[   57.350248][   T39] audit: type=1400 audit(1652238514.442:74): avc:  denied  { write } for  pid=3645 comm="sh" path="pipe:[29972]" dev="pipefs" ino=29972 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:55266' (ECDSA) to the list of known hosts.
[   60.757559][   T39] audit: type=1400 audit(1652238517.882:75): avc:  denied  { execute } for  pid=3679 comm="sh" name="syz-executor1939435641" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   60.784259][   T39] audit: type=1400 audit(1652238517.912:76): avc:  denied  { execute_no_trans } for  pid=3679 comm="sh" path="/syz-executor1939435641" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   60.808600][ T3679] cgroup: Unknown subsys name 'net'
[   60.817392][   T39] audit: type=1400 audit(1652238517.912:77): avc:  denied  { execmem } for  pid=3679 comm="syz-executor193" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   60.848746][   T39] audit: type=1400 audit(1652238517.912:78): avc:  denied  { mounton } for  pid=3679 comm="syz-executor193" path="/syzcgroup/unified" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   60.880344][   T39] audit: type=1400 audit(1652238517.912:79): avc:  denied  { mount } for  pid=3679 comm="syz-executor193" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   60.909801][   T39] audit: type=1400 audit(1652238517.952:80): avc:  denied  { unmount } for  pid=3679 comm="syz-executor193" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   61.084965][ T3679] cgroup: Unknown subsys name 'rlimit'
[   61.279552][   T39] audit: type=1400 audit(1652238518.382:81): avc:  denied  { mounton } for  pid=3681 comm="syz-executor193" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   61.311948][   T39] audit: type=1400 audit(1652238518.402:82): avc:  denied  { mount } for  pid=3681 comm="syz-executor193" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   62.348023][   T39] kauditd_printk_skb: 3 callbacks suppressed
[   62.348047][   T39] audit: type=1400 audit(1652238519.472:86): avc:  denied  { ioctl } for  pid=3681 comm="syz-executor193" path="socket:[31076]" dev="sockfs" ino=31076 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   62.354179][ T3682] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   62.401695][ T3682] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   62.420789][ T3682] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   62.435658][ T3682] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   62.445915][ T3682] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   62.454697][ T3682] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   62.473652][   T39] audit: type=1400 audit(1652238519.602:87): avc:  denied  { read } for  pid=3681 comm="syz-executor193" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   62.496893][   T39] audit: type=1400 audit(1652238519.602:88): avc:  denied  { open } for  pid=3681 comm="syz-executor193" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   62.522238][   T39] audit: type=1400 audit(1652238519.602:89): avc:  denied  { mounton } for  pid=3681 comm="syz-executor193" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   62.548631][   T39] audit: type=1400 audit(1652238519.672:90): avc:  denied  { mounton } for  pid=3681 comm="syz-executor193" path="/dev/binderfs" dev="devtmpfs" ino=2378 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   62.571177][   T39] audit: type=1400 audit(1652238519.682:91): avc:  denied  { mount } for  pid=3681 comm="syz-executor193" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   64.505238][  T972] Bluetooth: hci0: command 0x0409 tx timeout
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   66.576248][ T3682] ------------[ cut here ]------------
[   66.586392][ T3682] refcount_t: addition on 0; use-after-free.
