[   51.961754][   T40] audit: type=1400 audit(1652244919.294:74): avc:  denied  { write } for  pid=3572 comm="sh" path="pipe:[29826]" dev="pipefs" ino=29826 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:35564' (ECDSA) to the list of known hosts.
[   56.492602][   T40] audit: type=1400 audit(1652244923.824:75): avc:  denied  { execute } for  pid=3658 comm="sh" name="syz-executor3153707132" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   56.531200][   T40] audit: type=1400 audit(1652244923.854:76): avc:  denied  { execute_no_trans } for  pid=3658 comm="sh" path="/syz-executor3153707132" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   56.575144][   T40] audit: type=1400 audit(1652244923.884:77): avc:  denied  { execmem } for  pid=3658 comm="syz-executor315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   56.599825][   T40] audit: type=1400 audit(1652244923.894:78): avc:  denied  { mounton } for  pid=3664 comm="syz-executor315" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   56.628431][   T40] audit: type=1400 audit(1652244923.894:79): avc:  denied  { mounton } for  pid=3663 comm="syz-executor315" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   56.654823][   T40] audit: type=1400 audit(1652244923.894:80): avc:  denied  { mount } for  pid=3663 comm="syz-executor315" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   56.678387][   T40] audit: type=1400 audit(1652244923.894:82): avc:  denied  { create } for  pid=3663 comm="syz-executor315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   56.698370][   T40] audit: type=1400 audit(1652244923.894:81): avc:  denied  { create } for  pid=3664 comm="syz-executor315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.591346][   T40] kauditd_printk_skb: 4 callbacks suppressed
[   57.591358][   T40] audit: type=1400 audit(1652244924.924:87): avc:  denied  { ioctl } for  pid=3666 comm="syz-executor315" path="socket:[30811]" dev="sockfs" ino=30811 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.608895][ T3686] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   57.622016][ T3687] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   57.622956][ T3687] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   57.623416][ T3687] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   57.625018][ T3689] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   57.625658][ T3689] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   57.626545][ T3689] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   57.627160][ T3689] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   57.627500][ T3689] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   57.629722][ T3689] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   57.630176][ T3689] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   57.630824][ T3689] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   57.631463][ T3689] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   57.631691][ T3689] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
executing program
[   57.644084][   T40] audit: type=1400 audit(1652244924.924:88): avc:  denied  { read } for  pid=3664 comm="syz-executor315" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.660953][ T3685] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
executing program
executing program
[   57.663548][   T40] audit: type=1400 audit(1652244924.924:89): avc:  denied  { open } for  pid=3664 comm="syz-executor315" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   57.673019][ T3685] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   57.683973][   T40] audit: type=1400 audit(1652244924.924:90): avc:  denied  { mounton } for  pid=3664 comm="syz-executor315" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   57.684117][ T3690] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   57.728062][ T3687] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   57.733513][ T3690] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   57.742580][ T3687] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   57.749940][ T3690] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   57.759653][ T3687] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   57.768751][ T3690] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.775879][   T40] audit: type=1400 audit(1652244925.104:91): avc:  denied  { mounton } for  pid=3664 comm="syz-executor315" path="/dev/binderfs" dev="devtmpfs" ino=2378 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   57.777562][ T3687] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   57.780854][   T40] audit: type=1400 audit(1652244925.104:92): avc:  denied  { mount } for  pid=3664 comm="syz-executor315" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   58.625740][   T63] ------------[ cut here ]------------
[   58.634520][   T63] refcount_t: addition on 0; use-after-free.
