 fetching corpus: 2615, signal 155664/159381 (executing program) 1970/01/01 00:09:37 fetching corpus: 2664, signal 156359/159711 (executing program) 1970/01/01 00:09:39 fetching corpus: 2713, signal 157471/160107 (executing program) 1970/01/01 00:09:42 fetching corpus: 2760, signal 158976/160593 (executing program) 1970/01/01 00:09:43 fetching corpus: 2780, signal 159203/160693 (executing program) 1970/01/01 00:09:43 fetching corpus: 2780, signal 159203/160724 (executing program) 1970/01/01 00:09:43 fetching corpus: 2780, signal 159203/160753 (executing program) 1970/01/01 00:09:43 fetching corpus: 2780, signal 159203/160779 (executing program) 1970/01/01 00:09:44 fetching corpus: 2780, signal 159203/160811 (executing program) 1970/01/01 00:09:44 fetching corpus: 2780, signal 159203/160837 (executing program) 1970/01/01 00:09:44 fetching corpus: 2781, signal 159204/160877 (executing program) 1970/01/01 00:09:44 fetching corpus: 2781, signal 159204/160930 (executing program) 1970/01/01 00:09:44 fetching corpus: 2781, signal 159204/160969 (executing program) 1970/01/01 00:09:44 fetching corpus: 2781, signal 159204/160996 (executing program) 1970/01/01 00:09:45 fetching corpus: 2781, signal 159204/161028 (executing program) 1970/01/01 00:09:45 fetching corpus: 2781, signal 159204/161057 (executing program) 1970/01/01 00:09:45 fetching corpus: 2781, signal 159204/161110 (executing program) 1970/01/01 00:09:45 fetching corpus: 2781, signal 159204/161144 (executing program) 1970/01/01 00:09:45 fetching corpus: 2782, signal 159212/161179 (executing program) 1970/01/01 00:09:45 fetching corpus: 2782, signal 159212/161209 (executing program) 1970/01/01 00:09:46 fetching corpus: 2782, signal 159212/161242 (executing program) 1970/01/01 00:09:46 fetching corpus: 2782, signal 159212/161272 (executing program) 1970/01/01 00:09:46 fetching corpus: 2782, signal 159212/161307 (executing program) 1970/01/01 00:09:46 fetching corpus: 2782, signal 159212/161344 (executing program) 1970/01/01 00:09:46 fetching corpus: 2783, signal 159213/161374 (executing program) 1970/01/01 00:09:46 fetching corpus: 2784, signal 159220/161403 (executing program) 1970/01/01 00:09:47 fetching corpus: 2784, signal 159220/161435 (executing program) 1970/01/01 00:09:47 fetching corpus: 2784, signal 159220/161454 (executing program) 1970/01/01 00:09:47 fetching corpus: 2784, signal 159220/161454 (executing program) 1970/01/01 00:12:04 starting 2 fuzzer processes 00:12:04 executing program 0: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0xe0ffff}) 00:12:04 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x78, 0x0, 0x0) [ 767.177381][ T2059] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 767.788824][ T2059] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 768.634658][ T2057] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 769.266143][ T2057] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 789.767288][ T2059] device hsr_slave_0 entered promiscuous mode [ 789.848067][ T2059] device hsr_slave_1 entered