[ 52.024677][ T38] audit: type=1400 audit(1646651304.187:74): avc: denied { write } for pid=3649 comm="sh" path="pipe:[27421]" dev="pipefs" ino=27421 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
[ 87.284264][ T7] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:42133' (ECDSA) to the list of known hosts.
executing program
[ 113.525986][ T38] audit: type=1400 audit(1646651365.707:75): avc: denied { execute } for pid=3686 comm="sh" name="syz-executor133460122" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 113.548633][ T38] audit: type=1400 audit(1646651365.707:76): avc: denied { execute_no_trans } for pid=3686 comm="sh" path="/syz-executor133460122" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 113.571995][ T38] audit: type=1400 audit(1646651365.727:77): avc: denied { execmem } for pid=3686 comm="syz-executor133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 113.592081][ T38] audit: type=1400 audit(1646651365.727:78): avc: denied { read write } for pid=3687 comm="syz-executor133" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.618107][ T38] audit: type=1400 audit(1646651365.727:79): avc: denied { open } for pid=3687 comm="syz-executor133" path="/dev/raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.641196][ T38] audit: type=1400 audit(1646651365.727:80): avc: denied { ioctl } for pid=3687 comm="syz-executor133" path="/dev/raw-gadget" dev="devtmpfs" ino=760 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 113.820725][ T40] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 114.070546][ T40] usb 5-1: Using ep0 maxpacket: 32
[ 114.190555][ T40] usb 5-1: config 0 has an invalid interface number: 254 but max is 0
[ 114.198606][ T40] usb 5-1: config 0 has no interface number 0
[ 114.206474][ T40] usb 5-1: config 0 interface 254 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 114.380708][ T40] usb 5-1: New USB device found, idVendor=eb1a, idProduct=e303, bcdDevice=29.3d
[ 114.389474][ T40] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 114.397590][ T40] usb 5-1: Product: syz
[ 114.404122][ T40] usb 5-1: Manufacturer: syz
[ 114.408983][ T40] usb 5-1: SerialNumber: syz
[ 114.426527][ T40] usb 5-1: config 0 descriptor??
executing program
[ 114.735421][ T40] em28xx 5-1:0.254: New device syz syz @ 480 Mbps (eb1a:e303, interface 254, class 254)
[ 114.745453][ T40] em28xx 5-1:0.254: Video interface 254 found:
[ 114.880603][ T40] em28xx 5-1:0.254: unknown em28xx chip ID (0)
[ 115.200607][ T40] em28xx 5-1:0.254: reading from i2c device at 0xa0 failed (error=-5)
[ 115.208775][ T40] em28xx 5-1:0.254: board has no eeprom
[ 115.320549][ T40] em28xx 5-1:0.254: Identified as Kaiomy TVnPC U2 (card=63)
[ 115.327939][ T40] em28xx 5-1:0.254: analog set to bulk mode.
[ 115.338954][ T40] usb 5-1: USB disconnect, device number 2
[ 115.349380][ T969] em28xx 5-1:0.254: Registering V4L2 extension
[ 115.361347][ T40] em28xx 5-1:0.254: Disconnecting em28xx
[ 115.426521][ T969] i2c i2c-2: Invalid 7-bit I2C address 0x00
[ 115.456192][ T969] tuner: 2-0061: Tuner -1 found with type(s) Radio TV.
