ci2 starts bisection 2023-09-30 14:44:46.510483245 +0000 UTC m=+87297.303732343 bisecting cause commit starting from 9f3ebbef746f89f860a90ced99a359202ea86fde building syzkaller on 8e26a358122e06b336ae4824141abc32e31e3d7a ensuring issue is reproducible on original commit 9f3ebbef746f89f860a90ced99a359202ea86fde testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: da84083660ac3a32846209087c9e2643bc1f5cb14b2a496dd47f639d3d18a9a6 all runs: crashed: general protection fault in io_get_cqe_overflow representative crash: general protection fault in io_get_cqe_overflow, types: [UNKNOWN] check whether we can drop unnecessary instrumentation disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN BUG], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ad229914a997e6e7b7d42a8a72569f20924cd372f5447cb65acd8e0e04eae718 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the bug reproduces without the instrumentation disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN BUG], they are not needed kconfig minimization: base=3876 full=7686 leaves diff=2019 split chunks (needed=false): <2019> split chunk #0 of len 2019 into 5 parts testing without sub-chunk 1/5 disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 30494db8c25dd09efff9a2d0db816fc26e535c09bc14a388cefc3dc933fcc5c0 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 2/5 disabling configs for [LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN BUG KASAN], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 75302525b7362f8f9d5b2e3f5611b8075c22334f148d0dc8b976552a18fc2883 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 3/5 disabling configs for [HANG LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: ddc2a2811996e72d6347c3eb4e9e60adabe61c40e61b3a92101531c33cecca81 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 4/5 disabling configs for [BUG KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: b8cb5de5089a737143dbfd3b58f250f6652ed04e41603ed1b9017e3b5d6fbd5a all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the chunk can be dropped testing without sub-chunk 5/5 disabling configs for [KASAN LOCKDEP ATOMIC_SLEEP HANG LEAK UBSAN BUG], they are not needed testing commit 9f3ebbef746f89f860a90ced99a359202ea86fde gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 71e4f8f3606b7915175dda8004e95b5fcba4f749cb4100222c6a752ab561659f all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] the chunk can be dropped disabling configs for [LEAK UBSAN BUG KASAN LOCKDEP ATOMIC_SLEEP HANG], they are not needed picked [v6.5 v6.4 v6.3 v6.1 v5.19 v5.17 v5.15 v5.13 v5.10 v5.7 v5.4 v5.1 v4.19] out of 28 release tags testing release v6.5 testing commit 2dde18cd1d8fac735875f2e4987f11817cc0bc2c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: bb80bfd1fbd29419f3c208a945389946d1b45403888f376d35d41794d7152094 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] testing release v6.4 testing commit 6995e2de6891c724bfeb2db33d7b87775f913ad1 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 63a0ed29a7b8ef292fc6c9089048ab718c4597d97b96833f9bd46614451a12fb all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] testing release v6.3 testing commit 457391b0380335d5e9a5babdec90ac53928b23b4 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 5b30bb4446c52e81fa5f231a0a03f5dc8199597cf8f9b8a07b4ac0ac3f3de3c6 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] testing release v6.1 testing commit 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 8e2724454a495b81cce69862e26ae4d21eca50cf85b8716048bdb69c80da79b5 all runs: OK false negative chance: 0.000 # git bisect start 457391b0380335d5e9a5babdec90ac53928b23b4 830b3c68c1fb1e9176028d02ef86f3cf76aa2476 Bisecting: 16238 revisions left to test