promiscuous mode [ 793.409479][ T2057] device hsr_slave_0 entered promiscuous mode [ 793.479578][ T2057] device hsr_slave_1 entered promiscuous mode [ 793.507034][ T2057] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 793.517945][ T2057] Cannot create hsr debugfs directory [ 807.058980][ C0] ================================================================== [ 807.061820][ C0] BUG: KASAN: slab-out-of-bounds in __bfs+0x154/0x394 [ 807.064279][ C0] Read of size 8 at addr ffffaf800ee87b70 by task syz-executor.1/2059 [ 807.065718][ C0] [ 807.067495][ C0] CPU: 0 PID: 2059 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 807.069783][ C0] Hardware name: riscv-virtio,qemu (DT) [ 807.072114][ C0] Call Trace: [ 807.073604][ C0] [] dump_backtrace+0x2e/0x3c [ 807.075062][ C0] [] show_stack+0x34/0x40 [ 807.076379][ C0] [] dump_stack_lvl+0xe4/0x150 [ 807.077756][ C0] [] print_address_description.constprop.0+0x2a/0x330 [ 807.079310][ C0] [] kasan_report+0x184/0x1e0 [ 807.081220][ C0] [] __asan_load8+0x6e/0x96 [ 807.083293][ C0] [] __bfs+0x154/0x394 [ 807.084585][ C0] [] check_path.constprop.0+0x24/0x46 [ 807.086030][ C0] [] check_noncircular+0x11a/0x1fe [ 807.087456][ C0] [] __lock_acquire+0x19a4/0x333e [ 807.088899][ C0] [] lock_acquire.part.0+0x1d0/0x424 [ 807.091350][ C0] [] lock_acquire+0x54/0x6a [ 807.093264][ C0] [] _raw_spin_lock+0x32/0x48 [ 807.095487][ C0] [] rmqueue_bulk+0xae/0x5e8 [ 807.097049][ C0] [ 807.097928][ C0] Allocated by task 1: [ 807.098926][ C0] stack_trace_save+0xa6/0xd8 [ 807.100766][ C0] kasan_save_stack+0x2c/0x58 [ 807.102705][ C0] __kasan_kmalloc+0x80/0xb2 [ 807.104304][ C0] kmem_cache_alloc_trace+0x178/0x2e0 [ 807.105596][ C0] usb_serial_register_drivers+0x56/0x924 [ 807.106873][ C0] usb_serial_module_init+0x30/0x38 [ 807.108043][ C0] do_one_initcall+0x13a/0x7ea [ 807.109123][ C0] kernel_init_freeable+0x510/0x5b4 [ 807.111101][ C0] kernel_init+0x28/0x21c [ 807.112920][ C0] ret_from_exception+0x0/0x10 [ 807.114139][ C0] [ 807.114838][ C0] The buggy address belongs to the object at ffffaf800ee87800 [ 807.114838][ C0] which belongs to the cache kmalloc-512 of size 512 [ 807.116644][ C0] The buggy address is located 368 bytes to the right of [ 807.116644][ C0] 512-byte region [ffffaf800ee87800, ffffaf800ee87a00) [ 807.118584][ C0] The buggy address belongs to the page: [ 807.120212][ C0] page:ffffaf807aa7a520 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x8f084 [ 807.123392][ C0] head:ffffaf807aa7a520 order:2 compound_mapcount:0 compound_pincount:0 [ 807.124939][ C0] flags: 0x8800010200(slab|head|section=17|node=0|zone=0) [ 807.128230][ C0] raw: 0000008800010200 0000000000000000 0000000000000001 ffffaf8007201c80 [ 807.129689][ C0] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 807.131917][ C0] raw: 00000000000007ff [ 807.133235][ C0] page dumped because: kasan: bad access detected [ 807.134518][ C0] page_owner tracks the page as allocated [ 807.135551][ C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1149, ts 61307429600, free_ts 61298961500 [ 