[   58.643473][   T63] WARNING: CPU: 3 PID: 63 at lib/refcount.c:25 refcount_warn_saturate+0x169/0x1e0
[   58.653954][   T63] Modules linked in:
[   58.662643][   T63] CPU: 3 PID: 63 Comm: kworker/u19:0 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0
[   58.677697][   T63] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[   58.691004][   T63] Workqueue: hci0 hci_rx_work
[   58.697798][   T63] RIP: 0010:refcount_warn_saturate+0x169/0x1e0
[   58.705457][   T63] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89
[   58.729592][   T63] RSP: 0018:ffffc900009f7960 EFLAGS: 00010282
[   58.737809][   T63] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   58.747423][   T63] RDX: ffff8880153a01c0 RSI: ffffffff815f4a18 RDI: fffff5200013ef1e
[   58.758946][   T63] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001
[   58.771871][   T63] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff888025440000
[   58.783180][   T63] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003
[   58.794609][   T63] FS:  0000000000000000(0000) GS:ffff88802cd00000(0000) knlGS:0000000000000000
[   58.805773][   T63] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   58.814040][   T63] CR2: 00007f8ffc23406d CR3: 0000000018b56000 CR4: 0000000000150ee0
[   58.825092][   T63] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   58.835918][   T63] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   58.846833][   T63] Call Trace:
[   58.851603][   T63]  <TASK>
[   58.855235][   T63]  l2cap_chan_hold+0xff/0x120
[   58.861338][   T63]  l2cap_global_chan_by_psm+0x3b1/0x4a0
[   58.869438][   T63]  ? l2cap_chan_hold+0x120/0x120
[   58.877250][   T63]  l2cap_recv_frame+0x68d/0x8e60
[   58.884508][   T63]  ? find_held_lock+0x2d/0x110
[   58.892291][   T63]  ? hci_rx_work+0x4ad/0xd60
[   58.898223][   T63]  ? lock_downgrade+0x6e0/0x6e0
[   58.905565][   T63]  ? l2cap_config_rsp.isra.0+0x12a0/0x12a0
[   58.913635][   T63]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   58.922280][   T63]  ? wait_for_completion_io_timeout+0x20/0x20
[   58.930098][   T63]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   58.937991][   T63]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   58.946741][   T63]  ? hci_conn_enter_active_mode+0x136/0x360
[   58.954120][   T63]  ? lock_downgrade+0x6e0/0x6e0
[   58.961206][   T63]  ? hci_conn_check_link_mode+0x500/0x500
[   58.969666][   T63]  l2cap_recv_acldata+0xa96/0xc10
[   58.977135][   T63]  hci_rx_work+0x4d5/0xd60
[   58.982637][   T63]  process_one_work+0x996/0x1610
[   58.989984][   T63]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   58.997931][   T63]  ? rwlock_bug.part.0+0x90/0x90
[   59.004228][   T63]  ? _raw_spin_lock_irq+0x41/0x50
[   59.010668][   T63]  worker_thread+0x665/0x1080
[   59.017791][   T63]  ? process_one_work+0x1610/0x1610
[   59.025572][   T63]  kthread+0x2e9/0x3a0
[   59.030836][   T63]  ? kthread_complete_and_exit+0x40/0x40
[   59.038696][   T63]  ret_from_fork+0x1f/0x30
[   59.044765][   T63]  </TASK>
[   59.049980][   T63] Kernel panic - not syncing: panic_on_warn set ...
[   59.058743][   T63] CPU: 3 PID: 63 Comm: kworker/u19:0 Not tainted 5.18.0-rc6-syzkaller-00007-g9be9ed2612b5 #0
[   59.074050][   T63] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[   59.086948][   T63] Workqueue: hci0 hci_rx_work
[   59.092972][   T63] Call Trace:
[   59.097082][   T63]  <TASK>
[   59.100662][   T63]  dump_stack_lvl+0xcd/0x134
[   59.106603][   T63]  panic+0x2d7/0x636
[   59.111388][   T63]  ? panic_print_sys_info.part.0+0x10b/0x10b
[   59.120168][   T63]  ? __warn.cold+0x1d1/0x2c5
[   59.126759][   T63]  ? refcount_warn_saturate+0x169/0x1e0
[   59.133554][   T63]  __warn.cold+0x1e2/0x2c5
[   59.140829][   T63]  ? wake_up_klogd.part.0+0x8e/0xd0
[   59.148020][   T63]  ? refcount_warn_saturate+0x169/0x1e0
[   59.154918][   T63]  report_bug+0x1bd/0x210
[   59.160463][   T63]  handle_bug+0x3c/0x60
[   59.165570][   T63]  exc_invalid_op+0x14/0x40
[   59.171001][   T63]  asm_exc_invalid_op+0x12/0x20
[   59.177824][   T63] RIP: 0010:refcount_warn_saturate+0x169/0x1e0
[   59.185293][   T63] Code: 09 31 ff 89 de e8 97 44 81 fd 84 db 0f 85 36 ff ff ff e8 aa 40 81 fd 48 c7 c7 80 61 26 8a c6 05 0f 00 ad 09 01 e8 e7 f5 30 05 <0f> 0b e9 17 ff ff ff e8 8b 40 81 fd 0f b6 1d f4 ff ac 09 31 ff 89
[   59.212607][   T63] RSP: 0018:ffffc900009f7960 EFLAGS: 00010282
