Extracting prog: 2m48.23646442s
Minimizing prog: 4m30.476945389s
Simplifying prog options: 0s
Extracting C: 1m38.145647828s
Simplifying C: 10m24.844602072s


extracting reproducer from 30 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
detailed listing:
executing program 0:
syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x1000882, &(0x7f0000000400)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRES16=0x0, @ANYRES8, @ANYRES16, @ANYRES16], 0x1, 0xc39, &(0x7f0000001cc0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
single: successfully extracted reproducer
found reproducer with 2 syscalls
minimizing guilty program
testing program (duration=53.69129596s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf
detailed listing:
executing program 0:
syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x1000882, &(0x7f0000000400)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRES16=0x0, @ANYRES8, @ANYRES16, @ANYRES16], 0x1, 0xc39, &(0x7f0000001cc0)="$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")

program did not crash
testing program (duration=53.69129596s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$fuse
detailed listing:
executing program 0:
syz_mount_image$fuse(0x0, &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=53.69129596s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
detailed listing:
executing program 0:
syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x1000882, &(0x7f0000000400)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRES16=0x0, @ANYRES8, @ANYRES16, @ANYRES16], 0x1, 0xc39, &(0x7f0000001cc0)="$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")
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=53.69129596s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
simplifying C reproducer
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
testing compiled C program (duration=53.69129596s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$udf-syz_mount_image$fuse
program crashed: BUG: unable to handle kernel paging request in lookup_one_qstr_excl
reproducing took 19m21.703687761s
repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 2048
UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry where CRC length (63772) does not match entry length (28)
BUG: unable to handle page fault for address: ffffffffffffff8b
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD e93c067 P4D e93c067 PUD e93e067 PMD 0 
Oops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 5831 Comm: syz-executor311 Not tainted 6.14.0-rc2-next-20250213-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:__d_entry_type include/linux/dcache.h:416 [inline]
RIP: 0010:d_is_miss include/linux/dcache.h:421 [inline]
RIP: 0010:d_is_negative include/linux/dcache.h:467 [inline]
RIP: 0010:lookup_one_qstr_excl+0x162/0x370 fs/namei.c:1696
Code: d3 66 90 48 85 c0 0f 85 58 01 00 00 e8 17 dd 84 ff 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 57 01 00 00 bb 00 00 38 00 <41> 23 1e 44 89 fd 81 e5 00 00 02 00 89 de 09 ee 31 ff e8 27 e1 84
RSP: 0018:ffffc90003fbfcb8 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000380000 RCX: ffff88802e261e00
RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
RBP: ffff888078fe0164 R08: ffff88807ab23ca3 R09: 1ffff1100f564794
R10: dffffc0000000000 R11: ffffed100f564795 R12: ffff88807ab23be8
R13: dffffc0000000000 R14: ffffffffffffff8b R15: 0000000000060000
FS:  0000555567341380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffff8b CR3: 0000000077756000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 filename_create+0x282/0x480 fs/namei.c:4091
 do_mkdirat+0xbd/0x3a0 fs/namei.c:4322
 __do_sys_mkdir fs/namei.c:4350 [inline]
 __se_sys_mkdir fs/namei.c:4348 [inline]
 __x64_sys_mkdir+0x6c/0x80 fs/namei.c:4348
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f91a38f7a57
Code: ff ff 77 07 31 c0 c3 0f 1f 40 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffe22e0a298 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f91a38f7a57
RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000400000000080
RBP: 0000400000000080 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe22e0a330 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
Modules linked in:
CR2: ffffffffffffff8b
---[ end trace 0000000000000000 ]---
RIP: 0010:__d_entry_type include/linux/dcache.h:416 [inline]
RIP: 0010:d_is_miss include/linux/dcache.h:421 [inline]
RIP: 0010:d_is_negative include/linux/dcache.h:467 [inline]
RIP: 0010:lookup_one_qstr_excl+0x162/0x370 fs/namei.c:1696
Code: d3 66 90 48 85 c0 0f 85 58 01 00 00 e8 17 dd 84 ff 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 57 01 00 00 bb 00 00 38 00 <41> 23 1e 44 89 fd 81 e5 00 00 02 00 89 de 09 ee 31 ff e8 27 e1 84
RSP: 0018:ffffc90003fbfcb8 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000380000 RCX: ffff88802e261e00
RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
RBP: ffff888078fe0164 R08: ffff88807ab23ca3 R09: 1ffff1100f564794
R10: dffffc0000000000 R11: ffffed100f564795 R12: ffff88807ab23be8
R13: dffffc0000000000 R14: ffffffffffffff8b R15: 0000000000060000
FS:  0000555567341380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffff8b CR3: 0000000077756000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	d3 66 90             	shll   %cl,-0x70(%rsi)
   3:	48 85 c0             	test   %rax,%rax
   6:	0f 85 58 01 00 00    	jne    0x164
   c:	e8 17 dd 84 ff       	call   0xff84dd28
  11:	4c 89 f0             	mov    %r14,%rax
  14:	48 c1 e8 03          	shr    $0x3,%rax
  18:	42 0f b6 04 28       	movzbl (%rax,%r13,1),%eax
  1d:	84 c0                	test   %al,%al
  1f:	0f 85 57 01 00 00    	jne    0x17c
  25:	bb 00 00 38 00       	mov    $0x380000,%ebx
* 2a:	41 23 1e             	and    (%r14),%ebx <-- trapping instruction
  2d:	44 89 fd             	mov    %r15d,%ebp
  30:	81 e5 00 00 02 00    	and    $0x20000,%ebp
  36:	89 de                	mov    %ebx,%esi
  38:	09 ee                	or     %ebp,%esi
  3a:	31 ff                	xor    %edi,%edi
  3c:	e8                   	.byte 0xe8
  3d:	27                   	(bad)
  3e:	e1 84                	loope  0xffffffc4