[   66.596891][ T3682] WARNING: CPU: 3 PID: 3682 at lib/refcount.c:25 refcount_warn_saturate+0x169/0x1e0
[   66.620571][ T3682] Modules linked in:
[   66.627364][ T3682] CPU: 3 PID: 3682 Comm: kworker/u19:1 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0
[   66.642671][ T3682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[   66.653526][ T3682] Workqueue: hci0 hci_rx_work
[   66.659531][ T3682] RIP: 0010:refcount_warn_saturate+0x169/0x1e0
[   66.670261][ T3682] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89
[   66.690410][ T3682] RSP: 0018:ffffc90002ddf960 EFLAGS: 00010282
[   66.700381][ T3682] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   66.712542][ T3682] RDX: ffff888025df61c0 RSI: ffffffff815f4a18 RDI: fffff520005bbf1e
[   66.723162][ T3682] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001
[   66.733752][ T3682] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff888018c47000
[   66.744454][ T3682] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003
[   66.754739][ T3682] FS:  0000000000000000(0000) GS:ffff88802cd00000(0000) knlGS:0000000000000000
[   66.766392][ T3682] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   66.775173][ T3682] CR2: 000055555693f608 CR3: 00000000155d4000 CR4: 0000000000150ee0
[   66.786287][ T3682] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   66.797782][ T3682] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   66.807428][ T3682] Call Trace:
[   66.811029][ T3682]  <TASK>
[   66.814563][ T3682]  l2cap_chan_hold+0xff/0x120
[   66.819998][ T3682]  l2cap_global_chan_by_psm+0x3b1/0x4a0
[   66.826199][ T3682]  ? l2cap_chan_hold+0x120/0x120
[   66.831281][ T3682]  l2cap_recv_frame+0x68d/0x8e60
[   66.836396][ T3682]  ? find_held_lock+0x2d/0x110
[   66.841692][ T3682]  ? hci_rx_work+0x4ad/0xd60
[   66.847385][ T3682]  ? lock_downgrade+0x6e0/0x6e0
[   66.852231][ T3682]  ? l2cap_config_rsp.isra.0+0x12a0/0x12a0
[   66.858286][ T3682]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   66.864326][ T3682]  ? wait_for_completion_io_timeout+0x20/0x20
[   66.870306][ T3682]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   66.876659][ T3682]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   66.884509][ T3682]  ? hci_conn_enter_active_mode+0x136/0x360
[   66.891950][ T3682]  ? lock_downgrade+0x6e0/0x6e0
[   66.899112][ T3682]  ? hci_conn_check_link_mode+0x500/0x500
[   66.906201][ T3682]  l2cap_recv_acldata+0xa96/0xc10
[   66.912263][ T3682]  hci_rx_work+0x4d5/0xd60
[   66.917873][ T3682]  process_one_work+0x996/0x1610
[   66.924291][ T3682]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   66.930916][ T3682]  ? rwlock_bug.part.0+0x90/0x90
[   66.939634][ T3682]  ? _raw_spin_lock_irq+0x41/0x50
[   66.944834][ T3682]  worker_thread+0x665/0x1080
[   66.949578][ T3682]  ? process_one_work+0x1610/0x1610
[   66.955033][ T3682]  kthread+0x2e9/0x3a0
[   66.959318][ T3682]  ? kthread_complete_and_exit+0x40/0x40
[   66.968038][ T3682]  ret_from_fork+0x1f/0x30
[   66.972904][ T3682]  </TASK>
[   66.975910][ T3682] Kernel panic - not syncing: panic_on_warn set ...
[   66.983736][ T3682] CPU: 3 PID: 3682 Comm: kworker/u19:1 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0
[   66.994387][ T3682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[   67.004547][ T3682] Workqueue: hci0 hci_rx_work
[   67.010083][ T3682] Call Trace:
[   67.014322][ T3682]  <TASK>
[   67.017829][ T3682]  dump_stack_lvl+0xcd/0x134
[   67.023548][ T3682]  panic+0x2d7/0x636
[   67.028115][ T3682]  ? panic_print_sys_info.part.0+0x10b/0x10b
[   67.035126][ T3682]  ? __warn.cold+0x1d1/0x2c5
[   67.040261][ T3682]  ? refcount_warn_saturate+0x169/0x1e0
[   67.046671][ T3682]  __warn.cold+0x1e2/0x2c5
[   67.051998][ T3682]  ? wake_up_klogd.part.0+0x8e/0xd0
[   67.057944][ T3682]  ? refcount_warn_saturate+0x169/0x1e0
[   67.063809][ T3682]  report_bug+0x1bd/0x210
[   67.068175][ T3682]  handle_bug+0x3c/0x60
[   67.072494][ T3682]  exc_invalid_op+0x14/0x40
[   67.077630][ T3682]  asm_exc_invalid_op+0x12/0x20
[   67.082875][ T3682] RIP: 0010:refcount_warn_saturate+0x169/0x1e0
[   67.088934][ T3682] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89
[   67.108490][ T3682] RSP: 0018:ffffc90002ddf960 EFLAGS: 00010282
[   67.114402][ T3682] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   67.122084][ T3682] RDX: ffff888025df61c0 RSI: ffffffff815f4a18 RDI: fffff520005bbf1e
[   67.129702][ T3682] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001