807.138147][ C0] __set_page_owner+0x48/0x136 [ 807.139369][ C0] post_alloc_hook+0xd0/0x10a [ 807.141071][ C0] get_page_from_freelist+0x8da/0x12d8 [ 807.142890][ C0] __alloc_pages+0x150/0x3b6 [ 807.143974][ C0] alloc_pages+0x132/0x2a6 [ 807.145169][ C0] alloc_slab_page.constprop.0+0xc2/0xfa [ 807.146343][ C0] new_slab+0x25a/0x2cc [ 807.147477][ C0] ___slab_alloc+0x56e/0x918 [ 807.148690][ C0] __slab_alloc.constprop.0+0x50/0x8c [ 807.150264][ C0] kmem_cache_alloc_trace+0x2a2/0x2e0 [ 807.151850][ C0] alloc_bprm+0x48/0x4b6 [ 807.152966][ C0] kernel_execve+0x54/0x288 [ 807.154112][ C0] call_usermodehelper_exec_async+0x1c0/0x2dc [ 807.155539][ C0] ret_from_exception+0x0/0x10 [ 807.156758][ C0] page last free stack trace: [ 807.157571][ C0] __reset_page_owner+0x4a/0xea [ 807.158720][ C0] free_pcp_prepare+0x29c/0x45e [ 807.159806][ C0] free_unref_page+0x6a/0x31e [ 807.161407][ C0] __free_pages+0xe2/0x112 [ 807.162849][ C0] put_task_stack+0x1d0/0x2b0 [ 807.163978][ C0] finish_task_switch.isra.0+0x3ce/0x420 [ 807.165201][ C0] schedule_tail+0xe/0xc8 [ 807.166320][ C0] ret_from_kernel_thread+0x4/0x10 [ 807.167633][ C0] [ 807.168317][ C0] Memory state around the buggy address: [ 807.169706][ C0] ffffaf800ee87a00: fc fc fc fc f1 f1 f1 f1 00 f3 f3 f3 fc fc fc fc [ 807.171570][ C0] ffffaf800ee87a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 807.174270][ C0] >ffffaf800ee87b00: 00 00 00 00 f1 f1 f1 f1 00 f2 f2 f2 fc fc fc fc [ 807.175404][ C0] ^ [ 807.176695][ C0] ffffaf800ee87b80: 00 00 00 f3 f3 f3 f3 f3 fc fc fc fc fc fc fc fc [ 807.177949][ C0] ffffaf800ee87c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 807.179255][ C0] ================================================================== [ 807.181575][ C0] Disabling lock debugging due to kernel taint [ 807.196596][ T2059] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 807.198292][ T2059] CPU: 0 PID: 2059 Comm: syz-executor.1 Tainted: G B 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 807.199972][ T2059] Hardware name: riscv-virtio,qemu (DT) [ 807.201713][ T2059] Call Trace: [ 807.202553][ T2059] [] dump_backtrace+0x2e/0x3c [ 807.203839][ T2059] [] show_stack+0x34/0x40 [ 807.205022][ T2059] [] dump_stack_lvl+0xe4/0x150 [ 807.206389][ T2059] [] dump_stack+0x1c/0x24 [ 807.207600][ T2059] [] panic+0x24a/0x634 [ 807.208674][ T2059] [] schedule+0x0/0x14c [ 807.210239][ T2059] [] preempt_schedule_common+0x4e/0xde [ 807.211630][ T2059] [] preempt_schedule+0x34/0x36 [ 807.212956][ T2059] [] _raw_spin_unlock_irqrestore+0x8c/0x98 [ 807.214353][ T2059] [] debug_check_no_obj_freed+0x14c/0x24a [ 807.215794][ T2059] [] slab_free_freelist_hook+0xe4/0x1cc [ 807.217348][ T2059] [] kfree+0xe0/0x3e4 [ 807.218609][ T2059] [] fib6_tables_dump+0x1d4/0x25a [ 807.220308][ T2059] [] fib6_dump+0x4c/0x68 [ 807.221568][ T2059] [] register_fib_notifier+0x1f6/0x804 [ 807.222932][ T2059] [] nsim_fib_create+0x62a/0x750 [ 807.224235][ T2059] [] nsim_drv_probe+0x8c8/0xb8c [ 807.225540][ T2059] [] nsim_bus_probe+0x1a/0x24 [ 807.226932][ T2059] [] really_probe+0x1a6/0x89e [ 807.228119][ T2059] [] __driver_probe_device+0x24a/0x2d4 [ 807.229375][ T2059] [] driver_probe_device+0x60/0x1a4 [ 807.231473][ T2059] [] __device_attach_driver+0x17c/0x224 [ 807.232931][ T2059] [] bus_for_each_drv+0x132/0x1a6 [ 807.234419][ T2059] [] __device_attach+0x1e0/0x372 [ 807.235731][ T2059] [] device_initial_probe+0x1c/0x26 [ 807.237257][ T2059] [] bus_probe_device+0x144/0x154 [ 807.238602][ T2059] [] device_add+0x91e/0x129e [ 807.240266][ T2059] [] device_register+0x20/0x2a [ 807.241698][ T2059] [] new_device_store+0x308/0x46a [ 807.243190][ T2059] [] bus_attr_store+0x4e/0x6e [ 807.244650][ T2059] [] sysfs_kf_write+0x9c/0xbe [ 807.245950][ T2059] [] kernfs_fop_write_iter+0x264/0x32e [ 807.247417][ T2059] [] new_sync_write+0x296/0x3aa [ 807.248695][ T2059] [] vfs_write+0x2de/0x334 [ 807.250331][ T2059] [] ksys_write+0x10a/0x224 [ 807.251716][ T2059] [] sys_write+0x28/0x36 [ 807.252496][ T2059] [] ret_from_syscall+0x0/0x2 [ 807.256063][ T2059] SMP: stopping secondary CPUs [ 807.258263][ T2059] Rebooting in 86400 seconds.. VM DIAGNOSIS: 18:12:51 Registers: info registers vcpu 0 pc 00007fff865bda20 mhartid 0000000000000000 mstatus 00000000000040a2 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc 00007fff8660b2a0 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra 00007fff86917060 x2/sp 00007fffdb34e460 x3/gp 00007fff869a2a68 x4/tp 00007fff8657d6c8 x5/t0 0000000000000003 x6/t1 00007fff8690a5bc x7/t2 000000004dea79a3 x8/s0 00007fffb63e1610 x9/s1 00007fff869a23b0 x10/a0 000000000000000e x11/a1 00007fffb63d32b0 x12/a2 00007fffb63d0a80 x13/a3 0000000000000000 x14/a4 00007fffdb34e460 x15/a5 0000000000000000 x16/a6 00000000000f423f x17/a7 0000000000000048 x18/s2 0000000000000000 x19/s3 0000000000000010 x20/s4 0000000000000000 x21/s5 0000000000000004 x22/s6 0000000000000010 x23/s7 00007fff869a5c48 x24/s8 ffffffffffffffff x25/s9 0000000000000000 x26/s10 0000000000000001 x27/s11 0000000000000001 x28/t3 00007fff865bda84 x29/t4 0000000000000010 x30/t5 0000000000000030 x31/t6 5fcc000000000000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80200acc mhartid 0000000000000001 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475986 sepc ffffffff802012a8 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80c2db84 x2/sp ffffaf800ee87310 x3/gp ffffffff85863ac0 x4/tp ffffaf800e668000 x5/t0 ffffffff86bcb657 x6/t1 fffff5ef01dd0e8c x7/t2 0000000000000000 x8/s0 ffffaf800ee87400 x9/s1 ffffffff838d2e87 x10/a0 0000000000000000 x11/a1 ffffaf800e668000 x12/a2 0000000000000506 x13/a3 ffffffff80c2db70 x14/a4 0000000000000003 x15/a5 0000000000000009 x16/a6 0000000000f00000 x17/a7 ffffaf800ee87467 x18/s2 000000000000002a x19/s3 ffffaf800ee87460 x20/s4 ffffaf800ee87380 x21/s5 ffffffff838d2e86 x22/s6 ffffffff838d2e88 x23/s7 1ffff5f001dd0e64 x24/s8 ffffffff85889780 x25/s9 fffffffffffffffa x26/s10 fffffffffffffffe x27/s11 ffffffff838d6d80 x28/t3 1ffff5f001dd0ef4 x29/t4 fffff5ef01dd0e8c x30/t5 fffff5ef01dd0e8d x31/t6 ffffaf800ee87627 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000