after this (roughly 14 steps) [62be69397e53ab14f607698bb41343ce576713e8] Merge tag 'wireless-next-2023-01-23' of git://git.kernel.org/pub/scm/linux/kernel/git/wireless/wireless-next testing commit 62be69397e53ab14f607698bb41343ce576713e8 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 47d23613578d485e2dfcdbd639ba4371a3dd875fc571b8a2b2bd7fd94701ee25 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] # git bisect bad 62be69397e53ab14f607698bb41343ce576713e8 Bisecting: 8827 revisions left to test after this (roughly 13 steps) [1ca06f1c1acecbe02124f14a37cce347b8c1a90c] Merge tag 'xtensa-20221213' of https://github.com/jcmvbkbc/linux-xtensa testing commit 1ca06f1c1acecbe02124f14a37cce347b8c1a90c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 0c5391cad61a6e6aa2c9bfaefc4b81b49fb3e8f02d3d06dff3c5107c93f74668 all runs: OK false negative chance: 0.000 # git bisect good 1ca06f1c1acecbe02124f14a37cce347b8c1a90c Bisecting: 4404 revisions left to test after this (roughly 12 steps) [58bcac11fd94f950abc7b8466c5ceac7be07a00e] Merge tag 'usb-6.2-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb testing commit 58bcac11fd94f950abc7b8466c5ceac7be07a00e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 9b87200bd6ed74385ea8bc7e6284f6fc349d62102147186cd81ec9d0fa6ec283 all runs: OK false negative chance: 0.000 # git bisect good 58bcac11fd94f950abc7b8466c5ceac7be07a00e Bisecting: 2203 revisions left to test after this (roughly 11 steps) [c7f5e34d906320fdc996afa616676161c029cc02] net: ena: Account for the number of processed bytes in XDP testing commit c7f5e34d906320fdc996afa616676161c029cc02 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 9edae7d49de061430605bbaac629ade02b311da9e1226a9d785155ab68f1c079 all runs: OK false negative chance: 0.000 # git bisect good c7f5e34d906320fdc996afa616676161c029cc02 Bisecting: 1109 revisions left to test after this (roughly 10 steps) [5be413a6e2a16e08c8f0f1b59794a7203b5eca2c] Merge tag 's390-6.2-2' of git://git.kernel.org/pub/scm/linux/kernel/git/s390/linux testing commit 5be413a6e2a16e08c8f0f1b59794a7203b5eca2c gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: be0483415f16ee4830d53908b4211dbd3408ef2e73a627feac040cf828e5b3f8 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] # git bisect bad 5be413a6e2a16e08c8f0f1b59794a7203b5eca2c Bisecting: 544 revisions left to test after this (roughly 9 steps) [55c7d6a91d42ad98cbfb10da077ce8bb7084dc0e] Merge tag 'drm-next-2022-12-23' of git://anongit.freedesktop.org/drm/drm testing commit 55c7d6a91d42ad98cbfb10da077ce8bb7084dc0e gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 64912e0a1f71f1b9aa0c0c3df5f74c187fa2171f1259de534c72007a4bcb9d67 all runs: OK false negative chance: 0.000 # git bisect good 55c7d6a91d42ad98cbfb10da077ce8bb7084dc0e Bisecting: 271 revisions left to test after this (roughly 8 steps) [5e9af4b42660b2a8db067db8ff03db8a268d6a95] Merge tag 'fbdev-for-6.2-rc3' of git://git.kernel.org/pub/scm/linux/kernel/git/deller/linux-fbdev testing commit 5e9af4b42660b2a8db067db8ff03db8a268d6a95 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 10b4d7c414cd5e472be1700ac35ef9c591903f7e12940121645c385056e0455d all runs: OK false negative chance: 0.000 # git bisect good 5e9af4b42660b2a8db067db8ff03db8a268d6a95 Bisecting: 133 revisions left to test after this (roughly 7 steps) [0a71553536d270e988580a3daa9fc87535908221] Merge tag 'drm-fixes-2023-01-06' of git://anongit.freedesktop.org/drm/drm testing commit 0a71553536d270e988580a3daa9fc87535908221 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: b0b1392bfe59e2da00b1e9c85f2042f5176fe58c1eae163dd529f5011d20c620 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] # git bisect bad 0a71553536d270e988580a3daa9fc87535908221 