[ 115.468356][ T969] xc2028 2-0061: creating new instance
[ 115.474802][ T969] xc2028 2-0061: type set to XCeive xc2028/xc3028 tuner
[ 115.484096][ T969] em28xx 5-1:0.254: Config register raw data: 0xffffffed
[ 115.491860][ T969] em28xx 5-1:0.254: AC97 chip type couldn't be determined
[ 115.499686][ T969] em28xx 5-1:0.254: No AC97 audio processor
[ 115.511065][ T969] em28xx 5-1:0.254: Registered radio device as radio32
[ 115.518114][ T969] usb 5-1: Decoder not found
[ 115.522717][ T969] em28xx 5-1:0.254: failed to create media graph
[ 115.529188][ T969] em28xx 5-1:0.254: V4L2 device radio32 deregistered
[ 115.538326][ T969] em28xx 5-1:0.254: V4L2 device video71 deregistered
[ 115.546759][ T969] xc2028 2-0061: destroying instance
[ 115.553134][ T969] em28xx 5-1:0.254: Registering input extension
[ 115.560182][ T40] em28xx 5-1:0.254: Closing input extension
[ 115.573111][ T40] em28xx 5-1:0.254: Freeing device
[ 115.585830][ T969] usb 5-1:0.254: Direct firmware load for xc3028-v27.fw failed with error -2
[ 115.599297][ T969] usb 5-1:0.254: Falling back to sysfs fallback for: xc3028-v27.fw
[ 115.607200][ T969] kobject_add_internal failed for firmware (error: -2 parent: 5-1:0.254)
[ 115.615905][ T969] firmware xc3028-v27.fw: fw_load_sysfs_fallback: device_register failed
[ 115.624644][ T969] ==================================================================
[ 115.632924][ T969] BUG: KASAN: use-after-free in load_firmware_cb+0x269/0x290
[ 115.640671][ T969] Read of size 8 at addr ffff8880219e7318 by task kworker/3:2/969
[ 115.651261][ T969]
[ 115.653597][ T969] CPU: 3 PID: 969 Comm: kworker/3:2 Not tainted 5.17.0-rc7-syzkaller #0
[ 115.662078][ T969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 115.670976][ T969] Workqueue: events request_firmware_work_func
[ 115.677481][ T969] Call Trace:
[ 115.681028][ T969]
[ 115.683968][ T969] dump_stack_lvl+0xcd/0x134
[ 115.688901][ T969] print_address_description.constprop.0.cold+0x8d/0x303
[ 115.695963][ T969] ? load_firmware_cb+0x269/0x290
[ 115.700824][ T969] ? load_firmware_cb+0x269/0x290
[ 115.705793][ T969] kasan_report.cold+0x83/0xdf
[ 115.710275][ T969] ? load_firmware_cb+0x269/0x290
[ 115.715688][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 115.721094][ T969] load_firmware_cb+0x269/0x290
[ 115.725817][ T969] ? do_raw_spin_unlock+0x171/0x230
[ 115.730992][ T969] ? mark_held_locks+0x9f/0xe0
[ 115.735535][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 115.740555][ T969] ? _request_firmware+0x9cf/0xfe0
[ 115.745408][ T969] ? lockdep_hardirqs_on+0x79/0x100
[ 115.750536][ T969] ? _request_firmware+0xae/0xfe0
[ 115.755348][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 115.760560][ T969] request_firmware_work_func+0x12c/0x230
[ 115.765998][ T969] ? request_partial_firmware_into_buf+0xa0/0xa0
[ 115.772096][ T969] process_one_work+0x9ac/0x1650
[ 115.776837][ T969] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 115.781857][ T969] ? rwlock_bug.part.0+0x90/0x90
[ 115.786849][ T969] ? _raw_spin_lock_irq+0x41/0x50
[ 115.792936][ T969] worker_thread+0x657/0x1110
[ 115.798684][ T969] ? process_one_work+0x1650/0x1650
[ 115.805357][ T969] kthread+0x2e9/0x3a0
[ 115.810527][ T969] ? kthread_complete_and_exit+0x40/0x40
[ 115.817603][ T969] ret_from_fork+0x1f/0x30
[ 115.823306][ T969]
[ 115.827054][ T969]
[ 115.829942][ T969] Allocated by task 969:
[ 115.835347][ T969] kasan_save_stack+0x1e/0x40
[ 115.840945][ T969] __kasan_kmalloc+0xa6/0xd0
[ 115.845845][ T969] kmem_cache_alloc_trace+0x1ea/0x4a0
[ 115.851070][ T969] tuner_probe+0xa4/0x1180
[ 115.855478][ T969] i2c_device_probe+0xa0c/0xb90