final repro crashed as (corrupted=false):
loop0: detected capacity change from 0 to 2048
UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry where CRC length (63772) does not match entry length (28)
BUG: unable to handle page fault for address: ffffffffffffff8b
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD e93c067 P4D e93c067 PUD e93e067 PMD 0 
Oops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI
CPU: 0 UID: 0 PID: 5831 Comm: syz-executor311 Not tainted 6.14.0-rc2-next-20250213-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
RIP: 0010:__d_entry_type include/linux/dcache.h:416 [inline]
RIP: 0010:d_is_miss include/linux/dcache.h:421 [inline]
RIP: 0010:d_is_negative include/linux/dcache.h:467 [inline]
RIP: 0010:lookup_one_qstr_excl+0x162/0x370 fs/namei.c:1696
Code: d3 66 90 48 85 c0 0f 85 58 01 00 00 e8 17 dd 84 ff 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 57 01 00 00 bb 00 00 38 00 <41> 23 1e 44 89 fd 81 e5 00 00 02 00 89 de 09 ee 31 ff e8 27 e1 84
RSP: 0018:ffffc90003fbfcb8 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000380000 RCX: ffff88802e261e00
RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
RBP: ffff888078fe0164 R08: ffff88807ab23ca3 R09: 1ffff1100f564794
R10: dffffc0000000000 R11: ffffed100f564795 R12: ffff88807ab23be8
R13: dffffc0000000000 R14: ffffffffffffff8b R15: 0000000000060000
FS:  0000555567341380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffff8b CR3: 0000000077756000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 filename_create+0x282/0x480 fs/namei.c:4091
 do_mkdirat+0xbd/0x3a0 fs/namei.c:4322
 __do_sys_mkdir fs/namei.c:4350 [inline]
 __se_sys_mkdir fs/namei.c:4348 [inline]
 __x64_sys_mkdir+0x6c/0x80 fs/namei.c:4348
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f91a38f7a57
Code: ff ff 77 07 31 c0 c3 0f 1f 40 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffe22e0a298 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f91a38f7a57
RDX: 0000000000000000 RSI: 00000000000001ff RDI: 0000400000000080
RBP: 0000400000000080 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007ffe22e0a330 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
Modules linked in:
CR2: ffffffffffffff8b
---[ end trace 0000000000000000 ]---
RIP: 0010:__d_entry_type include/linux/dcache.h:416 [inline]
RIP: 0010:d_is_miss include/linux/dcache.h:421 [inline]
RIP: 0010:d_is_negative include/linux/dcache.h:467 [inline]
RIP: 0010:lookup_one_qstr_excl+0x162/0x370 fs/namei.c:1696
Code: d3 66 90 48 85 c0 0f 85 58 01 00 00 e8 17 dd 84 ff 4c 89 f0 48 c1 e8 03 42 0f b6 04 28 84 c0 0f 85 57 01 00 00 bb 00 00 38 00 <41> 23 1e 44 89 fd 81 e5 00 00 02 00 89 de 09 ee 31 ff e8 27 e1 84
RSP: 0018:ffffc90003fbfcb8 EFLAGS: 00010246
RAX: 0000000000000000 RBX: 0000000000380000 RCX: ffff88802e261e00
RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000001
RBP: ffff888078fe0164 R08: ffff88807ab23ca3 R09: 1ffff1100f564794
R10: dffffc0000000000 R11: ffffed100f564795 R12: ffff88807ab23be8
R13: dffffc0000000000 R14: ffffffffffffff8b R15: 0000000000060000
FS:  0000555567341380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffff8b CR3: 0000000077756000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
----------------
Code disassembly (best guess):
   0:	d3 66 90             	shll   %cl,-0x70(%rsi)
   3:	48 85 c0             	test   %rax,%rax
   6:	0f 85 58 01 00 00    	jne    0x164
   c:	e8 17 dd 84 ff       	call   0xff84dd28
  11:	4c 89 f0             	mov    %r14,%rax
  14:	48 c1 e8 03          	shr    $0x3,%rax
  18:	42 0f b6 04 28       	movzbl (%rax,%r13,1),%eax
  1d:	84 c0                	test   %al,%al
  1f:	0f 85 57 01 00 00    	jne    0x17c
  25:	bb 00 00 38 00       	mov    $0x380000,%ebx
* 2a:	41 23 1e             	and    (%r14),%ebx <-- trapping instruction
  2d:	44 89 fd             	mov    %r15d,%ebp
  30:	81 e5 00 00 02 00    	and    $0x20000,%ebp
  36:	89 de                	mov    %ebx,%esi
  38:	09 ee                	or     %ebp,%esi
  3a:	31 ff                	xor    %edi,%edi
  3c:	e8                   	.byte 0xe8
  3d:	27                   	(bad)
  3e:	e1 84                	loope  0xffffffc4