Bisecting: 71 revisions left to test after this (roughly 6 steps) [d7a0853d650b381921732ff5bca618432a279033] Merge tag 'perf-urgent-2023-01-06' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip testing commit d7a0853d650b381921732ff5bca618432a279033 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 03b134c4547adb941b912f67198aa8c30c65e45f95f47ea24503e05979acf9d4 all runs: OK false negative chance: 0.000 # git bisect good d7a0853d650b381921732ff5bca618432a279033 Bisecting: 33 revisions left to test after this (roughly 5 steps) [ef1a4a770994b97a86988fd86f5a2784b87449f7] Merge tag 'io_uring-2023-01-06' of git://git.kernel.dk/linux testing commit ef1a4a770994b97a86988fd86f5a2784b87449f7 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 452cfbc47744090f4c5b540902d56f4f114a4a7486ea05f23920d3b4680654b8 all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] # git bisect bad ef1a4a770994b97a86988fd86f5a2784b87449f7 Bisecting: 21 revisions left to test after this (roughly 4 steps) [a389e54642a86c91d683b2f0b248f1d2f4e52611] Merge tag 'riscv-for-linus-6.2-rc3' of git://git.kernel.org/pub/scm/linux/kernel/git/riscv/linux testing commit a389e54642a86c91d683b2f0b248f1d2f4e52611 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 27d02a4fff7137e3ecff85963a59d33e48efa65580eb4d0e677b0938814f5f7e all runs: OK false negative chance: 0.000 # git bisect good a389e54642a86c91d683b2f0b248f1d2f4e52611 Bisecting: 10 revisions left to test after this (roughly 4 steps) [7b8c854cfe8c94b2ec382a3632b1bd7c970c80b4] Merge tag 'fixes_for_v6.2-rc3' of git://git.kernel.org/pub/scm/linux/kernel/git/jack/linux-fs testing commit 7b8c854cfe8c94b2ec382a3632b1bd7c970c80b4 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 7661e02699389a3c698a8346b9b30ba147ce31e412942a1b12f272a6baf14e04 all runs: OK false negative chance: 0.000 # git bisect good 7b8c854cfe8c94b2ec382a3632b1bd7c970c80b4 Bisecting: 5 revisions left to test after this (roughly 3 steps) [93387d499e49429eef2c343ab6f9f5d92ec780a2] Merge tag 'tif-notify-signal-2023-01-06' of git://git.kernel.dk/linux testing commit 93387d499e49429eef2c343ab6f9f5d92ec780a2 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 31df791a7ffb98d85c94cb18c9f02ebd8f826aaef8ecb159315826e2eddadf8b all runs: OK false negative chance: 0.000 # git bisect good 93387d499e49429eef2c343ab6f9f5d92ec780a2 Bisecting: 2 revisions left to test after this (roughly 2 steps) [f26cc9593581bd734c846bf827401350b36dc3c9] io_uring: lockdep annotate CQ locking testing commit f26cc9593581bd734c846bf827401350b36dc3c9 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: c04a9a343d284075e05e282c6d90f68b0a6ff04eda40f11319b33764ea00193c all runs: crashed: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe representative crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe, types: [UNKNOWN] # git bisect bad f26cc9593581bd734c846bf827401350b36dc3c9 Bisecting: 0 revisions left to test after this (roughly 1 step) [9ffa13ff78a0a55df968a72d6f0ebffccee5c9f4] io_uring: pin context while queueing deferred tw testing commit 9ffa13ff78a0a55df968a72d6f0ebffccee5c9f4 gcc compiler: Debian clang version 15.0.6, GNU ld (GNU Binutils for Debian) 2.40 kernel signature: 027ecab458015ba5090db1ddbacd50cf1d09e6c0e523bdd5ae6112ef55b5240f all runs: OK false negative chance: 0.000 # git bisect good 9ffa13ff78a0a55df968a72d6f0ebffccee5c9f4 f26cc9593581bd734c846bf827401350b36dc3c9 is the first bad commit commit f26cc9593581bd734c846bf827401350b36dc3c9 Author: Pavel Begunkov Date: Wed Jan 4 01:34:57 2023 +0000 io_uring: lockdep annotate CQ locking Locking around CQE posting is complex and depends on options the ring is created with, add more thorough lockdep annotations checking all