[ 115.860154][ T969] really_probe+0x245/0xcc0
[ 115.864526][ T969] __driver_probe_device+0x338/0x4d0
[ 115.869523][ T969] driver_probe_device+0x4c/0x1a0
[ 115.874340][ T969] __device_attach_driver+0x20b/0x2f0
[ 115.879582][ T969] bus_for_each_drv+0x15f/0x1e0
[ 115.884727][ T969] __device_attach+0x228/0x4a0
[ 115.889306][ T969] bus_probe_device+0x1e4/0x290
[ 115.894005][ T969] device_add+0xb83/0x1e20
[ 115.898308][ T969] i2c_new_client_device+0x67b/0xb60
[ 115.903468][ T969] v4l2_i2c_new_subdev_board+0xaf/0x2c0
[ 115.908909][ T969] v4l2_i2c_new_subdev+0x102/0x170
[ 115.913875][ T969] em28xx_v4l2_init.cold+0x9cb/0x32a7
[ 115.919127][ T969] em28xx_init_extension+0x12f/0x1f0
[ 115.924237][ T969] request_module_async+0x5d/0x70
[ 115.928929][ T969] process_one_work+0x9ac/0x1650
[ 115.934125][ T969] worker_thread+0x657/0x1110
[ 115.939837][ T969] kthread+0x2e9/0x3a0
[ 115.944779][ T969] ret_from_fork+0x1f/0x30
[ 115.949974][ T969]
[ 115.952856][ T969] Freed by task 969:
[ 115.957031][ T969] kasan_save_stack+0x1e/0x40
[ 115.961824][ T969] kasan_set_track+0x21/0x30
[ 115.966586][ T969] kasan_set_free_info+0x20/0x30
[ 115.971598][ T969] ____kasan_slab_free+0xff/0x140
[ 115.977125][ T969] kfree+0xf8/0x2b0
[ 115.981767][ T969] tuner_remove+0x198/0x200
[ 115.986823][ T969] i2c_device_remove+0x7b/0x240
[ 115.991837][ T969] __device_release_driver+0x3bd/0x760
[ 115.997435][ T969] device_release_driver+0x26/0x40
[ 116.002392][ T969] bus_remove_device+0x2eb/0x5a0
[ 116.007177][ T969] device_del+0x4f3/0xc80
[ 116.011407][ T969] device_unregister+0x1f/0xc0
[ 116.016204][ T969] i2c_unregister_device+0x38/0x40
[ 116.021226][ T969] v4l2_i2c_subdev_unregister+0xa2/0xc0
[ 116.026804][ T969] v4l2_device_unregister+0x20d/0x2e0
[ 116.032166][ T969] em28xx_v4l2_init.cold+0xd26/0x32a7
[ 116.037357][ T969] em28xx_init_extension+0x12f/0x1f0
[ 116.042522][ T969] request_module_async+0x5d/0x70
[ 116.047313][ T969] process_one_work+0x9ac/0x1650
[ 116.051829][ T969] worker_thread+0x657/0x1110
[ 116.056144][ T969] kthread+0x2e9/0x3a0
[ 116.060224][ T969] ret_from_fork+0x1f/0x30
[ 116.064556][ T969]
[ 116.066846][ T969] The buggy address belongs to the object at ffff8880219e7000
[ 116.066846][ T969] which belongs to the cache kmalloc-2k of size 2048
[ 116.080664][ T969] The buggy address is located 792 bytes inside of
[ 116.080664][ T969] 2048-byte region [ffff8880219e7000, ffff8880219e7800)
[ 116.093693][ T969] The buggy address belongs to the page:
[ 116.099842][ T969] page:ffffea00008679c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x219e7
[ 116.111196][ T969] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 116.119659][ T969] raw: 00fff00000000200 ffffea0000501b88 ffffea0000866008 ffff888010c40800
[ 116.129398][ T969] raw: 0000000000000000 ffff8880219e7000 0000000100000001 0000000000000000
[ 116.139212][ T969] page dumped because: kasan: bad access detected
[ 116.147118][ T969] page_owner tracks the page as allocated
[ 116.153821][ T969] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2420c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_COMP|__GFP_THISNODE), pid 969, ts 115456081158, free_ts 96740646680
[ 116.173264][ T969] get_page_from_freelist+0xa72/0x2f50
[ 116.180163][ T969] __alloc_pages+0x1b2/0x500
[ 116.186092][ T969] cache_grow_begin+0x75/0x390
[ 116.192289][ T969] cache_alloc_refill+0x27f/0x380
[ 116.198800][ T969] kmem_cache_alloc_trace+0x380/0x4a0
[ 116.205547][ T969] tuner_probe+0xa4/0x1180
[ 116.210942][ T969] i2c_device_probe+0xa0c/0xb90
[ 116.216430][ T969] really_probe+0x245/0xcc0
[ 116.220931][ T969] __driver_probe_device+0x338/0x4d0
[ 116.226155][ T969] driver_probe_device+0x4c/0x1a0