[   59.222936][   T63] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   59.233903][   T63] RDX: ffff8880153a01c0 RSI: ffffffff815f4a18 RDI: fffff5200013ef1e
[   59.244684][   T63] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000001
[   59.254736][   T63] R10: ffffffff815ef3ee R11: 0000000000000000 R12: ffff888025440000
[   59.264831][   T63] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000003
[   59.275488][   T63]  ? wake_up_klogd.part.0+0x8e/0xd0
[   59.282519][   T63]  ? vprintk+0x88/0x90
[   59.287993][   T63]  l2cap_chan_hold+0xff/0x120
[   59.293675][   T63]  l2cap_global_chan_by_psm+0x3b1/0x4a0
[   59.300649][   T63]  ? l2cap_chan_hold+0x120/0x120
[   59.306636][   T63]  l2cap_recv_frame+0x68d/0x8e60
[   59.313125][   T63]  ? find_held_lock+0x2d/0x110
[   59.319344][   T63]  ? hci_rx_work+0x4ad/0xd60
[   59.325040][   T63]  ? lock_downgrade+0x6e0/0x6e0
[   59.330929][   T63]  ? l2cap_config_rsp.isra.0+0x12a0/0x12a0
[   59.338225][   T63]  ? __mutex_unlock_slowpath+0x157/0x5e0
[   59.345443][   T63]  ? wait_for_completion_io_timeout+0x20/0x20
[   59.352908][   T63]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[   59.360558][   T63]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.368159][   T63]  ? hci_conn_enter_active_mode+0x136/0x360
[   59.375433][   T63]  ? lock_downgrade+0x6e0/0x6e0
[   59.381092][   T63]  ? hci_conn_check_link_mode+0x500/0x500
[   59.388013][   T63]  l2cap_recv_acldata+0xa96/0xc10
[   59.395518][   T63]  hci_rx_work+0x4d5/0xd60
[   59.401017][   T63]  process_one_work+0x996/0x1610
[   59.407114][   T63]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[   59.413582][   T63]  ? rwlock_bug.part.0+0x90/0x90
[   59.419616][   T63]  ? _raw_spin_lock_irq+0x41/0x50
[   59.425860][   T63]  worker_thread+0x665/0x1080
[   59.431640][   T63]  ? process_one_work+0x1610/0x1610
[   59.438628][   T63]  kthread+0x2e9/0x3a0
[   59.443563][   T63]  ? kthread_complete_and_exit+0x40/0x40
[   59.450295][   T63]  ret_from_fork+0x1f/0x30
[   59.455925][   T63]  </TASK>
[   59.461534][   T63] Kernel Offset: disabled
[   59.467486][   T63] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:55:26  Registers:
info registers vcpu 0
RAX=0000000000000233 RBX=ffff88802cc3aec0 RCX=1ffffffff2015496 RDX=0000000000000000
RSI=0000000000000002 RDI=0000000000000000 RBP=ffff88802ca3aed4 RSP=ffffc9000355fb38
R8 =0000000000000001 R9 =ffffffff90072997 R10=0000000000000001 R11=0000000000000001
R12=ffffed10059875da R13=ffff88802cc3aed4 R14=dffffc0000000000 R15=ffff88802ca3aec0
RIP=ffffffff81347598 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555555e23300 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffdaf9a3020 CR3=0000000018b56000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000ff00000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000300 RBX=ffffffff8d7a0ce0 RCX=ffffffff815d652f RDX=fffffbfff1af419d
RSI=0000000000000004 RDI=ffffffff8d7a0ce0 RBP=1ffff920006a5f92 RSP=ffffc9000352fc88
R8 =0000000000000001 R9 =ffffffff8d7a0ce3 R10=fffffbfff1af419c R11=0000000000000001
R12=ffffffff8d7a0ce4 R13=00000000000000ff R14=0000000000000003 R15=fffffbfff1af419c
RIP=ffffffff815d6577 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555555e23300 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000180 CR3=0000000029092000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000ff00000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=00000000000002fd RBX=0000000000000004 RCX=1ffffffff2015496 RDX=0000000000000000
RSI=0000000000000002 RDI=0000000000000000 RBP=ffffffff8d7a0ce4 RSP=ffffc9000354fb38
R8 =0000000000000001 R9 =ffffffff90072997 R10=0000000000000001 R11=0000000000000001
R12=0000000000000000 R13=fffffbfff1af419c R14=0000000000000001 R15=ffff88802cc3aec0
RIP=ffffffff81347598 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555555e23300 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8ffc23406d CR3=000000001988d000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000ff00000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff845b1771 RDI=ffffffff90899800 RBP=ffffffff908997c0 RSP=ffffc900009f7340
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff845b1762 R11=000000000000001f
R12=0000000000000000 R13=0000000000000020 R14=ffffffff908997c0 R15=dffffc0000000000
RIP=ffffffff845b179a RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8ffc23406d CR3=0000000018b56000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000ff00000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000