[   67.137459][ T3682] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff888018c47000
[   67.146291][ T3682] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003
[   67.154143][ T3682]  ? wake_up_klogd.part.0+0x8e/0xd0
[   67.160794][ T3682]  ? vprintk+0x88/0x90
[   67.165648][ T3682]  l2cap_chan_hold+0xff/0x120
[   67.171437][ T3682]  l2cap_global_chan_by_psm+0x3b1/0x4a0
[   67.178055][ T3682]  ? l2cap_chan_hold+0x120/0x120
[   67.184464][ T3682]  l2cap_recv_frame+0x68d/0x8e60
[   67.191191][ T3682]  ? find_held_lock+0x2d/0x110
[   67.196841][ T3682]  ? hci_rx_work+0x4ad/0xd60
[   67.202929][ T3682]  ? lock_downgrade+0x6e0/0x6e0
[   67.208574][ T3682]  ? l2cap_config_rsp.isra.0+0x12a0/0x12a0
[   67.215898][ T3682]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   67.223031][ T3682]  ? wait_for_completion_io_timeout+0x20/0x20
[   67.230773][ T3682]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   67.238354][ T3682]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   67.246719][ T3682]  ? hci_conn_enter_active_mode+0x136/0x360
[   67.254450][ T3682]  ? lock_downgrade+0x6e0/0x6e0
[   67.260462][ T3682]  ? hci_conn_check_link_mode+0x500/0x500
[   67.267733][ T3682]  l2cap_recv_acldata+0xa96/0xc10
[   67.274310][ T3682]  hci_rx_work+0x4d5/0xd60
[   67.279594][ T3682]  process_one_work+0x996/0x1610
[   67.285400][ T3682]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   67.291750][ T3682]  ? rwlock_bug.part.0+0x90/0x90
[   67.296549][ T3682]  ? _raw_spin_lock_irq+0x41/0x50
[   67.301764][ T3682]  worker_thread+0x665/0x1080
[   67.306348][ T3682]  ? process_one_work+0x1610/0x1610
[   67.311371][ T3682]  kthread+0x2e9/0x3a0
[   67.315267][ T3682]  ? kthread_complete_and_exit+0x40/0x40
[   67.320986][ T3682]  ret_from_fork+0x1f/0x30
[   67.325580][ T3682]  </TASK>
[   67.330291][ T3682] Kernel Offset: disabled
[   67.335115][ T3682] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:08:44  Registers:
info registers vcpu 0
RAX=000000000003170d RBX=ffffffff8babc700 RCX=ffffffff896d0fd1 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffffff8ba07e18
R8 =0000000000000001 R9 =ffff88802ca3b093 R10=ffffed1005947612 R11=0000000000000000
R12=fffffbfff17578e0 R13=0000000000000000 R14=ffffffff8db8e250 R15=0000000000000000
RIP=ffffffff896ffdfb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd43725bdb8 CR3=00000000155d4000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000ff0000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000ff0000000000000000ff XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000300 RBX=ffffffff8d7a0ce0 RCX=ffffffff815d652f RDX=fffffbfff1af419d
RSI=0000000000000004 RDI=ffffffff8d7a0ce0 RBP=1ffff92000749f92 RSP=ffffc90003a4fc88
R8 =0000000000000001 R9 =ffffffff8d7a0ce3 R10=fffffbfff1af419c R11=0000000000000001
R12=ffffffff8d7a0ce4 R13=00000000000000ff R14=0000000000000003 R15=fffffbfff1af419c
RIP=ffffffff815d6577 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555693f300 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000180 CR3=0000000027726000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=ffff00000000ff00000000ff00000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000000 RBX=ffffe8ffadd0bd00 RCX=0000000000000000 RDX=ffff888015780040
RSI=ffffffff816ca557 RDI=0000000000000003 RBP=0000000000000003 RSP=ffffc90000a47950
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff816ca57d R11=0000000000000000
R12=fffff91ff5ba17a1 R13=0000000000000003 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff816ca559 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055555693f608 CR3=000000000ba8e000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000ff0000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000ff0000000000000000ff XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff845b180c RDI=ffffffff90899800 RBP=ffffffff908997c0 RSP=ffffc90002ddf318
R8 =0000000000000074 R9 =0000000000000000 R10=ffffffff845b17fd R11=000000000000001f
R12=0000000000000000 R13=fffffbfff211334b R14=fffffbfff2113302 R15=dffffc0000000000
RIP=ffffffff845b1832 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055555693f608 CR3=00000000155d4000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000000000ff0000000000000000ff XMM01=25252525252525252525252525252525
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000ff0000000000000000ff XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000