[ 116.231153][ T969] __device_attach_driver+0x20b/0x2f0
[ 116.236374][ T969] bus_for_each_drv+0x15f/0x1e0
[ 116.241221][ T969] __device_attach+0x228/0x4a0
[ 116.246041][ T969] bus_probe_device+0x1e4/0x290
[ 116.250848][ T969] device_add+0xb83/0x1e20
[ 116.255427][ T969] i2c_new_client_device+0x67b/0xb60
[ 116.260689][ T969] page last free stack trace:
[ 116.265281][ T969] free_pcp_prepare+0x374/0x870
[ 116.270006][ T969] free_unref_page+0x19/0x690
[ 116.274650][ T969] __put_page+0x13d/0x1e0
[ 116.278900][ T969] free_page_and_swap_cache+0x1f2/0x270
[ 116.284266][ T969] tlb_remove_table_rcu+0x85/0xe0
[ 116.289296][ T969] rcu_core+0x7b1/0x1820
[ 116.293506][ T969] __do_softirq+0x29b/0x9c2
[ 116.297919][ T969]
[ 116.300135][ T969] Memory state around the buggy address:
[ 116.305754][ T969] ffff8880219e7200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 116.313831][ T969] ffff8880219e7280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 116.321506][ T969] >ffff8880219e7300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 116.329161][ T969] ^
[ 116.333999][ T969] ffff8880219e7380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 116.341903][ T969] ffff8880219e7400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 116.349745][ T969] ==================================================================
[ 116.357310][ T969] Disabling lock debugging due to kernel taint
[ 116.363534][ T969] Kernel panic - not syncing: panic_on_warn set ...
[ 116.369975][ T969] CPU: 3 PID: 969 Comm: kworker/3:2 Tainted: G B 5.17.0-rc7-syzkaller #0
[ 116.379962][ T969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 116.388928][ T969] Workqueue: events request_firmware_work_func
[ 116.395095][ T969] Call Trace:
[ 116.398396][ T969]
[ 116.401310][ T969] dump_stack_lvl+0xcd/0x134
[ 116.405989][ T969] panic+0x2b0/0x6dd
[ 116.409887][ T969] ? __warn_printk+0xf3/0xf3
[ 116.414488][ T969] ? preempt_schedule_common+0x59/0xc0
[ 116.419941][ T969] ? load_firmware_cb+0x269/0x290
[ 116.424891][ T969] ? preempt_schedule_thunk+0x16/0x18
[ 116.430079][ T969] ? trace_hardirqs_on+0x38/0x1c0
[ 116.435130][ T969] ? trace_hardirqs_on+0x51/0x1c0
[ 116.440245][ T969] ? load_firmware_cb+0x269/0x290
[ 116.445202][ T969] ? load_firmware_cb+0x269/0x290
[ 116.450188][ T969] end_report.cold+0x63/0x6f
[ 116.454680][ T969] kasan_report.cold+0x71/0xdf
[ 116.459385][ T969] ? load_firmware_cb+0x269/0x290
[ 116.464316][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 116.469943][ T969] load_firmware_cb+0x269/0x290
[ 116.474994][ T969] ? do_raw_spin_unlock+0x171/0x230
[ 116.480344][ T969] ? mark_held_locks+0x9f/0xe0
[ 116.485161][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 116.490609][ T969] ? _request_firmware+0x9cf/0xfe0
[ 116.495748][ T969] ? lockdep_hardirqs_on+0x79/0x100
[ 116.500831][ T969] ? _request_firmware+0xae/0xfe0
[ 116.505838][ T969] ? seek_firmware.isra.0+0x610/0x610
[ 116.511828][ T969] request_firmware_work_func+0x12c/0x230
[ 116.517421][ T969] ? request_partial_firmware_into_buf+0xa0/0xa0
[ 116.524698][ T969] process_one_work+0x9ac/0x1650
[ 116.529417][ T969] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 116.534710][ T969] ? rwlock_bug.part.0+0x90/0x90
[ 116.539631][ T969] ? _raw_spin_lock_irq+0x41/0x50
[ 116.544597][ T969] worker_thread+0x657/0x1110
[ 116.549058][ T969] ? process_one_work+0x1650/0x1650
[ 116.554298][ T969] kthread+0x2e9/0x3a0
[ 116.558323][ T969] ? kthread_complete_and_exit+0x40/0x40
[ 116.563513][ T969] ret_from_fork+0x1f/0x30
[ 116.568021][ T969]
[ 116.571972][ T969] Kernel Offset: disabled
[ 116.576359][ T969] Rebooting in 86400 seconds..
