The crash code is in ../accel/tcg/cpu-exec.c:681, the code in qemu v5.2.0 as follows: ### qemu v5.2.0###...667 *last_tb = NULL;668 insns_left = qatomic_read(&cpu_neg(cpu)->icount_decr.u32);669 if (insns_left < 0) {670 /* Something asked us to stop executing cha...