invariants. Signed-off-by: Pavel Begunkov Link: https://lore.kernel.org/r/aa3770b4eacae3915d782cc2ab2f395a99b4b232.1672795976.git.asml.silence@gmail.com Signed-off-by: Jens Axboe io_uring/io_uring.c | 5 ++--- io_uring/io_uring.h | 15 +++++++++++++++ 2 files changed, 17 insertions(+), 3 deletions(-) accumulated error probability: 0.00 culprit signature: c04a9a343d284075e05e282c6d90f68b0a6ff04eda40f11319b33764ea00193c parent signature: 027ecab458015ba5090db1ddbacd50cf1d09e6c0e523bdd5ae6112ef55b5240f revisions tested: 26, total time: 3h39m39.827403765s (build: 1h7m19.687546635s, test: 2h22m40.120046289s) first bad commit: f26cc9593581bd734c846bf827401350b36dc3c9 io_uring: lockdep annotate CQ locking recipients (to): ["asml.silence@gmail.com" "axboe@kernel.dk"] recipients (cc): [] crash: BUG: unable to handle kernel NULL pointer dereference in io_get_cqe BUG: kernel NULL pointer dereference, address: 000000000000002c #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 106b25067 P4D 106b25067 PUD 106ba4067 PMD 0 Oops: 0000 [#1] PREEMPT SMP CPU: 1 PID: 25 Comm: kworker/1:1 Not tainted 6.1.0-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 Workqueue: events io_rsrc_put_work RIP: 0010:io_get_cqe_overflow io_uring/io_uring.h:108 [inline] RIP: 0010:io_get_cqe+0x45/0x130 io_uring/io_uring.h:125 Code: bb d8 04 00 00 eb 10 83 3d eb 83 3a 01 00 74 33 48 8d bb a8 00 00 00 be ff ff ff ff e8 94 32 60 00 eb 20 48 8b 83 d8 05 00 00 40 2c 04 8b 05 c5 83 3a 01 75 04 85 c0 eb 09 85 c0 74 05 e8 22 RSP: 0018:ffffc900000dfd88 EFLAGS: 00010202 RAX: 0000000000000000 RBX: ffff8881052af000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000005 RDI: ffff8881052af000 RBP: ffff8881052af000 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 000073746e657665 R12: 0000000000000005 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000000002c CR3: 0000000106ba3000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: io_fill_cqe_aux+0x1f/0xf0 io_uring/io_uring.c:832 __io_post_aux_cqe+0x3c/0xe0 io_uring/io_uring.c:880 __io_rsrc_put_work io_uring/rsrc.c:176 [inline] io_rsrc_put_work+0x83/0x160 io_uring/rsrc.c:202 process_one_work+0x258/0x4d0 kernel/workqueue.c:2289 worker_thread+0x218/0x370 kernel/workqueue.c:2436 kthread+0xd5/0xf0 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 Modules linked in: CR2: 000000000000002c ---[ end trace 0000000000000000 ]--- RIP: 0010:io_get_cqe_overflow io_uring/io_uring.h:108 [inline] RIP: 0010:io_get_cqe+0x45/0x130 io_uring/io_uring.h:125 Code: bb d8 04 00 00 eb 10 83 3d eb 83 3a 01 00 74 33 48 8d bb a8 00 00 00 be ff ff ff ff e8 94 32 60 00 eb 20 48 8b 83 d8 05 00 00 40 2c 04 8b 05 c5 83 3a 01 75 04 85 c0 eb 09 85 c0 74 05 e8 22 RSP: 0018:ffffc900000dfd88 EFLAGS: 00010202 RAX: 0000000000000000 RBX: ffff8881052af000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 0000000000000005 RDI: ffff8881052af000 RBP: ffff8881052af000 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 000073746e657665 R12: 0000000000000005 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000000000000002c CR3: 0000000106ba3000 CR4: 00000000003506e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: bb d8 04 00 00 mov $0x4d8,%ebx 5: eb 10 jmp 0x17 7: 83 3d eb 83 3a 01 00 cmpl $0x0,0x13a83eb(%rip) # 0x13a83f9 e: 74 33 je 0x43 10: 48 8d bb a8 00 00 00 lea 0xa8(%rbx),%rdi 17: be ff ff ff ff mov $0xffffffff,%esi 1c: e8 94 32 60 00 call 0x6032b5 21: eb 20 jmp 0x43 23: 48 8b 83 d8 05 00 00 mov 0x5d8(%rbx),%rax * 2a: f6 40 2c 04 testb $0x4,0x2c(%rax) <-- trapping instruction 2e: 8b 05 c5 83 3a 01 mov 0x13a83c5(%rip),%eax # 0x13a83f9 34: 75 04 jne 0x3a 36: 85 c0 test %eax,%eax 38: eb 09 jmp 0x43 3a: 85 c0 test %eax,%eax 3c: 74 05 je 0x43 3e: e8 .byte 0xe8 3f: 22 .byte 0x22