VM DIAGNOSIS:
11:09:28 Registers:
info registers vcpu 0
RAX=00000000000319d3 RBX=ffffffff8b8bc6c0 RCX=ffffffff894bf701 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffffff8b807e40
R8 =0000000000000001 R9 =ffff88802ca3acd3 R10=ffffed100594759a R11=0000000000000000
R12=fffffbfff17178d8 R13=0000000000000000 R14=ffffffff8d93e910 R15=0000000000000000
RIP=ffffffff894ec22b RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00005565420113f0 CR3=0000000019212000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f
XMM02=0000000000000000000000ff00000000 XMM03=ff00000000ff000000ff000000000000
XMM04=00000000000000000000000000000000 XMM05=000000000000000000000000000000ff
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000002daef RBX=ffff888011924180 RCX=ffffffff894bf701 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc9000065fdf8
R8 =0000000000000001 R9 =ffff88802cb3acd3 R10=ffffed100596759a R11=0000000000000000
R12=ffffed1002324830 R13=0000000000000001 R14=ffffffff8d93e910 R15=0000000000000000
RIP=ffffffff894ec22b RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f89bd95f2e0 CR3=0000000019212000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f
XMM02=0000000000000000000000ff00000000 XMM03=ff00000000ff000000ff000000000000
XMM04=00000000000000000000000000000000 XMM05=000000000000000000000000000000ff
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000007 RBX=ffffc90000d07c40 RCX=0000000000000000 RDX=00000000000000a0
RSI=0000000000000002 RDI=ffffc90000d07c40 RBP=ffff8880240ed990 RSP=ffffc90000d079e0
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff81ce4c0b R11=0000000000000000
R12=0000000000000001 R13=ffffc90000d07c48 R14=0000000000000040 R15=ffffc90000d07c78
RIP=ffffffff81cdd6c0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f3233afc840 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000556541ff72d8 CR3=000000001d4bb000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffff0000000000000000000000000000
XMM02=000000000000ff0000000000000000ff XMM03=00000000000000000000000000000000
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000ffffffffffffff00ffffff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=535953425553003d4854415056454400 XMM09=00000000000000000000000000000000
XMM10=20202000002020202020202020202020 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8441fdcc RDI=ffffffff907ef2e0 RBP=ffffffff907ef2a0 RSP=ffffc90004eff658
R8 =0000000000000057 R9 =0000000000000000 R10=ffffffff8441fdbd R11=000000000000001f
R12=0000000000000000 R13=fffffbfff20fdea7 R14=fffffbfff20fde5e R15=dffffc0000000000
RIP=ffffffff8441fdf2 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff54a7fb270 CR3=0000000016583000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=0000000000000000619557bd88179936
XMM02=00000000000000000000000000000000 XMM03=20787838326d65205d3936395420205b
XMM04=205b5d3639313134362e33313120205b XMM05=665f7268633d7373616c637420745f65
XMM06=5f6d65747379733d747865746e6f6374 XMM07=79733a746f6f723d747865746e6f6373
XMM08=6500006d6f7200002e0000726f737365 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000